Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/E3bQ6ru2srLpfBA9tctp4qRwszo.roa
File: E3bQ6ru2srLpfBA9tctp4qRwszo.roa (raw, json)
Hash identifier: OUoAeIzeipfv+Jejqj/6CU/ipS29kQNEpNc9eZGn/FY=
Subject key identifier: 13:76:D0:EA:BB:B6:B2:B2:E9:7C:10:3D:B5:CB:69:E2:A4:70:B3:3A
Certificate issuer: /CN=0526b03c717184c3680817e55e2455f85d73a413
Certificate serial: 01939399305B973BEC9B21EC039F8D6F4989
Authority key identifier: 05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/E3bQ6ru2srLpfBA9tctp4qRwszo.roa
Signing time: Wed 04 Dec 2024 21:35:10 +0000
ROA not before: Wed 04 Dec 2024 21:35:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49453
IP address blocks: 37.123.208.0/24 maxlen: 24
37.123.210.0/24 maxlen: 24
45.133.250.0/24 maxlen: 24
109.202.97.0/24 maxlen: 24
109.202.98.0/24 maxlen: 24
109.202.99.0/24 maxlen: 24
109.202.100.0/24 maxlen: 24
109.202.101.0/24 maxlen: 24
109.202.102.0/24 maxlen: 24
109.202.103.0/24 maxlen: 24
109.202.104.0/24 maxlen: 24
109.202.106.0/24 maxlen: 24
109.202.107.0/24 maxlen: 24
109.202.108.0/24 maxlen: 24
109.202.109.0/24 maxlen: 24
109.202.110.0/24 maxlen: 24
109.202.111.0/24 maxlen: 24
109.232.224.0/24 maxlen: 24
109.232.225.0/24 maxlen: 24
109.232.226.0/24 maxlen: 24
109.232.227.0/24 maxlen: 24
109.232.228.0/24 maxlen: 24
109.232.229.0/24 maxlen: 24
109.232.230.0/24 maxlen: 24
109.232.231.0/24 maxlen: 24
134.19.176.0/24 maxlen: 24
134.19.177.0/24 maxlen: 24
134.19.178.0/24 maxlen: 24
134.19.179.0/24 maxlen: 24
134.19.180.0/24 maxlen: 24
134.19.181.0/24 maxlen: 24
134.19.182.0/24 maxlen: 24
134.19.183.0/24 maxlen: 24
134.19.184.0/24 maxlen: 24
134.19.185.0/24 maxlen: 24
134.19.186.0/24 maxlen: 24
134.19.187.0/24 maxlen: 24
134.19.188.0/24 maxlen: 24
134.19.189.0/24 maxlen: 24
134.19.190.0/23 maxlen: 23
185.23.213.0/24 maxlen: 24
185.23.214.0/24 maxlen: 24
185.23.215.0/24 maxlen: 24
188.95.49.0/24 maxlen: 24
188.95.50.0/24 maxlen: 24
188.95.51.0/24 maxlen: 24
188.95.52.0/24 maxlen: 24
188.95.53.0/24 maxlen: 24
213.152.160.0/24 maxlen: 24
213.152.161.0/24 maxlen: 24
213.152.162.0/24 maxlen: 24
213.152.163.0/24 maxlen: 24
213.152.164.0/24 maxlen: 24
213.152.165.0/24 maxlen: 24
213.152.166.0/24 maxlen: 24
213.152.167.0/24 maxlen: 24
213.152.168.0/24 maxlen: 24
213.152.169.0/24 maxlen: 24
213.152.170.0/24 maxlen: 24
213.152.171.0/24 maxlen: 24
213.152.172.0/24 maxlen: 24
213.152.173.0/24 maxlen: 24
213.152.174.0/24 maxlen: 24
213.152.176.0/24 maxlen: 24
213.152.177.0/24 maxlen: 24
213.152.180.0/24 maxlen: 24
213.152.181.0/24 maxlen: 24
213.152.182.0/24 maxlen: 24
213.152.183.0/24 maxlen: 24
213.152.184.0/24 maxlen: 24
213.152.185.0/24 maxlen: 24
213.152.186.0/24 maxlen: 24
213.152.187.0/24 maxlen: 24
213.152.188.0/22 maxlen: 22
213.152.188.0/24 maxlen: 24
213.152.189.0/24 maxlen: 24
2a00:1678:127::/48 maxlen: 48
2a00:1678:a2b::/48 maxlen: 48
2a00:1678:1337::/48 maxlen: 48
2a00:1678:2470::/48 maxlen: 48
2a00:1678:3cc0::/48 maxlen: 48
2a00:1678:5524::/48 maxlen: 48
2a00:1678:5afe::/48 maxlen: 48
2a00:1678:b00b::/48 maxlen: 48
2a00:1678:baba::/48 maxlen: 48
2a00:1678:da7a::/48 maxlen: 48
