Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/ad_d6AEB0mc9SkUVTUVN6_Tn0Xg.roa
File: ad_d6AEB0mc9SkUVTUVN6_Tn0Xg.roa (raw, json)
Hash identifier: 4MbUvZMzCqtLFo23pRRHovqREfoGC7ojSOT2ZSGTlu0=
Subject key identifier: 69:DF:DD:E8:01:01:D2:67:3D:4A:45:15:4D:45:4D:EB:F4:E7:D1:78
Certificate issuer: /CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Certificate serial: 018FDD66E28C58D161A40DF50AEAF74D8ADD
Authority key identifier: 3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/ad_d6AEB0mc9SkUVTUVN6_Tn0Xg.roa
Signing time: Mon 03 Jun 2024 09:20:58 +0000
ROA not before: Mon 03 Jun 2024 09:20:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208913
IP address blocks: 46.247.144.0/20 maxlen: 24
89.40.41.0/24 maxlen: 24
89.200.240.0/23 maxlen: 24
91.198.23.0/24 maxlen: 24
91.229.228.0/24 maxlen: 24
91.238.148.0/23 maxlen: 24
93.180.208.0/22 maxlen: 24
193.37.136.0/24 maxlen: 24
193.93.40.0/22 maxlen: 24
193.105.176.0/24 maxlen: 24
193.169.8.0/23 maxlen: 24
193.192.52.0/23 maxlen: 24
193.239.172.0/23 maxlen: 24
193.239.246.0/23 maxlen: 24
194.8.81.0/24 maxlen: 24
194.24.234.0/23 maxlen: 24
194.42.100.0/23 maxlen: 24
194.88.134.0/23 maxlen: 24
194.106.212.0/23 maxlen: 24
194.246.106.0/23 maxlen: 24
195.2.196.0/23 maxlen: 24
195.13.48.0/23 maxlen: 24
195.34.80.0/23 maxlen: 24
195.93.140.0/23 maxlen: 24
195.128.188.0/23 maxlen: 24
195.135.192.0/23 maxlen: 24
195.189.176.0/24 maxlen: 24
195.189.186.0/23 maxlen: 24
195.189.250.0/23 maxlen: 24
195.210.44.0/23 maxlen: 24
195.254.140.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dd:66:e2:8c:58:d1:61:a4:0d:f5:0a:ea:f7:4d:8a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Validity
Not Before: Jun 3 09:20:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69dfdde80101d2673d4a45154d454debf4e7d178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:dc:4b:2b:e2:9f:c7:c5:e1:61:1e:89:54:1c:
21:06:e3:6e:65:85:2d:28:d1:dc:9f:94:b4:db:19:
ca:83:e8:e1:0f:41:1a:56:d6:47:48:df:07:0f:a9:
71:ec:85:24:14:48:f1:dc:5a:eb:17:ba:26:89:7c:
c4:3e:88:d0:44:c3:ba:9a:e3:91:38:8c:cc:df:c4:
b7:07:07:d6:9e:66:c3:4e:69:7c:b2:2f:d1:86:72:
52:85:63:23:62:6e:56:4b:22:e1:10:be:51:3b:fd:
94:3a:fb:8a:f1:6e:bb:06:49:8a:e6:7d:51:10:da:
e9:76:33:9e:a4:eb:02:eb:37:08:93:16:61:13:58:
51:f6:49:ce:a9:76:fb:81:3a:83:8b:56:8e:f1:5d:
b6:5c:60:f4:9b:32:18:cd:c6:e3:bd:f7:63:c7:ab:
5a:82:c1:e8:d2:7e:2b:bf:3a:67:1e:32:bd:08:49:
82:70:87:43:63:be:b3:05:37:3d:3f:4a:22:1e:cc:
0f:40:5c:96:84:83:ba:dc:9d:48:dc:f5:56:54:4f:
51:60:e0:1f:f4:12:4d:84:24:fa:34:74:14:e8:3a:
2f:d4:ee:4e:a8:c7:43:18:9a:77:b9:91:55:79:90:
0f:2e:98:8b:2b:69:19:a8:94:16:20:6c:cd:5d:67:
b8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:DF:DD:E8:01:01:D2:67:3D:4A:45:15:4D:45:4D:EB:F4:E7:D1:78
X509v3 Authority Key Identifier:
keyid:3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/ad_d6AEB0mc9SkUVTUVN6_Tn0Xg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.247.144.0/20
89.40.41.0/24
89.200.240.0/23
91.198.23.0/24
91.229.228.0/24
91.238.148.0/23
93.180.208.0/22
193.37.136.0/24
193.93.40.0/22
193.105.176.0/24
193.169.8.0/23
193.192.52.0/23
193.239.172.0/23
193.239.246.0/23
194.8.81.0/24
194.24.234.0/23
194.42.100.0/23
194.88.134.0/23
194.106.212.0/23
194.246.106.0/23
195.2.196.0/23
195.13.48.0/23
195.34.80.0/23
195.93.140.0/23
195.128.188.0/23
195.135.192.0/23
195.189.176.0/24
195.189.186.0/23
195.189.250.0/23
195.210.44.0/23
195.254.140.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:59:d9:23:68:da:a5:fb:56:6e:f3:38:6e:db:85:0a:32:2d:
ef:03:60:2e:59:ae:1a:df:b9:a3:2c:c1:f1:90:95:69:5e:40:
15:19:14:93:e9:99:4b:7b:de:04:b1:96:b7:58:42:97:80:77:
12:76:df:64:23:4f:a9:03:7d:8b:7e:31:9f:70:d9:f8:fc:90:
ff:18:81:bd:6c:36:4a:08:1d:44:d4:af:63:f4:9b:89:0d:0c:
ba:4d:c1:bf:24:87:72:37:8b:1f:e6:e2:58:72:ac:70:c5:5c:
bf:e5:c0:cb:da:6c:44:c8:8d:e7:17:9b:8f:68:4d:8f:69:c2:
4a:00:83:13:1f:38:8c:f0:6c:b7:6b:00:66:cf:f8:8c:d9:e0:
f9:19:f7:db:6f:05:46:04:8c:21:49:7e:53:15:30:1a:87:d0:
c8:7f:55:ab:bb:42:16:d6:0b:ad:f9:d7:1f:c3:2b:a9:41:79:
8a:67:6e:20:e3:5e:5f:ec:d1:45:d0:cf:84:d6:e7:12:cb:b2:
c1:1d:0e:85:8b:7b:93:d0:c0:f2:9e:e7:82:b3:d0:a9:4c:17:
b8:08:77:62:b2:bc:a5:97:2c:4e:a6:ae:75:d0:1b:84:4e:91:
cd:18:c4:27:18:72:af:dd:7c:6c:1b:96:bb:98:4e:5d:fb:e6:
bb:0b:fa:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:42 2025 by rpki-client