Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/Oh8d39nij_yxNW6xgaJKFxr2fjo.roa
File: Oh8d39nij_yxNW6xgaJKFxr2fjo.roa (raw, json)
Hash identifier: aAVcxnTqmcmnKTm7Q2Wn37e4z0n9pMMtxqBt38hbgxs=
Subject key identifier: 3A:1F:1D:DF:D9:E2:8F:FC:B1:35:6E:B1:81:A2:4A:17:1A:F6:7E:3A
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 01944A64BFA1D877D039EE411E54BDE4A346
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/Oh8d39nij_yxNW6xgaJKFxr2fjo.roa
Signing time: Thu 09 Jan 2025 09:28:24 +0000
ROA not before: Thu 09 Jan 2025 09:28:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203380
IP address blocks: 77.76.13.0/24 maxlen: 24
78.128.99.0/24 maxlen: 24
78.128.127.0/24 maxlen: 24
79.124.7.0/24 maxlen: 24
79.124.77.0/24 maxlen: 24
82.118.227.0/24 maxlen: 24
82.118.230.0/24 maxlen: 24
82.118.233.0/24 maxlen: 24
82.118.234.0/24 maxlen: 24
82.118.235.0/24 maxlen: 24
82.118.245.0/24 maxlen: 24
91.148.132.0/24 maxlen: 24
91.148.141.0/24 maxlen: 24
94.72.140.0/23 maxlen: 24
94.72.143.0/24 maxlen: 24
130.185.249.0/24 maxlen: 24
130.185.251.0/24 maxlen: 24
2a01:8740:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:4a:64:bf:a1:d8:77:d0:39:ee:41:1e:54:bd:e4:a3:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jan 9 09:28:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3a1f1ddfd9e28ffcb1356eb181a24a171af67e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:22:82:e1:d3:a1:57:61:3a:97:6e:7d:18:59:
52:f6:44:5d:ab:5b:95:ad:22:1c:45:88:99:8c:b1:
bb:40:21:05:f1:ef:70:33:67:a1:a8:59:aa:85:7f:
33:55:07:f0:ba:07:b9:a4:3a:45:0f:ac:05:93:40:
23:da:ae:4e:64:82:69:cc:8b:d3:62:73:1f:35:52:
f0:e6:33:ba:a5:b2:26:07:5f:da:b1:db:40:c4:eb:
07:cd:87:32:8b:52:b8:3f:77:cb:70:62:32:98:9f:
d5:43:ed:11:e0:11:19:3e:49:96:41:63:ec:56:59:
62:da:05:51:2d:91:96:41:1b:ce:60:c3:39:be:9f:
1d:ad:0d:7d:45:2b:24:2f:4f:b5:df:b3:93:9f:e6:
82:6c:91:61:cb:38:5b:dc:93:bc:bd:62:cc:a8:3d:
12:7e:33:9e:bd:cc:34:9a:c0:92:99:f5:ec:a4:30:
e2:74:02:7b:8f:c9:d5:4e:d2:ae:d2:68:c3:17:e3:
1a:df:ce:b1:30:57:83:19:b5:bc:2b:76:e1:13:7f:
bb:5f:76:fe:0b:6b:54:9d:96:42:cf:ef:49:8e:94:
19:3c:92:58:df:63:b6:79:7e:ba:82:44:79:80:ba:
06:59:ff:70:95:72:70:fb:23:3d:e0:41:61:3a:04:
8a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1F:1D:DF:D9:E2:8F:FC:B1:35:6E:B1:81:A2:4A:17:1A:F6:7E:3A
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/Oh8d39nij_yxNW6xgaJKFxr2fjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.13.0/24
78.128.99.0/24
78.128.127.0/24
79.124.7.0/24
79.124.77.0/24
82.118.227.0/24
82.118.230.0/24
82.118.233.0-82.118.235.255
82.118.245.0/24
91.148.132.0/24
91.148.141.0/24
94.72.140.0/23
94.72.143.0/24
130.185.249.0/24
130.185.251.0/24
IPv6:
2a01:8740:1::/48
Signature Algorithm: sha256WithRSAEncryption
21:0f:a2:79:bd:0d:14:a0:9d:34:24:7c:da:b2:d6:ea:74:05:
1c:fc:da:3e:5a:02:15:aa:ed:0e:ab:60:18:71:f7:86:bd:5a:
27:80:bc:4a:74:86:68:5c:6c:5c:1c:fb:ec:81:f6:f7:75:c3:
11:03:72:0b:70:be:2e:8b:d9:b8:2d:86:6a:b0:2f:f5:96:26:
ee:8d:7f:e4:ff:83:5e:47:09:56:e3:97:9d:25:8b:04:49:1c:
5b:f4:9b:17:6b:13:5d:17:22:fc:60:69:83:6d:14:a1:10:68:
72:3a:95:ed:98:b5:dc:cc:8a:bd:69:0b:10:0a:57:c5:db:a6:
98:af:e8:94:91:d4:fc:e2:20:ba:8d:d6:54:1e:6a:e4:2b:f0:
8e:d3:62:0a:ff:ec:25:2e:4e:dd:35:37:e4:85:82:09:db:be:
16:29:8b:2b:b4:de:c7:10:41:a5:01:20:f2:5c:50:ec:4d:78:
46:b1:21:d5:fb:87:61:ac:b7:2a:58:ea:99:12:18:55:35:76:
08:c3:25:8c:ab:9b:bd:2a:a5:45:f6:5c:d5:86:48:7c:68:ee:
24:6b:88:81:f7:21:df:2a:42:b0:45:eb:4a:af:4d:bc:30:a9:
bb:e3:09:28:7d:82:ac:37:d7:b9:9a:78:c1:3e:98:fc:4c:56:
f2:75:93:ca
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:23:23 2025 by rpki-client