Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5_lE6wCFb32hmc5406zBLpqpM9o.roa
File: 5_lE6wCFb32hmc5406zBLpqpM9o.roa (raw, json)
Hash identifier: Y88yD1IQwK60VrUyK4Tp7mamRuXVHqSgElMsmyplpPY=
Subject key identifier: E7:F9:44:EB:00:85:6F:7D:A1:99:CE:78:D3:AC:C1:2E:9A:A9:33:DA
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 01931B09D708840509A9D8AC842F2C211463
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5_lE6wCFb32hmc5406zBLpqpM9o.roa
Signing time: Mon 11 Nov 2024 11:44:09 +0000
ROA not before: Mon 11 Nov 2024 11:44:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211559
IP address blocks: 31.11.48.0/21 maxlen: 21
31.11.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.60.0/22 maxlen: 22
37.186.60.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.166.0/23 maxlen: 23
80.76.166.0/24 maxlen: 24
80.76.167.0/24 maxlen: 24
80.76.168.0/23 maxlen: 23
80.76.168.0/24 maxlen: 24
80.76.169.0/24 maxlen: 24
103.14.208.0/22 maxlen: 22
103.14.208.0/24 maxlen: 24
103.14.211.0/24 maxlen: 24
103.23.126.0/24 maxlen: 24
103.23.127.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
185.247.89.0/24 maxlen: 24
212.70.100.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.105.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.123.0/24 maxlen: 24
212.70.124.0/24 maxlen: 24
2a04:7f80:84::/48 maxlen: 48
2a04:7f80:85::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1b:09:d7:08:84:05:09:a9:d8:ac:84:2f:2c:21:14:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Nov 11 11:44:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7f944eb00856f7da199ce78d3acc12e9aa933da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f6:db:86:e7:17:38:8b:63:ec:5f:c2:98:bf:
f3:47:ca:3b:44:01:b6:27:d8:a5:54:db:41:e1:b1:
b1:f3:5d:69:fe:cf:95:9d:15:a6:69:51:c3:ea:47:
d0:1f:84:44:1d:99:d8:05:df:44:60:ce:d8:4e:cc:
ea:5b:3f:91:bb:46:21:9f:32:01:0d:46:06:2d:39:
00:a3:a8:f3:eb:3a:86:6b:1e:9f:71:36:6d:89:07:
00:5c:ff:c7:5e:69:2e:50:de:98:7a:bf:82:8c:6f:
f7:bc:77:a5:07:33:0a:78:2f:d6:24:5c:96:ae:b0:
eb:18:14:44:01:f0:57:48:6f:df:de:21:9c:3c:ab:
06:f2:aa:c4:8e:81:b8:98:62:a0:27:bc:f9:59:ec:
1f:6d:36:d2:13:08:7b:1b:4a:b3:89:bd:17:03:b4:
e8:1d:d7:77:f8:2f:a9:d7:41:e0:a2:96:82:94:f1:
8e:ff:30:d4:f2:a1:3d:03:79:63:0d:ab:02:ff:2f:
0b:ec:57:62:62:47:68:38:a1:9f:a8:ee:8d:c6:0c:
75:34:a0:27:07:85:3d:ed:a8:6c:7a:31:fb:48:7a:
1b:13:32:01:30:86:81:c7:2b:e7:25:63:3a:32:16:
2b:f6:7b:f3:d8:50:19:ed:94:98:65:8b:fe:2c:f9:
3c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F9:44:EB:00:85:6F:7D:A1:99:CE:78:D3:AC:C1:2E:9A:A9:33:DA
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5_lE6wCFb32hmc5406zBLpqpM9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.56.0/23
37.186.60.0/22
80.76.165.0-80.76.169.255
103.14.208.0/22
103.23.126.0/23
103.225.72.0-103.225.74.255
185.247.88.0/22
212.70.100.0-212.70.105.255
212.70.109.0/24
212.70.120.0-212.70.124.255
IPv6:
2a04:7f80:84::/47
Signature Algorithm: sha256WithRSAEncryption
5a:4c:80:ec:3d:8c:7c:74:fd:11:36:a2:8c:88:20:ff:99:b7:
ba:c9:bb:0b:94:06:ef:bb:00:dd:32:6f:77:91:fc:74:ea:aa:
6f:d5:c4:c4:35:c8:b5:20:4a:35:4e:81:77:1e:ad:2e:19:65:
77:04:9c:0a:c4:d3:53:f6:31:20:b1:d9:ad:c0:87:63:b4:e5:
c3:ff:11:ad:53:dc:49:ad:6b:2b:da:bd:d2:a2:8f:0f:49:83:
95:1d:fa:5f:3a:61:67:67:23:6a:e5:26:e0:34:52:e8:42:fc:
e4:98:99:95:e0:6b:00:16:86:f4:bd:3e:38:b1:c4:5a:80:8d:
44:45:a5:9c:e0:87:67:4b:a6:a5:5e:39:7c:34:6d:9e:7c:07:
46:28:4a:c5:fe:91:c6:a9:36:b7:98:4d:5a:3a:74:87:86:db:
72:4c:73:ab:44:f5:ec:7c:19:68:92:4a:0f:66:1c:b7:2a:12:
c7:d6:45:ea:25:0c:90:e0:6b:bd:5b:dd:48:91:ef:68:f7:f8:
b5:8e:2b:98:0d:53:65:d0:56:b3:68:6e:ef:9b:f3:22:5a:5c:
fc:27:12:47:15:57:18:dc:82:fb:e6:2a:13:b7:51:89:c0:24:
33:b3:20:76:ae:f2:43:5b:cb:4f:26:83:d6:f5:5e:70:4b:5e:
b5:71:c9:c2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Nov 14 17:42:57 2024 by rpki-client on console.sobornost.net