Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/detAd7FlOFGjTsX2k3rOLy2UQCs.roa
File: detAd7FlOFGjTsX2k3rOLy2UQCs.roa (raw, json)
Hash identifier: cqEU+ACySIshfpJTQIUM63m1I8ih1IEP8SdQskz8PQk=
Subject key identifier: 75:EB:40:77:B1:65:38:51:A3:4E:C5:F6:93:7A:CE:2F:2D:94:40:2B
Certificate issuer: /CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Certificate serial: 0194258FB5A018154FD39AA08C16747D5BAA
Authority key identifier: 88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/detAd7FlOFGjTsX2k3rOLy2UQCs.roa
Signing time: Thu 02 Jan 2025 05:49:22 +0000
ROA not before: Thu 02 Jan 2025 05:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202486
IP address blocks: 5.183.180.0/24 maxlen: 24
5.183.181.0/24 maxlen: 24
5.183.182.0/24 maxlen: 24
5.183.183.0/24 maxlen: 24
92.118.92.0/24 maxlen: 24
92.118.93.0/24 maxlen: 24
92.118.94.0/24 maxlen: 24
92.118.95.0/24 maxlen: 24
193.25.188.0/24 maxlen: 24
193.25.189.0/24 maxlen: 24
193.25.210.0/24 maxlen: 24
193.25.211.0/24 maxlen: 24
193.161.212.0/24 maxlen: 24
193.161.213.0/24 maxlen: 24
193.161.214.0/24 maxlen: 24
193.161.215.0/24 maxlen: 24
194.76.220.0/23 maxlen: 24
194.76.220.0/24 maxlen: 24
194.76.221.0/24 maxlen: 24
194.76.236.0/23 maxlen: 24
194.76.236.0/24 maxlen: 24
194.76.237.0/24 maxlen: 24
2a0c:a0c0::/32 maxlen: 32
2a0c:a0c1::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:b5:a0:18:15:4f:d3:9a:a0:8c:16:74:7d:5b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Validity
Not Before: Jan 2 05:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=75eb4077b1653851a34ec5f6937ace2f2d94402b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c2:2a:3b:ee:94:43:fa:c6:03:63:4e:c7:2d:
c7:d6:cf:70:3a:60:81:78:82:76:8d:30:3c:e5:f9:
fa:8a:36:40:a0:f7:6d:53:a4:ac:55:c4:54:68:81:
28:6e:ba:1c:e1:9f:f2:bf:d4:4e:6a:93:e2:89:e5:
6c:5e:46:f5:c2:88:a2:8d:dd:b8:d3:9e:2f:09:92:
24:a1:ef:d1:7a:6e:3f:93:19:77:93:69:41:56:f1:
c4:3e:83:fd:93:bf:be:56:b0:86:69:28:83:fe:f0:
db:f8:88:52:dd:39:9f:24:68:80:dd:9b:39:d4:1c:
42:f0:36:7a:9d:a8:ff:20:f2:43:41:70:8b:93:aa:
bd:7f:3d:84:1b:72:11:09:9c:e2:09:32:bb:38:ce:
24:70:48:80:d9:00:af:6e:40:0f:2f:63:68:8f:de:
89:c0:a2:7c:9d:59:15:c8:07:99:cc:f5:9a:77:d8:
43:45:c9:76:58:12:9c:c9:76:40:aa:b2:bb:2f:c6:
7d:c3:02:ed:aa:bb:06:b7:15:32:b9:61:8e:74:c4:
f3:34:e8:fb:11:f0:3b:c8:8c:c0:aa:61:17:e1:7f:
75:d8:45:a4:f6:db:0c:21:96:18:a0:53:dd:1e:26:
7f:38:e9:be:9e:5d:f0:c5:50:8d:d7:a7:8b:e4:84:
ce:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:EB:40:77:B1:65:38:51:A3:4E:C5:F6:93:7A:CE:2F:2D:94:40:2B
X509v3 Authority Key Identifier:
keyid:88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/detAd7FlOFGjTsX2k3rOLy2UQCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.180.0/22
92.118.92.0/22
193.25.188.0/23
193.25.210.0/23
193.161.212.0/22
194.76.220.0/23
194.76.236.0/23
IPv6:
2a0c:a0c0::/31
Signature Algorithm: sha256WithRSAEncryption
6f:3b:d9:40:56:4a:05:45:7f:0b:c9:0d:6d:48:d4:38:6b:4e:
e4:d5:80:17:bb:0e:b2:12:b7:ad:9b:19:61:24:7d:23:ec:90:
4a:f6:21:40:0d:87:48:b3:1e:6e:51:79:24:e2:dc:a7:7b:f3:
93:51:91:54:fc:68:f9:97:ea:6c:e2:ea:43:04:c9:8b:13:56:
1c:05:11:f9:b0:f3:b2:2c:c6:e9:8e:d5:7d:fd:29:52:26:60:
ca:af:ea:9f:b2:dc:bd:24:c3:a5:96:e3:f2:10:f6:06:70:35:
42:0f:8a:bf:b1:4d:b9:3d:25:75:01:5b:db:bb:6c:4c:8f:9c:
a0:32:a5:82:c7:81:bf:06:f9:8b:8a:ab:a9:9a:91:cd:b8:e0:
6a:a0:03:01:f2:16:0f:50:b2:34:27:4d:e3:43:ec:bb:68:03:
98:3f:32:9b:28:a5:75:ff:02:4c:54:dd:6e:57:a9:47:dc:12:
f9:fc:57:cd:ab:3d:0f:24:36:df:02:dd:a7:7e:8d:b9:f5:09:
8d:39:80:d9:3e:4b:8c:b7:fb:8e:30:8d:53:e1:d0:e5:a2:28:
2a:98:34:4d:58:01:e9:8f:40:07:1a:b3:ca:f6:fe:d5:da:04:
c4:6a:ba:50:4f:de:2a:f8:fa:c4:ba:b5:8e:6d:ef:74:62:c9:
90:ff:0d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:55 2025 by rpki-client on console.sobornost.net