Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/mAjm7f4e2LjseE--4YI-X5hR-GE.roa
File: mAjm7f4e2LjseE--4YI-X5hR-GE.roa (raw, json)
Hash identifier: YivyDOJkk0vStseA6KMANRfpQFpD60AODIPTLslYik4=
Subject key identifier: 98:08:E6:ED:FE:1E:D8:B8:EC:78:4F:BE:E1:82:3E:5F:98:51:F8:61
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0192AEBD086DC1E6DB4221B5EBDE43523BA2
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/mAjm7f4e2LjseE--4YI-X5hR-GE.roa
Signing time: Mon 21 Oct 2024 11:01:16 +0000
ROA not before: Mon 21 Oct 2024 11:01:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15723
IP address blocks: 5.178.9.0/24 maxlen: 24
5.178.10.0/24 maxlen: 24
5.178.11.0/24 maxlen: 24
5.178.12.0/24 maxlen: 24
5.178.13.0/24 maxlen: 24
5.178.14.0/24 maxlen: 24
5.178.15.0/24 maxlen: 24
46.23.100.0/24 maxlen: 24
46.23.101.0/24 maxlen: 24
46.23.102.0/24 maxlen: 24
46.23.103.0/24 maxlen: 24
62.217.128.0/19 maxlen: 19
62.217.128.0/24 maxlen: 24
62.217.129.0/24 maxlen: 24
62.217.130.0/24 maxlen: 24
62.217.131.0/24 maxlen: 24
62.217.132.0/24 maxlen: 24
62.217.134.0/24 maxlen: 24
62.217.135.0/24 maxlen: 24
62.217.136.0/24 maxlen: 24
62.217.137.0/24 maxlen: 24
62.217.138.0/24 maxlen: 24
62.217.139.0/24 maxlen: 24
62.217.140.0/24 maxlen: 24
62.217.141.0/24 maxlen: 24
62.217.142.0/24 maxlen: 24
62.217.143.0/24 maxlen: 24
62.217.144.0/24 maxlen: 24
62.217.145.0/24 maxlen: 24
62.217.146.0/24 maxlen: 24
62.217.147.0/24 maxlen: 24
62.217.148.0/24 maxlen: 24
62.217.149.0/24 maxlen: 24
62.217.150.0/24 maxlen: 24
62.217.151.0/24 maxlen: 24
62.217.152.0/24 maxlen: 24
62.217.153.0/24 maxlen: 24
62.217.154.0/24 maxlen: 24
62.217.155.0/24 maxlen: 24
62.217.156.0/24 maxlen: 24
62.217.157.0/24 maxlen: 24
62.217.158.0/24 maxlen: 24
62.217.159.0/24 maxlen: 24
88.151.199.0/24 maxlen: 24
109.205.208.0/24 maxlen: 24
185.81.217.0/24 maxlen: 24
188.64.8.0/24 maxlen: 24
188.64.9.0/24 maxlen: 24
188.64.10.0/24 maxlen: 24
188.64.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ae:bd:08:6d:c1:e6:db:42:21:b5:eb:de:43:52:3b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Oct 21 11:01:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9808e6edfe1ed8b8ec784fbee1823e5f9851f861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:36:c0:ad:9c:98:82:5b:b6:99:04:51:08:11:
73:47:2c:9c:7d:34:9e:a9:95:16:de:6d:cf:94:f5:
53:d1:ba:61:a7:c7:a9:87:8d:df:e0:64:87:6d:a9:
4f:06:a2:4b:52:83:87:43:41:0f:66:d0:d7:64:31:
44:96:81:c0:dd:a0:02:d8:bf:a5:6f:32:97:2c:de:
6f:a6:cb:43:bd:12:55:7b:81:45:a2:8e:f9:7c:e0:
97:9a:bf:c3:bd:c2:de:07:da:0a:03:b2:8f:4e:23:
a7:0f:2d:1e:5c:73:2c:a0:65:9a:ba:77:ba:d6:30:
18:a3:c3:55:69:32:b6:d5:3f:6b:43:00:99:92:60:
93:25:b3:3b:4b:53:b8:3e:db:2c:82:47:d0:11:74:
d4:bb:b5:1e:7a:e4:1c:a4:e8:b2:69:ef:9b:83:1a:
b6:2b:96:71:f3:30:3b:9c:f5:e6:09:09:cd:93:4b:
46:81:f5:76:ba:cf:b4:8f:66:73:47:22:ed:40:20:
8c:e2:09:01:0d:1d:dc:4e:f2:51:fa:63:80:1d:cb:
37:32:86:ae:10:41:82:7e:98:30:b5:32:e0:fe:5e:
ed:0d:b2:f8:cb:8c:20:82:4b:7c:44:b3:a3:a5:7c:
70:eb:0a:da:4c:2f:a6:8b:ab:4e:1a:e8:31:02:6c:
d4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:08:E6:ED:FE:1E:D8:B8:EC:78:4F:BE:E1:82:3E:5F:98:51:F8:61
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/mAjm7f4e2LjseE--4YI-X5hR-GE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.9.0-5.178.15.255
46.23.100.0/22
62.217.128.0/19
88.151.199.0/24
109.205.208.0/24
185.81.217.0/24
188.64.8.0/22
Signature Algorithm: sha256WithRSAEncryption
95:e5:64:c1:4c:61:4d:5b:07:bc:c0:6b:da:f6:ca:b0:07:b5:
02:2d:db:f7:b1:e1:b1:94:aa:a2:24:21:87:0d:13:f7:83:4a:
ec:2b:02:ec:25:ef:14:5a:6a:13:f9:84:16:57:e4:da:9c:5b:
e2:80:26:ea:68:93:02:8d:04:63:f5:1d:70:32:c5:fc:83:7c:
c6:8f:08:db:01:44:a4:5d:30:45:eb:99:e0:56:04:8b:a1:5d:
bf:2b:7a:75:06:6d:07:fb:92:a1:bf:26:ad:5f:ec:2f:39:32:
ce:57:88:d6:b2:03:d8:88:ec:b8:c8:78:60:4e:89:46:88:f6:
8a:35:5e:6c:c8:6d:4f:93:01:0d:66:3d:3e:a4:2c:6c:ab:89:
63:a6:10:f9:01:bd:d0:c9:3a:59:da:07:0a:34:d2:44:b7:61:
54:f0:5c:ed:c8:8c:b5:26:1c:9e:82:53:e5:b9:a8:c3:4e:1c:
d2:78:16:a2:bd:f4:af:18:07:50:42:ba:44:3a:5c:e5:c2:e6:
3b:af:fa:ce:59:d5:e2:8e:5c:1c:f0:20:01:4a:55:94:1f:7e:
78:62:3d:a1:25:b0:20:f6:ce:3d:eb:31:34:aa:f2:9c:37:cc:
af:7f:a2:39:a4:da:42:1d:16:b8:61:f6:b0:4d:82:94:93:4a:
89:a9:c1:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:43 2025 by rpki-client