Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/ClOYFT-VhmNgddvi_DEFlq3NK7Q.roa
File: ClOYFT-VhmNgddvi_DEFlq3NK7Q.roa (raw, json)
Hash identifier: C4IT2Cw28emabhJOGksKS87tG30IMYDa5f+VvSmRiGk=
Subject key identifier: 0A:53:98:15:3F:95:86:63:60:75:DB:E2:FC:31:05:96:AD:CD:2B:B4
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018FC035317A8015C72F170C33745AE1AD16
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/ClOYFT-VhmNgddvi_DEFlq3NK7Q.roa
Signing time: Tue 28 May 2024 17:17:42 +0000
ROA not before: Tue 28 May 2024 17:17:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.180.104.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.141.150.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a0f:e900::/29 maxlen: 29
2a0f:ed00::/29 maxlen: 29
2a0f:f900::/29 maxlen: 29
2a13:a440::/32 maxlen: 32
2a13:a441::/32 maxlen: 32
2a13:a445::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c0:35:31:7a:80:15:c7:2f:17:0c:33:74:5a:e1:ad:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: May 28 17:17:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a5398153f9586636075dbe2fc310596adcd2bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:13:9f:b5:f9:d1:74:30:31:b6:61:3a:39:61:
0e:85:33:9a:ff:6d:f5:05:4a:3c:a8:48:5b:bf:39:
73:8b:76:81:78:c0:33:f6:93:31:ed:8d:18:9e:95:
f0:7e:fd:0c:73:69:a6:ac:55:8f:e4:b4:7c:94:a2:
be:8e:cc:fe:6e:f0:d3:c2:c4:f7:9d:64:10:63:4f:
8c:a5:e3:c3:1c:6a:4f:b8:e2:af:d4:76:f9:8d:36:
e8:47:fa:f4:7c:0d:32:58:f5:b1:9e:e4:80:51:6d:
e7:0d:95:d3:fe:c0:27:93:51:a2:fb:b2:b2:b5:59:
f0:45:a2:4a:db:09:0e:1c:03:69:a6:98:ee:77:bb:
1c:37:d1:3a:3e:df:79:79:3b:35:1e:b0:88:14:93:
7d:21:8b:49:b3:ca:23:52:83:1e:ea:79:5d:9a:a9:
81:6f:a8:57:5e:8d:7d:62:76:80:82:fb:d8:55:75:
c7:4e:fd:a0:1e:c8:8b:56:03:5d:f6:0c:9d:d2:b6:
9d:7d:9b:27:d6:59:1c:3f:f7:cc:e3:4b:74:09:7f:
6d:6e:17:0a:e7:f4:5c:7d:d5:7b:22:36:71:29:f7:
01:31:c7:45:e5:4b:49:2c:11:96:9a:b8:b6:a7:8e:
8b:c8:03:bb:23:d6:d3:41:36:db:eb:6e:2c:99:28:
17:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:53:98:15:3F:95:86:63:60:75:DB:E2:FC:31:05:96:AD:CD:2B:B4
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/ClOYFT-VhmNgddvi_DEFlq3NK7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
5.180.107.0/24
45.131.0.0/23
45.131.3.0/24
45.141.148.0/24
45.141.150.0/24
45.147.44.0/24
77.83.200.0-77.83.202.255
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a0f:e900::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/31
