Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/C1lXQ19g9bjYh5QDjUN-2TRx0dQ.roa
File: C1lXQ19g9bjYh5QDjUN-2TRx0dQ.roa (raw, json)
Hash identifier: wwm7c4kqNqVjOIT5VgiWSrC1kQ4XkFUXsshuiXp7uO8=
Subject key identifier: 0B:59:57:43:5F:60:F5:B8:D8:87:94:03:8D:43:7E:D9:34:71:D1:D4
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018FE8C22259A4438EDD85CAD70593D10C18
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/C1lXQ19g9bjYh5QDjUN-2TRx0dQ.roa
Signing time: Wed 05 Jun 2024 14:16:27 +0000
ROA not before: Wed 05 Jun 2024 14:16:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:f900::/29 maxlen: 29
2a13:a440::/32 maxlen: 32
2a13:a441::/32 maxlen: 32
2a13:a445::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:c2:22:59:a4:43:8e:dd:85:ca:d7:05:93:d1:0c:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jun 5 14:16:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b5957435f60f5b8d88794038d437ed93471d1d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:76:f2:31:07:0a:d4:af:2b:f5:dc:39:62:a9:
4a:c5:1e:2a:48:1d:47:8e:e9:24:4f:fa:a7:eb:7c:
33:8e:cb:94:79:c3:59:02:12:e7:f3:29:1e:56:a7:
35:83:d4:92:1e:b5:9b:66:fe:43:5b:43:a1:95:3d:
39:9c:57:5a:ec:fd:d3:b7:5f:a4:c3:95:c9:f5:75:
7c:70:70:35:d9:bb:1d:97:33:72:3e:60:16:1b:8b:
83:7c:91:45:21:62:bd:d7:6b:52:cf:1d:57:39:3d:
1d:ff:cc:db:ff:88:01:25:ee:56:13:14:64:01:fa:
a1:b5:97:3d:da:02:34:47:a5:1a:70:10:35:7f:73:
32:27:f8:a2:d3:9f:50:7c:40:8d:1a:ed:c4:3c:c2:
2b:eb:89:88:1a:d0:9d:ed:cd:cf:e3:5a:b5:10:6f:
48:af:d6:58:66:6d:e5:79:a9:33:2b:05:9a:3e:86:
25:66:c4:06:a6:01:5b:41:14:f9:5b:42:26:47:dc:
fa:10:fa:4f:f5:50:0d:54:eb:f5:3f:3f:79:0b:f6:
eb:a1:70:f5:04:cb:5a:01:22:7f:38:4e:6b:83:82:
5a:88:a6:c4:6f:39:34:b0:d5:c8:bb:b2:62:22:25:
c1:6d:5d:73:80:fe:c2:08:d1:12:be:0e:60:1f:e5:
fa:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:59:57:43:5F:60:F5:B8:D8:87:94:03:8D:43:7E:D9:34:71:D1:D4
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/C1lXQ19g9bjYh5QDjUN-2TRx0dQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.107.0/24
45.131.0.0/23
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb00::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/31
2a13:a445::/32
Signature Algorithm: sha256WithRSAEncryption
30:bb:e5:b2:67:02:63:ce:ca:63:fa:9c:9c:7f:87:a1:aa:d2:
9e:c3:b5:c2:a5:78:5a:7a:ac:02:3d:8e:d6:e8:42:8b:54:93:
42:5d:eb:b9:bd:a8:fd:c3:6a:d0:4f:66:a4:11:80:ed:8c:33:
f2:82:08:3d:3d:7e:92:80:4f:ea:d5:db:c6:4b:4a:33:87:e6:
ef:2a:d1:0b:c7:1c:fb:b7:ff:57:c2:a7:77:16:62:82:dd:f9:
cb:69:28:fb:e0:c0:5d:fb:31:55:e4:e7:18:5d:fc:2d:6d:f7:
73:24:9a:cc:6a:d3:13:c4:5c:ab:f5:dc:a9:79:34:50:63:47:
8f:b6:cc:74:2b:46:eb:83:e6:55:7c:48:02:cb:d0:b9:e9:f7:
bf:87:a9:35:c3:05:2b:f3:9e:01:64:23:9b:01:08:9f:12:e0:
b2:a5:43:4f:82:74:e2:2e:89:80:22:f3:84:9d:37:f8:6e:e7:
f4:fe:4f:87:34:8f:e0:80:60:9d:2d:4c:98:f3:c4:12:bd:62:
31:22:37:7e:c3:ca:04:47:a4:1c:b6:26:53:12:ed:49:36:a7:
38:8a:4d:e5:0b:b8:b6:69:27:d0:13:b0:1d:77:8f:34:d9:6d:
c5:b9:0c:ba:43:a1:a3:e5:36:23:b3:52:58:f3:45:de:e8:44:
a4:8d:17:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:56 2025 by rpki-client