Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/yBKp_UqJB7c4WWq9NyooDwT5ZBU.roa
File: yBKp_UqJB7c4WWq9NyooDwT5ZBU.roa (raw, json)
Hash identifier: 4xhlvoheaE04bbvtvP6I7CmKkKoJVp6na/28X49h9lQ=
Subject key identifier: C8:12:A9:FD:4A:89:07:B7:38:59:6A:BD:37:2A:28:0F:04:F9:64:15
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018E5DB76B910CDFE20E0B77EF19F8603C52
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/yBKp_UqJB7c4WWq9NyooDwT5ZBU.roa
Signing time: Wed 20 Mar 2024 21:14:45 +0000
ROA not before: Wed 20 Mar 2024 21:14:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.136.5.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.229.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:ed00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5d:b7:6b:91:0c:df:e2:0e:0b:77:ef:19:f8:60:3c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Mar 20 21:14:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c812a9fd4a8907b738596abd372a280f04f96415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a4:43:6a:21:c0:6b:0f:93:72:e0:3f:d2:e0:
a3:cb:4e:2e:e0:76:fe:4d:93:e7:48:15:00:c5:e4:
94:29:dc:52:57:65:0e:22:04:94:03:46:94:02:ac:
f8:16:eb:0c:ca:05:cc:a1:57:91:0d:1f:aa:17:53:
09:ff:eb:11:c4:7e:40:47:d6:f2:04:4e:ad:ea:8d:
f4:cb:2d:b4:7b:3d:c2:ec:36:94:65:93:20:35:38:
6f:25:3b:e4:be:f4:20:93:b1:9f:f0:09:83:2d:15:
8c:18:d9:20:94:53:74:de:9b:8f:27:77:3c:36:ea:
75:8c:09:a3:cf:18:f3:8e:5f:a4:9e:a0:b1:72:51:
e9:cd:d2:29:52:1b:01:3e:78:9d:1c:9f:36:15:a7:
7f:bb:e8:6b:2e:d4:89:f4:b0:d6:fa:cd:5b:02:21:
ac:52:ed:68:62:ee:ed:3c:17:cb:16:31:66:6f:2b:
0f:71:a1:32:48:14:fc:e6:b8:16:78:5b:0d:1f:45:
b0:6a:1e:b7:8f:a9:15:9d:7e:d7:ae:d5:82:88:38:
46:a4:b4:99:f5:cf:e5:c9:c1:41:c3:7b:f7:d9:71:
24:91:2a:b4:81:55:f6:54:1f:b4:69:03:75:7f:d4:
dc:73:89:11:81:ef:91:52:59:49:4c:5b:55:26:c5:
44:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:12:A9:FD:4A:89:07:B7:38:59:6A:BD:37:2A:28:0F:04:F9:64:15
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/yBKp_UqJB7c4WWq9NyooDwT5ZBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.107.0/24
45.131.0.0/23
45.131.3.0/24
45.136.5.0/24
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/23
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:eb00::/29
2a0f:ed00::/29
Signature Algorithm: sha256WithRSAEncryption
3f:31:13:17:2a:bf:b7:69:92:8b:ba:00:9d:e8:50:f0:83:67:
c0:cf:6a:21:a1:3d:be:c5:5a:2b:28:69:90:69:e5:ca:d1:1e:
d5:6b:68:da:28:fb:32:17:1e:72:f2:02:6b:98:01:a2:34:2d:
82:db:60:91:84:47:84:bb:c6:35:d5:08:94:b8:0b:a7:fe:69:
d2:47:53:4e:4e:6a:31:09:2d:c2:c2:90:27:6a:f9:e3:23:1d:
5a:e9:e0:e2:cc:00:7b:a9:14:ab:85:e9:00:24:e9:63:03:f1:
9a:8e:ca:f4:ec:d3:4c:87:44:c1:5a:ac:7f:c3:35:30:31:4f:
8a:40:98:5c:fe:e4:d9:cf:e5:ea:c7:5c:04:d0:c6:d4:28:23:
64:c6:9a:5d:8d:95:60:1a:94:d1:67:c4:19:a4:de:72:d7:7e:
fd:8c:93:33:95:99:f9:4c:6c:c6:49:10:f6:81:54:75:02:8d:
b0:ec:16:ee:54:1e:bf:32:f5:48:31:dc:1b:dc:a1:bb:0a:40:
e0:e4:74:0b:5b:c8:7b:69:cc:53:fb:47:25:4e:7f:95:e7:62:
61:33:7c:04:47:73:d3:d1:cf:24:11:c1:31:08:30:a3:8e:1c:
ee:59:df:5d:7d:cc:c5:19:71:85:e6:4e:ff:ed:dd:a2:44:a5:
e5:a2:60:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:46:15 2025 by rpki-client