Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/ZQSLpdTdPD5TLEHBknpVfsbpmho.roa
File: ZQSLpdTdPD5TLEHBknpVfsbpmho.roa (raw, json)
Hash identifier: lsuOrBbd0wB3XSwhrCeVIdB77vDpU3wKYYYbO9DfZzs=
Subject key identifier: 65:04:8B:A5:D4:DD:3C:3E:53:2C:41:C1:92:7A:55:7E:C6:E9:9A:1A
Certificate issuer: /CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Certificate serial: 018FCF31F0CEEB0BC25C7F58363FED9D650C
Authority key identifier: 3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/ZQSLpdTdPD5TLEHBknpVfsbpmho.roa
Signing time: Fri 31 May 2024 15:08:27 +0000
ROA not before: Fri 31 May 2024 15:08:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208913
IP address blocks: 46.247.144.0/20 maxlen: 24
89.40.41.0/24 maxlen: 24
89.200.240.0/23 maxlen: 24
91.198.23.0/24 maxlen: 24
91.227.33.0/24 maxlen: 24
91.229.228.0/24 maxlen: 24
91.238.148.0/23 maxlen: 24
93.180.208.0/22 maxlen: 24
193.37.136.0/24 maxlen: 24
193.93.40.0/22 maxlen: 24
193.105.176.0/24 maxlen: 24
193.169.8.0/23 maxlen: 24
193.192.52.0/23 maxlen: 24
193.239.172.0/23 maxlen: 24
193.239.246.0/23 maxlen: 24
194.8.81.0/24 maxlen: 24
194.24.234.0/23 maxlen: 24
194.42.100.0/23 maxlen: 24
194.88.134.0/23 maxlen: 24
194.106.212.0/23 maxlen: 24
194.246.106.0/23 maxlen: 24
195.2.196.0/23 maxlen: 24
195.13.48.0/23 maxlen: 24
195.34.80.0/23 maxlen: 24
195.93.140.0/23 maxlen: 24
195.128.188.0/23 maxlen: 24
195.135.192.0/23 maxlen: 24
195.189.176.0/24 maxlen: 24
195.189.186.0/23 maxlen: 24
195.189.250.0/23 maxlen: 24
195.210.44.0/23 maxlen: 24
195.254.140.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:cf:31:f0:ce:eb:0b:c2:5c:7f:58:36:3f:ed:9d:65:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Validity
Not Before: May 31 15:08:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=65048ba5d4dd3c3e532c41c1927a557ec6e99a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e8:95:ec:c1:ac:fb:e2:cb:2a:e2:42:0e:49:
87:11:40:20:ea:51:a2:51:17:cb:0f:98:b3:b7:b6:
9b:f6:4d:b7:8e:ca:e1:2e:12:58:78:4f:6b:a3:20:
3f:9b:73:37:26:8c:df:e2:dd:a6:65:43:c4:9c:dc:
9a:69:df:da:4b:37:82:7e:d7:b5:84:cb:dd:66:10:
90:eb:fb:27:2d:ef:c4:8e:f9:95:02:a4:2e:3e:23:
3a:35:b7:d1:99:02:b6:e9:ef:a6:81:60:77:3b:61:
3d:df:fa:25:68:f9:6f:2f:d3:0e:52:ae:50:10:60:
98:7e:5c:69:fd:d3:32:53:85:79:4c:7b:aa:95:02:
89:c9:4b:96:14:75:b7:58:62:ee:55:2e:97:1d:f7:
9a:e3:f6:e4:37:ec:b0:37:82:d0:38:0c:60:71:68:
aa:11:3a:d8:25:ac:a6:d9:bd:1f:8b:de:b9:1d:19:
24:20:87:3a:d8:a1:a5:1a:31:d5:36:28:87:fd:a6:
04:0f:a2:25:4b:fd:3d:20:1e:3d:23:5b:7b:ef:01:
e6:9e:88:01:c0:90:9d:1b:fa:c9:ad:ad:12:97:4c:
6c:2a:b0:41:0b:98:84:27:a1:72:2e:6e:f7:27:15:
ec:f5:05:69:63:ef:73:72:3b:ba:33:8e:d3:30:33:
f4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:04:8B:A5:D4:DD:3C:3E:53:2C:41:C1:92:7A:55:7E:C6:E9:9A:1A
X509v3 Authority Key Identifier:
keyid:3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/ZQSLpdTdPD5TLEHBknpVfsbpmho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.247.144.0/20
89.40.41.0/24
89.200.240.0/23
91.198.23.0/24
91.227.33.0/24
91.229.228.0/24
91.238.148.0/23
93.180.208.0/22
193.37.136.0/24
193.93.40.0/22
193.105.176.0/24
193.169.8.0/23
193.192.52.0/23
193.239.172.0/23
193.239.246.0/23
194.8.81.0/24
194.24.234.0/23
194.42.100.0/23
194.88.134.0/23
194.106.212.0/23
194.246.106.0/23
195.2.196.0/23
195.13.48.0/23
195.34.80.0/23
195.93.140.0/23
195.128.188.0/23
195.135.192.0/23
195.189.176.0/24
195.189.186.0/23
195.189.250.0/23
195.210.44.0/23
195.254.140.0/23
Signature Algorithm: sha256WithRSAEncryption
82:41:8d:49:0a:54:83:8c:28:78:ea:61:53:62:7c:f9:f6:4d:
b9:d8:cb:e4:23:d1:fe:ea:12:17:6a:42:90:3d:2f:6a:e1:26:
7c:77:65:ba:e3:9c:1a:36:c9:b2:5c:ad:ab:3d:c8:58:4f:a3:
91:5c:ea:58:d9:f5:87:ac:d9:43:57:b0:46:2d:c9:49:b1:94:
ea:bc:ef:1a:23:5d:c1:37:0a:10:58:45:3b:07:03:87:43:b7:
94:0b:ea:42:55:e3:4a:5f:7b:72:4d:02:48:bd:57:9a:ac:58:
c7:64:64:7f:98:99:9c:d7:79:6f:e0:a8:12:02:b6:e2:19:ef:
e6:17:b8:e0:f5:c0:c3:31:c2:6e:f5:76:11:3f:f4:31:52:ef:
9c:f2:63:39:e0:5b:7b:a5:1b:bc:a2:b0:f4:e7:cc:ce:8b:c6:
d3:77:ea:56:0f:96:94:05:8a:6c:7e:a7:7f:34:16:bb:21:ec:
bc:71:5a:47:1d:14:33:e4:70:4d:af:c3:80:b7:03:b6:3d:92:
0a:57:20:a3:4f:bc:f8:77:87:cf:94:fd:23:ad:e8:d8:d2:db:
d9:7d:1a:36:76:84:b1:e0:8c:ce:43:17:28:70:5b:12:d3:66:
a9:c0:da:ba:23:1a:60:42:46:6e:7c:2a:df:98:a4:da:44:f8:
6c:31:38:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:16 2025 by rpki-client