Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/qAZrypf0Ityu_TOscDSvkLBRG4o.roa
File: qAZrypf0Ityu_TOscDSvkLBRG4o.roa (raw, json)
Hash identifier: 0DHG+CpOHVNkeZMCjngGiYTayBBb+iKwh5AycnOdLDU=
Subject key identifier: A8:06:6B:CA:97:F4:22:DC:AE:FD:33:AC:70:34:AF:90:B0:51:1B:8A
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018C49FCE91C60C390E9A9B8B618AFF235D3
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/qAZrypf0Ityu_TOscDSvkLBRG4o.roa
Signing time: Fri 08 Dec 2023 15:12:40 +0000
ROA not before: Fri 08 Dec 2023 15:12:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
5.180.104.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
45.147.47.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.229.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
45.136.5.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:49:fc:e9:1c:60:c3:90:e9:a9:b8:b6:18:af:f2:35:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Dec 8 15:12:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8066bca97f422dcaefd33ac7034af90b0511b8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:99:7e:44:74:70:d5:45:77:d8:fd:38:5b:67:
c6:d1:19:99:96:cd:6d:fa:d8:96:36:29:6c:b8:52:
8a:af:b6:71:6c:1b:f7:a6:95:a4:81:f3:89:7e:19:
b8:ba:ac:40:ec:ec:3d:4f:ce:a6:7b:32:c9:2c:b8:
b0:cd:74:32:8b:60:7b:34:cc:a0:0d:e2:1d:6f:11:
2b:95:71:0a:7c:3a:ff:a1:55:4c:73:d4:e2:3a:24:
87:d2:e3:4f:9c:1e:89:b7:e2:28:ff:2c:a1:38:e5:
3d:aa:51:d6:ab:e2:1f:fa:db:88:8b:38:4c:53:8e:
5a:8e:7b:0a:3f:43:84:e8:77:d8:34:22:ef:2d:21:
03:ae:46:35:f7:39:89:ac:87:f3:52:3e:f9:30:e4:
46:f1:25:97:79:7d:c6:4b:a8:3c:1d:ff:7c:b2:93:
1b:d7:08:31:fc:02:a7:96:29:10:23:3d:02:85:b2:
2b:d1:02:f3:41:7d:61:80:b3:36:46:af:23:98:54:
c8:65:0c:9e:7d:7d:9a:65:51:03:11:1f:b2:ee:31:
6d:fc:97:52:b4:81:d4:0e:50:47:4b:4b:c1:dc:4d:
f9:54:fb:49:c1:27:4b:de:dc:2e:27:ff:59:f1:59:
85:2d:a2:4d:68:3e:c4:02:96:f0:2d:f0:34:58:15:
cb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:06:6B:CA:97:F4:22:DC:AE:FD:33:AC:70:34:AF:90:B0:51:1B:8A
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/qAZrypf0Ityu_TOscDSvkLBRG4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
5.180.107.0/24
45.131.0.0/23
45.136.5.0/24
45.141.148.0/24
45.147.44.0/24
45.147.47.0/24
77.83.200.0/22
194.116.228.0/23
194.116.236.0/24
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
Signature Algorithm: sha256WithRSAEncryption
29:33:5a:c7:35:f3:cd:55:2f:4a:36:7a:0d:a1:13:f2:db:47:
7b:fe:a6:d9:24:6c:cd:b9:04:e1:2e:7d:46:ba:e6:c9:ae:9b:
d4:b3:09:3f:08:70:f6:e0:6e:9c:e2:02:4e:cc:86:40:b2:bf:
05:60:ac:57:d8:02:a9:d8:64:fe:a6:c2:3b:df:a3:28:85:af:
c4:06:86:da:31:b3:88:63:fe:c0:a8:74:20:bd:28:dc:e1:82:
82:38:c7:52:f0:b3:c3:fc:7e:02:f8:65:b5:b5:b9:51:d2:c3:
45:2f:1f:34:61:bd:d9:83:76:42:60:f5:04:aa:b3:b5:83:1a:
d1:e0:eb:74:e2:fb:ec:85:8a:a8:54:a6:92:c1:91:62:2a:86:
dc:4d:de:91:08:a7:92:80:3a:e7:90:18:5c:f4:cc:83:28:89:
ba:05:71:0e:8e:1b:ce:8e:f9:25:41:36:42:94:fa:97:40:be:
5c:54:6f:1f:b4:c9:86:99:57:4c:38:8a:30:c5:ad:70:c8:c6:
1d:c0:c8:cc:2d:40:3a:10:59:a0:c9:27:12:ec:27:cd:61:0e:
6e:5a:d9:98:f2:97:b9:6e:eb:27:39:17:76:d8:e8:84:cd:fc:
8a:ac:6c:54:0c:38:40:17:a2:f1:5b:35:f4:94:74:ac:77:e9:
a6:5c:db:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:43 2025 by rpki-client