Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/MWiEIDihpGYKMKb1ZXjxbYatu9Y.roa
File: MWiEIDihpGYKMKb1ZXjxbYatu9Y.roa (raw, json)
Hash identifier: Sh9VUvDJ0zlkYn5bBdvwre0BgHm1fQqt14K8kf+gNjM=
Subject key identifier: 31:68:84:20:38:A1:A4:66:0A:30:A6:F5:65:78:F1:6D:86:AD:BB:D6
Certificate issuer: /CN=f0f14ed124f9a2f3deab1006f184cf4fb80a3aec
Certificate serial: 019423D7478EAA05D8D313DE83FC27F4630F
Authority key identifier: F0:F1:4E:D1:24:F9:A2:F3:DE:AB:10:06:F1:84:CF:4F:B8:0A:3A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PFO0ST5ovPeqxAG8YTPT7gKOuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/MWiEIDihpGYKMKb1ZXjxbYatu9Y.roa
Signing time: Wed 01 Jan 2025 21:48:18 +0000
ROA not before: Wed 01 Jan 2025 21:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206825
IP address blocks: 5.182.107.0/24 maxlen: 24
31.14.29.0/24 maxlen: 24
31.14.30.0/24 maxlen: 24
46.102.102.0/24 maxlen: 24
80.208.255.0/24 maxlen: 24
85.204.37.0/24 maxlen: 24
94.177.133.0/24 maxlen: 24
103.197.8.0/22 maxlen: 22
103.214.180.0/22 maxlen: 22
178.157.95.0/24 maxlen: 24
185.11.16.0/22 maxlen: 22
185.11.16.0/23 maxlen: 23
185.11.18.0/23 maxlen: 23
185.36.112.0/22 maxlen: 22
185.186.116.0/22 maxlen: 22
185.207.240.0/22 maxlen: 22
195.5.96.0/23 maxlen: 23
195.181.254.0/24 maxlen: 24
195.192.252.0/24 maxlen: 24
212.103.52.0/22 maxlen: 22
212.237.254.0/24 maxlen: 24
217.61.255.0/24 maxlen: 24
2a03:4f40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:47:8e:aa:05:d8:d3:13:de:83:fc:27:f4:63:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0f14ed124f9a2f3deab1006f184cf4fb80a3aec
Validity
Not Before: Jan 1 21:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3168842038a1a4660a30a6f56578f16d86adbbd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:97:c0:55:08:4f:da:c5:80:aa:1d:1f:63:45:
a9:f6:55:53:78:28:1a:19:e2:26:67:cf:17:51:60:
b6:8c:4c:e3:53:db:60:b2:6c:ef:63:3e:d6:5e:9e:
3a:ef:03:2d:cd:f6:71:5c:d0:f1:91:e7:d1:a7:1a:
d4:0b:f4:ff:80:51:43:11:5f:c6:ce:f1:a2:48:69:
b0:e4:7e:93:eb:90:f6:2a:07:44:ec:5b:72:a1:92:
f4:c0:04:05:1c:8f:89:4d:a8:5f:b5:7c:08:50:bc:
72:42:94:04:c5:f9:7c:35:f6:8e:42:91:8b:e7:45:
18:8e:4a:2c:2b:52:d1:fb:22:b3:3e:2b:c3:57:35:
ae:f2:6d:ef:f9:89:7a:d0:06:f2:d5:79:eb:da:82:
e1:1f:26:b4:59:0c:68:7c:28:ca:73:43:2b:39:c6:
26:c1:28:c8:59:24:35:a0:01:6a:5b:11:20:46:a1:
d0:e9:b8:d8:9d:c5:a8:0a:c3:c4:ce:17:13:d9:e4:
02:38:e7:54:27:93:b2:bb:a4:d3:e6:ea:cb:fc:c7:
8d:a3:df:49:e0:64:b9:4b:3f:8d:4d:0f:c2:01:b9:
83:07:ce:8c:49:ee:6c:0a:6d:8a:dc:4e:a7:e5:55:
5c:9c:c3:25:e2:bf:00:86:49:de:e7:84:78:9a:d9:
4c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:68:84:20:38:A1:A4:66:0A:30:A6:F5:65:78:F1:6D:86:AD:BB:D6
X509v3 Authority Key Identifier:
keyid:F0:F1:4E:D1:24:F9:A2:F3:DE:AB:10:06:F1:84:CF:4F:B8:0A:3A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PFO0ST5ovPeqxAG8YTPT7gKOuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/MWiEIDihpGYKMKb1ZXjxbYatu9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/8PFO0ST5ovPeqxAG8YTPT7gKOuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.107.0/24
31.14.29.0-31.14.30.255
46.102.102.0/24
80.208.255.0/24
85.204.37.0/24
94.177.133.0/24
103.197.8.0/22
103.214.180.0/22
178.157.95.0/24
185.11.16.0/22
185.36.112.0/22
185.186.116.0/22
185.207.240.0/22
195.5.96.0/23
195.181.254.0/24
195.192.252.0/24
212.103.52.0/22
212.237.254.0/24
217.61.255.0/24
IPv6:
2a03:4f40::/32
Signature Algorithm: sha256WithRSAEncryption
77:a4:31:66:ea:9f:b9:bc:03:09:17:83:f4:e9:a3:73:b0:c6:
c0:43:c0:2c:35:42:87:04:d7:d1:3f:7c:c2:6a:38:0b:3b:ba:
8b:f4:6c:eb:55:c8:a8:18:ce:86:98:28:45:85:b5:a6:3d:7d:
78:99:ff:17:f8:52:80:1f:87:ca:05:b0:1c:6c:81:48:eb:96:
78:35:57:04:38:f9:47:b8:2a:7e:36:08:e8:b7:ae:7e:00:5b:
5d:01:69:96:1d:ae:1e:5c:e9:d3:7c:de:1b:ed:26:f9:3a:a1:
ad:85:80:11:f5:91:bf:c8:02:9c:dc:04:f9:66:7e:7f:7f:53:
31:f3:7c:8b:ee:0f:95:b5:f6:b8:6a:86:67:43:be:70:b6:99:
c2:db:d2:24:33:59:de:9c:45:38:40:67:df:78:98:c0:1b:34:
9f:0a:65:a3:6e:5c:e6:1e:57:72:ae:ab:84:5f:f7:d8:8a:fa:
3b:40:30:8d:8d:e9:2e:3a:a0:2e:82:77:5b:7c:c4:34:e2:77:
e5:2e:11:8d:d8:ff:94:6c:75:2d:b3:79:80:c2:99:3e:47:58:
d9:67:9b:bc:d9:8e:51:2f:79:e7:a7:5d:2b:cb:6f:16:3b:ca:
d3:74:1d:b9:1c:52:ae:98:24:0d:24:f1:92:82:70:b6:49:a8:
c8:85:cc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:50:08 2025 by rpki-client on console.sobornost.net