Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/rCpPreFm4lE1wXiHmGyxvwsubf4.roa
File: rCpPreFm4lE1wXiHmGyxvwsubf4.roa (raw, json)
Hash identifier: UlUivcvtZJHEjJ2aTy9JgYDwGJmt1HjkkL4zcIP5678=
Subject key identifier: AC:2A:4F:AD:E1:66:E2:51:35:C1:78:87:98:6C:B1:BF:0B:2E:6D:FE
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 01909D3240B105FFA632A19C0D853082CDCC
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/rCpPreFm4lE1wXiHmGyxvwsubf4.roa
Signing time: Wed 10 Jul 2024 15:10:34 +0000
ROA not before: Wed 10 Jul 2024 15:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.105.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:eb00::/32 maxlen: 32
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:ed03::/32 maxlen: 32
2a0f:f900::/29 maxlen: 29
2a13:a440::/32 maxlen: 32
2a13:a441::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9d:32:40:b1:05:ff:a6:32:a1:9c:0d:85:30:82:cd:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jul 10 15:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac2a4fade166e25135c17887986cb1bf0b2e6dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:62:45:e1:c1:ef:b0:8b:50:24:79:3c:3a:9d:
c1:9b:ad:29:24:9c:93:57:05:d5:71:75:db:f1:dc:
6a:f6:b4:ed:6d:de:1b:80:b3:c0:91:8a:5c:19:68:
76:50:77:1b:f6:96:8b:49:60:06:eb:b0:3e:c2:b2:
2e:c7:f6:e4:5d:6c:c6:de:99:16:35:05:c8:97:60:
b3:e1:5d:77:44:63:87:dc:4e:e5:d8:f7:36:68:fa:
89:b8:81:2a:4b:a4:8d:d0:40:dc:5d:7e:75:bd:cc:
a6:ae:06:37:8d:ff:b2:62:db:6d:80:1f:aa:70:5d:
21:95:66:ea:51:80:90:a4:c5:29:86:da:fb:25:19:
ea:0d:50:84:ea:b9:ce:7a:2d:9f:88:09:fc:67:d5:
b0:98:09:a5:5d:8f:09:d8:08:2a:7f:74:af:75:9a:
67:b1:51:6a:74:7b:7b:85:2d:92:6c:d5:99:13:06:
04:7d:ff:61:e1:3e:5b:aa:44:04:15:03:c4:c1:80:
52:86:6c:85:9e:d4:b0:b9:00:36:e6:c8:94:0a:df:
68:bc:f7:c5:95:91:f9:bc:e8:c0:d6:28:29:60:ba:
61:1b:30:0e:5a:50:86:7b:12:fc:63:62:a0:a0:e1:
38:0d:49:1b:38:d0:bb:d2:e9:52:58:47:19:1a:6a:
d9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:2A:4F:AD:E1:66:E2:51:35:C1:78:87:98:6C:B1:BF:0B:2E:6D:FE
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/rCpPreFm4lE1wXiHmGyxvwsubf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.105.0/24
5.180.107.0/24
45.131.0.0/23
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb00::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/31
2a13:a447::/32
Signature Algorithm: sha256WithRSAEncryption
7f:65:67:70:d3:eb:0a:72:2e:d0:de:bf:f9:4a:9d:ef:ce:7c:
1a:9a:e2:3d:70:64:13:d7:6e:e7:11:b5:90:d8:c8:3d:9c:6f:
cf:ec:7b:bc:f2:27:b1:fb:d9:a9:d9:4a:b5:e5:50:b1:b7:40:
20:c8:a8:7e:d9:bc:f9:c5:85:4f:41:f3:84:49:2c:90:f4:75:
bb:f6:ca:ba:02:8a:2f:93:a6:25:33:4c:97:d5:49:62:21:7e:
1a:e4:a2:ce:73:c9:11:1d:b6:29:89:60:37:d2:c1:d2:ba:f9:
71:b7:ce:7d:5d:83:93:45:41:4d:e7:f0:3c:9d:31:a9:88:c5:
d4:a7:aa:6b:f6:47:9d:92:22:83:c0:41:a9:a4:2b:d6:94:2a:
59:dc:40:16:3d:af:93:69:25:6a:a4:a3:15:e5:2f:a9:17:60:
84:94:e1:03:6e:d4:26:09:85:bd:a9:3f:a6:c3:89:f3:11:7b:
8a:56:6d:13:f2:15:a3:bf:0d:22:81:4c:f8:08:0c:bb:e8:72:
44:8c:3d:c4:f0:d3:d0:e0:c5:ea:01:94:bd:05:5d:8c:4a:c3:
67:cf:55:82:d5:01:5c:42:ef:88:a7:1e:e8:18:02:60:24:74:
e1:b3:55:26:8b:cb:75:77:7a:a0:51:1e:dd:61:98:2b:c5:0f:
ac:53:2d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:50 2025 by rpki-client