Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/7bff3e-03aa-4e0a-b2fc-4a7ddf2d86bd/1/pN0se_Y109am0Y5YmcGHEfKnS4A.roa
File: pN0se_Y109am0Y5YmcGHEfKnS4A.roa (raw, json)
Hash identifier: E9CxUuwH+q4iMV/i3sCc8FVe3QsSVz+3bNcj05HkFps=
Subject key identifier: A4:DD:2C:7B:F6:35:D3:D6:A6:D1:8E:58:99:C1:87:11:F2:A7:4B:80
Certificate issuer: /CN=5e95fdfd28cdc03d89d214e4ad3a6c5fb3ebacbf
Certificate serial: 01942748829B6F72A3D94E58FC2CCA931FD3
Authority key identifier: 5E:95:FD:FD:28:CD:C0:3D:89:D2:14:E4:AD:3A:6C:5F:B3:EB:AC:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpX9_SjNwD2J0hTkrTpsX7PrrL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/7bff3e-03aa-4e0a-b2fc-4a7ddf2d86bd/1/pN0se_Y109am0Y5YmcGHEfKnS4A.roa
Signing time: Thu 02 Jan 2025 13:50:50 +0000
ROA not before: Thu 02 Jan 2025 13:50:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21350
IP address blocks: 80.244.160.0/21 maxlen: 21
80.244.160.0/24 maxlen: 24
80.244.161.0/24 maxlen: 24
80.244.163.0/24 maxlen: 24
80.244.164.0/24 maxlen: 24
80.244.165.0/24 maxlen: 24
80.244.166.0/24 maxlen: 24
80.244.168.0/24 maxlen: 24
80.244.169.0/24 maxlen: 24
80.244.170.0/24 maxlen: 24
80.244.171.0/24 maxlen: 24
80.244.172.0/23 maxlen: 23
95.175.32.0/20 maxlen: 20
95.175.38.0/24 maxlen: 24
95.175.45.0/24 maxlen: 24
95.175.48.0/24 maxlen: 24
95.175.49.0/24 maxlen: 24
95.175.51.0/24 maxlen: 24
95.175.52.0/22 maxlen: 22
95.175.52.0/24 maxlen: 24
95.175.53.0/24 maxlen: 24
95.175.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:82:9b:6f:72:a3:d9:4e:58:fc:2c:ca:93:1f:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e95fdfd28cdc03d89d214e4ad3a6c5fb3ebacbf
Validity
Not Before: Jan 2 13:50:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a4dd2c7bf635d3d6a6d18e5899c18711f2a74b80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2d:61:5a:91:bb:82:30:76:02:29:69:65:17:
42:40:25:ab:37:bc:bd:64:1b:a6:23:2c:d7:bd:77:
f3:7e:d3:66:ed:71:88:fe:69:82:18:e4:8a:bf:a8:
24:4b:01:4d:65:98:28:31:bf:bd:f9:d8:25:b9:5e:
a1:e6:09:41:e7:79:2b:ad:66:a0:3d:f8:0b:a9:34:
fd:bb:30:dc:27:f4:14:5d:97:e7:55:24:ce:5f:6e:
da:45:3a:57:f3:e8:34:2c:8a:f6:80:bb:d9:0d:a8:
d7:cb:e6:74:94:83:dd:12:4f:3a:59:f0:9f:95:8e:
77:23:12:7c:16:86:ca:35:d6:fa:96:41:fd:54:01:
f4:44:6b:14:e9:28:8f:e8:5f:52:3f:ef:bf:1e:aa:
c0:32:c2:b5:bb:46:47:f1:22:70:9b:1f:4f:46:4e:
7a:18:e5:d3:b0:0b:7e:35:fd:a2:72:97:af:75:85:
7d:8a:89:46:88:3a:b2:62:95:ad:90:5d:cf:44:f6:
88:1d:f0:73:f0:ae:8c:be:10:c0:a0:6f:4b:ee:82:
48:11:c8:3d:73:03:19:b2:a4:97:85:12:99:b9:66:
f7:3c:d4:6b:c6:54:87:32:a7:c6:4a:a4:f6:ae:f3:
3c:e9:42:4d:ce:e7:7b:3e:cd:b9:11:71:ce:58:ac:
ca:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DD:2C:7B:F6:35:D3:D6:A6:D1:8E:58:99:C1:87:11:F2:A7:4B:80
X509v3 Authority Key Identifier:
keyid:5E:95:FD:FD:28:CD:C0:3D:89:D2:14:E4:AD:3A:6C:5F:B3:EB:AC:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpX9_SjNwD2J0hTkrTpsX7PrrL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7bff3e-03aa-4e0a-b2fc-4a7ddf2d86bd/1/pN0se_Y109am0Y5YmcGHEfKnS4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7bff3e-03aa-4e0a-b2fc-4a7ddf2d86bd/1/XpX9_SjNwD2J0hTkrTpsX7PrrL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.160.0-80.244.173.255
95.175.32.0-95.175.49.255
95.175.51.0-95.175.63.255
Signature Algorithm: sha256WithRSAEncryption
3c:fc:d3:7e:42:51:e9:16:27:b0:10:dd:c5:7d:ba:8f:d6:26:
a5:26:17:1b:79:1d:2f:a0:45:24:88:3c:5b:dc:4c:7e:a1:4a:
a7:c2:cf:cd:df:d6:fe:8b:aa:e5:be:af:31:1a:0e:e7:42:24:
9c:66:e4:1e:af:94:f2:d3:9e:e4:ec:6b:ad:95:44:8f:5b:17:
28:df:bf:02:35:a3:b2:bb:b1:ec:e2:7c:6e:f6:da:ac:ab:c7:
77:1e:7a:ed:65:95:a2:8e:2a:3a:2d:43:c5:06:ef:15:4c:7a:
c0:35:0f:0f:ee:ff:9a:0a:a5:9a:49:7b:ca:c7:0b:e8:01:4b:
7d:ec:a5:c7:fb:01:e6:e3:12:48:8e:23:cc:c6:86:1e:8e:97:
ff:22:5f:c5:35:77:f6:b2:b7:b5:46:27:d1:ad:a6:94:ff:68:
bf:85:99:83:ad:be:89:6b:34:ba:c8:88:6b:fd:0f:9e:b6:c4:
12:1f:d0:7e:08:ca:10:65:ed:f7:fd:f4:86:34:34:31:07:7d:
0d:ee:d2:49:d5:45:4e:38:e1:c0:6c:ad:e0:56:08:f9:1a:1a:
a7:2f:37:36:b5:b1:ce:4d:14:e6:55:c8:e1:95:7f:7b:fb:ea:
cc:60:a6:37:c3:73:3c:22:48:5b:91:72:6c:0b:a9:fb:15:3c:
4b:07:65:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:03:49 2025 by rpki-client