Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/d479cc-a712-4bc3-832d-2727247af210/1/75aNGaottzNE6PvLNaoeij479hc.roa
File: 75aNGaottzNE6PvLNaoeij479hc.roa (raw, json)
Hash identifier: SeDcjrmYV/Lc4Bl59xXN4zSmG6/KJnvMeUfIx5ALcF0=
Subject key identifier: EF:96:8D:19:AA:2D:B7:33:44:E8:FB:CB:35:AA:1E:8A:3E:3B:F6:17
Certificate issuer: /CN=e07e008d6ed2388ad31b7422423152a92a54de71
Certificate serial: 0193D95C485E48797E8FD84D1DC39EA58A7F
Authority key identifier: E0:7E:00:8D:6E:D2:38:8A:D3:1B:74:22:42:31:52:A9:2A:54:DE:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4H4AjW7SOIrTG3QiQjFSqSpU3nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/d479cc-a712-4bc3-832d-2727247af210/1/75aNGaottzNE6PvLNaoeij479hc.roa
Signing time: Wed 18 Dec 2024 10:42:03 +0000
ROA not before: Wed 18 Dec 2024 10:42:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197227
IP address blocks: 5.133.248.0/21 maxlen: 24
37.247.56.0/21 maxlen: 24
46.175.40.0/21 maxlen: 24
46.243.156.0/22 maxlen: 24
85.234.248.0/21 maxlen: 24
145.14.240.0/21 maxlen: 24
185.81.56.0/22 maxlen: 24
185.131.160.0/22 maxlen: 24
188.211.16.0/21 maxlen: 24
195.80.128.0/21 maxlen: 24
213.5.208.0/21 maxlen: 24
2a03:1280::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d9:5c:48:5e:48:79:7e:8f:d8:4d:1d:c3:9e:a5:8a:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e07e008d6ed2388ad31b7422423152a92a54de71
Validity
Not Before: Dec 18 10:42:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef968d19aa2db73344e8fbcb35aa1e8a3e3bf617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:66:bf:ee:f6:47:07:bd:03:50:7b:f3:a4:ac:
0c:b8:f3:76:a5:d8:32:8f:d5:86:18:c6:aa:1f:48:
82:3d:26:03:1c:0c:f2:97:88:60:31:7f:d6:cd:7e:
4f:4e:83:7a:40:72:04:68:da:81:9d:74:9d:c1:c4:
fe:f8:6d:58:ff:16:01:97:6f:62:42:d9:ac:7c:2f:
ab:98:60:f2:59:09:73:fe:83:ae:7f:9c:c5:2b:80:
88:e0:9d:a1:ad:64:f0:b5:00:b3:7d:fe:db:c2:0e:
3c:a8:a0:85:d0:d1:ed:32:df:ef:91:16:03:1e:c0:
0b:ae:8d:ca:04:a5:b7:9c:29:7c:cd:78:0a:c9:08:
f3:1c:ce:43:58:e9:67:43:1d:fe:18:4d:c1:5a:da:
ce:78:5b:fe:56:58:94:61:c0:a5:83:fa:9a:fc:3f:
f3:8d:6e:5b:8b:ea:eb:5f:55:85:31:c5:7f:2a:8b:
fe:77:e3:9e:6c:84:de:7f:15:ba:34:ee:57:8a:c1:
0b:a4:19:62:b4:6b:2c:a0:54:dd:57:b0:27:36:77:
c5:4c:d3:83:5e:d4:6d:5c:b3:9a:f9:28:c5:eb:da:
1d:44:b2:bb:be:df:39:30:aa:79:a9:6a:1b:e7:54:
7a:a2:bb:da:2b:15:30:d7:75:52:10:a3:00:35:82:
a1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:96:8D:19:AA:2D:B7:33:44:E8:FB:CB:35:AA:1E:8A:3E:3B:F6:17
X509v3 Authority Key Identifier:
keyid:E0:7E:00:8D:6E:D2:38:8A:D3:1B:74:22:42:31:52:A9:2A:54:DE:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4H4AjW7SOIrTG3QiQjFSqSpU3nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/d479cc-a712-4bc3-832d-2727247af210/1/75aNGaottzNE6PvLNaoeij479hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/d479cc-a712-4bc3-832d-2727247af210/1/4H4AjW7SOIrTG3QiQjFSqSpU3nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.248.0/21
