Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/DteRKvm5ABXQFm6XPaud8XO2QAY.roa
File: DteRKvm5ABXQFm6XPaud8XO2QAY.roa (raw, json)
Hash identifier: i7GJxEral02tE6mE0Y+JTb9kNUH6y9Ua7e7Hr1Arvtw=
Subject key identifier: 0E:D7:91:2A:F9:B9:00:15:D0:16:6E:97:3D:AB:9D:F1:73:B6:40:06
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 019427475FF5B7A3DEA70E7206CF7D41986F
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/DteRKvm5ABXQFm6XPaud8XO2QAY.roa
Signing time: Thu 02 Jan 2025 13:49:36 +0000
ROA not before: Thu 02 Jan 2025 13:49:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6453
IP address blocks: 46.235.88.0/21 maxlen: 24
62.204.48.0/24 maxlen: 24
77.75.224.0/24 maxlen: 24
79.110.229.0/24 maxlen: 24
88.85.224.0/19 maxlen: 24
146.19.71.0/24 maxlen: 24
176.98.32.0/22 maxlen: 24
176.241.184.0/21 maxlen: 24
178.20.144.0/21 maxlen: 24
185.10.112.0/22 maxlen: 24
185.224.252.0/24 maxlen: 24
185.224.253.0/24 maxlen: 24
185.224.254.0/24 maxlen: 24
185.224.255.0/24 maxlen: 24
193.105.25.0/24 maxlen: 24
193.242.127.0/24 maxlen: 24
194.104.226.0/24 maxlen: 24
212.12.160.0/19 maxlen: 24
212.12.160.0/24 maxlen: 24
212.12.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:5f:f5:b7:a3:de:a7:0e:72:06:cf:7d:41:98:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Jan 2 13:49:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0ed7912af9b90015d0166e973dab9df173b64006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7b:b7:e3:1d:0a:58:bf:84:d5:f4:1e:74:6e:
6b:9e:a3:9b:11:9a:8a:45:0d:80:71:fc:67:7d:10:
63:25:03:d2:03:7e:d5:b7:e4:64:99:2e:7e:ed:39:
87:27:28:50:51:30:60:fb:82:24:0f:c5:5b:e5:b6:
9a:1e:7e:6f:18:d7:7b:77:6d:3d:5a:4b:1e:27:37:
8f:bc:22:ca:35:02:1b:41:51:ad:eb:16:f4:13:4f:
3b:84:fc:c4:9b:62:cb:81:f2:ca:19:94:4e:de:45:
43:c4:5d:c2:a9:be:aa:9a:56:54:06:7c:92:5b:82:
8c:d8:d2:b5:28:0f:ee:53:16:ba:15:14:c2:48:b1:
25:0c:2d:94:40:1b:9f:33:d6:6a:98:77:26:5c:c7:
4d:f4:09:1f:6d:1a:58:ba:bd:92:8e:8a:52:d6:3b:
c9:a0:67:0a:0e:78:8b:2f:8c:1c:e4:55:c0:16:b3:
c4:34:9a:88:9d:34:94:39:8f:74:97:75:be:79:3f:
a6:d9:37:26:59:66:35:34:ba:1a:c0:a4:4a:55:12:
ee:38:7b:2b:1f:d6:bf:6f:e3:f8:35:36:31:b4:57:
1a:80:e9:3e:c8:ea:1e:cb:31:a4:1f:ec:a8:bf:ea:
17:7a:24:72:82:e1:d6:8a:40:dc:9a:a7:6f:a1:42:
90:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:D7:91:2A:F9:B9:00:15:D0:16:6E:97:3D:AB:9D:F1:73:B6:40:06
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/DteRKvm5ABXQFm6XPaud8XO2QAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.88.0/21
62.204.48.0/24
77.75.224.0/24
79.110.229.0/24
88.85.224.0/19
146.19.71.0/24
176.98.32.0/22
176.241.184.0/21
178.20.144.0/21
185.10.112.0/22
185.224.252.0/22
193.105.25.0/24
193.242.127.0/24
194.104.226.0/24
212.12.160.0/19
Signature Algorithm: sha256WithRSAEncryption
7b:99:f7:c0:5e:b2:03:89:39:c2:3a:72:29:e6:3d:9c:de:98:
df:8b:55:1f:8f:f7:8e:51:f3:33:fc:a4:92:f9:7f:88:32:a6:
53:ca:39:69:0d:14:38:d7:81:45:a3:d2:fe:cd:ac:8e:14:89:
3d:ad:8f:8a:d6:73:ca:a0:b4:b4:01:2d:e9:4a:0f:c3:af:c0:
7e:8f:9b:a6:f3:05:73:1b:04:e3:33:41:69:c4:5d:6c:8f:81:
17:de:31:e8:c9:af:ba:74:7a:85:90:53:41:bd:1d:55:e2:84:
9e:60:cd:cc:4c:1b:15:90:5d:92:64:58:46:b2:86:f0:5f:5b:
18:27:9f:a6:e8:1b:cd:04:5d:36:03:af:a2:de:9f:d6:5f:0f:
7f:72:80:04:59:76:7c:22:29:f8:94:c3:03:39:ce:b7:cb:4a:
d7:f9:f1:23:af:bd:5a:53:f5:41:e5:2a:b1:ca:df:4c:dc:33:
b3:ad:d9:9c:e7:4d:fd:2a:8e:e4:85:eb:95:42:f4:bc:9d:89:
e7:c0:c1:5f:bf:6e:89:2c:3a:45:95:06:70:ca:94:05:31:d7:
86:cb:b3:64:eb:7e:c1:e0:57:c0:24:48:d1:f1:34:0a:f8:bf:
f8:a9:36:33:81:1f:f7:e7:01:4b:e0:07:41:b3:03:f1:b7:b9:
1e:28:bf:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:51 2025 by rpki-client on console.sobornost.net