Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/AkvIDLpe5k0dBWju9DWWZaWhCYI.roa
File: AkvIDLpe5k0dBWju9DWWZaWhCYI.roa (raw, json)
Hash identifier: akuRLr5ve02iyB87w4Kng12hTbMfsDss9bgGn00Xfbs=
Subject key identifier: 02:4B:C8:0C:BA:5E:E6:4D:1D:05:68:EE:F4:35:96:65:A5:A1:09:82
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 0193F206019051B5D9D8686D45A0EBF325E8
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/AkvIDLpe5k0dBWju9DWWZaWhCYI.roa
Signing time: Mon 23 Dec 2024 05:38:20 +0000
ROA not before: Mon 23 Dec 2024 05:38:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21277
IP address blocks: 93.91.192.0/20 maxlen: 20
93.91.192.0/24 maxlen: 24
93.91.193.0/24 maxlen: 24
93.91.195.0/24 maxlen: 24
93.91.196.0/24 maxlen: 24
93.91.197.0/24 maxlen: 24
93.91.200.0/24 maxlen: 24
93.91.201.0/24 maxlen: 24
93.91.204.0/24 maxlen: 24
95.170.192.0/19 maxlen: 19
95.170.192.0/24 maxlen: 24
95.170.193.0/24 maxlen: 24
95.170.194.0/24 maxlen: 24
95.170.196.0/24 maxlen: 24
95.170.199.0/24 maxlen: 24
95.170.200.0/24 maxlen: 24
95.170.201.0/24 maxlen: 24
95.170.202.0/24 maxlen: 24
95.170.203.0/24 maxlen: 24
95.170.204.0/24 maxlen: 24
95.170.205.0/24 maxlen: 24
95.170.206.0/24 maxlen: 24
95.170.207.0/24 maxlen: 24
95.170.208.0/24 maxlen: 24
95.170.214.0/24 maxlen: 24
95.170.215.0/24 maxlen: 24
95.170.216.0/24 maxlen: 24
95.170.217.0/24 maxlen: 24
95.170.218.0/24 maxlen: 24
95.170.219.0/24 maxlen: 24
95.170.220.0/24 maxlen: 24
95.170.221.0/24 maxlen: 24
95.170.222.0/24 maxlen: 24
109.127.64.0/18 maxlen: 18
109.127.64.0/20 maxlen: 20
109.127.64.0/21 maxlen: 21
109.127.72.0/21 maxlen: 21
109.127.80.0/24 maxlen: 24
109.127.86.0/24 maxlen: 24
109.127.88.0/24 maxlen: 24
109.127.89.0/24 maxlen: 24
109.127.90.0/24 maxlen: 24
109.127.91.0/24 maxlen: 24
109.127.107.0/24 maxlen: 24
130.193.128.0/17 maxlen: 17
130.193.128.0/19 maxlen: 19
130.193.131.0/24 maxlen: 24
130.193.132.0/22 maxlen: 22
130.193.144.0/24 maxlen: 24
130.193.145.0/24 maxlen: 24
130.193.146.0/24 maxlen: 24
130.193.147.0/24 maxlen: 24
130.193.148.0/24 maxlen: 24
130.193.149.0/24 maxlen: 24
130.193.150.0/23 maxlen: 23
130.193.150.0/24 maxlen: 24
130.193.151.0/24 maxlen: 24
130.193.160.0/20 maxlen: 20
130.193.160.0/24 maxlen: 24
130.193.165.0/24 maxlen: 24
130.193.166.0/24 maxlen: 24
130.193.176.0/20 maxlen: 20
130.193.176.0/21 maxlen: 21
130.193.184.0/21 maxlen: 21
130.193.192.0/20 maxlen: 20
130.193.208.0/20 maxlen: 20
130.193.224.0/20 maxlen: 20
