Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/djO61kFjXCO0xocrlmDU-5Sp0fc.roa
File: djO61kFjXCO0xocrlmDU-5Sp0fc.roa (raw, json)
Hash identifier: 0xAZ2mBFWaSkxTIzlV61jjTIXCybIBFSVEhc6UeddnI=
Subject key identifier: 76:33:BA:D6:41:63:5C:23:B4:C6:87:2B:96:60:D4:FB:94:A9:D1:F7
Certificate issuer: /CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Certificate serial: 019425FDC6D4E36B2D64D34C1F6F2755BA2E
Authority key identifier: 47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/djO61kFjXCO0xocrlmDU-5Sp0fc.roa
Signing time: Thu 02 Jan 2025 07:49:36 +0000
ROA not before: Thu 02 Jan 2025 07:49:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34444
IP address blocks: 84.22.64.0/19 maxlen: 19
84.22.68.0/24 maxlen: 24
84.22.69.0/24 maxlen: 24
84.22.73.0/24 maxlen: 24
84.22.77.0/24 maxlen: 24
84.22.78.0/24 maxlen: 24
84.22.80.0/24 maxlen: 24
84.22.84.0/24 maxlen: 24
84.22.85.0/24 maxlen: 24
195.234.248.0/22 maxlen: 22
213.180.225.0/24 maxlen: 24
213.180.226.0/24 maxlen: 24
213.180.228.0/24 maxlen: 24
213.180.229.0/24 maxlen: 24
213.180.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:c6:d4:e3:6b:2d:64:d3:4c:1f:6f:27:55:ba:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Validity
Not Before: Jan 2 07:49:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7633bad641635c23b4c6872b9660d4fb94a9d1f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4e:3f:fb:d0:86:ee:e8:f4:15:5c:1c:49:a9:
09:5e:05:0f:1e:23:1c:74:fd:82:25:e3:d8:eb:97:
1f:1b:43:ae:60:f7:be:a4:9b:e1:2a:83:80:6a:a1:
f5:57:df:a4:11:c6:51:3c:93:58:0b:b7:dc:2e:fe:
23:08:89:8f:58:d4:89:2b:dc:ca:05:d3:f2:ba:0e:
da:ed:dc:db:4d:7a:02:92:5b:c3:a7:67:42:57:5a:
54:f3:d6:52:90:28:71:e1:b2:8f:df:f5:36:c8:5c:
1a:1b:54:45:cf:13:f2:23:4d:1a:ec:3b:95:08:96:
e5:2a:48:a8:c6:f9:5c:a7:51:7d:86:51:fd:ba:83:
3f:49:4c:e2:6e:48:a0:a0:54:a1:9a:bf:15:f2:1c:
c1:2b:06:b0:cf:a7:ec:14:96:5b:c4:49:22:e8:cf:
18:be:90:e4:9f:8b:03:9c:e2:43:53:42:50:62:cc:
e3:1c:79:34:e8:0f:54:9c:d5:c6:31:28:2d:58:d6:
53:80:a0:12:89:60:df:b2:cf:20:de:97:6c:43:81:
af:96:84:45:27:ae:88:34:f7:d1:10:d5:39:8a:b9:
4f:91:90:18:2d:ae:11:45:37:cc:ea:de:51:9c:26:
c5:3d:0a:92:0b:75:47:d1:93:da:86:47:69:e6:3e:
53:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:33:BA:D6:41:63:5C:23:B4:C6:87:2B:96:60:D4:FB:94:A9:D1:F7
X509v3 Authority Key Identifier:
keyid:47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/djO61kFjXCO0xocrlmDU-5Sp0fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.22.64.0/19
195.234.248.0/22
213.180.225.0-213.180.226.255
213.180.228.0/23
213.180.240.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:df:61:33:f5:40:a9:2f:14:d3:f3:ab:60:a0:bd:e7:fd:38:
03:35:a7:55:3a:52:df:42:d9:12:1e:79:d0:71:6f:e6:97:5c:
44:80:34:f2:4d:03:64:09:e0:3c:1b:96:96:c2:1a:36:c6:b4:
64:49:b4:f6:d7:2f:8f:4d:bc:16:d4:1a:da:e1:52:08:08:b6:
96:84:32:a0:e6:91:8b:08:5f:00:35:5b:0f:c9:c4:78:00:32:
1d:a3:46:26:77:95:b3:34:6a:16:ea:9e:52:9d:a1:4b:f0:7c:
38:0f:ca:7b:9e:7f:c9:f2:f4:f0:65:41:fb:41:c2:d2:02:0c:
7e:67:e2:aa:52:56:8f:24:b0:69:df:46:74:45:1d:85:17:8e:
da:71:5b:f7:93:25:0d:06:bc:bb:2d:98:62:4e:a4:c3:db:d3:
8b:35:4e:25:4e:5b:eb:77:28:34:0c:bc:5e:56:3e:29:2f:88:
b7:a6:4a:88:15:8c:08:55:9c:39:55:40:1b:ff:fe:b6:f9:4b:
f3:3d:df:db:49:aa:1c:a0:fc:a2:90:08:a5:5d:f0:4a:b1:e5:
f6:d5:03:b6:f0:46:89:c9:b0:bc:35:62:43:2b:c7:73:89:63:
75:66:3f:86:e4:05:f5:51:ea:c3:71:2d:98:0b:32:b8:21:da:
44:0d:06:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 19:08:50 2025 by rpki-client