Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/b81499-be00-4e58-bde2-9a91dd2b03d9/1/Ea7ZQ6qrmXM_KusNyhAmDsZShYA.roa
File: Ea7ZQ6qrmXM_KusNyhAmDsZShYA.roa (raw, json)
Hash identifier: vqAz2NmodmjeWpsDULuXELw9VGjwYQwfFUH6T9dUQAY=
Subject key identifier: 11:AE:D9:43:AA:AB:99:73:3F:2A:EB:0D:CA:10:26:0E:C6:52:85:80
Certificate issuer: /CN=6386dde35c148f897e9c275d80627e092ea3c0c7
Certificate serial: 10F0B3BA
Authority key identifier: 63:86:DD:E3:5C:14:8F:89:7E:9C:27:5D:80:62:7E:09:2E:A3:C0:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4bd41wUj4l-nCddgGJ-CS6jwMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/b81499-be00-4e58-bde2-9a91dd2b03d9/1/Ea7ZQ6qrmXM_KusNyhAmDsZShYA.roa
Signing time: Sat 01 Jan 2022 07:01:37 +0000
ROA not before: Sat 01 Jan 2022 07:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50599
IP address blocks: 193.105.125.0/24 maxlen: 24
128.0.54.0/24 maxlen: 24
185.170.104.0/22 maxlen: 22
188.210.220.0/22 maxlen: 22
185.72.196.0/22 maxlen: 22
91.204.162.0/24 maxlen: 24
91.204.160.0/23 maxlen: 23
89.40.144.0/22 maxlen: 22
195.177.217.0/24 maxlen: 24
195.177.216.0/24 maxlen: 24
91.236.52.0/24 maxlen: 24
91.236.54.0/23 maxlen: 23
185.11.128.0/22 maxlen: 22
2a0b:5480::/29 maxlen: 29
2a02:e7c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284210106 (0x10f0b3ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6386dde35c148f897e9c275d80627e092ea3c0c7
Validity
Not Before: Jan 1 07:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11aed943aaab99733f2aeb0dca10260ec6528580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:98:6a:cf:34:fd:28:de:25:1d:34:69:c3:e2:
ff:26:af:0e:25:60:20:56:24:59:52:bc:09:16:cb:
89:80:be:3a:8a:88:fc:e3:1e:ab:5b:68:37:e5:52:
d3:3b:fa:0f:7d:5f:28:e2:3e:13:09:57:4c:4f:ea:
e3:b7:94:e8:86:4d:5f:d7:cd:69:01:1a:6a:97:7c:
69:71:8f:55:8e:71:6f:d7:43:13:b1:d9:1e:52:03:
ef:ea:50:1d:59:a4:0d:b8:39:04:41:4c:e4:e5:d5:
9e:d3:69:d6:91:c2:6f:6f:a0:a3:94:f5:8a:8e:f5:
4e:a3:40:5e:c4:6f:c7:8b:34:11:40:6a:7a:fe:0b:
e8:b1:da:63:82:29:44:20:40:54:14:24:aa:bf:8d:
78:97:2d:ae:4a:3d:cc:9d:d5:b6:66:82:2c:8f:d9:
a1:c4:cc:3d:88:db:e1:5e:06:f5:45:d7:15:37:b7:
4d:ca:5b:c5:b6:9b:c9:06:74:ec:4d:97:0b:de:ea:
4a:07:eb:ef:16:3f:01:0e:a9:8b:30:2f:f5:5b:22:
92:46:cc:6b:a1:51:51:89:b9:6e:bc:f0:0d:71:9c:
cb:71:86:3a:52:60:0a:5c:b7:b1:c0:45:c3:56:a5:
61:4e:1d:a7:52:3d:9d:7c:9d:8e:1d:80:c9:f7:3a:
64:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AE:D9:43:AA:AB:99:73:3F:2A:EB:0D:CA:10:26:0E:C6:52:85:80
X509v3 Authority Key Identifier:
keyid:63:86:DD:E3:5C:14:8F:89:7E:9C:27:5D:80:62:7E:09:2E:A3:C0:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4bd41wUj4l-nCddgGJ-CS6jwMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b81499-be00-4e58-bde2-9a91dd2b03d9/1/Ea7ZQ6qrmXM_KusNyhAmDsZShYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b81499-be00-4e58-bde2-9a91dd2b03d9/1/Y4bd41wUj4l-nCddgGJ-CS6jwMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.144.0/22
91.204.160.0-91.204.162.255
91.236.52.0/24
91.236.54.0/23
128.0.54.0/24
185.11.128.0/22
185.72.196.0/22
185.170.104.0/22
188.210.220.0/22
193.105.125.0/24
195.177.216.0/23
IPv6:
2a02:e7c0::/29
2a0b:5480::/29
Signature Algorithm: sha256WithRSAEncryption
35:eb:ff:1d:b5:3c:79:e7:19:f4:7b:b7:a9:af:74:11:ae:8a:
ae:d8:af:dd:6a:2a:33:4b:79:92:31:6c:30:d3:6a:80:1b:bc:
1f:d3:d9:c8:90:8c:54:8c:ab:ba:fc:a8:02:29:99:22:62:e3:
5b:a4:f2:f7:51:aa:cd:c9:a9:ab:f4:a1:b0:cf:f8:68:bb:ca:
66:85:4d:a6:db:92:65:83:ed:1b:9a:08:06:f8:cf:e4:64:75:
f2:37:42:0b:f6:f3:94:35:d1:b4:eb:fa:6f:51:65:7e:b6:16:
03:7e:6f:00:b5:6b:07:ad:db:db:9f:da:f8:05:2d:9d:b9:59:
5e:f5:d6:9e:6c:b5:52:73:90:be:66:f2:bc:df:01:9a:0e:88:
d3:5d:84:41:19:d9:0c:9b:ef:d8:d8:10:ca:d3:08:c1:4d:60:
1b:4e:d3:73:5d:df:4e:62:3a:71:a2:40:d9:09:bf:b2:ab:b2:
b1:5d:5e:72:fd:b8:5f:41:8a:77:2c:cb:18:1a:53:4e:84:9b:
58:99:c7:6c:22:3f:f1:b7:63:f7:15:5e:a1:20:e4:01:bf:b3:
75:c2:01:f0:92:2c:f3:f5:d5:99:60:cf:e5:51:46:42:e4:66:
5f:92:a5:22:95:36:5b:81:c4:05:52:b2:c3:92:82:ce:9b:33:
15:07:53:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 13:37:00 2025 by rpki-client