Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/RGb2A8Ia9BqT4R1Ew8eMdnr5de0.roa
File: RGb2A8Ia9BqT4R1Ew8eMdnr5de0.roa (raw, json)
Hash identifier: in778D45ovt2nfj/TtYw3pqSW1oopZW5L8V2RgV3wRs=
Subject key identifier: 44:66:F6:03:C2:1A:F4:1A:93:E1:1D:44:C3:C7:8C:76:7A:F9:75:ED
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 0194258F25F8CD51063C7A34F6267E4285A3
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/RGb2A8Ia9BqT4R1Ew8eMdnr5de0.roa
Signing time: Thu 02 Jan 2025 05:48:45 +0000
ROA not before: Thu 02 Jan 2025 05:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.105.0/24 maxlen: 24
5.180.106.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.136.4.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:eb00::/32 maxlen: 32
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:ed03::/32 maxlen: 32
2a0f:f900::/29 maxlen: 29
2a13:a440:8::/48 maxlen: 48
2a13:a441::/32 maxlen: 32
2a13:a445::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:25:f8:cd:51:06:3c:7a:34:f6:26:7e:42:85:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jan 2 05:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4466f603c21af41a93e11d44c3c78c767af975ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4d:65:e1:ab:41:c9:a7:c8:8c:20:d2:59:45:
d1:2a:57:2f:a5:0c:ee:b1:a4:85:8e:bc:22:01:44:
3b:a2:8c:df:02:2f:c2:78:6f:6c:9f:66:18:0b:7e:
a3:cf:00:e3:41:3f:06:23:7a:e3:e8:3e:32:cc:fd:
11:9e:f4:a0:bb:83:25:c7:57:86:f3:c5:8d:91:1c:
1a:47:24:b1:a8:40:b1:17:9d:98:b4:e5:4c:90:f9:
a1:39:44:5d:a0:7d:f1:5e:64:31:bd:9e:b3:f6:28:
bc:c2:00:ae:7e:b7:26:81:4c:2e:d8:e2:06:64:6b:
57:16:82:49:ce:8f:98:45:9b:24:0e:8e:a0:d2:7f:
02:c4:79:f5:e8:e3:88:7e:7b:58:45:bb:cf:07:e6:
38:9e:f2:3e:39:62:2e:91:84:86:d9:68:4b:76:bf:
a2:c3:99:dd:85:fd:7f:be:cc:c9:ef:d7:fe:1e:cb:
55:41:26:b4:a4:d6:0f:05:62:90:e1:50:d1:ed:12:
2e:1c:3e:fc:2d:0a:94:7d:ed:1f:a6:09:e9:db:90:
ff:78:13:6e:cd:3d:79:e1:b4:ee:bf:92:91:aa:e1:
14:05:94:75:67:a5:9c:8b:c9:38:7c:b2:b5:be:59:
53:08:22:99:44:6c:86:7e:ee:3e:68:c7:d4:67:eb:
43:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:66:F6:03:C2:1A:F4:1A:93:E1:1D:44:C3:C7:8C:76:7A:F9:75:ED
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/RGb2A8Ia9BqT4R1Ew8eMdnr5de0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.105.0-5.180.107.255
45.131.0.0/23
45.136.4.0/24
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb00::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440:8::/48
2a13:a441::/32
2a13:a445::/32
2a13:a447::/32
Signature Algorithm: sha256WithRSAEncryption
41:3f:e5:40:03:dc:5d:60:ea:66:ef:3d:f8:7f:6d:e8:55:02:
4c:88:6d:d7:87:0a:79:c5:85:9d:89:1a:36:e1:b7:8f:cb:79:
0b:a8:57:ab:d3:71:11:a3:80:d7:e8:0a:61:1a:cb:58:a6:87:
36:8a:f3:82:d6:58:cf:39:43:5b:d9:4c:37:39:b0:3a:65:07:
75:d5:16:8c:6d:96:5a:b5:a0:60:f6:05:3b:2a:9a:07:09:be:
f0:c5:fe:75:12:dd:8b:e7:e7:f5:0b:33:59:68:cc:b0:de:d8:
c3:38:03:03:4d:b7:d0:ad:f1:c9:2c:8f:58:cc:8e:e6:66:fa:
e8:14:9e:0a:0d:05:35:61:cc:0f:01:8b:aa:27:a0:a1:96:b7:
39:26:41:de:d7:a6:1a:08:d0:90:27:63:1c:c4:8e:91:8e:70:
95:f8:11:e7:ef:80:e5:e4:59:59:0f:bf:07:96:31:db:88:eb:
62:33:08:16:0f:ed:22:83:46:81:68:31:99:1e:35:b3:6e:ed:
b6:6e:3e:59:62:a0:97:79:b4:de:35:5a:6a:10:80:6f:35:04:
47:45:15:94:93:da:c1:c0:72:5d:2f:83:a3:b6:0f:71:de:7e:
b6:cd:b3:53:e0:f4:6f:d6:a2:4b:db:5d:6a:72:45:99:79:24:
d2:dd:ed:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:47 2025 by rpki-client