Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/1-Vct87ne-x00z87BXWiMDBjj5iM.roa
File: 1-Vct87ne-x00z87BXWiMDBjj5iM.roa (raw, json)
Hash identifier: UtBIfY6oIh4e9eQMjAB2icdUc+hg/hUBexcKaSQrk5Y=
Subject key identifier: F9:57:2D:F3:B9:DE:FB:1D:34:CF:CE:C1:5D:68:8C:0C:18:E3:E6:23
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018BDCB5C3E2615735410C9578DF3ECECEE5
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/1-Vct87ne-x00z87BXWiMDBjj5iM.roa
Signing time: Fri 17 Nov 2023 09:56:21 +0000
ROA not before: Fri 17 Nov 2023 09:56:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209737
IP address blocks: 45.141.148.0/24 maxlen: 24
5.180.104.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
194.116.229.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:b5:c3:e2:61:57:35:41:0c:95:78:df:3e:ce:ce:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Nov 17 09:56:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f9572df3b9defb1d34cfcec15d688c0c18e3e623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:81:22:be:07:ef:6f:fc:49:59:d6:22:75:54:
78:c5:1a:79:07:3e:3c:e7:13:b3:33:04:16:08:b9:
c7:87:74:7d:4c:52:f3:4a:7a:8f:e6:c4:8c:c2:bb:
67:26:34:39:18:de:91:c6:15:82:0f:33:f2:51:31:
23:5a:e7:d8:95:a7:d9:13:ca:e2:7e:fc:b6:f6:5d:
7e:00:cf:99:9d:37:52:23:a9:cd:68:f1:85:67:bf:
78:dc:9c:af:65:70:4d:75:98:a2:30:0c:68:93:76:
44:3f:2a:1c:8d:3f:c1:ed:b5:e1:27:59:5c:89:6a:
6c:3c:11:b2:22:95:10:49:5d:52:20:54:03:fb:4a:
d0:07:b8:fa:a6:71:24:70:a4:99:dc:f8:51:40:7d:
1f:4b:d0:8d:1c:7b:1c:46:bc:d4:07:fa:ba:b3:3f:
52:e6:8b:fc:2f:a2:24:de:37:a2:69:93:ed:03:e1:
0f:65:54:9c:09:72:a2:59:50:52:e4:73:fc:1d:18:
0e:dc:37:b3:9c:ce:34:80:35:31:a3:75:a9:24:f3:
73:75:2d:ac:69:86:bb:f1:a0:7b:4c:8a:53:e2:99:
37:ab:a9:fd:37:5e:9d:5f:27:e1:ce:99:7f:59:88:
15:da:55:27:ea:77:69:8f:27:5a:d9:41:f5:31:f4:
53:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:57:2D:F3:B9:DE:FB:1D:34:CF:CE:C1:5D:68:8C:0C:18:E3:E6:23
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/1-Vct87ne-x00z87BXWiMDBjj5iM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
45.131.0.0/24
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.229.0/24
194.116.236.0/23
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
Signature Algorithm: sha256WithRSAEncryption
55:ad:17:0f:b6:32:89:41:01:a6:c0:70:34:0f:5c:e8:68:f6:
e9:d8:26:98:dc:f0:c2:13:4d:29:99:f7:a8:4d:d0:1f:2f:67:
88:40:6b:a3:d0:f5:0b:d6:5c:e6:c9:fc:2d:d8:ad:bb:21:e2:
90:cd:43:97:76:b4:2a:f4:63:e2:15:3d:36:ce:f5:ed:f2:ec:
8e:5a:db:d3:4c:7d:c8:34:9e:2e:27:ec:74:e0:e6:bc:90:21:
9c:40:8a:5e:02:54:fa:5b:10:88:6c:cd:0f:63:ee:49:dc:11:
1c:3f:d3:33:15:ee:e5:e9:ad:1d:59:5a:15:77:66:98:90:ad:
4f:e4:4f:1f:67:a3:81:a5:fb:60:8b:57:18:ed:6c:71:03:ba:
9f:ea:9b:96:7e:f7:5d:34:1f:35:d6:92:f1:fb:33:bc:14:08:
d0:dd:51:d8:6b:c9:bd:bf:de:81:e7:be:c7:3f:32:59:e6:1f:
d5:44:2e:41:21:f9:87:1a:1b:e1:b9:c9:97:58:9d:5e:54:45:
17:a4:33:b6:33:e2:be:a2:0f:5f:3f:f9:e3:fc:6f:9f:83:ae:
f6:80:0d:46:b4:19:25:9c:67:ac:e4:8d:c2:ce:0b:b1:cd:2f:
bc:03:5b:eb:44:e1:08:e2:52:98:23:60:23:c4:de:7a:cc:9c:
1c:f5:99:e7
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgISAYvctcPiYVc1QQyVeN8+zs7lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjMxMTE3MDk1NjIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTU3MmRmM2I5ZGVmYjFkMzRjZmNlYzE1ZDY4OGMwYzE4ZTNlNjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIEivgfvb/xJWdYidVR4xRp5Bz48
5xOzMwQWCLnHh3R9TFLzSnqP5sSMwrtnJjQ5GN6RxhWCDzPyUTEjWufYlafZE8ri
fvy29l1+AM+ZnTdSI6nNaPGFZ7943JyvZXBNdZiiMAxok3ZEPyocjT/B7bXhJ1lc
iWpsPBGyIpUQSV1SIFQD+0rQB7j6pnEkcKSZ3PhRQH0fS9CNHHscRrzUB/q6sz9S
5ov8L6Ik3jeiaZPtA+EPZVScCXKiWVBS5HP8HRgO3DeznM40gDUxo3WpJPNzdS2s
aYa78aB7TIpT4pk3q6n9N16dXyfhzpl/WYgV2lUn6ndpjyda2UH1MfRTYwIDAQAB
o4ICSTCCAkUwHQYDVR0OBBYEFPlXLfO53vsdNM/OwV1ojAwY4+YjMB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvMS1WY3Q4N25lLXgwMHo4N0JYV2lNREJqajVpTS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZGIvOGUwN2RkLTRmZTUtNDgyMC1iY2JlLTVkZDZlMjJlYmFi
MC8xL1NBWHhmQzF4TTlMYTA2amZmalV4WGpmdlhhOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjBeBggrBgEFBQcBBwEB/wRPME0wPAQCAAEwNgMEAAW0aAME
AC2DAAMEAC2NlAMEAC2TLAMEAk1TyAMEAMJ05QMEAcJ07AMEAMKSJAMEAMKSLzAN
BAIAAjAHAwUDKgmHgDANBgkqhkiG9w0BAQsFAAOCAQEAVa0XD7YyiUEBpsBwNA9c
6Gj26dgmmNzwwhNNKZn3qE3QHy9niEBro9D1C9Zc5sn8LdituyHikM1Dl3a0KvRj
4hU9Ns717fLsjlrb00x9yDSeLifsdODmvJAhnECKXgJU+lsQiGzND2PuSdwRHD/T
MxXu5emtHVlaFXdmmJCtT+RPH2ejgaX7YItXGO1scQO6n+qbln73XTQfNdaS8fsz
vBQI0N1R2GvJvb/egee+xz8yWeYf1UQuQSH5hxob4bnJl1idXlRFF6QztjPivqIP
Xz/54/xvn4Ou9oANRrQZJZxnrOSNws4Lsc0vvANb60ThCOJSmCNgI8TeesycHPWZ
5w==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:44 2025 by rpki-client