Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/037adf-b9c2-4ad1-960a-4d403369d2a2/1/wbTgEv-sqFR9u9r7ZDRXXLL-IqI.roa
File: wbTgEv-sqFR9u9r7ZDRXXLL-IqI.roa (raw, json)
Hash identifier: taRPRQvI9CVnj6I4aQu8cTaoxv9W7+s+q4UGNBYlAx0=
Subject key identifier: C1:B4:E0:12:FF:AC:A8:54:7D:BB:DA:FB:64:34:57:5C:B2:FE:22:A2
Certificate issuer: /CN=125ae2cfd315c131193484665acada7c013163ec
Certificate serial: 019424454692CB2CC80E937E6656608CCD0A
Authority key identifier: 12:5A:E2:CF:D3:15:C1:31:19:34:84:66:5A:CA:DA:7C:01:31:63:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Elriz9MVwTEZNIRmWsrafAExY-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/037adf-b9c2-4ad1-960a-4d403369d2a2/1/wbTgEv-sqFR9u9r7ZDRXXLL-IqI.roa
Signing time: Wed 01 Jan 2025 23:48:27 +0000
ROA not before: Wed 01 Jan 2025 23:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204736
IP address blocks: 185.241.100.0/24 maxlen: 24
185.241.101.0/24 maxlen: 24
185.241.102.0/24 maxlen: 24
185.241.103.0/24 maxlen: 24
2a0d:4580:10::/48 maxlen: 48
2a0d:4580:20::/48 maxlen: 48
2a0d:4580:30::/48 maxlen: 48
2a0d:4580:40::/48 maxlen: 48
2a0d:4580:50::/48 maxlen: 48
2a0d:4580:60::/48 maxlen: 48
2a0d:4580:70::/48 maxlen: 48
2a0d:4580:80::/48 maxlen: 48
2a0d:4580:90::/48 maxlen: 48
2a0d:4580:100::/48 maxlen: 48
2a0d:4580:110::/48 maxlen: 48
2a0d:4580:120::/48 maxlen: 48
2a0d:4580:130::/48 maxlen: 48
2a0d:4580:131::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:46:92:cb:2c:c8:0e:93:7e:66:56:60:8c:cd:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=125ae2cfd315c131193484665acada7c013163ec
Validity
Not Before: Jan 1 23:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c1b4e012ffaca8547dbbdafb6434575cb2fe22a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:20:7b:06:ba:e7:9a:ac:34:2e:29:15:76:8e:
60:25:da:5b:1f:2a:03:2d:9b:ef:90:4e:de:11:26:
5e:e3:85:5e:b5:2c:4f:a2:3a:48:f2:c1:e3:29:c2:
8e:92:96:b6:47:36:da:02:64:83:aa:f4:fe:0f:91:
59:af:3c:50:18:d6:36:83:fc:28:69:36:d1:76:76:
20:da:c7:fe:e2:c9:e3:a9:cb:d3:6e:d3:ce:b3:a5:
07:4f:66:e7:57:cb:3d:18:e3:00:9a:3c:c7:3c:61:
1f:45:37:76:20:d8:8e:11:fa:02:24:fc:f2:8d:bf:
87:d0:5f:2a:bb:c5:f0:8b:db:3a:ae:04:f2:9a:89:
f0:4f:77:ab:67:41:d6:68:61:cf:df:8c:71:2b:8f:
45:60:b3:13:95:3d:c9:93:ec:3e:46:8f:68:13:ca:
54:8f:63:2f:76:30:76:c1:3b:5b:2d:cb:16:f9:06:
12:8e:e1:f3:e6:a5:65:ac:a3:90:b3:6f:49:e0:48:
b7:5b:65:a2:0b:d7:05:0e:38:0c:b2:37:df:cf:fa:
d7:82:f1:59:b0:7e:1e:4d:c3:ad:a4:bd:1a:d4:5d:
db:a1:55:fc:dc:21:36:11:fd:03:0d:a4:3e:1e:cc:
a6:53:bb:06:17:be:b4:77:27:a7:a4:73:c7:b7:75:
04:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B4:E0:12:FF:AC:A8:54:7D:BB:DA:FB:64:34:57:5C:B2:FE:22:A2
X509v3 Authority Key Identifier:
keyid:12:5A:E2:CF:D3:15:C1:31:19:34:84:66:5A:CA:DA:7C:01:31:63:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Elriz9MVwTEZNIRmWsrafAExY-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/037adf-b9c2-4ad1-960a-4d403369d2a2/1/wbTgEv-sqFR9u9r7ZDRXXLL-IqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/037adf-b9c2-4ad1-960a-4d403369d2a2/1/Elriz9MVwTEZNIRmWsrafAExY-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.100.0/22
IPv6:
2a0d:4580:10::/48
2a0d:4580:20::/48
2a0d:4580:30::/48
2a0d:4580:40::/48
2a0d:4580:50::/48
2a0d:4580:60::/48
2a0d:4580:70::/48
2a0d:4580:80::/48
2a0d:4580:90::/48
2a0d:4580:100::/48
2a0d:4580:110::/48
2a0d:4580:120::/48
2a0d:4580:130::/47
Signature Algorithm: sha256WithRSAEncryption
6d:0c:61:7c:78:c4:8c:be:fb:8d:e9:9c:26:2e:2d:8d:e9:a9:
cf:fd:71:20:23:1a:05:8e:15:ca:63:e8:66:23:f6:b8:2b:c0:
4e:b9:e2:2e:97:03:73:7c:56:97:df:ef:31:4d:60:bd:ea:ce:
4e:c1:79:50:5a:a8:ec:95:a1:94:98:56:86:48:4c:12:77:41:
14:d7:04:e2:f3:6d:6c:f7:bc:48:8b:41:67:8e:d8:7a:74:95:
2f:52:de:32:0c:f0:58:f2:72:09:00:78:96:7b:69:e1:ca:2d:
70:95:12:b5:13:89:b5:7c:62:1e:72:4e:2b:fd:cd:b4:4e:a7:
f7:6e:73:5a:34:2b:69:e7:51:80:6c:d9:7b:b6:59:46:87:1f:
a8:a4:47:66:d0:b0:3a:20:fa:6e:fa:60:aa:73:ac:54:5f:15:
1f:7e:65:32:f9:e2:25:86:0a:cb:01:cb:bc:34:17:59:25:52:
7c:57:9a:e1:24:b6:c4:eb:4a:c7:38:08:4e:4a:a9:1e:e8:65:
7c:7d:83:42:ad:74:25:5c:66:b5:37:b3:52:82:21:fb:85:8c:
3a:8c:90:50:e4:79:21:74:44:e9:7c:97:9f:e9:89:ac:8f:7a:
41:92:3e:98:61:c1:ae:70:f9:a3:a7:91:89:85:ee:8f:52:e8:
60:64:45:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:48 2025 by rpki-client on console.sobornost.net