Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/y9ewn2YMJR05xsGIjnJxNPhKC-s.roa
File: y9ewn2YMJR05xsGIjnJxNPhKC-s.roa (raw, json)
Hash identifier: 75oXDPCGozLpdg1YRrQ01DdFiCCwwQxIztJHDiVQd1s=
Subject key identifier: CB:D7:B0:9F:66:0C:25:1D:39:C6:C1:88:8E:72:71:34:F8:4A:0B:EB
Certificate issuer: /CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Certificate serial: 018E51C9A40805FDDB0443D7E4E086017BD8
Authority key identifier: 3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/y9ewn2YMJR05xsGIjnJxNPhKC-s.roa
Signing time: Mon 18 Mar 2024 13:39:13 +0000
ROA not before: Mon 18 Mar 2024 13:39:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208913
IP address blocks: 46.102.105.0/24 maxlen: 24
46.102.118.0/23 maxlen: 24
46.247.144.0/20 maxlen: 24
77.223.214.0/23 maxlen: 24
79.139.80.0/23 maxlen: 24
86.104.72.0/22 maxlen: 24
86.105.241.0/24 maxlen: 24
86.106.108.0/24 maxlen: 24
89.32.125.0/24 maxlen: 24
89.32.130.0/23 maxlen: 24
89.37.58.0/24 maxlen: 24
89.40.41.0/24 maxlen: 24
89.40.164.0/23 maxlen: 24
89.42.52.0/23 maxlen: 24
89.47.38.0/23 maxlen: 24
89.47.43.0/24 maxlen: 24
89.200.240.0/23 maxlen: 24
91.198.23.0/24 maxlen: 24
91.216.138.0/24 maxlen: 24
91.223.183.0/24 maxlen: 24
91.227.33.0/24 maxlen: 24
91.229.228.0/24 maxlen: 24
91.238.148.0/23 maxlen: 24
93.114.84.0/24 maxlen: 24
93.180.208.0/22 maxlen: 24
94.177.6.0/23 maxlen: 24
94.177.23.0/24 maxlen: 24
176.126.198.0/23 maxlen: 24
188.210.254.0/24 maxlen: 24
188.214.89.0/24 maxlen: 24
188.215.76.0/23 maxlen: 24
188.241.59.0/24 maxlen: 24
193.36.44.0/24 maxlen: 24
193.37.136.0/24 maxlen: 24
193.39.119.0/24 maxlen: 24
193.93.40.0/22 maxlen: 24
193.105.176.0/24 maxlen: 24
193.169.8.0/23 maxlen: 24
193.192.44.0/23 maxlen: 24
193.192.52.0/23 maxlen: 24
193.239.172.0/23 maxlen: 24
193.239.246.0/23 maxlen: 24
194.8.81.0/24 maxlen: 24
194.24.234.0/23 maxlen: 24
194.42.100.0/23 maxlen: 24
194.88.134.0/23 maxlen: 24
194.106.204.0/23 maxlen: 24
194.106.212.0/23 maxlen: 24
194.140.235.0/24 maxlen: 24
194.246.106.0/23 maxlen: 24
195.2.196.0/23 maxlen: 24
195.13.48.0/23 maxlen: 24
195.34.80.0/23 maxlen: 24
195.42.232.0/22 maxlen: 24
195.93.140.0/23 maxlen: 24
195.128.188.0/23 maxlen: 24
195.135.192.0/23 maxlen: 24
195.189.176.0/24 maxlen: 24
195.189.186.0/23 maxlen: 24
195.189.250.0/23 maxlen: 24
195.210.44.0/23 maxlen: 24
195.254.140.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:51:c9:a4:08:05:fd:db:04:43:d7:e4:e0:86:01:7b:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Validity
Not Before: Mar 18 13:39:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cbd7b09f660c251d39c6c1888e727134f84a0beb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:81:25:29:59:c1:92:3d:a6:2f:c3:e7:3e:f7:
0b:15:19:6d:ef:e9:a4:5c:aa:e5:bc:1b:97:7f:da:
61:6b:ee:2d:ef:d7:37:37:13:06:80:10:48:57:72:
