Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/da7z7GnnEyfxUgj4fB1i6VhwRDI.roa
File: da7z7GnnEyfxUgj4fB1i6VhwRDI.roa (raw, json)
Hash identifier: tyegqhIl0p6PQRH+bNRiIwWArFxANCUu9uKdjG5TZCo=
Subject key identifier: 75:AE:F3:EC:69:E7:13:27:F1:52:08:F8:7C:1D:62:E9:58:70:44:32
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 0193CC7642AF07EABDD41E015A336A5CA5A1
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/da7z7GnnEyfxUgj4fB1i6VhwRDI.roa
Signing time: Sun 15 Dec 2024 22:35:22 +0000
ROA not before: Sun 15 Dec 2024 22:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42908
IP address blocks: 5.102.48.0/20 maxlen: 20
31.10.56.0/21 maxlen: 21
45.159.116.0/22 maxlen: 22
46.183.56.0/21 maxlen: 21
77.95.192.0/21 maxlen: 21
78.136.128.0/18 maxlen: 18
80.78.136.0/22 maxlen: 22
80.79.0.0/22 maxlen: 22
80.251.240.0/20 maxlen: 20
93.92.48.0/21 maxlen: 21
93.93.32.0/21 maxlen: 21
94.241.64.0/18 maxlen: 18
109.108.96.0/19 maxlen: 19
185.108.60.0/22 maxlen: 22
185.157.240.0/22 maxlen: 22
188.119.96.0/22 maxlen: 22
193.107.252.0/22 maxlen: 22
2001:67c:13c4::/48 maxlen: 48
2a01:9f40::/29 maxlen: 29
2a02:2428::/32 maxlen: 32
2a03:7a00::/32 maxlen: 32
2a03:a820::/32 maxlen: 32
2a07:cc80::/29 maxlen: 29
2a0c:8b40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:cc:76:42:af:07:ea:bd:d4:1e:01:5a:33:6a:5c:a5:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: Dec 15 22:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75aef3ec69e71327f15208f87c1d62e958704432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1b:2a:8c:63:db:0c:f9:3a:43:05:59:a8:13:
78:f4:d3:dd:45:cf:eb:e1:ed:82:74:cd:8f:8b:06:
cd:16:03:98:c9:69:92:ea:01:c0:eb:11:60:ed:b4:
15:df:db:9d:55:1a:f7:61:d0:25:d6:b6:09:8e:70:
db:d2:ff:2a:24:0d:3a:85:88:a1:53:b9:66:4c:9e:
9a:85:52:9e:4c:b1:38:d9:cf:6a:ef:86:4a:69:f7:
b3:1f:75:3a:27:89:32:cd:31:de:27:f6:36:26:56:
e7:bd:4f:e2:13:52:a6:40:06:3f:4c:96:37:8b:54:
91:17:16:f6:c0:65:7f:be:a0:e1:91:70:86:c3:b3:
e1:67:e8:80:14:6f:60:8b:27:46:1f:c7:29:a5:92:
79:27:d4:b5:55:c8:4c:ba:6a:12:dc:09:e8:61:c7:
17:5d:85:72:c8:b2:24:9e:f6:78:2e:a0:d8:58:f3:
48:5a:b3:f6:6a:d0:0f:d4:31:e9:90:da:77:c5:67:
9f:9f:91:3e:7b:6a:7a:c2:c4:ee:01:94:af:35:a2:
db:6f:f5:76:12:d6:83:1d:f7:b3:ec:d3:45:a3:f6:
18:1a:c4:82:a9:d9:a0:18:7a:c0:d2:41:52:c7:05:
f4:0f:1c:05:95:fd:9b:70:1c:1c:33:69:bb:56:45:
3d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AE:F3:EC:69:E7:13:27:F1:52:08:F8:7C:1D:62:E9:58:70:44:32
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/da7z7GnnEyfxUgj4fB1i6VhwRDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.48.0/20
31.10.56.0/21
45.159.116.0/22
46.183.56.0/21
77.95.192.0/21
78.136.128.0/18
80.78.136.0/22
80.79.0.0/22
80.251.240.0/20
93.92.48.0/21
93.93.32.0/21
94.241.64.0/18
109.108.96.0/19
185.108.60.0/22
185.157.240.0/22
188.119.96.0/22
193.107.252.0/22
IPv6:
2001:67c:13c4::/48
2a01:9f40::/29
2a02:2428::/32
2a03:7a00::/32
2a03:a820::/32
2a07:cc80::/29
2a0c:8b40::/29
Signature Algorithm: sha256WithRSAEncryption
a0:98:9f:63:a0:05:5a:d7:28:7e:6b:4a:b4:5f:58:a8:f1:42:
a2:4f:ee:f3:3b:0c:7e:ee:a5:d7:2e:60:2b:52:72:8f:4f:14:
67:a6:e8:d9:a9:1a:ab:13:04:96:55:f9:4f:b7:e2:64:3b:44:
08:56:29:8d:00:48:ea:17:79:80:bd:72:89:d4:d0:fe:83:e8:
e1:db:d9:8e:7c:e7:72:d9:ad:d7:d4:a2:f5:3a:bc:16:62:f5:
2e:4b:a4:2b:53:df:02:ef:0a:35:f7:cb:e4:8e:d2:51:10:ec:
68:4c:05:3f:0e:dd:bf:4f:98:19:ca:70:50:1c:48:df:82:13:
b7:36:8b:0b:17:02:c8:2c:c1:91:fe:f9:7d:a5:8e:be:16:d7:
09:4c:6b:52:8c:b5:1c:e1:59:76:58:66:77:54:91:93:12:48:
8b:cd:0e:d7:a2:48:6b:7f:30:ca:ed:02:81:c7:9a:99:7f:7e:
9b:06:9d:56:6e:c6:c7:fb:40:ad:d7:16:05:71:c2:ee:6a:94:
78:03:16:5f:fb:5a:10:79:c6:10:1e:a6:79:18:58:73:d1:17:
b7:e8:33:cf:7f:f6:ac:8a:89:18:0d:d2:d3:b7:b8:aa:5e:00:
3b:1b:28:a4:63:e4:7b:d3:d1:e0:dd:06:6e:06:5d:6e:80:7d:
80:9e:52:96
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:28 2024 by rpki-client on console.sobornost.net