Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Dd25RMm8EAVGM99esGZ-UTRShbU.roa
File: Dd25RMm8EAVGM99esGZ-UTRShbU.roa (raw, json)
Hash identifier: FJK00Ogrl8/vh+q2g6rRO/HLli8JkiQmJfkjFrXQPD4=
Subject key identifier: 0D:DD:B9:44:C9:BC:10:05:46:33:DF:5E:B0:66:7E:51:34:52:85:B5
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0195193FD756CDB297B8EFA0DFFE08BD3A08
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Dd25RMm8EAVGM99esGZ-UTRShbU.roa
Signing time: Tue 18 Feb 2025 13:29:28 +0000
ROA not before: Tue 18 Feb 2025 13:29:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62240
IP address blocks: 84.51.232.0/24 maxlen: 24
92.51.234.0/24 maxlen: 24
92.51.235.0/24 maxlen: 24
92.51.255.0/24 maxlen: 24
103.210.196.0/24 maxlen: 24
107.150.166.0/24 maxlen: 24
185.161.111.0/24 maxlen: 24
192.140.220.0/24 maxlen: 24
192.140.221.0/24 maxlen: 24
203.188.165.0/24 maxlen: 24
203.188.181.0/24 maxlen: 24
213.254.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:19:3f:d7:56:cd:b2:97:b8:ef:a0:df:fe:08:bd:3a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Feb 18 13:29:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0dddb944c9bc10054633df5eb0667e51345285b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cf:2a:69:ab:ca:57:69:28:46:40:00:82:c5:
c8:08:2f:31:02:e1:61:bc:51:5d:4d:75:08:28:e2:
8e:aa:fc:bb:33:c9:a5:c2:88:08:cf:6c:0a:63:19:
8a:02:3b:bc:0d:94:5a:f3:04:2d:ea:74:8e:95:7a:
38:69:c6:3b:bb:b3:66:1b:a2:92:1f:d9:71:61:d5:
6f:1b:c1:1e:bf:ee:a9:67:43:bb:cd:34:0f:a4:dd:
88:7f:cb:1c:18:b7:a0:5b:e9:93:9d:8d:b8:5e:08:
2b:44:1c:c2:ec:64:c0:74:08:65:12:bb:67:35:cf:
2b:35:c4:63:7f:90:4c:8b:ce:b7:21:ce:4b:b1:74:
41:c2:b6:87:6c:31:df:18:de:32:41:a7:ea:1e:5a:
db:3f:16:b9:39:04:f0:b3:ee:c8:f8:9c:d5:00:1d:
ce:83:b3:93:27:58:35:a3:f2:c1:26:2b:41:7f:6f:
9b:8d:c0:2d:49:76:8c:98:98:42:b4:5b:81:aa:00:
b5:7a:87:4b:a2:ce:01:f4:96:89:71:49:63:50:8d:
34:c6:4c:d1:a0:a5:21:0b:a9:a6:ac:ef:e7:65:a9:
2a:06:85:3c:d7:13:61:45:1a:3d:bf:ae:37:05:06:
3a:9b:54:b9:ae:3a:14:84:63:51:f8:c7:84:6b:01:
07:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:DD:B9:44:C9:BC:10:05:46:33:DF:5E:B0:66:7E:51:34:52:85:B5
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Dd25RMm8EAVGM99esGZ-UTRShbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.51.232.0/24
92.51.234.0/23
92.51.255.0/24
103.210.196.0/24
107.150.166.0/24
185.161.111.0/24
192.140.220.0/23
203.188.165.0/24
203.188.181.0/24
213.254.160.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:93:7d:05:d3:66:64:5e:4a:4e:9a:21:6a:f9:56:de:2e:16:
8b:d2:d9:7c:6c:5a:b0:72:3c:96:42:de:07:b1:72:97:5e:cf:
5c:d7:7f:07:1c:2c:89:00:d0:24:a0:8f:3b:73:2e:2e:85:31:
44:53:e6:e2:df:95:19:e4:56:dd:d8:9c:28:6f:c9:39:25:1e:
73:e6:ed:11:bb:49:82:31:9f:fd:81:02:28:f4:ff:55:f1:e2:
fa:f8:fc:44:fc:c1:aa:4f:7d:91:39:6b:2b:63:d7:50:b4:d9:
ca:cd:84:78:79:b0:1c:2f:79:3e:38:64:93:7e:a7:2c:5d:09:
b7:ce:df:84:23:fc:7b:82:ad:a0:a2:51:6a:da:ff:b8:b9:01:
17:08:0a:a8:6d:6e:4e:ee:76:18:15:6a:8a:60:22:5e:36:9f:
16:14:e9:25:5e:d3:9e:fa:63:16:c4:45:9c:43:fb:16:37:c2:
6e:c5:e8:bb:1e:42:7e:c3:a8:26:1c:eb:78:ac:8c:eb:70:d8:
c4:2a:3d:ce:c1:8d:71:88:4a:bf:b3:eb:56:25:86:01:d4:15:
81:9f:d8:e4:8a:1e:85:11:0b:55:7b:44:12:1f:d2:97:ca:3a:
e7:59:7d:7b:34:b1:ed:53:af:57:f3:ab:04:a0:28:02:73:b7:
71:bf:7e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:49:54 2025 by rpki-client on console.sobornost.net