Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/o6ieKsR7FjAprL4VILyFr2zFcKA.roa
File: o6ieKsR7FjAprL4VILyFr2zFcKA.roa (raw, json)
Hash identifier: Giq39jVCC5o0U7ywitusRGD3towty/4BKAcQLaMFNY4=
Subject key identifier: A3:A8:9E:2A:C4:7B:16:30:29:AC:BE:15:20:BC:85:AF:6C:C5:70:A0
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018C260E50D558B00F4CF063DF7E3C69184A
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/o6ieKsR7FjAprL4VILyFr2zFcKA.roa
Signing time: Fri 01 Dec 2023 15:45:21 +0000
ROA not before: Fri 01 Dec 2023 15:45:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
5.180.104.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.229.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
45.136.5.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:26:0e:50:d5:58:b0:0f:4c:f0:63:df:7e:3c:69:18:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Dec 1 15:45:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3a89e2ac47b163029acbe1520bc85af6cc570a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:45:aa:d0:95:80:ca:81:b0:4f:6c:5f:11:3b:
e7:1f:41:65:48:da:51:a2:40:78:4d:8e:ec:08:ad:
58:d7:3e:a6:a6:36:fe:32:f3:84:39:dc:d9:5f:82:
a7:d5:65:0b:92:d2:2a:be:1f:af:c7:08:fc:1a:4b:
f8:04:8f:ea:05:08:f2:a0:7a:03:72:66:fe:90:f7:
dd:9d:1b:6b:f5:e9:bb:74:ba:f5:4f:da:45:ca:42:
14:fd:42:2f:26:c8:00:cd:6a:c7:02:da:27:3f:02:
3b:68:8c:c2:90:9b:a5:b2:e2:6d:e1:de:30:62:91:
b1:c8:ec:dd:a1:6e:53:97:8b:df:c9:d0:75:08:cb:
52:68:a2:cf:6d:7c:71:a2:c3:41:a3:9e:a5:80:65:
c5:8c:e2:e4:7f:7f:14:88:f5:39:53:a6:a1:65:d7:
68:8f:43:ea:d2:32:4a:f9:bd:4f:97:f3:51:24:69:
15:9f:ac:b1:62:c5:3a:c7:4d:b9:fb:87:72:2e:d6:
fb:d7:7e:de:af:ea:f5:e9:e3:c2:e9:c1:9a:c5:71:
64:97:ae:af:2f:3d:c6:1c:b0:98:37:2a:c6:3d:6c:
23:c4:fa:52:6e:ae:f5:28:42:a7:cd:23:46:f7:c2:
ef:5f:7a:2c:40:2f:b0:e2:28:e3:40:4c:01:55:22:
39:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A8:9E:2A:C4:7B:16:30:29:AC:BE:15:20:BC:85:AF:6C:C5:70:A0
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/o6ieKsR7FjAprL4VILyFr2zFcKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
5.180.107.0/24
45.131.0.0/23
45.136.5.0/24
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/23
194.116.236.0/24
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
Signature Algorithm: sha256WithRSAEncryption
10:d8:53:91:9a:e9:bd:09:08:db:c7:34:45:1f:f1:a4:3d:ca:
13:3a:2a:44:c6:51:db:55:bb:33:d8:69:b2:bc:c1:a5:70:93:
cf:a4:8e:9c:9c:f3:58:98:fe:27:ed:08:76:c1:d6:1e:c5:ae:
6e:36:8b:a1:d4:92:3c:2e:b8:da:1c:74:e3:37:b4:d4:ed:78:
e7:19:06:eb:7f:f9:b5:cb:54:c1:e9:1f:4b:13:08:52:08:a5:
18:3d:1a:5f:18:c0:f5:99:4f:79:ee:1f:b9:f6:1e:99:42:e8:
e1:50:ff:54:d1:c0:44:c8:dd:f3:ac:3b:e2:01:e6:43:54:3b:
3d:78:ca:ea:16:d7:f1:20:cc:2d:20:57:04:54:63:51:52:8e:
13:57:1f:97:7d:5a:b5:41:f7:fe:fd:9d:26:1c:9e:29:96:99:
4c:0a:30:1f:95:55:12:4d:af:03:a1:19:86:5d:bd:6f:09:cb:
39:78:db:76:f5:3a:45:31:59:5e:43:5d:3d:db:de:9e:74:96:
1b:25:d4:c3:f4:41:60:ec:9c:e0:81:fb:34:3b:f7:5f:8b:a5:
2b:77:a7:a1:37:2e:fe:ef:d5:b0:13:51:ac:a3:5a:5a:6f:1b:
e6:ef:38:13:af:76:61:61:f3:ed:db:55:f8:83:d0:1e:d9:4a:
3d:b4:d2:d6
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgISAYwmDlDVWLAPTPBj3348aRhKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjMxMjAxMTU0NTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhM2E4OWUyYWM0N2IxNjMwMjlhY2JlMTUyMGJjODVhZjZjYzU3MGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8kWq0JWAyoGwT2xfETvnH0FlSNpR
okB4TY7sCK1Y1z6mpjb+MvOEOdzZX4Kn1WULktIqvh+vxwj8Gkv4BI/qBQjyoHoD
cmb+kPfdnRtr9em7dLr1T9pFykIU/UIvJsgAzWrHAtonPwI7aIzCkJulsuJt4d4w
YpGxyOzdoW5Tl4vfydB1CMtSaKLPbXxxosNBo56lgGXFjOLkf38UiPU5U6ahZddo
j0Pq0jJK+b1Pl/NRJGkVn6yxYsU6x025+4dyLtb7137er+r16ePC6cGaxXFkl66v
Lz3GHLCYNyrGPWwjxPpSbq71KEKnzSNG98LvX3osQC+w4ijjQEwBVSI5QwIDAQAB
o4ICWjCCAlYwHQYDVR0OBBYEFKOonirEexYwKay+FSC8ha9sxXCgMB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvbzZpZUtzUjdGakFwckw0VklMeUZyMnpGY0tBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBOBAIAATBIAwQABbRoAwQA
BbRrAwQBLYMAAwQALYgFAwQALY2UAwQALZMsAwQCTVPIAwQBwnTkAwQAwnTsAwQA
wpIaAwQAwpIkAwQAwpIvMA0EAgACMAcDBQMqCYeAMA0GCSqGSIb3DQEBCwUAA4IB
AQAQ2FORmum9CQjbxzRFH/GkPcoTOipExlHbVbsz2GmyvMGlcJPPpI6cnPNYmP4n
7Qh2wdYexa5uNouh1JI8LrjaHHTjN7TU7XjnGQbrf/m1y1TB6R9LEwhSCKUYPRpf
GMD1mU957h+59h6ZQujhUP9U0cBEyN3zrDviAeZDVDs9eMrqFtfxIMwtIFcEVGNR
Uo4TVx+XfVq1Qff+/Z0mHJ4plplMCjAflVUSTa8DoRmGXb1vCcs5eNt29TpFMVle
Q109296edJYbJdTD9EFg7Jzggfs0O/dfi6Urd6ehNy7+79WwE1Gso1pabxvm7zgT
r3ZhYfPt21X4g9Ae2Uo9tNLW
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:05 2025 by rpki-client