Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/fYk_98hdy2W0zushkuJDU9Go8bc.roa
File: fYk_98hdy2W0zushkuJDU9Go8bc.roa (raw, json)
Hash identifier: aWoExgA0xApPfRe5y1G7hl3gqRMOkvKxxLLjxTrKZRk=
Subject key identifier: 7D:89:3F:F7:C8:5D:CB:65:B4:CE:EB:21:92:E2:43:53:D1:A8:F1:B7
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 1AE64665
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/fYk_98hdy2W0zushkuJDU9Go8bc.roa
Signing time: Mon 21 Mar 2022 19:01:23 +0000
ROA not before: Mon 21 Mar 2022 19:01:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197328
IP address blocks: 167.160.11.0/24 maxlen: 24
162.222.88.0/24 maxlen: 24
167.160.13.0/24 maxlen: 24
5.255.57.0/24 maxlen: 24
5.255.62.0/24 maxlen: 24
5.255.61.0/24 maxlen: 24
5.255.63.0/24 maxlen: 24
185.150.2.0/24 maxlen: 24
167.160.27.0/24 maxlen: 24
185.165.47.0/24 maxlen: 24
91.92.112.0/23 maxlen: 23
185.4.224.0/23 maxlen: 23
185.4.227.0/24 maxlen: 24
107.150.177.0/24 maxlen: 24
185.212.172.0/24 maxlen: 24
185.212.173.0/24 maxlen: 24
23.252.66.0/24 maxlen: 24
185.162.72.0/23 maxlen: 23
2a06:4b40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451298917 (0x1ae64665)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Mar 21 19:01:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d893ff7c85dcb65b4ceeb2192e24353d1a8f1b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:76:0a:e8:81:2f:80:71:d0:c8:2c:f9:08:ff:
96:85:53:a7:93:fc:20:3a:f3:b4:09:d8:f4:e2:04:
2f:22:f5:37:22:6e:51:e6:ee:ca:57:f5:ef:ab:6c:
49:fc:d0:bd:a2:d2:59:ea:3c:22:81:c4:93:de:95:
90:fa:2d:e7:16:f0:a2:69:87:ce:e9:a1:06:68:1c:
d9:ea:13:1b:11:e1:14:b6:46:7c:41:9a:df:14:0f:
81:4c:1b:16:60:cc:09:bc:98:8d:00:0d:b9:12:a5:
b1:fa:92:86:2e:5e:47:ba:43:69:d9:58:c9:78:15:
3d:41:b3:ed:35:9f:72:33:21:c1:bb:3b:36:c0:0e:
00:03:67:0a:06:c5:14:a9:a5:a1:8f:65:50:c8:78:
37:1b:c1:3f:fd:70:ff:86:b6:31:81:98:c2:d6:79:
e5:ba:fa:34:50:31:3f:dd:10:a2:db:04:ae:6f:b1:
1b:ef:08:03:40:35:a2:eb:a6:79:e7:5a:b4:08:de:
e3:b1:b7:70:e5:41:a1:40:78:44:b1:58:fc:af:de:
32:9b:49:55:50:39:59:45:82:ae:b3:1b:30:78:11:
3e:7f:79:ce:11:33:ee:13:53:0f:8f:76:da:19:a6:
f9:67:fb:bf:e1:23:f8:38:d3:36:2a:9f:6f:64:e9:
49:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:89:3F:F7:C8:5D:CB:65:B4:CE:EB:21:92:E2:43:53:D1:A8:F1:B7
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/fYk_98hdy2W0zushkuJDU9Go8bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.255.57.0/24
5.255.61.0-5.255.63.255
23.252.66.0/24
91.92.112.0/23
107.150.177.0/24
162.222.88.0/24
167.160.11.0/24
167.160.13.0/24
167.160.27.0/24
185.4.224.0/23
185.4.227.0/24
185.150.2.0/24
185.162.72.0/23
185.165.47.0/24
185.212.172.0/23
IPv6:
2a06:4b40::/29
Signature Algorithm: sha256WithRSAEncryption
32:41:6f:4e:07:16:2c:f8:91:dc:e5:94:72:e0:8f:6a:b4:1b:
01:d8:9c:9c:9a:4e:1c:07:2b:0d:91:99:1d:af:0b:0e:17:86:
7d:8c:6a:bd:f3:c6:ab:f8:de:e4:31:be:86:93:1d:82:89:82:
16:da:53:10:2e:59:5a:ad:0d:0d:a6:eb:21:22:fd:c6:76:7d:
b6:ec:63:18:bd:7d:88:da:4e:ec:52:0d:bd:3c:05:4e:54:d4:
22:0e:92:52:f6:23:e2:d1:df:ed:8e:95:b2:44:eb:98:f3:c8:
ae:32:ed:e7:68:5a:0c:42:e7:d0:65:a2:13:98:33:51:a7:ad:
37:2c:5c:34:a4:8e:61:03:d3:da:d8:66:48:52:1a:86:fb:70:
25:1f:b1:37:39:c6:4d:8a:2e:49:48:75:76:90:9f:08:59:84:
16:95:2f:bf:31:a5:9e:a3:4c:86:e6:0c:98:7b:f3:6c:90:48:
4f:d2:9e:b4:91:e1:df:fd:ed:c4:1d:04:03:c2:0e:e2:41:81:
a2:62:f7:e0:d5:f6:4a:73:f5:df:ba:3d:d2:b2:9e:f1:04:ab:
8d:d8:e7:77:01:83:e9:f6:cb:7a:34:5e:3a:3f:ee:2e:6f:ad:
63:68:c1:d7:ae:39:2d:9a:0d:bb:57:3a:c3:3a:70:ff:aa:ec:
2a:c9:ee:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:14 2025 by rpki-client