Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/p7ZyeJoqVOEA1nkSbBkoe7OtxIw.roa
File: p7ZyeJoqVOEA1nkSbBkoe7OtxIw.roa (raw, json)
Hash identifier: ewAFSkMshNPtrhjB9Ym/GquI8eOPz4lx0nt1saAnrZc=
Subject key identifier: A7:B6:72:78:9A:2A:54:E1:00:D6:79:12:6C:19:28:7B:B3:AD:C4:8C
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 07C7BF20
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/p7ZyeJoqVOEA1nkSbBkoe7OtxIw.roa
Signing time: Fri 25 Feb 2022 14:12:47 +0000
ROA not before: Fri 25 Feb 2022 14:12:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211376
IP address blocks: 45.147.44.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.1.114/32 maxlen: 32
194.116.228.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
45.136.5.0/24 maxlen: 24
194.116.228.174/32 maxlen: 32
45.131.1.0/24 maxlen: 24
2a0f:b700::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130531104 (0x7c7bf20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Feb 25 14:12:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7b672789a2a54e100d679126c19287bb3adc48c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a2:f3:9b:0a:4d:69:a4:87:e6:21:7f:f7:e3:
87:6a:79:88:dc:8e:8d:3a:fe:e6:14:51:44:06:bc:
e0:0c:fe:a0:ea:83:8d:4c:3a:7f:f9:7f:e4:a5:ec:
5e:de:4c:50:2e:63:d8:a6:c1:90:2f:69:41:26:1b:
dd:6b:60:ab:49:cb:57:fc:45:ba:1b:90:1d:18:dc:
42:52:be:e3:46:3a:0c:07:8c:76:7a:39:f9:0b:9a:
30:45:3e:0c:ab:03:8a:3b:f9:ef:ff:d0:82:4a:62:
3b:c3:7c:8c:26:0a:5b:53:77:ee:6d:5c:6f:ed:3d:
9d:1f:07:98:ec:7b:2d:90:5a:fe:be:d0:1e:a2:05:
63:10:f7:4f:c5:30:58:ea:36:f2:9a:76:99:1c:18:
e4:b7:73:a2:76:00:1c:8c:45:a1:f7:32:7e:1a:30:
f5:55:02:ef:18:fd:d3:38:53:0c:d6:0d:90:c2:d1:
48:e9:08:18:3c:0f:0b:22:5a:27:ee:28:2d:9a:f2:
60:2d:8e:25:e5:28:71:6d:d7:a0:56:a0:d0:7f:49:
dd:ec:74:22:34:b2:c8:54:99:fd:95:23:dd:af:10:
2e:2b:e3:dc:b2:fb:61:a6:38:19:54:2f:73:d2:03:
de:8c:20:c6:0c:f8:6f:4d:45:e3:f3:0c:a1:db:1e:
d6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B6:72:78:9A:2A:54:E1:00:D6:79:12:6C:19:28:7B:B3:AD:C4:8C
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/p7ZyeJoqVOEA1nkSbBkoe7OtxIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.107.0/24
45.131.1.0/24
45.136.5.0/24
45.147.44.0/24
194.116.228.0/24
194.146.26.0/24
IPv6:
2a0f:b700::/29
Signature Algorithm: sha256WithRSAEncryption
35:64:3b:2b:c7:80:a7:ad:4b:0e:a0:5c:89:b0:d9:55:30:c3:
79:fb:4f:56:28:7e:0c:b3:4f:5c:b7:a3:dc:aa:b8:3f:a3:47:
6e:59:4a:1f:47:d6:88:af:ca:9c:88:58:b9:48:69:b5:37:4e:
7b:85:55:38:ec:b7:8b:4a:0e:db:db:21:a5:0c:ab:4d:33:f2:
e0:d8:81:ab:d6:67:9d:42:c1:ca:ba:e9:ed:59:71:1e:55:42:
6c:a9:2f:ae:3e:5e:b5:a4:91:8b:4a:53:b6:6c:54:2c:5b:51:
ea:46:5a:bd:4b:81:c5:20:b9:22:44:9c:4e:da:17:3c:0d:e9:
80:4e:41:62:57:e2:49:cc:57:ca:3a:97:52:26:ee:91:30:b9:
b1:47:a1:e1:1b:cf:1f:a2:f2:7b:c9:c5:47:ee:d0:50:cb:47:
5c:67:c4:dd:c8:b7:ac:85:7d:5b:4f:01:25:4b:53:8b:83:68:
b9:6c:10:b3:98:f2:9b:11:a5:07:9b:ff:0f:cf:c0:76:16:67:
8f:3f:1b:78:14:22:d5:7f:9e:2a:ef:af:27:8a:ec:e5:5c:24:
95:28:ba:1d:27:f5:08:c9:f8:da:5c:cc:67:a5:20:9c:ec:13:
cf:9b:1b:8b:9d:6f:41:22:8f:e8:02:8a:db:c8:fb:b3:c1:35:
f4:88:e9:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:38 2025 by rpki-client