Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/551e92-992d-41da-986b-9519693eaa7b/1/cKTFKLuoQdiYE7_u9RuNKWw7fco.roa
File: cKTFKLuoQdiYE7_u9RuNKWw7fco.roa (raw, json)
Hash identifier: KXSC0hf1ayPyYoQDrw1CY1aRR6JyJ+UZkoTbKkWxBMQ=
Subject key identifier: 70:A4:C5:28:BB:A8:41:D8:98:13:BF:EE:F5:1B:8D:29:6C:3B:7D:CA
Certificate issuer: /CN=c3b0d535eebcf28e60ac98ae495b34981b5a93ec
Certificate serial: 0194266C3C654D651867D5597BFA3DD9ACE0
Authority key identifier: C3:B0:D5:35:EE:BC:F2:8E:60:AC:98:AE:49:5B:34:98:1B:5A:93:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w7DVNe688o5grJiuSVs0mBtak-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/551e92-992d-41da-986b-9519693eaa7b/1/cKTFKLuoQdiYE7_u9RuNKWw7fco.roa
Signing time: Thu 02 Jan 2025 09:50:15 +0000
ROA not before: Thu 02 Jan 2025 09:50:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202125
IP address blocks: 45.13.9.0/24 maxlen: 24
45.13.10.0/24 maxlen: 24
185.50.204.0/23 maxlen: 23
185.50.207.0/24 maxlen: 24
185.247.164.0/22 maxlen: 24
185.247.164.0/24 maxlen: 24
185.247.165.0/24 maxlen: 24
185.247.166.0/24 maxlen: 24
185.247.167.0/24 maxlen: 24
188.119.104.0/22 maxlen: 24
193.43.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:3c:65:4d:65:18:67:d5:59:7b:fa:3d:d9:ac:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3b0d535eebcf28e60ac98ae495b34981b5a93ec
Validity
Not Before: Jan 2 09:50:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=70a4c528bba841d89813bfeef51b8d296c3b7dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:04:0f:ed:82:56:f7:87:ee:c5:a8:a2:37:e9:
e8:5b:88:f4:b0:4b:8b:4e:3f:aa:56:1a:43:3d:2c:
87:4b:a8:9f:87:74:e0:7d:8c:93:e6:ed:5c:aa:81:
3a:f6:b1:82:5c:a2:3c:81:0c:58:14:e7:76:35:41:
c7:14:f5:ff:9e:96:2c:4d:1e:aa:66:44:0f:c7:2e:
7a:67:be:02:81:a7:01:96:d5:d2:31:ad:c0:48:d3:
a2:23:4a:c3:d0:e6:a8:e1:02:29:cd:6c:ea:ff:37:
89:6b:3f:51:b1:93:75:c8:c5:7b:fc:f7:14:e9:39:
4c:af:bc:30:94:42:9b:0d:2c:13:00:9b:0d:bf:47:
44:34:63:ba:42:27:d1:28:bb:eb:f8:40:95:95:51:
69:d9:3c:11:e2:57:29:35:ee:99:e4:0e:a9:79:b8:
a8:33:92:32:1b:ed:2a:d6:6e:e9:21:d1:4b:3f:0c:
f2:fa:93:64:14:82:bb:7c:2e:02:51:d2:f7:b1:12:
25:fe:01:f9:6d:e8:b8:ea:5f:e3:7e:4f:a5:aa:07:
c1:5f:31:ad:24:14:c2:49:3e:d9:26:36:2d:2a:25:
a4:0f:8c:86:9a:d5:83:76:8f:be:fb:c7:15:fa:d7:
51:57:bc:32:09:cb:62:29:46:31:ef:23:3f:6a:28:
f5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A4:C5:28:BB:A8:41:D8:98:13:BF:EE:F5:1B:8D:29:6C:3B:7D:CA
X509v3 Authority Key Identifier:
keyid:C3:B0:D5:35:EE:BC:F2:8E:60:AC:98:AE:49:5B:34:98:1B:5A:93:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w7DVNe688o5grJiuSVs0mBtak-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/551e92-992d-41da-986b-9519693eaa7b/1/cKTFKLuoQdiYE7_u9RuNKWw7fco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/551e92-992d-41da-986b-9519693eaa7b/1/w7DVNe688o5grJiuSVs0mBtak-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.9.0-45.13.10.255
185.50.204.0/23
185.50.207.0/24
185.247.164.0/22
188.119.104.0/22
193.43.74.0/24
Signature Algorithm: sha256WithRSAEncryption
94:ea:cf:be:6d:79:34:97:25:6d:7d:44:8f:2a:1c:eb:1d:40:
e2:74:0a:05:5f:6c:22:7c:4c:2a:e9:f7:0a:c2:82:e5:09:14:
3b:be:87:27:60:aa:b5:52:b1:06:9b:b2:7d:30:c2:93:1f:e6:
8a:54:19:1a:e0:cd:f9:8a:16:97:6e:45:98:73:fd:f8:92:77:
b5:2d:fd:81:20:3f:86:fc:cc:ea:87:e5:6e:1c:49:19:15:c1:
25:c6:d6:26:f1:75:c3:0c:5b:e8:8b:cf:a9:00:2b:61:39:88:
78:b0:70:e1:93:d5:30:13:72:4e:19:55:f1:00:7d:30:69:e5:
bc:55:18:ad:f6:ca:49:15:59:e3:97:b7:03:7f:2b:05:08:2c:
0b:6d:52:d4:38:d6:1c:b5:d8:29:81:0d:10:e8:dd:f1:c9:f7:
1c:e8:0d:74:05:18:c4:0e:98:98:5d:41:c3:dc:4e:0f:74:11:
e3:19:50:dc:04:63:11:c9:d2:ae:f6:43:65:98:5c:b2:85:ac:
a1:cd:df:7c:67:25:eb:16:1a:ff:62:bb:f1:35:c9:3c:97:4a:
f3:f2:eb:dc:16:8d:98:1e:ea:de:21:bf:25:29:ae:0b:5b:af:
b8:ce:32:64:7a:2f:80:51:50:c8:5b:ed:36:2f:ad:74:b9:a0:
62:87:88:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:14:30 2025 by rpki-client