2a00:1678:dea1::/48 maxlen: 48
2a00:1678:efa5::/48 maxlen: 48
2a00:1678:f113::/48 maxlen: 48
2a00:1678:fa11::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:93:99:30:5b:97:3b:ec:9b:21:ec:03:9f:8d:6f:49:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0526b03c717184c3680817e55e2455f85d73a413
Validity
Not Before: Dec 4 21:35:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1376d0eabbb6b2b2e97c103db5cb69e2a470b33a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3d:b8:4e:c4:5b:f7:da:90:91:eb:26:8e:48:
ba:95:06:8b:6c:cc:cb:23:ec:9d:19:33:c1:d1:f1:
51:e7:8d:14:61:e2:b8:8a:de:39:92:6b:ea:51:b4:
a6:c4:98:ae:73:1a:21:4d:a5:75:48:3a:ca:ca:d4:
c3:b9:90:dd:11:ae:9f:cc:0d:bd:54:27:ed:91:9d:
3c:49:40:69:45:e2:35:07:ca:39:c0:a7:14:e5:81:
2b:f7:48:98:88:61:6c:fc:6e:b0:f7:13:51:6f:97:
96:f3:41:91:5c:59:f8:17:2e:5e:14:0f:b5:84:fe:
85:a3:f6:74:1f:b9:8b:d6:f3:94:eb:b4:27:24:ff:
c6:1d:5d:7d:c3:f4:f7:d4:27:c3:2a:e7:36:f6:bc:
e8:6d:86:21:e3:c9:9e:12:64:8b:44:9e:20:22:f2:
9a:a9:0c:0b:f1:88:55:2e:cf:d4:ad:e3:b8:c8:89:
82:63:4f:51:12:da:1d:f2:c9:77:fe:8e:d6:45:03:
54:47:0a:50:67:fd:c4:ed:c6:21:e4:f9:ea:5a:0c:
f2:eb:ac:11:78:68:78:2a:f1:09:ee:1f:3e:fc:87:
e9:04:2a:be:3d:c9:68:58:2e:b1:43:22:1f:d8:24:
df:97:ec:5d:cb:f1:1e:bc:8e:26:d1:d6:77:e8:be:
82:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:76:D0:EA:BB:B6:B2:B2:E9:7C:10:3D:B5:CB:69:E2:A4:70:B3:3A
X509v3 Authority Key Identifier:
keyid:05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/E3bQ6ru2srLpfBA9tctp4qRwszo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/BSawPHFxhMNoCBflXiRV-F1zpBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.208.0/24
37.123.210.0/24
45.133.250.0/24
109.202.97.0-109.202.104.255
109.202.106.0-109.202.111.255
109.232.224.0/21
134.19.176.0/20
185.23.213.0-185.23.215.255
188.95.49.0-188.95.53.255
213.152.160.0-213.152.174.255
213.152.176.0/23
213.152.180.0-213.152.191.255
IPv6:
2a00:1678:127::/48
2a00:1678:a2b::/48
2a00:1678:1337::/48
2a00:1678:2470::/48
2a00:1678:3cc0::/48
2a00:1678:5524::/48
2a00:1678:5afe::/48
2a00:1678:b00b::/48
2a00:1678:baba::/48
2a00:1678:da7a::/48
2a00:1678:dea1::/48
2a00:1678:efa5::/48
2a00:1678:f113::/48
2a00:1678:fa11::/48
Signature Algorithm: sha256WithRSAEncryption
73:0a:a7:b4:10:63:4b:ef:e3:e1:11:af:7d:33:94:a7:46:f4:
98:8e:8d:bd:00:b2:e6:93:81:0a:41:dc:e3:42:d6:13:e8:0f:
80:d1:02:1d:85:1a:38:4f:9a:b3:ff:60:bc:0b:fb:59:9b:a8:
d5:41:aa:c8:ab:31:49:a3:5d:d8:26:e6:f2:f9:d5:40:c5:83:
78:8b:ce:da:55:2a:a7:6e:06:dd:fe:f3:cb:55:cb:6b:00:aa:
5c:11:00:56:52:89:0d:cd:4a:fb:c5:b3:5b:99:fe:96:da:f2:
27:bf:42:63:7a:4a:f2:79:e5:20:7c:0b:b5:97:ac:e4:38:96:
2e:f3:5e:94:74:a9:3c:3a:f3:4c:59:8c:35:1c:27:13:48:57:
28:a8:7c:2e:98:7d:be:a9:56:4d:e3:ec:aa:7f:63:ed:d8:fe:
68:fa:46:50:20:7b:a1:c7:50:00:c0:7a:4a:c8:9b:ed:3c:a2:
6b:fe:f9:30:49:38:96:cc:56:3c:88:3e:16:37:1b:cd:e3:b5:
1f:a4:fe:38:8f:cf:9e:85:8b:d4:31:13:c8:54:ca:78:e0:84:
3f:c6:73:d7:e5:21:69:5d:aa:90:0e:f1:ec:78:7a:6b:b5:4d:
c8:03:fb:1d:51:d6:37:5b:10:c0:8b:3e:fb:67:39:ab:18:b2:
ff:42:8b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:56 2024 by rpki-client on console.sobornost.net