Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/A_OYeQB7cmZ_5Cwbdy1TrGubf3o.roa
File: A_OYeQB7cmZ_5Cwbdy1TrGubf3o.roa (raw, json)
Hash identifier: A2eig7vznGl3DoMV+RR1bNJFxA4k0H0Wf3ubO0klh/g=
Subject key identifier: 03:F3:98:79:00:7B:72:66:7F:E4:2C:1B:77:2D:53:AC:6B:9B:7F:7A
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018D6BADEC332012755748726588A86E960B
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/A_OYeQB7cmZ_5Cwbdy1TrGubf3o.roa
Signing time: Fri 02 Feb 2024 21:16:16 +0000
ROA not before: Fri 02 Feb 2024 21:16:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.180.104.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.136.5.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.141.150.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.229.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6b:ad:ec:33:20:12:75:57:48:72:65:88:a8:6e:96:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Feb 2 21:16:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03f39879007b72667fe42c1b772d53ac6b9b7f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:04:a2:36:87:51:f8:fd:25:a4:f0:3f:38:80:
7c:cb:f8:27:42:9a:8c:19:84:88:13:5b:2b:4b:29:
c0:b6:be:f2:88:f2:fc:32:f5:5b:cc:4e:a0:f5:4b:
0f:e2:d5:51:de:b7:51:24:fd:a3:85:0e:18:9e:c3:
33:00:5b:ab:98:5e:87:33:33:f0:fc:64:cb:8c:d4:
2d:5a:b0:3c:a4:5a:ae:8c:f7:c0:f6:1d:91:e9:49:
2c:6a:52:45:e9:51:e3:03:57:6c:86:f9:43:1c:ca:
a8:a7:1f:39:e1:b2:3d:00:fa:c6:0a:21:bd:88:57:
b0:11:e9:e3:5a:c4:96:d6:ca:9e:7e:7d:ac:00:4f:
10:62:2d:14:b0:11:5e:d5:9e:b5:15:c1:98:3c:1e:
db:88:d4:ca:56:31:a2:0d:5c:6b:20:36:11:2c:af:
24:cf:40:ca:ec:33:8f:f8:f5:b7:e6:d9:3c:dd:41:
b7:9e:44:e0:0f:75:94:09:51:32:c1:65:36:84:af:
11:33:6f:69:80:99:97:9f:9c:4e:ee:fd:14:06:d5:
95:25:e8:6b:3c:ce:79:66:6d:54:f7:2d:10:e5:0e:
36:57:d7:60:4f:66:e3:01:ca:d1:85:72:99:ce:10:
da:60:d2:1b:44:7d:73:0c:f1:72:e0:db:bf:b2:3e:
2c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F3:98:79:00:7B:72:66:7F:E4:2C:1B:77:2D:53:AC:6B:9B:7F:7A
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/A_OYeQB7cmZ_5Cwbdy1TrGubf3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
5.180.107.0/24
45.131.0.0/23
45.131.3.0/24
45.136.5.0/24
45.141.148.0/24
45.141.150.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/23
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
Signature Algorithm: sha256WithRSAEncryption
25:5b:62:7f:0d:5f:88:28:0e:05:22:58:96:eb:56:21:76:73:
a9:b3:09:4f:bb:2d:55:88:c4:29:f1:f9:6f:75:ce:37:05:8b:
19:f3:65:cd:16:08:9b:2d:9a:30:90:d9:2b:df:08:76:7e:fe:
48:d7:f5:d2:ac:7c:f5:ae:9a:91:00:19:8e:d9:12:a0:82:f8:
59:c0:95:ae:5d:6a:a5:21:87:cf:f8:3b:51:2f:a4:07:f9:b5:
62:20:d8:f1:19:79:3a:05:03:e9:d6:25:a6:32:36:f0:d3:c2:
33:fc:45:eb:8b:a6:27:2f:d2:74:9d:d3:84:82:69:2e:7b:6b:
17:e5:e3:ef:36:cd:ce:e4:06:ed:95:94:c5:3c:6c:8f:55:6c:
3e:b8:e8:6e:41:e0:bf:4b:5f:ee:02:93:44:52:03:85:e3:a3:
9b:57:67:2c:f3:ea:80:e9:42:f7:e8:4d:02:6a:b3:0f:b2:d9:
24:87:83:53:32:0b:e7:7b:c6:fe:c0:f0:f8:59:f1:f1:d0:1d:
92:05:09:76:2e:df:c7:fe:ec:44:49:1a:ad:47:6f:25:f9:22:
d8:72:de:cf:56:8f:77:19:ef:c9:94:8a:c4:9a:93:58:4e:32:
b0:63:d5:f6:ed:0e:33:38:69:a4:26:48:94:57:e0:6f:b5:a6:
39:37:35:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:24 2025 by rpki-client