Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/E0XZj9nq5-EmsQwMTEq2tYXRySk.roa
File: E0XZj9nq5-EmsQwMTEq2tYXRySk.roa (raw, json)
Hash identifier: aQ1tRuQX7qhk/BYCy+SEYG/MJudZfxNOIudRy366GlA=
Subject key identifier: 13:45:D9:8F:D9:EA:E7:E1:26:B1:0C:0C:4C:4A:B6:B5:85:D1:C9:29
Certificate issuer: /CN=56db1eaf1792a2cd5289dc7fc5242ea35245134e
Certificate serial: 01856CCAD070A79819F5B5C7C10CE28912A3
Authority key identifier: 56:DB:1E:AF:17:92:A2:CD:52:89:DC:7F:C5:24:2E:A3:52:45:13:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VtserxeSos1Sidx_xSQuo1JFE04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/E0XZj9nq5-EmsQwMTEq2tYXRySk.roa
Signing time: Sun 01 Jan 2023 10:05:09 +0000
ROA not before: Sun 01 Jan 2023 10:05:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28907
IP address blocks: 195.234.112.0/22 maxlen: 24
77.87.192.0/21 maxlen: 24
195.39.197.0/24 maxlen: 24
195.39.196.0/24 maxlen: 24
195.39.196.0/23 maxlen: 23
89.184.64.0/22 maxlen: 24
89.184.64.0/19 maxlen: 24
89.184.68.0/22 maxlen: 24
89.184.80.0/21 maxlen: 24
89.184.88.0/21 maxlen: 24
78.27.192.0/19 maxlen: 24
78.27.192.0/22 maxlen: 22
78.27.192.0/18 maxlen: 24
78.27.199.0/24 maxlen: 24
5.149.120.0/21 maxlen: 24
195.177.118.0/23 maxlen: 23
195.177.116.0/22 maxlen: 24
195.177.116.0/23 maxlen: 23
2a02:2278:215::/48 maxlen: 48
2a02:2278::/32 maxlen: 48
2a02:2278:210::/48 maxlen: 48
2a02:2278:100::/48 maxlen: 48
2a02:2278:209::/48 maxlen: 48
2a02:2278:208::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:d0:70:a7:98:19:f5:b5:c7:c1:0c:e2:89:12:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56db1eaf1792a2cd5289dc7fc5242ea35245134e
Validity
Not Before: Jan 1 10:05:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1345d98fd9eae7e126b10c0c4c4ab6b585d1c929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5c:90:57:54:09:fc:07:d2:4b:f3:c8:8e:ab:
44:e2:9e:2f:6b:58:99:22:3f:2c:5b:8f:d8:9b:f5:
f9:a7:a6:60:d1:97:9e:b8:e6:d9:48:4b:69:6f:d3:
a3:62:ca:96:8e:7f:80:c1:77:a1:1f:9d:7a:1c:11:
a1:6c:81:44:ea:9c:ce:0b:84:fa:b3:f5:9e:64:54:
81:77:17:38:b9:bf:83:0b:f8:e0:f8:13:ae:e6:9b:
48:bc:5f:5d:96:28:77:ee:c2:67:8d:9e:5b:4c:23:
84:5d:d0:4b:7b:36:63:ab:05:79:30:de:64:90:92:
cd:3d:fe:eb:52:97:46:97:ad:14:e6:96:77:27:a3:
e5:02:40:28:c4:71:ca:7d:d8:31:27:cd:08:e5:63:
42:7b:90:99:7f:f9:23:06:b4:7c:33:27:bd:ad:be:
dd:33:96:97:d5:1e:a8:ad:a3:82:b3:b4:ac:ba:34:
38:35:ec:08:67:7f:22:a9:45:be:e7:b7:5c:1d:6e:
bd:e7:39:49:0a:77:f1:c7:06:97:0e:4d:20:a3:38:
b8:cb:35:44:76:4a:3a:11:9b:0d:ab:71:cd:c2:b1:
90:3f:69:c1:04:ea:f8:3a:9c:c9:f0:d6:04:90:73:
57:5c:68:e6:8e:58:0b:7e:96:5f:e1:f5:d6:9e:c4:
1f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:45:D9:8F:D9:EA:E7:E1:26:B1:0C:0C:4C:4A:B6:B5:85:D1:C9:29
X509v3 Authority Key Identifier:
keyid:56:DB:1E:AF:17:92:A2:CD:52:89:DC:7F:C5:24:2E:A3:52:45:13:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtserxeSos1Sidx_xSQuo1JFE04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/E0XZj9nq5-EmsQwMTEq2tYXRySk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/VtserxeSos1Sidx_xSQuo1JFE04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.120.0/21
77.87.192.0/21
78.27.192.0/18
89.184.64.0/19
195.39.196.0/23
195.177.116.0/22
195.234.112.0/22
IPv6:
2a02:2278::/32
Signature Algorithm: sha256WithRSAEncryption
9b:2b:d2:a6:e6:3f:89:a0:c4:a1:65:16:bb:68:24:23:09:a9:
1f:29:1e:bc:97:6e:aa:ab:60:6e:54:b9:0a:a2:b3:ae:d1:b3:
de:3a:2f:33:c4:89:e7:82:29:88:34:b5:d8:53:22:09:dc:c9:
8f:2c:8d:1a:2b:15:de:a0:b7:df:88:d9:ac:d7:8d:36:06:f1:
4d:08:61:86:20:a8:d3:5b:ca:d9:04:c3:4e:7d:1a:43:8b:50:
c3:d6:32:27:cd:aa:ea:ee:32:cb:3e:cb:9d:76:f2:23:f9:d7:
23:c7:6a:ae:a2:52:cd:7f:2e:c5:8b:fa:f0:73:3a:f5:53:35:
5d:2c:3e:7c:1c:64:b6:ee:17:e6:1d:73:97:b5:9b:37:5b:8f:
81:c1:e1:12:0e:5c:42:5a:02:4e:15:e6:00:e4:fc:b9:db:dc:
5e:be:c7:fd:73:74:66:9d:fc:1c:b4:bb:e9:72:d0:71:34:9d:
78:f3:ae:11:b7:d5:7f:ed:97:01:74:a8:3e:9b:ca:3d:1e:ab:
64:09:fb:7d:c7:c3:3f:db:f6:fb:e4:68:f3:ad:09:02:86:3d:
f3:25:c7:19:ab:d1:b5:cd:66:ba:e1:30:26:72:69:25:51:27:
ee:42:2d:90:7c:83:ce:95:c0:20:d7:f9:9c:65:78:2c:98:1b:
53:40:99:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:35 2025 by rpki-client