Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/If4wZPzjsBYWaGW0RoOrFs5Lwtw.roa
File: If4wZPzjsBYWaGW0RoOrFs5Lwtw.roa (raw, json)
Hash identifier: EbhAutk+Nhtya3GPNmHnsBOohdo9x3dL3kb6YVCax28=
Subject key identifier: 21:FE:30:64:FC:E3:B0:16:16:68:65:B4:46:83:AB:16:CE:4B:C2:DC
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 019103D82E2BBDC84D4803E3C22B0D4387B4
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/If4wZPzjsBYWaGW0RoOrFs5Lwtw.roa
Signing time: Tue 30 Jul 2024 13:33:04 +0000
ROA not before: Tue 30 Jul 2024 13:33:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212025
IP address blocks: 5.10.249.0/24 maxlen: 24
85.158.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:03:d8:2e:2b:bd:c8:4d:48:03:e3:c2:2b:0d:43:87:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jul 30 13:33:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21fe3064fce3b016166865b44683ab16ce4bc2dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8e:0a:dc:3a:e4:5d:45:75:20:05:7b:66:1e:
67:06:02:ca:4e:53:05:1e:a7:7d:e3:3e:4a:6d:3f:
97:d6:94:e5:19:6d:d8:13:89:a9:05:1e:0f:8f:7e:
91:47:92:49:10:b5:f0:7b:46:63:0a:1f:76:5e:d8:
85:03:07:23:da:3e:55:f3:73:90:17:0f:3e:5e:3a:
ff:a3:1f:ca:f8:7b:d5:ed:df:6f:4e:e6:6b:a9:1d:
e0:12:52:d9:e4:f9:a3:b6:df:49:2d:e8:49:94:bc:
29:06:6f:21:38:35:c2:33:63:b6:4f:f0:da:7c:b6:
e4:41:0a:7b:8a:9b:75:78:26:cd:1e:96:c2:4b:63:
91:a0:35:7c:38:d1:68:1d:cc:25:63:50:62:d9:00:
97:b2:18:f2:ba:26:bb:3c:c8:c3:d6:05:3d:ac:fb:
e0:ed:fa:df:72:f8:8b:27:b7:fd:23:ae:b2:d4:23:
0c:04:ac:41:47:41:be:bb:58:3e:09:e3:8b:3b:5f:
e3:50:52:75:01:e3:c5:04:31:4f:e1:ee:b4:d1:c0:
e6:ab:c3:f7:08:e4:7b:7a:bd:57:0e:2c:b8:9c:13:
ef:60:54:0b:64:65:55:d5:ad:5d:9f:00:ae:89:e0:
4a:f7:c0:2d:cc:7b:7c:4a:84:89:96:de:df:2b:5d:
49:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:FE:30:64:FC:E3:B0:16:16:68:65:B4:46:83:AB:16:CE:4B:C2:DC
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/If4wZPzjsBYWaGW0RoOrFs5Lwtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.249.0/24
85.158.145.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:da:ab:43:35:5a:99:a1:5c:4d:85:b9:85:b1:cf:bf:48:26:
87:69:e5:2d:3f:ca:a1:16:4c:10:e8:8f:e1:91:e3:2a:17:76:
1c:5a:15:ab:b7:fe:f3:80:b4:db:76:e6:15:f8:11:dc:9e:9f:
b3:92:62:d8:60:b3:e6:45:51:04:bc:0b:4a:2c:fe:7c:ec:2b:
5f:2d:c4:e7:76:13:fc:5e:db:98:3c:8c:36:64:51:3c:a5:6e:
d9:95:6a:f9:a2:1c:2f:83:65:f3:12:0b:27:84:75:eb:9e:59:
6a:71:87:d7:3a:63:5b:2e:22:32:35:f5:27:8c:22:9a:a6:88:
65:11:65:e1:83:47:6c:a5:81:b9:eb:4a:41:f6:b3:4c:d7:6a:
fb:d6:39:bf:05:51:b7:86:a1:d1:ee:da:b4:a0:97:e2:74:11:
4b:29:59:f5:f8:3c:9b:f4:c0:d1:22:bf:82:f1:6d:9f:36:e0:
19:32:a2:f9:08:98:fa:6a:cd:e1:42:0e:2e:93:87:8f:c2:96:
7d:7a:47:cd:d1:f0:71:57:bf:90:61:de:92:18:b3:6c:e7:c1:
d5:f0:53:10:7d:8c:56:0f:61:9e:4a:6c:98:53:04:7c:cb:78:
a5:d1:0f:1d:3e:3c:8f:bb:79:2d:5e:76:4c:a8:d6:f4:02:99:
a1:b1:4f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:25 2025 by rpki-client