Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/GPPB6zhJa6B6lp8ZxewGNflWThA.roa
File: GPPB6zhJa6B6lp8ZxewGNflWThA.roa (raw, json)
Hash identifier: AB9hDGGQ+03OIqklK3hwavvmZMPXNQVAbFhyMO0Ern0=
Subject key identifier: 18:F3:C1:EB:38:49:6B:A0:7A:96:9F:19:C5:EC:06:35:F9:56:4E:10
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 01841E3FAA46DC3E66C0DB975A074D0EDFA9
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/GPPB6zhJa6B6lp8ZxewGNflWThA.roa
Signing time: Fri 28 Oct 2022 10:59:59 +0000
ROA not before: Fri 28 Oct 2022 10:59:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55933
IP address blocks: 85.8.180.0/23 maxlen: 24
185.242.232.0/22 maxlen: 24
185.242.232.0/23 maxlen: 23
185.242.234.0/23 maxlen: 23
185.245.40.0/22 maxlen: 24
185.239.84.0/23 maxlen: 23
185.239.84.0/22 maxlen: 24
185.239.86.0/23 maxlen: 23
93.90.72.0/22 maxlen: 24
93.90.74.0/23 maxlen: 24
109.206.244.0/22 maxlen: 24
91.132.48.0/22 maxlen: 24
93.177.76.0/22 maxlen: 24
185.243.240.0/22 maxlen: 24
84.252.102.0/23 maxlen: 24
2a0c:f480::/29 maxlen: 29
2a0d:2480::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:3f:aa:46:dc:3e:66:c0:db:97:5a:07:4d:0e:df:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: Oct 28 10:59:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18f3c1eb38496ba07a969f19c5ec0635f9564e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:dd:6e:f5:a5:ae:75:e7:9e:fe:9c:fc:fa:a4:
6a:38:c2:9a:a0:bc:4c:b3:fd:50:f9:8b:fd:4b:48:
e4:a5:e6:9d:af:b6:e7:a3:b0:38:c6:fa:1b:08:40:
c2:c8:98:d6:24:08:47:bb:dc:b3:e0:e1:40:8f:79:
4a:06:fc:4f:19:05:50:13:98:fc:b2:80:85:94:90:
9b:c0:33:9a:d3:33:ee:50:a9:db:c8:3d:ba:0c:8e:
22:d1:8d:00:cf:0c:4b:72:ce:9e:8a:5c:14:8d:36:
8f:da:16:da:c7:f9:d4:7c:42:6b:24:c6:45:38:84:
e8:43:ad:21:9d:ea:8f:b4:29:64:bf:d5:aa:2c:9f:
08:b2:cb:1d:d0:a2:9f:39:01:49:32:67:d0:84:43:
bb:03:96:92:02:d6:3e:67:e9:65:e6:a5:1e:bd:fe:
b5:f4:8a:ec:ae:bb:26:7c:be:36:95:38:b5:81:b1:
8d:d5:df:b1:4c:08:0e:a1:ff:a3:96:3e:f3:60:67:
4f:61:d4:ef:49:3d:70:76:f3:2b:58:52:92:aa:95:
af:6d:5b:39:bc:1b:b0:84:24:c0:86:2a:e2:4b:1d:
83:1a:ff:f1:40:c9:bb:ff:c3:2f:08:b5:e9:15:b5:
56:f2:e5:4a:54:62:ca:71:58:32:94:90:df:0d:e5:
78:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:F3:C1:EB:38:49:6B:A0:7A:96:9F:19:C5:EC:06:35:F9:56:4E:10
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/GPPB6zhJa6B6lp8ZxewGNflWThA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.102.0/23
85.8.180.0/23
91.132.48.0/22
93.90.72.0/22
93.177.76.0/22
109.206.244.0/22
185.239.84.0/22
185.242.232.0/22
185.243.240.0/22
185.245.40.0/22
IPv6:
2a0c:f480::/29
2a0d:2480::/29
Signature Algorithm: sha256WithRSAEncryption
74:99:23:07:8a:db:ca:61:91:8c:93:ac:b2:0b:7e:5f:05:4f:
52:38:18:a5:a1:a2:d5:12:84:de:2a:12:9f:48:0f:a0:5d:72:
e9:07:57:e4:a4:64:95:00:b8:15:be:f3:32:fe:28:8e:f2:54:
dc:89:a8:b2:b8:83:56:73:e3:1a:50:66:61:a1:49:51:4e:94:
e1:19:6f:5c:12:96:9b:18:38:a7:79:62:c0:71:93:5a:cd:14:
df:e8:ed:ac:71:c8:67:1e:9c:49:b7:94:93:b9:57:e5:be:0b:
46:07:66:fd:80:6a:0c:74:97:19:ae:33:d0:89:ac:50:02:26:
28:f1:bd:35:be:1e:13:37:13:1b:34:d7:9d:3d:f8:f3:4d:a6:
d9:1a:70:f7:6e:5e:23:10:d0:cf:21:f3:1f:94:f9:c3:dc:d7:
00:a5:c3:98:bd:98:98:44:10:2d:2a:ee:20:24:6c:d1:e3:71:
5d:e6:de:41:4f:e5:99:e0:e3:49:1e:c2:7a:b0:3b:ac:fa:1b:
cd:21:65:4c:73:3c:4c:14:71:e0:7a:95:f3:d1:d8:dd:5e:5a:
41:a7:33:5a:0d:68:8a:14:7f:fe:29:8a:bd:96:9a:46:53:bf:
14:38:cc:af:8f:c8:d1:36:6c:b3:d4:6a:fd:43:a4:ad:7f:f9:
af:d0:cf:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:14 2025 by rpki-client