Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/aECJ8pEGrde2dayDMyPSnPPLFe8.roa
File: aECJ8pEGrde2dayDMyPSnPPLFe8.roa (raw, json)
Hash identifier: C8kug8az9O51O1MMv0ByRkr433IruRJRZG1bnKnbTPc=
Subject key identifier: 68:40:89:F2:91:06:AD:D7:B6:75:AC:83:33:23:D2:9C:F3:CB:15:EF
Certificate issuer: /CN=92319bcd9b09a984b070e2ef588ffcfa8b73c8a2
Certificate serial: 019428255D0932EA060CF6E0453394F3CB39
Authority key identifier: 92:31:9B:CD:9B:09:A9:84:B0:70:E2:EF:58:8F:FC:FA:8B:73:C8:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/aECJ8pEGrde2dayDMyPSnPPLFe8.roa
Signing time: Thu 02 Jan 2025 17:52:04 +0000
ROA not before: Thu 02 Jan 2025 17:52:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62597
IP address blocks: 185.103.32.0/22 maxlen: 24
185.103.32.0/24 maxlen: 24
185.103.33.0/24 maxlen: 24
185.103.34.0/24 maxlen: 24
2a00:edc0::/32 maxlen: 32
2a00:edc0:100::/44 maxlen: 48
2a00:edc0:10f::/48 maxlen: 48
2a00:edc0:1f0::/44 maxlen: 44
2a00:edc0:1000::/48 maxlen: 48
2a00:edc0:1001::/48 maxlen: 48
2a00:edc0:1002::/48 maxlen: 48
2a00:edc0:1003::/48 maxlen: 48
2a00:edc0:1004::/48 maxlen: 48
2a00:edc0:1005::/48 maxlen: 48
2a00:edc0:1010::/48 maxlen: 48
2a00:edc0:6000::/48 maxlen: 48
2a00:edc0:6259::/48 maxlen: 48
2a00:edc0:7ffe::/48 maxlen: 48
2a00:edc0:7fff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:5d:09:32:ea:06:0c:f6:e0:45:33:94:f3:cb:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92319bcd9b09a984b070e2ef588ffcfa8b73c8a2
Validity
Not Before: Jan 2 17:52:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=684089f29106add7b675ac833323d29cf3cb15ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e1:2f:b4:69:2f:9d:5e:4e:34:6e:21:4c:57:
22:e2:6c:80:25:bd:ab:39:bc:11:75:f2:a6:16:5d:
26:72:3c:61:90:85:77:0f:69:fd:ec:c4:09:48:a1:
6a:cb:79:d9:82:13:10:ad:f2:12:67:3a:5a:32:c6:
37:16:5c:81:24:31:6e:b3:21:ab:3e:53:e3:cf:2f:
48:bf:59:98:0c:d1:cc:76:5c:bb:59:1a:3b:97:32:
57:76:f8:f5:1c:b4:a8:72:04:80:1c:83:b5:73:a0:
80:ba:c6:f8:b5:3e:f3:02:66:fe:6b:30:fa:01:8d:
13:c0:7b:ed:4f:34:9a:11:37:f2:e0:e6:05:fd:e8:
a2:ff:9f:0e:16:3b:b7:90:76:e1:7a:3a:0c:cc:ff:
e1:ff:22:c9:a8:73:2a:3e:19:27:24:7a:d7:54:5c:
56:07:a3:9b:e7:58:c2:93:38:07:2c:17:0c:78:c2:
d7:00:5b:1e:70:3d:54:9c:0b:eb:2b:cb:0a:ce:0f:
d8:8c:f8:a5:5b:af:1c:76:e4:49:94:00:93:e7:6d:
4f:a9:d6:d6:9b:ce:7b:94:62:1a:76:16:c1:68:35:
88:5c:10:87:44:a1:8a:3d:e4:e1:27:ac:19:ea:67:
94:40:a3:42:1d:50:df:a2:11:e2:e3:61:d8:ea:e3:
37:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:40:89:F2:91:06:AD:D7:B6:75:AC:83:33:23:D2:9C:F3:CB:15:EF
X509v3 Authority Key Identifier:
keyid:92:31:9B:CD:9B:09:A9:84:B0:70:E2:EF:58:8F:FC:FA:8B:73:C8:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/aECJ8pEGrde2dayDMyPSnPPLFe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/kjGbzZsJqYSwcOLvWI_8-otzyKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.32.0/22
IPv6:
2a00:edc0::/32
Signature Algorithm: sha256WithRSAEncryption
06:72:fe:f1:4b:6f:c6:f7:a4:d1:97:ef:8d:4f:0b:3d:47:cd:
c3:90:b3:52:bf:b1:73:23:9c:c7:2f:f6:b3:52:4b:e3:72:97:
74:fe:db:b0:bf:5b:eb:28:98:89:02:c4:88:2a:ed:2e:d6:16:
63:d7:e6:28:f8:ab:17:b7:db:8f:1a:4d:ad:36:65:b6:d5:c8:
7c:e0:00:70:83:23:23:75:e7:74:61:d8:4c:61:d1:ac:0c:df:
20:54:a5:27:18:b2:11:3b:8e:67:9f:5e:2d:61:40:0d:7e:a6:
17:70:ef:f3:52:57:58:eb:1e:d6:4f:ab:4e:c9:e8:2a:e0:d8:
c2:c0:b4:a5:28:08:f1:16:e9:64:46:5c:b8:d3:32:bf:78:88:
8e:c7:b0:ce:8e:46:58:0b:38:ae:9a:10:89:b0:81:d9:e8:85:
1f:9e:e0:63:62:80:f9:5a:41:e4:5f:c7:b3:7f:3e:00:85:5c:
21:ff:d9:5d:f7:07:79:c0:a1:66:11:d0:95:f0:b2:e7:7f:4c:
17:df:38:ea:92:c7:d5:36:7c:33:ae:ef:df:e1:6c:3b:ac:63:
07:5c:32:f9:0f:18:c6:73:1c:22:b3:56:ab:26:8f:f3:db:a0:
6c:9e:ff:6c:34:1c:61:93:69:28:e5:32:59:49:aa:b4:11:c8:
bd:87:73:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 22 17:25:47 2025 by rpki-client on console.sobornost.net