Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/OOpAPeGQ5ZnwJGCJThB1hAYKBCA.roa
File: OOpAPeGQ5ZnwJGCJThB1hAYKBCA.roa (raw, json)
Hash identifier: GaW2qytZxay96oVZQ2BbPotLX1Azic3k46ncnDF3WX0=
Subject key identifier: 38:EA:40:3D:E1:90:E5:99:F0:24:60:89:4E:10:75:84:06:0A:04:20
Certificate issuer: /CN=df3fdc4bf33bd80fe128d756843f60b39d5beee3
Certificate serial: 01915517F7CCB10EF9B956C996CD8F752AF5
Authority key identifier: DF:3F:DC:4B:F3:3B:D8:0F:E1:28:D7:56:84:3F:60:B3:9D:5B:EE:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/OOpAPeGQ5ZnwJGCJThB1hAYKBCA.roa
Signing time: Thu 15 Aug 2024 08:11:59 +0000
ROA not before: Thu 15 Aug 2024 08:11:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40065
IP address blocks: 2.56.255.0/24 maxlen: 24
2.59.151.0/24 maxlen: 24
5.181.219.0/24 maxlen: 24
31.40.214.0/24 maxlen: 24
45.12.88.0/24 maxlen: 24
45.12.90.0/24 maxlen: 24
45.67.223.0/24 maxlen: 24
185.183.84.0/24 maxlen: 24
185.186.146.0/23 maxlen: 23
185.194.148.0/24 maxlen: 24
185.201.226.0/24 maxlen: 24
185.201.227.0/24 maxlen: 24
185.238.248.0/24 maxlen: 24
185.238.250.0/24 maxlen: 24
193.9.44.0/24 maxlen: 24
193.9.46.0/24 maxlen: 24
193.22.152.0/24 maxlen: 24
212.103.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:55:17:f7:cc:b1:0e:f9:b9:56:c9:96:cd:8f:75:2a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df3fdc4bf33bd80fe128d756843f60b39d5beee3
Validity
Not Before: Aug 15 08:11:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38ea403de190e599f02460894e107584060a0420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d6:d0:be:76:4a:e7:04:08:4d:e0:21:27:0b:
24:d5:a9:3a:c4:2d:b9:68:f1:9a:83:8e:10:6b:dc:
ef:70:15:8b:7e:5a:9c:a9:54:b1:e0:72:f7:e8:7f:
bc:60:08:cc:26:cc:f8:9f:35:c3:36:3c:7c:54:c2:
10:47:9d:81:a8:c0:e7:66:e7:84:7f:16:27:12:21:
8a:fc:35:fa:24:98:da:9f:30:91:06:b0:5a:45:3c:
9c:ab:c8:33:c7:9a:03:db:b3:aa:6b:68:68:ff:2f:
e2:af:6d:3d:9f:4c:20:60:23:e2:f6:c7:b2:78:94:
08:68:ba:6d:29:e3:aa:14:91:f9:4e:34:bb:81:78:
87:65:4c:3d:01:67:52:2c:40:06:0a:f7:09:53:36:
15:1e:33:5d:12:dd:2b:71:d4:f4:8f:3f:84:79:d8:
44:af:f9:a1:d0:32:57:24:5d:df:e4:e0:a6:28:16:
bc:8a:c7:b9:88:8f:d4:dc:78:15:7f:63:fb:1a:dc:
f5:91:5b:e8:5c:16:fe:06:43:7a:4f:7a:f7:b2:16:
5a:1c:f7:23:df:cc:36:87:81:62:9a:0c:c1:b6:53:
f5:a1:e3:06:eb:ce:73:dd:68:3a:d7:7d:7d:72:71:
a6:b6:56:cb:04:de:85:ce:e1:ae:a4:9b:eb:b1:02:
51:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EA:40:3D:E1:90:E5:99:F0:24:60:89:4E:10:75:84:06:0A:04:20
X509v3 Authority Key Identifier:
keyid:DF:3F:DC:4B:F3:3B:D8:0F:E1:28:D7:56:84:3F:60:B3:9D:5B:EE:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/OOpAPeGQ5ZnwJGCJThB1hAYKBCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.255.0/24
2.59.151.0/24
5.181.219.0/24
31.40.214.0/24
45.12.88.0/24
45.12.90.0/24
45.67.223.0/24
185.183.84.0/24
185.186.146.0/23
185.194.148.0/24
185.201.226.0/23
185.238.248.0/24
185.238.250.0/24
193.9.44.0/24
193.9.46.0/24
193.22.152.0/24
212.103.62.0/24
Signature Algorithm: sha256WithRSAEncryption
24:11:95:50:fd:e5:26:91:a0:04:d9:8c:d6:e8:bb:b4:e2:48:
cb:0d:d3:5c:0e:c2:80:0c:ab:43:24:d6:ff:61:ef:8b:e3:e4:
2a:db:c6:65:31:dd:d7:fa:db:85:37:4e:9c:30:6f:15:dd:53:
0a:ed:08:6a:c2:2e:61:d6:06:cd:37:24:6d:1c:da:75:dc:99:
5d:b6:ba:df:20:a2:4e:1d:11:0e:a8:d7:2f:92:24:d3:c9:79:
90:04:fa:ce:ad:d4:5d:e8:cc:7c:a9:9f:07:a1:5c:02:c3:70:
80:05:81:e6:cc:a5:ff:60:c7:ad:1d:6c:b0:77:03:27:b8:e4:
7d:d0:f7:11:61:1d:ce:7a:37:8e:f9:3e:c5:11:76:46:fe:c4:
98:aa:ba:47:fb:85:19:46:e6:e2:24:55:6b:97:0c:b0:a0:74:
3e:5b:99:76:6e:9c:aa:15:59:1b:15:29:fe:b3:42:2b:b0:a8:
e3:2b:4f:20:bd:98:d9:a5:b5:4e:96:88:25:7d:88:12:e0:e7:
4f:e6:b1:18:a1:65:67:38:41:a9:ba:85:ea:c4:b1:fa:0a:cc:
08:d6:1b:34:b1:56:39:d5:3e:44:ec:44:c8:f7:76:b8:d5:a5:
ed:0c:2d:b5:31:58:d7:30:71:9d:2b:b0:fe:a7:1a:15:57:c8:
db:9e:e2:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:39 2024 by rpki-client on console.sobornost.net