130.193.240.0/20 maxlen: 20
2a04:a040::/29 maxlen: 29
2a04:a040::/32 maxlen: 32
2a04:a041::/32 maxlen: 32
2a04:a042::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f2:06:01:90:51:b5:d9:d8:68:6d:45:a0:eb:f3:25:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: Dec 23 05:38:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=024bc80cba5ee64d1d0568eef4359665a5a10982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b2:59:ab:ab:97:69:26:d6:d4:2c:f8:d8:98:
cd:33:19:9e:c6:b0:c4:7e:ca:1e:55:b1:75:8f:b0:
8f:f4:63:c0:3a:37:a0:f6:60:36:9f:97:13:4f:4c:
25:33:e7:40:64:d6:46:44:e4:c0:68:65:48:82:34:
79:15:1a:2d:b4:c9:2c:c7:1c:81:7d:3d:77:4a:d0:
97:0a:c4:05:71:e3:9e:d6:df:0f:6b:bf:c0:63:7a:
80:d4:ea:71:36:66:f5:bc:4e:1e:41:9a:0b:0a:11:
eb:88:cb:c9:d0:a5:6d:71:ea:70:58:e4:db:76:db:
e3:4a:70:c7:2c:f4:ef:eb:94:16:d3:0d:42:b7:ac:
2e:37:2d:52:67:cb:d1:d8:51:9d:35:fc:99:49:1c:
a4:b5:e3:1d:09:e6:36:cb:ee:ab:18:52:ac:4f:b7:
8c:62:ad:03:a7:f0:e5:3f:f2:39:82:62:1b:02:c4:
70:90:20:2e:39:16:5b:52:5c:2a:7c:1f:81:59:23:
60:6e:19:cf:6f:73:47:71:35:26:47:6c:22:ba:ce:
09:4e:45:20:fb:1a:e9:f7:3f:4d:ab:a0:8d:e8:2c:
c3:e1:dc:6f:92:99:2b:f9:53:6a:86:c0:2a:9b:7e:
87:d3:20:b0:9f:9f:43:d4:0b:53:b1:ab:3c:b0:0e:
3d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:4B:C8:0C:BA:5E:E6:4D:1D:05:68:EE:F4:35:96:65:A5:A1:09:82
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/AkvIDLpe5k0dBWju9DWWZaWhCYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.91.192.0/20
95.170.192.0/19
109.127.64.0/18
130.193.128.0/17
IPv6:
2a04:a040::/29
Signature Algorithm: sha256WithRSAEncryption
2f:14:a8:9a:4d:32:d6:e7:16:7b:22:c1:57:4d:b4:f9:6d:d8:
b3:4d:69:87:04:3e:62:76:e8:bb:23:4f:fa:a3:d5:72:89:3d:
f3:4a:0e:42:68:28:53:19:c3:d2:de:e3:00:ef:c5:ec:b9:a8:
f3:59:fe:fa:fc:40:6b:e1:a4:4d:08:db:56:4c:78:1e:2c:5e:
cb:42:07:b3:41:8c:04:76:f5:1e:a3:05:b4:d4:7f:d1:66:4a:
8a:09:2c:7f:95:37:e1:e6:00:49:55:f8:8d:c1:0f:6c:2c:e0:
76:06:3e:3b:d8:c0:9d:86:b6:94:22:b6:eb:50:da:e3:cb:7d:
df:f5:53:d5:91:be:2a:01:9a:a9:ce:ea:22:36:9b:20:19:15:
e2:79:90:77:eb:c4:a5:67:91:93:f2:49:be:f8:77:b6:f3:d3:
b1:bc:a2:ed:e8:d4:89:e3:27:68:13:29:ba:0f:d7:e8:38:88:
ce:4c:56:29:60:b4:48:c5:2b:1c:9b:d8:86:a3:69:41:aa:35:
e1:71:4b:71:cc:e6:61:99:62:ce:0b:fe:3a:1b:89:86:c8:07:
33:f7:10:26:e9:5d:e1:d3:60:a6:33:f9:b7:3d:fc:06:4b:85:
6c:8e:dd:67:b4:93:84:66:71:9f:cd:75:1d:36:18:83:ba:79:
24:8d:01:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:26 2024 by rpki-client on console.sobornost.net