Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/WwAam9xtpZ8bmSZOWYA3X1Sh5Cw.roa
File: WwAam9xtpZ8bmSZOWYA3X1Sh5Cw.roa (raw, json)
Hash identifier: EWdWoLYwAtteYkBgSt5cXQjXgZov3jnp3gPbD4dLk1c=
Subject key identifier: 5B:00:1A:9B:DC:6D:A5:9F:1B:99:26:4E:59:80:37:5F:54:A1:E4:2C
Certificate issuer: /CN=cc5b21353f92cbdbf3b7d2513b9a465ac53b2d39
Certificate serial: 01936DEFC3C3F7EB68F93351774007D14D8E
Authority key identifier: CC:5B:21:35:3F:92:CB:DB:F3:B7:D2:51:3B:9A:46:5A:C5:3B:2D:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zFshNT-Sy9vzt9JRO5pGWsU7LTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/WwAam9xtpZ8bmSZOWYA3X1Sh5Cw.roa
Signing time: Wed 27 Nov 2024 14:04:09 +0000
ROA not before: Wed 27 Nov 2024 14:04:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3242
IP address blocks: 151.1.0.0/18 maxlen: 18
151.1.0.0/23 maxlen: 23
151.1.7.0/24 maxlen: 24
151.1.24.0/21 maxlen: 21
151.1.32.0/21 maxlen: 21
151.1.40.0/23 maxlen: 23
151.1.42.0/23 maxlen: 23
151.1.44.0/23 maxlen: 23
151.1.46.0/23 maxlen: 23
151.1.48.0/24 maxlen: 24
151.1.49.0/24 maxlen: 24
151.1.50.0/24 maxlen: 24
151.1.62.0/24 maxlen: 24
151.1.66.0/23 maxlen: 23
151.1.68.0/22 maxlen: 22
151.1.72.0/24 maxlen: 24
151.1.74.0/23 maxlen: 23
151.1.76.0/22 maxlen: 22
151.1.80.0/20 maxlen: 20
151.1.84.0/24 maxlen: 24
151.1.96.0/22 maxlen: 22
151.1.100.0/22 maxlen: 22
151.1.101.0/24 maxlen: 24
151.1.104.0/21 maxlen: 21
151.1.104.0/23 maxlen: 23
151.1.106.0/23 maxlen: 23
151.1.112.0/20 maxlen: 20
151.1.128.0/18 maxlen: 18
151.1.192.0/18 maxlen: 18
151.1.192.0/22 maxlen: 22
151.1.192.0/24 maxlen: 24
151.1.194.0/24 maxlen: 24
151.1.195.0/24 maxlen: 24
151.1.196.0/22 maxlen: 22
151.1.200.0/21 maxlen: 21
151.1.203.0/24 maxlen: 24
151.1.208.0/21 maxlen: 21
151.1.212.0/24 maxlen: 24
151.1.216.0/21 maxlen: 21
151.1.224.0/19 maxlen: 19
151.1.227.0/24 maxlen: 24
151.1.232.0/21 maxlen: 21
151.1.244.0/24 maxlen: 24
151.1.247.0/24 maxlen: 24
151.2.0.0/17 maxlen: 17
151.2.0.0/20 maxlen: 20
151.2.32.0/19 maxlen: 19
151.2.36.0/24 maxlen: 24
151.2.96.0/20 maxlen: 20
151.2.102.0/24 maxlen: 24
2a01:65c0::/32 maxlen: 32
2a01:65c0:100::/48 maxlen: 48
2a01:65c0:101::/48 maxlen: 48
2a01:65c0:200::/40 maxlen: 40
2a01:65c0:e00::/48 maxlen: 48
2a01:65c0:e01::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:ef:c3:c3:f7:eb:68:f9:33:51:77:40:07:d1:4d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc5b21353f92cbdbf3b7d2513b9a465ac53b2d39
