Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/zW77iUNfbIs4B3od_VpTfJtgsfs.roa
File: zW77iUNfbIs4B3od_VpTfJtgsfs.roa (raw, json)
Hash identifier: k8o3GQXMbxRPYAlIMlkh+DZ91l72xSrvljl3mdIi+HM=
Subject key identifier: CD:6E:FB:89:43:5F:6C:8B:38:07:7A:1D:FD:5A:53:7C:9B:60:B1:FB
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018C2B24328B7566B6BA2E37601D251D103B
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/zW77iUNfbIs4B3od_VpTfJtgsfs.roa
Signing time: Sat 02 Dec 2023 15:27:21 +0000
ROA not before: Sat 02 Dec 2023 15:27:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
5.180.104.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
45.147.46.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.229.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
45.136.5.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:2b:24:32:8b:75:66:b6:ba:2e:37:60:1d:25:1d:10:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Dec 2 15:27:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd6efb89435f6c8b38077a1dfd5a537c9b60b1fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:33:43:d0:10:94:08:65:09:1a:e0:6f:a6:85:
4e:e3:18:87:f1:2b:61:a1:58:0d:2c:c8:6b:c2:cd:
01:41:f2:15:77:f4:2b:17:ae:c3:40:e7:1c:5f:c4:
69:4a:bf:44:dc:14:47:c0:cb:63:9b:66:f7:bc:7a:
83:55:a3:65:9d:5e:1e:b4:64:c9:8f:87:f3:f3:b0:
e7:94:7b:60:b9:33:41:b4:0e:c6:6d:09:61:e2:24:
3d:2e:af:81:25:ab:b7:e1:16:6f:1e:9f:9d:d1:13:
29:da:e4:08:dc:da:f2:3a:eb:d4:2a:be:90:c0:ff:
8a:c0:87:1c:2f:87:43:42:ea:2b:c3:54:7d:91:30:
56:10:aa:3e:4f:c4:74:60:11:43:f6:f2:89:9f:41:
92:95:8d:82:23:cb:5b:6e:28:52:3d:87:f5:20:94:
a5:13:c8:ff:11:10:0c:d5:25:21:6c:9c:20:89:91:
b8:1c:7e:e9:3e:d0:fd:d2:ca:6f:f5:2e:86:65:77:
a4:df:89:1a:4f:62:64:97:0a:fb:aa:29:4c:bb:1a:
98:0b:91:aa:23:ca:d5:a7:03:5c:6c:a2:6c:11:98:
b4:a5:4c:15:18:e4:cc:1f:b9:ea:a8:c4:24:19:eb:
41:8e:2a:6d:ed:92:a0:f9:19:9a:8c:fa:a9:86:b2:
00:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:6E:FB:89:43:5F:6C:8B:38:07:7A:1D:FD:5A:53:7C:9B:60:B1:FB
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/zW77iUNfbIs4B3od_VpTfJtgsfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
5.180.107.0/24
45.131.0.0/23
45.136.5.0/24
45.141.148.0/24
45.147.44.0/24
45.147.46.0/24
77.83.200.0/22
194.116.228.0/23
194.116.236.0/24
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
Signature Algorithm: sha256WithRSAEncryption
72:68:ba:cb:24:35:14:6b:93:99:e9:3d:d5:2f:aa:b4:53:1a:
9b:62:b3:34:52:01:1b:11:b6:9d:82:d3:72:9a:88:64:03:b6:
31:0c:8f:ce:7b:c8:33:d4:b8:06:04:a3:36:8c:42:14:42:53:
ba:e9:fc:18:87:7d:7c:50:2c:5b:bd:1f:4e:53:ee:be:ca:ed:
80:84:11:24:4b:1b:c3:f7:87:c2:6e:5c:a5:11:4d:29:78:9f:
b0:84:6c:e4:96:b1:f1:db:be:d7:43:ed:03:9f:d2:60:db:ee:
d6:d0:21:2c:7c:79:27:ec:64:0f:72:20:78:aa:64:ee:b0:00:
8b:16:4c:02:81:1f:ae:c8:4e:f8:1c:5c:db:bc:ed:80:9a:26:
10:3f:4c:a6:7a:b4:c4:c6:69:3d:97:67:30:91:7d:d3:16:a1:
0c:f1:ad:4a:b0:58:0c:0e:cb:dd:b0:7c:26:52:41:90:93:89:
5e:f4:e7:a5:81:4d:ba:19:fc:4e:7c:43:0b:14:2d:1c:94:3a:
a6:6b:d1:10:a0:19:41:87:39:f7:ae:f7:ac:d2:36:c1:56:74:
f4:da:5a:41:8e:7b:1b:31:0a:82:da:47:be:93:42:2f:43:72:
41:cb:22:92:14:65:eb:6b:9e:f3:4a:30:6a:d8:46:45:98:f9:
8e:22:c2:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:39 2025 by rpki-client