Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/LDmyDQu8ChlWoQRfYyM6j9rucos.roa
File: LDmyDQu8ChlWoQRfYyM6j9rucos.roa (raw, json)
Hash identifier: s1yV8kNc7RYzisuPKCrh65IwwiqOCAC4lqIzIT65fPU=
Subject key identifier: 2C:39:B2:0D:0B:BC:0A:19:56:A1:04:5F:63:23:3A:8F:DA:EE:72:8B
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018FC03531EB668997A1685BDD9210CDB76E
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/LDmyDQu8ChlWoQRfYyM6j9rucos.roa
Signing time: Tue 28 May 2024 17:17:42 +0000
ROA not before: Tue 28 May 2024 17:17:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:ed00::/29 maxlen: 29
2a0f:f900::/29 maxlen: 29
2a13:a440::/32 maxlen: 32
2a13:a441::/32 maxlen: 32
2a13:a445::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c0:35:31:eb:66:89:97:a1:68:5b:dd:92:10:cd:b7:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: May 28 17:17:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c39b20d0bbc0a1956a1045f63233a8fdaee728b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:20:77:bc:1a:cb:5b:3a:57:56:69:c9:17:a9:
1b:52:3d:f2:a9:72:d7:d8:cd:9b:b5:e3:c7:34:01:
25:df:68:4e:55:49:1a:3f:13:a8:2d:02:c0:53:ab:
b9:51:1e:bd:9d:07:2f:e8:ca:0b:90:00:e2:c4:f7:
65:c9:78:15:41:fe:9e:74:0d:7c:ae:fb:2a:7d:1a:
80:83:fa:86:66:25:24:09:2e:eb:d0:cf:03:06:dd:
8d:e3:49:08:dc:32:1c:06:e8:0a:aa:90:1e:08:84:
98:46:c8:ae:41:b2:5f:ba:e9:57:e5:21:5e:56:61:
1d:88:b5:ad:45:90:86:5b:43:68:62:42:d1:e4:0e:
7f:e6:41:28:3b:89:f1:8b:fa:ef:04:a1:22:ed:e7:
c0:e4:2e:63:16:a7:77:3d:68:31:4d:25:10:bf:08:
21:8d:40:32:c6:e1:25:5c:d9:41:fb:18:9f:c6:3e:
94:a6:ca:b1:f4:17:62:ad:e0:69:eb:89:7d:86:3b:
4f:27:5c:d3:85:88:0d:57:3d:9c:40:8c:1a:84:38:
96:08:40:53:28:1e:b7:b8:1b:0f:3a:86:0f:6c:cd:
45:2e:5d:24:85:ee:d8:a3:93:66:9c:95:a6:ae:b5:
45:8b:d4:9f:74:d6:5b:94:6b:e1:33:b6:38:1e:65:
fd:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:39:B2:0D:0B:BC:0A:19:56:A1:04:5F:63:23:3A:8F:DA:EE:72:8B
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/LDmyDQu8ChlWoQRfYyM6j9rucos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.107.0/24
45.131.0.0/23
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb00::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/31
2a13:a445::/32
Signature Algorithm: sha256WithRSAEncryption
73:25:0c:12:67:ff:d3:fb:a8:8b:3a:61:9f:80:30:cb:8d:8e:
24:85:7d:5a:57:57:18:c3:42:ec:05:1e:0b:54:60:50:3d:5c:
98:ed:7f:d4:2d:dd:ff:f9:32:71:8d:cf:1c:bc:e8:e0:fa:f0:
6f:0a:5e:2a:e7:f9:1f:5d:ca:e1:4a:83:1f:56:54:df:c3:b0:
44:b5:71:8e:ed:41:0f:82:ca:73:9b:d5:03:3c:2c:83:29:3f:
c8:6b:98:4a:12:3e:66:c3:8b:b7:8c:39:76:a8:be:50:b5:60:
73:2d:0b:9e:bb:ab:8d:4a:16:63:49:bd:08:1d:62:d2:11:b5:
42:9e:33:1f:43:83:c2:8a:31:19:07:e1:72:2e:6a:97:31:b7:
86:3b:c9:f3:83:a6:3d:af:d8:ad:d0:39:b7:a0:a9:61:22:86:
17:d6:75:8a:84:ac:e2:17:fe:d5:0e:38:36:7a:09:7b:bf:6b:
59:d5:bd:9e:01:8c:2f:06:80:7a:c9:8c:5c:c1:c5:97:27:c5:
ca:c5:41:06:11:b9:98:01:26:8b:c4:e6:f0:71:59:1e:f1:76:
6e:27:1c:70:04:d8:22:9f:cf:15:4c:76:60:aa:76:f4:3c:ef:
7b:48:40:96:1c:17:5d:4a:34:0a:63:20:cd:b4:e3:b6:32:9c:
d7:fa:d7:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:27 2025 by rpki-client