Validity
Not Before: Nov 27 14:04:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b001a9bdc6da59f1b99264e5980375f54a1e42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1c:f1:82:01:ab:f2:67:7d:eb:5c:36:e5:5f:
07:c2:d4:84:84:ea:4f:51:a2:b9:59:00:f2:cf:4e:
6c:db:05:08:a4:cf:96:7f:e7:f0:81:c7:76:19:96:
da:ea:9b:cc:ee:01:e6:a1:86:d1:2d:1f:da:7e:65:
c0:16:d1:21:c1:16:5b:3e:f5:ac:b2:4f:23:d3:75:
36:16:8f:ff:a1:64:a0:f3:8d:69:31:ca:da:33:f5:
48:75:f4:43:ca:db:13:5f:29:1e:d4:50:75:c5:d9:
46:48:79:90:f4:e3:3e:ea:20:61:85:e4:fd:3d:3f:
31:93:6c:cf:2d:b7:dc:cb:3f:d9:99:2c:89:30:fb:
92:32:dc:f3:c4:9a:07:90:2d:65:05:bc:71:ce:2b:
22:90:69:bf:13:96:5c:a7:9d:e3:49:55:5e:d8:bf:
57:ce:a8:51:8f:49:ff:6c:8b:db:77:83:86:41:47:
fb:65:2e:97:ad:ee:72:ec:c0:fa:b8:3a:e5:ba:3f:
55:ec:29:8e:2a:ea:d5:2d:cd:68:cc:b3:80:61:be:
16:b8:4c:4f:70:ae:b4:b7:89:4b:fe:76:a8:d7:be:
c3:77:26:be:25:05:f9:c0:ae:9c:a0:2f:42:10:d2:
6b:21:e8:70:e2:d2:15:df:ae:1a:c6:fe:0b:67:9a:
7c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:00:1A:9B:DC:6D:A5:9F:1B:99:26:4E:59:80:37:5F:54:A1:E4:2C
X509v3 Authority Key Identifier:
keyid:CC:5B:21:35:3F:92:CB:DB:F3:B7:D2:51:3B:9A:46:5A:C5:3B:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zFshNT-Sy9vzt9JRO5pGWsU7LTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/WwAam9xtpZ8bmSZOWYA3X1Sh5Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/zFshNT-Sy9vzt9JRO5pGWsU7LTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.1.0.0/18
151.1.66.0-151.1.72.255
151.1.74.0-151.2.127.255
IPv6:
2a01:65c0::/32
Signature Algorithm: sha256WithRSAEncryption
3e:c4:b7:28:1d:91:d0:0b:b4:0f:ea:47:d0:81:b7:5f:21:9d:
ed:61:45:d9:eb:3d:c5:be:eb:b9:f2:49:12:ca:0e:92:e5:6d:
cf:fb:a6:86:29:70:92:58:58:0e:65:22:5f:e0:17:92:40:39:
d7:69:35:12:ee:31:d2:93:37:3b:0a:43:74:1b:d4:fb:3a:eb:
78:b5:4a:b5:3a:2c:43:d0:c3:c6:24:5a:c9:a9:1f:92:b3:e6:
8b:91:a2:b2:6c:51:f1:6c:e8:e5:3b:89:78:db:38:38:8d:9a:
43:8a:48:db:ae:e0:4c:7d:f4:fa:c6:ac:a8:70:bc:a6:72:3a:
c5:b5:fd:7a:2b:87:3d:38:81:e9:af:39:11:2d:0f:9c:4b:03:
47:90:2d:65:2e:64:b2:d9:ca:83:af:2e:4f:da:07:f4:b8:f1:
ca:70:76:c0:2c:46:33:32:a2:cd:10:2b:91:f1:75:dd:19:2c:
1a:94:cc:2e:fc:7c:32:b5:6d:2c:6e:cd:bc:6f:4b:bf:31:e8:
94:88:db:5e:6a:da:ca:9a:ac:40:d3:c2:bc:34:4f:7d:2c:64:
70:9b:80:aa:62:08:ae:29:42:43:55:83:f0:be:04:e6:14:5a:
8f:ef:3c:3a:2b:25:96:45:e5:8a:bb:ec:89:d3:19:3c:b1:d8:
3d:29:ab:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:58:39 2025 by rpki-client