Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/rY5OtTO-5g1FxpbibA0_noKKekQ.roa
File: rY5OtTO-5g1FxpbibA0_noKKekQ.roa (raw, json)
Hash identifier: r6eRBGVze8Xc83Trd6Q8kD7nej4Q0RQdvQtVr7aNw5E=
Subject key identifier: AD:8E:4E:B5:33:BE:E6:0D:45:C6:96:E2:6C:0D:3F:9E:82:8A:7A:44
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 01921EC1FE0C96A59BE28E9605332C36CFED
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/rY5OtTO-5g1FxpbibA0_noKKekQ.roa
Signing time: Mon 23 Sep 2024 12:01:22 +0000
ROA not before: Mon 23 Sep 2024 12:01:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31500
IP address blocks: 94.124.182.0/24 maxlen: 24
94.124.183.0/24 maxlen: 24
95.140.80.0/24 maxlen: 32
95.140.82.0/24 maxlen: 24
95.140.83.0/24 maxlen: 24
95.140.88.0/24 maxlen: 24
95.140.89.0/24 maxlen: 24
95.140.90.0/24 maxlen: 24
95.140.91.0/24 maxlen: 24
95.140.93.0/24 maxlen: 24
95.140.95.0/24 maxlen: 24
95.161.128.0/24 maxlen: 24
109.239.128.0/24 maxlen: 24
109.239.129.0/24 maxlen: 24
109.239.130.0/24 maxlen: 24
109.239.130.128/25 maxlen: 25
109.239.131.0/24 maxlen: 24
109.239.132.0/24 maxlen: 24
109.239.133.0/24 maxlen: 24
109.239.134.0/24 maxlen: 24
109.239.135.0/24 maxlen: 24
109.239.138.0/24 maxlen: 24
109.239.139.0/24 maxlen: 24
109.239.140.0/24 maxlen: 24
109.239.141.0/24 maxlen: 24
109.239.142.0/24 maxlen: 24
109.239.143.0/24 maxlen: 24
178.18.228.0/24 maxlen: 24
178.18.229.0/24 maxlen: 24
178.18.231.0/24 maxlen: 24
178.18.232.0/24 maxlen: 24
2001:b28::/32 maxlen: 32
2001:b28:4::/48 maxlen: 48
2001:b28:7b0c::/48 maxlen: 48
2001:b28:9999::/48 maxlen: 48
2001:b28:9a9c::/48 maxlen: 48
2001:b28:a451::/48 maxlen: 48
2001:b28:ffff::/48 maxlen: 48
2a03:5f80::/46 maxlen: 46
2a03:5f80:2:10::/64 maxlen: 64
2a03:5f80:8::/46 maxlen: 46
2a03:5f80:a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1e:c1:fe:0c:96:a5:9b:e2:8e:96:05:33:2c:36:cf:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Sep 23 12:01:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad8e4eb533bee60d45c696e26c0d3f9e828a7a44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:59:a6:64:80:0d:6c:1d:d0:b3:a1:70:5b:4a:
66:64:1f:74:4d:8f:fd:57:31:0a:62:df:c0:77:05:
4e:8d:70:65:ef:15:88:6a:d7:1e:9c:14:b6:69:b5:
6e:b1:e4:5c:b7:dd:40:27:e5:f6:17:ad:5a:2b:fa:
9f:1a:56:80:c8:fb:98:a2:8e:1a:e7:ef:d3:09:49:
f8:be:1d:82:8c:66:7b:9b:b9:0c:69:0b:c9:f1:04:
43:aa:8f:4e:e1:3c:21:df:8e:95:79:bf:54:92:2c:
9e:ca:18:be:64:96:04:70:78:85:11:42:4f:d0:b4:
3f:18:88:fb:80:8f:5b:df:a5:c3:87:43:0b:20:03:
d3:3b:a9:14:b3:b6:22:89:75:be:ec:53:6c:93:e4:
b4:21:d3:3f:1b:8b:54:c7:03:e5:a1:20:a5:1b:5d:
b9:02:79:9b:54:4a:a7:ef:09:a8:36:70:08:eb:c8:
66:da:0c:4c:35:5a:38:03:09:c1:3f:f6:ce:a2:c1:
3e:cf:60:a8:45:06:23:40:d7:2e:e4:f0:95:ee:bc:
0a:64:a1:e9:4c:21:fa:04:c9:54:5e:f2:32:d4:02:
91:aa:0f:b4:a2:15:bb:22:0e:b2:3f:75:23:44:15:
a5:01:dc:76:e5:cd:6c:14:5c:5d:3c:f5:d5:da:91:
87:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8E:4E:B5:33:BE:E6:0D:45:C6:96:E2:6C:0D:3F:9E:82:8A:7A:44
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/rY5OtTO-5g1FxpbibA0_noKKekQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.182.0/23
95.140.80.0/24
95.140.82.0/23
95.140.88.0/22
95.140.93.0/24
95.140.95.0/24
95.161.128.0/24
109.239.128.0/21
109.239.138.0-109.239.143.255
178.18.228.0/23
178.18.231.0-178.18.232.255
IPv6:
2001:b28::/32
2a03:5f80::/46
2a03:5f80:8::/46
Signature Algorithm: sha256WithRSAEncryption
3c:7e:f8:cf:d2:bd:c1:68:fb:b5:cc:b0:71:5e:25:e4:69:e1:
1d:e6:24:80:66:18:96:eb:be:d7:e1:84:ff:e6:fd:c4:5e:ca:
e1:b3:ab:88:2e:a4:a7:23:8f:75:0d:4f:62:1a:65:e4:35:4a:
fa:07:92:ee:01:ed:28:51:b9:41:ab:63:eb:2c:01:01:ef:bf:
5c:f8:07:9f:6e:c4:97:d0:ad:f3:6a:73:d1:e6:08:cc:64:cf:
20:f2:fc:59:12:30:7e:f7:ac:01:db:d9:c7:28:24:6a:bb:3b:
d0:18:e0:ae:98:61:d0:47:24:2b:14:62:46:93:de:16:47:d1:
99:50:d4:df:ba:ee:1f:b7:be:42:e5:f0:bc:ac:06:71:fa:c4:
71:1d:f9:ca:e6:c6:f3:7e:ae:9d:0c:4e:ae:8c:8d:fe:e4:01:
b1:d3:ff:5f:20:5f:a5:56:62:83:6c:ea:40:e4:28:88:25:2a:
ae:dd:7a:31:6c:8e:e8:8e:ff:02:6d:fa:f1:4a:02:69:11:03:
98:29:9d:2e:69:60:fe:b0:ba:50:80:41:fb:dc:2f:4e:50:38:
90:f7:ff:1c:03:73:05:39:c9:d9:46:d1:b8:97:e6:89:c6:0e:
cc:b3:30:12:cf:5e:41:9b:b5:5e:5a:67:00:46:93:04:5c:3d:
5f:a0:d2:84
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:31 2024 by rpki-client on console.sobornost.net