Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/EivFbRq2GaM-Bs56TaMGArcnN_w.roa
File: EivFbRq2GaM-Bs56TaMGArcnN_w.roa (raw, json)
Hash identifier: L1zPiRbu16yCRVnnGfjYy1hIVdYsrelsK1iGN3/hi0I=
Subject key identifier: 12:2B:C5:6D:1A:B6:19:A3:3E:06:CE:7A:4D:A3:06:02:B7:27:37:FC
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018E0923B42A696D1CA291CCEA5628020C40
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/EivFbRq2GaM-Bs56TaMGArcnN_w.roa
Signing time: Mon 04 Mar 2024 11:05:18 +0000
ROA not before: Mon 04 Mar 2024 11:05:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.136.5.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.229.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:23:b4:2a:69:6d:1c:a2:91:cc:ea:56:28:02:0c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Mar 4 11:05:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=122bc56d1ab619a33e06ce7a4da30602b72737fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:af:71:80:04:34:90:70:70:b1:e1:5a:0b:97:
0f:20:8d:11:6a:23:2f:7d:c7:86:6c:dc:8b:bb:5d:
bf:67:28:33:3e:61:84:81:83:5f:45:1a:6c:2d:f6:
98:b2:60:b6:2d:54:04:23:2f:3a:8f:9d:7f:46:ff:
18:b0:76:b1:3d:aa:10:26:46:f6:0d:7a:d7:2d:bb:
14:be:96:49:ca:84:10:1c:29:a1:31:0a:5d:ba:8c:
4c:ef:b1:e7:b7:df:05:67:be:46:e2:0b:2f:43:4d:
01:3b:37:13:f0:02:ba:77:63:c5:3f:8b:3c:03:6e:
a2:93:51:4b:09:97:57:51:c1:0f:53:4a:c2:de:dd:
24:c7:d6:f2:bb:b9:0c:07:ed:c3:5c:fd:72:e2:6f:
1c:f4:b1:51:63:c6:69:75:50:39:8f:f2:a4:13:e1:
c6:da:30:b0:02:54:ed:59:ad:15:1b:6f:45:79:d6:
b4:32:59:39:ba:77:68:ed:e3:82:44:54:63:15:b2:
a3:81:dd:db:5c:0b:c7:80:31:d8:8c:f9:0e:d0:ed:
0d:7d:4f:2d:7b:ba:81:18:38:f0:1d:28:84:f7:12:
54:b1:90:0f:17:f7:0b:c3:c4:1b:e2:7d:d1:b5:bc:
2a:09:ce:c3:23:55:74:a1:30:fe:5e:a8:9e:b7:87:
c4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:2B:C5:6D:1A:B6:19:A3:3E:06:CE:7A:4D:A3:06:02:B7:27:37:FC
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/EivFbRq2GaM-Bs56TaMGArcnN_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.107.0/24
45.131.0.0/23
45.131.3.0/24
45.136.5.0/24
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/23
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:eb00::/29
Signature Algorithm: sha256WithRSAEncryption
62:33:3b:e7:74:78:7c:54:ed:68:7e:ca:d1:88:ec:f0:34:b4:
5e:69:7e:6d:90:94:53:c4:3b:77:23:e1:ce:3b:11:20:bb:42:
33:58:df:54:03:f1:88:de:d6:ee:3b:06:6f:3c:a0:ef:0a:fc:
27:59:95:6c:2b:3a:43:59:12:9b:f3:57:9c:e8:e2:f6:88:cf:
57:55:bd:fc:a9:61:99:66:7b:f4:3b:68:fe:f8:85:32:a2:ab:
a5:78:51:6e:76:5d:5b:e5:b0:0a:2c:1d:c6:12:27:84:3b:c4:
aa:c6:dc:f0:e3:6b:0d:96:98:28:44:d0:59:26:2b:2c:ad:ec:
b4:11:a9:53:4f:f6:55:87:9a:f8:61:1a:ea:5a:8e:bc:d6:4f:
b7:72:fb:24:a9:0a:a7:b1:1b:bd:06:ee:91:58:0d:25:73:ac:
6e:8e:fd:c8:b6:7b:21:40:6c:72:05:1c:22:dd:89:aa:73:ec:
6f:fd:d6:45:e0:06:4d:ab:d2:a2:8c:b4:c0:a1:51:5f:63:9d:
40:a5:11:9f:0c:fb:8a:e8:c9:bd:fa:ad:2a:ed:f4:21:08:71:
e4:e8:2c:84:a9:9d:5c:51:6e:a3:82:f3:e4:df:e1:66:1a:a1:
50:ab:44:99:eb:f7:65:cf:47:55:17:34:79:be:98:c3:52:68:
8b:af:05:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:27 2025 by rpki-client