Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gEWKDpcrCYkcZnNoIoy6-7gTstw.roa
File: gEWKDpcrCYkcZnNoIoy6-7gTstw.roa (raw, json)
Hash identifier: 9leSTpzd0mCtaIspt+2YWuJzXHNrcIMjUVWkmwDBBfI=
Subject key identifier: 80:45:8A:0E:97:2B:09:89:1C:66:73:68:22:8C:BA:FB:B8:13:B2:DC
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 019499882FAD60FCC19E33EAD160FE1AEFC0
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gEWKDpcrCYkcZnNoIoy6-7gTstw.roa
Signing time: Fri 24 Jan 2025 18:17:06 +0000
ROA not before: Fri 24 Jan 2025 18:17:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48678
IP address blocks: 31.210.48.0/24 maxlen: 24
31.210.50.0/24 maxlen: 24
77.92.143.0/24 maxlen: 24
77.92.145.0/24 maxlen: 24
77.92.146.0/24 maxlen: 24
78.135.66.0/24 maxlen: 24
78.135.92.0/24 maxlen: 24
78.135.93.0/24 maxlen: 24
78.135.100.0/24 maxlen: 24
185.17.139.0/24 maxlen: 24
188.132.129.0/24 maxlen: 24
188.132.130.0/24 maxlen: 24
188.132.153.0/24 maxlen: 24
188.132.165.0/24 maxlen: 24
188.132.168.0/24 maxlen: 24
188.132.183.0/24 maxlen: 24
188.132.184.0/24 maxlen: 24
188.132.185.0/24 maxlen: 24
188.132.186.0/24 maxlen: 24
188.132.199.0/24 maxlen: 24
188.132.201.0/24 maxlen: 24
188.132.202.0/24 maxlen: 24
188.132.209.0/24 maxlen: 24
188.132.234.0/24 maxlen: 24
188.132.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:99:88:2f:ad:60:fc:c1:9e:33:ea:d1:60:fe:1a:ef:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 24 18:17:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=80458a0e972b09891c667368228cbafbb813b2dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f7:41:b3:69:b5:09:9c:78:a5:38:3b:c1:8e:
09:77:ab:62:6a:a6:2c:35:fd:dd:0c:48:29:f6:eb:
10:13:7f:53:34:03:83:7d:ea:45:7d:9b:40:0a:20:
92:c3:f8:9e:aa:ff:87:62:e3:85:d5:1d:d6:fe:e2:
ff:1a:8c:c5:d7:8f:1a:31:d0:a5:32:72:f7:bb:b2:
7f:60:30:cf:5f:cc:94:f5:b5:48:db:e5:c2:2f:5e:
07:93:87:79:7e:26:ba:16:26:5f:a0:ee:63:65:90:
9c:27:80:e0:01:a2:2e:bc:75:1d:13:a7:ee:cc:2a:
2d:13:28:36:81:2f:72:b0:d0:41:9e:a7:20:fd:44:
38:b0:c7:5c:a7:43:ad:9e:6f:28:cd:98:2f:21:0e:
59:aa:a4:df:fa:95:1d:91:dc:92:eb:2b:98:20:ca:
43:83:d1:2e:93:c4:6a:24:e5:2e:8e:99:54:75:01:
81:4a:87:27:59:ba:d0:f6:3f:90:d6:f7:85:9e:09:
17:84:08:02:71:93:a4:d5:9a:c3:8f:57:2b:3d:dd:
fe:5a:f5:4a:05:a8:4c:92:ca:e3:bd:fd:48:04:8d:
a4:82:8a:4c:46:cf:a1:38:db:9b:f2:df:f6:ce:e1:
e6:b1:f8:bc:e4:85:83:87:f7:9a:e0:d1:d9:7f:82:
57:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:45:8A:0E:97:2B:09:89:1C:66:73:68:22:8C:BA:FB:B8:13:B2:DC
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gEWKDpcrCYkcZnNoIoy6-7gTstw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.48.0/24
31.210.50.0/24
77.92.143.0/24
77.92.145.0-77.92.146.255
78.135.66.0/24
78.135.92.0/23
78.135.100.0/24
185.17.139.0/24
188.132.129.0-188.132.130.255
188.132.153.0/24
188.132.165.0/24
188.132.168.0/24
188.132.183.0-188.132.186.255
188.132.199.0/24
188.132.201.0-188.132.202.255
188.132.209.0/24
188.132.234.0/23
Signature Algorithm: sha256WithRSAEncryption
36:12:ed:3e:d6:e5:3a:a0:5d:86:df:87:4d:10:9e:15:07:37:
36:9a:74:d0:a5:14:24:77:73:dd:2e:72:02:25:5f:10:c1:57:
8a:fa:03:2a:90:1d:e5:66:5a:e7:d2:5a:11:a6:c1:f6:55:fd:
e8:af:5b:43:44:88:78:5c:1d:d0:d3:ca:eb:89:ba:07:46:0a:
f0:e1:f9:93:68:c1:aa:dd:e8:80:55:ad:de:7e:87:37:f9:ba:
06:1d:48:6a:a4:5a:96:51:17:38:5d:18:37:1b:79:e9:de:87:
dc:19:8d:de:98:4f:41:6e:7f:c7:0f:b8:39:1a:89:5c:6c:1d:
e6:2e:c9:2e:94:fa:38:e5:e7:ae:03:a0:1b:f8:04:91:13:8e:
54:a6:15:59:39:ff:38:eb:b7:aa:5f:e0:39:ba:ca:d9:88:c3:
95:0b:38:12:cf:49:0a:a3:e9:48:df:be:49:30:15:d8:c1:d9:
92:67:0c:38:5f:80:d3:0e:c6:17:fe:e6:cc:d3:7e:b4:33:16:
35:49:76:7e:1c:37:30:74:e5:ae:1f:2a:da:5f:43:ba:2d:be:
51:b2:69:1a:2a:2e:2d:70:f2:2a:c6:d8:70:66:09:4d:0f:8c:
ef:de:59:aa:f0:74:d4:ca:bb:c7:00:55:b8:64:37:ad:99:48:
b7:c1:ef:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:53:45 2025 by rpki-client