2a13:a445::/32
Signature Algorithm: sha256WithRSAEncryption
38:c0:42:f9:b0:ff:d4:63:04:b0:d1:85:fb:9b:9b:1c:16:09:
4d:13:ee:7f:58:46:01:bd:83:1c:dd:24:16:82:50:72:04:aa:
5f:e2:5c:c8:be:20:77:f5:56:97:13:4c:4f:69:98:5c:de:a0:
50:ca:9c:6b:aa:62:20:d1:49:49:ce:24:49:3c:17:5f:37:75:
04:3e:80:65:b3:73:5e:55:4f:68:50:28:01:ae:a2:1d:c4:54:
cd:43:7d:0f:84:06:3f:9e:f0:86:76:a4:4c:99:4a:dc:b3:cc:
ba:e6:d6:6c:ba:1e:83:64:ac:ee:5d:75:91:8d:5c:be:0f:c0:
3e:74:c8:b5:20:ed:36:32:f0:61:79:f7:4f:ff:2f:a9:a0:0c:
47:5b:2c:64:97:6a:c1:4f:18:1f:27:b3:6f:52:67:79:2a:fa:
9a:7d:a9:be:5a:ae:75:44:ed:6d:cf:8c:77:2a:2d:dd:92:e7:
d3:51:5b:a8:a7:e7:80:02:ec:04:a4:32:67:c6:ef:c6:74:01:
99:06:42:49:50:c3:47:82:86:3a:61:9a:15:dd:92:82:31:fe:
25:76:93:98:21:40:1a:19:e9:19:7c:a3:98:85:26:dd:06:cf:
45:c8:f8:02:90:99:2e:9b:d8:ba:8c:62:ea:7e:b5:d1:73:7a:
30:3d:03:e9
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgISAY/ANTF6gBXHLxcMM3Ra4a0WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjQwNTI4MTcxNzQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTUzOTgxNTNmOTU4NjYzNjA3NWRiZTJmYzMxMDU5NmFkY2QyYmI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3xOftfnRdDAxtmE6OWEOhTOa/231
BUo8qEhbvzlzi3aBeMAz9pMx7Y0YnpXwfv0Mc2mmrFWP5LR8lKK+jsz+bvDTwsT3
nWQQY0+MpePDHGpPuOKv1Hb5jTboR/r0fA0yWPWxnuSAUW3nDZXT/sAnk1Gi+7Ky
tVnwRaJK2wkOHANpppjud7scN9E6Pt95eTs1HrCIFJN9IYtJs8ojUoMe6nldmqmB
b6hXXo19YnaAgvvYVXXHTv2gHsiLVgNd9gyd0radfZsn1lkcP/fM40t0CX9tbhcK
5/RcfdV7IjZxKfcBMcdF5UtJLBGWmri2p46LyAO7I9bTQTbb624smSgXTwIDAQAB
o4IChzCCAoMwHQYDVR0OBBYEFApTmBU/lYZjYHXb4vwxBZatzSu0MB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvQ2xPWUZULVZobU5nZGR2aV9ERUZscTNOSzdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGcBggrBgEFBQcBBwEB/wSBjDCBiTBcBAIAATBWAwQABbRo
AwQABbRrAwQBLYMAAwQALYMDAwQALY2UAwQALY2WAwQALZMsMAwDBANNU8gDBABN
U8oDBADCdOQDBAHCdOwDBADCkhoDBADCkiQDBADCki8wKQQCAAIwIwMFAyoP6QAD
BQMqD+0AAwUDKg/5AAMFASoTpEADBQAqE6RFMA0GCSqGSIb3DQEBCwUAA4IBAQA4
wEL5sP/UYwSw0YX7m5scFglNE+5/WEYBvYMc3SQWglByBKpf4lzIviB39VaXE0xP
aZhc3qBQypxrqmIg0UlJziRJPBdfN3UEPoBls3NeVU9oUCgBrqIdxFTNQ30PhAY/
nvCGdqRMmUrcs8y65tZsuh6DZKzuXXWRjVy+D8A+dMi1IO02MvBhefdP/y+poAxH
Wyxkl2rBTxgfJ7NvUmd5Kvqafam+Wq51RO1tz4x3Ki3dkufTUVuop+eAAuwEpDJn
xu/GdAGZBkJJUMNHgoY6YZoV3ZKCMf4ldpOYIUAaGekZfKOYhSbdBs9FyPgCkJku
m9i6jGLqfrXRc3owPQPp
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:51 2025 by rpki-client