0f:0d:44:38:e3:91:f3:a3:3b:6f:13:fc:23:85:c4:
18:86:09:02:ea:bc:92:9a:5a:69:b3:a3:6e:1e:6c:
47:00:31:a5:6c:e4:9e:5f:6d:23:28:dd:38:0a:20:
8e:72:ff:2b:ed:7a:89:b1:47:5f:17:f0:ee:49:5d:
c5:8c:60:75:09:06:14:77:f8:06:96:5b:db:8e:e9:
39:ca:df:de:fc:8d:38:84:5c:93:a7:4a:88:3d:df:
2e:8e:33:6f:bf:e7:83:52:57:0a:fb:7e:d1:e8:f9:
e5:30:a7:bc:85:7e:07:aa:ad:6e:fb:6a:f7:89:60:
cf:34:9d:1d:8d:5b:b6:49:0a:fa:bb:2a:7b:19:61:
f3:1b:66:18:58:9d:2a:22:06:97:08:01:53:ba:be:
d6:ac:38:90:0f:1d:b4:42:14:3d:f0:39:62:fa:f3:
06:90:d8:7e:7b:91:9a:95:f0:d0:62:fe:98:0c:cf:
45:a3:c9:16:df:44:22:f2:44:21:86:5a:a2:8c:d2:
74:be:8d:60:10:52:28:9d:f7:40:d4:cf:42:00:49:
de:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:D7:B0:9F:66:0C:25:1D:39:C6:C1:88:8E:72:71:34:F8:4A:0B:EB
X509v3 Authority Key Identifier:
keyid:3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/y9ewn2YMJR05xsGIjnJxNPhKC-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.105.0/24
46.102.118.0/23
46.247.144.0/20
77.223.214.0/23
79.139.80.0/23
86.104.72.0/22
86.105.241.0/24
86.106.108.0/24
89.32.125.0/24
89.32.130.0/23
89.37.58.0/24
89.40.41.0/24
89.40.164.0/23
89.42.52.0/23
89.47.38.0/23
89.47.43.0/24
89.200.240.0/23
91.198.23.0/24
91.216.138.0/24
91.223.183.0/24
91.227.33.0/24
91.229.228.0/24
91.238.148.0/23
93.114.84.0/24
93.180.208.0/22
94.177.6.0/23
94.177.23.0/24
176.126.198.0/23
188.210.254.0/24
188.214.89.0/24
188.215.76.0/23
188.241.59.0/24
193.36.44.0/24
193.37.136.0/24
193.39.119.0/24
193.93.40.0/22
193.105.176.0/24
193.169.8.0/23
193.192.44.0/23
193.192.52.0/23
193.239.172.0/23
193.239.246.0/23
194.8.81.0/24
194.24.234.0/23
194.42.100.0/23
194.88.134.0/23
194.106.204.0/23
194.106.212.0/23
194.140.235.0/24
194.246.106.0/23
195.2.196.0/23
195.13.48.0/23
195.34.80.0/23
195.42.232.0/22
195.93.140.0/23
195.128.188.0/23
195.135.192.0/23
195.189.176.0/24
195.189.186.0/23
195.189.250.0/23
195.210.44.0/23
195.254.140.0/23
Signature Algorithm: sha256WithRSAEncryption
be:92:bd:98:7d:a6:7e:46:c8:ea:51:01:4e:13:e9:c6:08:05:
01:c7:f0:11:47:a6:a0:01:55:5f:67:88:db:65:6e:94:84:63:
6b:49:4d:72:e8:19:46:3f:11:67:2c:ca:c7:f1:10:8c:ea:86:
e5:8a:49:67:b3:f3:3b:91:c8:12:6c:52:35:3e:b2:8c:dd:70:
36:b3:ea:8d:7c:cf:2c:48:b1:70:3a:9e:91:a6:f2:84:a6:5c:
3c:d3:10:04:db:a3:4a:96:58:d8:42:ec:d8:e8:70:73:49:db:
1e:d8:1a:b6:2f:c6:31:74:2f:4a:e9:77:bd:81:ad:2c:6b:1d:
20:41:00:62:76:a6:13:30:1b:a0:27:70:e6:96:72:c8:1d:34:
a2:87:4c:28:34:59:96:84:3c:29:ac:ee:af:94:03:45:e0:d7:
51:a3:cb:95:f9:2d:aa:f1:0a:79:77:b0:9d:6d:bb:07:c1:03:
8d:70:ff:f9:20:66:6d:9d:c1:9a:01:81:83:b2:86:10:31:bc:
3c:9f:20:fa:68:3d:68:02:b8:04:64:31:67:4a:af:36:20:b3:
82:d6:fa:de:67:82:82:29:34:8b:de:5f:b4:72:d7:72:7e:57:
e0:ff:30:b7:32:0e:8a:e4:42:b7:b9:cf:08:a7:ca:fb:04:bb:
48:56:83:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:10 2025 by rpki-client