37.247.56.0/21
46.175.40.0/21
46.243.156.0/22
85.234.248.0/21
145.14.240.0/21
185.81.56.0/22
185.131.160.0/22
188.211.16.0/21
195.80.128.0/21
213.5.208.0/21
IPv6:
2a03:1280::/32
Signature Algorithm: sha256WithRSAEncryption
08:9a:fe:70:51:d1:d4:a7:35:04:5e:19:08:98:42:cd:b8:ef:
95:ba:f8:17:3c:ea:11:0e:62:c5:f3:4c:e2:f7:92:bd:bb:7a:
ff:b8:6d:41:38:24:62:b9:f8:fe:f7:5a:44:37:93:b3:95:fb:
d3:b7:6a:86:e0:42:00:7b:56:3d:a0:d5:b2:f6:0d:15:79:d3:
22:b9:17:94:e5:8e:ff:f7:b6:49:ae:0d:bf:5c:d7:b6:b4:07:
d8:8f:ec:21:83:d7:e2:5f:cc:2c:9a:c6:54:d5:3d:b8:4f:6c:
f5:0e:d8:51:dd:c5:a3:07:73:97:5f:ec:44:e7:6a:eb:db:10:
3a:d5:cd:a6:30:3c:39:8f:d6:eb:1d:4c:47:93:ab:c3:a5:79:
cf:39:ef:94:9c:f3:81:56:db:49:53:22:76:23:0b:07:70:90:
01:4b:59:54:87:e6:58:dc:44:a3:12:fc:dc:a7:9f:dd:84:5d:
b1:c9:cd:eb:68:09:fc:ad:f0:8b:38:ad:c8:83:bc:a7:9f:c4:
75:8d:1d:de:54:44:64:61:b9:1c:e0:c0:28:5a:df:79:16:57:
3f:ef:07:31:fc:1b:2a:e3:47:4d:81:79:ab:47:7d:a0:82:95:
e0:7b:a1:bc:1b:f9:4c:6c:fd:58:62:70:65:b6:48:d1:16:f6:
6f:1f:5b:ae
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgISAZPZXEheSHl+j9hNHcOepYp/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwN2UwMDhkNmVkMjM4OGFkMzFiNzQyMjQyMzE1MmE5MmE1
NGRlNzEwHhcNMjQxMjE4MTA0MjAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjk2OGQxOWFhMmRiNzMzNDRlOGZiY2IzNWFhMWU4YTNlM2JmNjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ma/7vZHB70DUHvzpKwMuPN2pdgy
j9WGGMaqH0iCPSYDHAzyl4hgMX/WzX5PToN6QHIEaNqBnXSdwcT++G1Y/xYBl29i
QtmsfC+rmGDyWQlz/oOuf5zFK4CI4J2hrWTwtQCzff7bwg48qKCF0NHtMt/vkRYD
HsALro3KBKW3nCl8zXgKyQjzHM5DWOlnQx3+GE3BWtrOeFv+VliUYcClg/qa/D/z
jW5bi+rrX1WFMcV/Kov+d+OebITefxW6NO5XisELpBlitGssoFTdV7AnNnfFTNOD
XtRtXLOa+SjF69odRLK7vt85MKp5qWob51R6orvaKxUw13VSEKMANYKhLwIDAQAB
o4ICVDCCAlAwHQYDVR0OBBYEFO+WjRmqLbczROj7yzWqHoo+O/YXMB8GA1UdIwQY
MBaAFOB+AI1u0jiK0xt0IkIxUqkqVN5xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEg0QWpXN1NPSXJURzNRaVFqRlNxU3BVM25FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9kNDc5Y2MtYTcxMi00YmMzLTgzMmQt
MjcyNzI0N2FmMjEwLzEvNzVhTkdhb3R0ek5FNlB2TE5hb2VpajQ3OWhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS9kNDc5Y2MtYTcxMi00YmMzLTgzMmQtMjcyNzI0N2FmMjEw
LzEvNEg0QWpXN1NPSXJURzNRaVFqRlNxU3BVM25FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTBIBAIAATBCAwQDBYX4AwQD
Jfc4AwQDLq8oAwQCLvOcAwQDVer4AwQDkQ7wAwQCuVE4AwQCuYOgAwQDvNMQAwQD
w1CAAwQD1QXQMA0EAgACMAcDBQAqAxKAMA0GCSqGSIb3DQEBCwUAA4IBAQAImv5w
UdHUpzUEXhkImELNuO+VuvgXPOoRDmLF80zi95K9u3r/uG1BOCRiufj+91pEN5Oz
lfvTt2qG4EIAe1Y9oNWy9g0VedMiuReU5Y7/97ZJrg2/XNe2tAfYj+whg9fiX8ws
msZU1T24T2z1DthR3cWjB3OXX+xE52rr2xA61c2mMDw5j9brHUxHk6vDpXnPOe+U
nPOBVttJUyJ2IwsHcJABS1lUh+ZY3ESjEvzcp5/dhF2xyc3raAn8rfCLOK3Ig7yn
n8R1jR3eVERkYbkc4MAoWt95Flc/7wcx/Bsq40dNgXmrR32ggpXge6G8G/lMbP1Y
YnBltkjRFvZvH1uu
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:40 2024 by rpki-client on console.sobornost.net