Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/cFbbtSIZo0UQA7yLJLi3i9MdNW4.roa
File: cFbbtSIZo0UQA7yLJLi3i9MdNW4.roa (raw, json)
Hash identifier: 9So1w26OSwVvtcYG1taYGBpCpB6Oq2Fc2yYJ+GDdbZ0=
Subject key identifier: 70:56:DB:B5:22:19:A3:45:10:03:BC:8B:24:B8:B7:8B:D3:1D:35:6E
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 01951C9CF37BF755227CA141954F91A6AA20
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/cFbbtSIZo0UQA7yLJLi3i9MdNW4.roa
Signing time: Wed 19 Feb 2025 05:10:02 +0000
ROA not before: Wed 19 Feb 2025 05:10:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 14.102.226.0/23 maxlen: 24
14.102.231.0/24 maxlen: 24
45.151.140.0/24 maxlen: 24
77.111.96.0/22 maxlen: 22
77.111.97.0/24 maxlen: 24
85.208.10.0/24 maxlen: 24
94.229.212.0/24 maxlen: 24
194.36.32.0/24 maxlen: 24
194.36.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1c:9c:f3:7b:f7:55:22:7c:a1:41:95:4f:91:a6:aa:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Feb 19 05:10:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7056dbb52219a3451003bc8b24b8b78bd31d356e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:03:43:02:43:87:fe:f5:fd:c1:5b:d7:b4:33:
01:4f:31:55:de:fe:19:fb:9f:94:97:3b:a0:51:82:
2f:b4:bf:4e:1a:90:67:08:87:e7:45:42:92:55:c2:
7d:c2:9c:93:1f:f1:76:32:d5:ad:8d:59:fa:28:02:
8d:49:7e:8f:12:2b:1f:ca:7f:bf:09:4a:93:56:b5:
be:ea:96:df:00:77:f5:46:8c:9e:99:b9:2f:16:3a:
8e:59:24:fb:c9:83:08:bb:2b:22:2c:d6:fa:c3:65:
ff:50:6e:c9:84:a7:2e:87:bb:4b:21:f7:6c:ec:83:
9b:aa:f0:96:86:c6:97:7c:39:80:b5:5b:0c:f9:ab:
59:4f:61:53:0f:9a:3f:17:56:87:9d:08:25:1c:bc:
42:07:0b:e6:54:3e:5f:29:5f:2e:af:52:83:ab:cb:
6a:29:67:f1:b7:6c:35:1c:91:ef:56:d0:e2:3b:e6:
3b:85:b6:8a:eb:21:b6:8a:fb:4c:d2:a6:34:6b:6e:
97:92:e4:c7:ff:a0:d2:b7:e1:ff:55:28:3e:a5:f1:
48:98:23:aa:f3:5e:c9:33:2e:3f:ef:d6:c7:24:17:
94:50:00:35:ee:58:69:85:d5:65:7b:54:f2:af:75:
7f:7a:bd:e5:69:bf:b1:18:75:fe:ad:8c:be:1a:37:
37:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:56:DB:B5:22:19:A3:45:10:03:BC:8B:24:B8:B7:8B:D3:1D:35:6E
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/cFbbtSIZo0UQA7yLJLi3i9MdNW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.226.0/23
14.102.231.0/24
45.151.140.0/24
77.111.96.0/22
85.208.10.0/24
94.229.212.0/24
194.36.32.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:d5:56:2a:d8:db:73:89:fc:79:68:5b:f2:12:0e:28:99:8c:
ae:4f:63:c7:ed:7d:a0:7d:6a:fa:f8:43:34:a8:b7:93:44:e8:
2c:99:2b:a6:16:4f:27:97:ff:47:67:71:d7:12:ec:b7:1b:e5:
89:d1:3b:8d:c7:c0:bc:54:44:0c:55:53:2d:d5:43:54:18:a7:
6a:dc:ab:5c:69:ee:03:ec:2a:e4:94:7c:1b:10:10:90:46:70:
c2:80:e8:9e:fe:b1:4f:71:4d:a5:4a:a4:39:fc:d3:a1:03:c8:
25:0f:7f:45:e0:07:16:e9:f8:83:ad:01:ff:c4:9a:18:7f:69:
f1:a1:d3:86:aa:f9:1a:0f:e3:65:ad:b1:27:21:ad:80:7c:16:
12:94:df:33:ee:d3:77:83:69:6b:55:e5:bb:1a:01:d5:8f:bf:
a9:e7:5a:6e:37:46:f3:01:ea:7a:7e:83:3f:ba:fc:88:63:3a:
2e:b9:78:53:6b:e6:d1:e9:7e:66:73:08:6d:c3:41:e9:03:cf:
b5:5d:7d:5d:05:6a:44:16:76:28:75:29:cb:69:45:e5:f8:ad:
41:74:28:2f:be:fb:db:db:7d:52:b1:ae:a5:5e:d0:5a:3a:1b:
09:24:e4:19:50:d7:1f:35:85:55:5b:bd:4d:76:77:91:67:c0:
b8:01:3f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:56:07 2025 by rpki-client on console.sobornost.net