Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/3OEik7tNKF16V3tqg6gfm44Pn9o.roa
File: 3OEik7tNKF16V3tqg6gfm44Pn9o.roa (raw, json)
Hash identifier: VkjODs+PPMDcywvy+ukOLTzmW2p5x8hOEfY1SjXF8hY=
Subject key identifier: DC:E1:22:93:BB:4D:28:5D:7A:57:7B:6A:83:A8:1F:9B:8E:0F:9F:DA
Certificate issuer: /CN=a8b31004df135aa1a8b943033db14691b11a63dd
Certificate serial: 019449FDA46C68E02D3C95A6747FB4735BAE
Authority key identifier: A8:B3:10:04:DF:13:5A:A1:A8:B9:43:03:3D:B1:46:91:B1:1A:63:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qLMQBN8TWqGouUMDPbFGkbEaY90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/3OEik7tNKF16V3tqg6gfm44Pn9o.roa
Signing time: Thu 09 Jan 2025 07:35:47 +0000
ROA not before: Thu 09 Jan 2025 07:35:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31617
IP address blocks: 45.66.100.0/22 maxlen: 24
45.92.148.0/22 maxlen: 24
62.192.148.0/22 maxlen: 24
91.241.86.0/23 maxlen: 24
185.186.92.0/22 maxlen: 24
185.252.52.0/22 maxlen: 24
192.166.252.0/24 maxlen: 24
192.172.232.0/24 maxlen: 24
192.188.248.0/24 maxlen: 24
192.207.14.0/24 maxlen: 24
193.23.114.0/24 maxlen: 24
194.143.142.0/23 maxlen: 24
195.88.230.0/23 maxlen: 24
195.88.234.0/23 maxlen: 24
217.26.180.0/22 maxlen: 24
2a0b:7380::/29 maxlen: 29
2a0c:2140::/29 maxlen: 29
2a0d:9b40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:49:fd:a4:6c:68:e0:2d:3c:95:a6:74:7f:b4:73:5b:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8b31004df135aa1a8b943033db14691b11a63dd
Validity
Not Before: Jan 9 07:35:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dce12293bb4d285d7a577b6a83a81f9b8e0f9fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cf:e7:a1:df:4b:7d:09:ba:c5:91:1f:17:6e:
00:c2:30:a3:8f:37:fe:b8:f3:a5:03:66:88:5f:5c:
07:4e:79:b5:32:59:a2:c7:dc:9c:44:46:c4:de:98:
62:f9:4d:2e:f2:96:9b:75:24:ee:d4:c8:d7:18:63:
a0:77:18:85:bd:13:ce:53:e8:64:6a:f3:fc:b6:96:
13:71:8c:60:5f:60:3a:23:88:82:54:4b:e9:29:32:
f7:0a:b9:d7:0b:c8:3c:0c:74:27:ba:71:c3:88:88:
df:87:09:bd:8c:8b:5e:fb:2a:f8:8b:65:96:de:80:
9e:1e:d5:c2:62:95:ef:60:f8:86:e2:14:24:64:91:
9d:b5:45:da:61:c6:4c:21:88:0b:5f:5f:0e:7b:e6:
10:d1:06:4a:16:1d:6d:00:46:e8:b6:37:04:36:48:
f8:2a:a4:78:61:cf:89:bb:b3:b8:35:de:41:64:4b:
a0:56:04:8f:4b:db:d9:b3:c4:a3:96:49:6d:56:8f:
ec:dd:cf:e2:06:df:53:87:ee:47:65:67:08:27:41:
7c:20:01:7f:5a:cf:cf:6b:6f:9b:b4:3d:d1:7b:c6:
34:ab:30:2f:cb:7a:80:5b:64:49:5f:81:10:ff:17:
73:2d:24:9b:8d:ca:c3:8d:ae:f4:74:14:5a:ad:44:
41:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E1:22:93:BB:4D:28:5D:7A:57:7B:6A:83:A8:1F:9B:8E:0F:9F:DA
X509v3 Authority Key Identifier:
keyid:A8:B3:10:04:DF:13:5A:A1:A8:B9:43:03:3D:B1:46:91:B1:1A:63:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qLMQBN8TWqGouUMDPbFGkbEaY90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/3OEik7tNKF16V3tqg6gfm44Pn9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/qLMQBN8TWqGouUMDPbFGkbEaY90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.100.0/22
45.92.148.0/22
62.192.148.0/22
91.241.86.0/23
185.186.92.0/22
185.252.52.0/22
192.166.252.0/24
192.172.232.0/24
192.188.248.0/24
192.207.14.0/24
193.23.114.0/24
194.143.142.0/23
195.88.230.0/23
195.88.234.0/23
217.26.180.0/22
IPv6:
2a0b:7380::/29
2a0c:2140::/29
2a0d:9b40::/29
Signature Algorithm: sha256WithRSAEncryption
a2:4a:54:02:cf:8b:b9:e8:fc:e6:23:b1:78:02:a9:94:06:0d:
dc:d5:37:73:d7:9d:65:5b:60:55:64:b8:8d:17:2c:df:1b:aa:
f8:e3:f1:2a:bd:ff:da:7d:31:65:05:e0:8e:81:06:7f:0e:b4:
42:40:86:aa:00:fb:b4:35:33:d7:52:99:af:5a:b7:00:a5:33:
6b:92:5c:4d:5a:cf:18:ab:32:c9:1a:7c:b7:5e:9c:a1:96:f8:
a5:1c:f5:ce:e3:c5:4a:1e:77:a8:12:e5:ef:c3:1c:ca:6a:e3:
72:ff:81:ec:38:30:dd:c0:23:ac:c2:8a:ae:2e:b1:0f:83:ae:
b6:5a:7b:12:95:80:17:38:0a:65:79:29:98:6a:67:a8:d1:57:
39:47:97:93:32:8c:ac:98:3b:10:d7:04:e2:22:51:0a:29:7a:
88:c0:4f:36:bc:56:87:36:54:5c:45:7e:0d:3b:b6:e2:f6:5b:
36:83:6e:eb:d0:42:48:1d:92:43:0b:e0:6c:5e:11:b9:70:fd:
2a:f0:89:6c:3a:3f:27:c5:34:0a:3f:eb:12:48:c4:3e:05:10:
f0:72:95:8f:eb:d5:6c:8b:8f:7c:95:a4:85:4b:98:2c:06:f2:
e9:ed:bf:54:95:84:5e:43:d3:88:03:c1:95:2c:8c:86:3d:82:
28:28:e2:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:17:48 2025 by rpki-client