Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/8Yjf9JyMCbqY8pR90y_pnNI-itA.roa
File: 8Yjf9JyMCbqY8pR90y_pnNI-itA.roa (raw, json)
Hash identifier: LzEu3qD7lctVXGIAjQP1VoC3eimB9Eb4qzWa9IB/7hU=
Subject key identifier: F1:88:DF:F4:9C:8C:09:BA:98:F2:94:7D:D3:2F:E9:9C:D2:3E:8A:D0
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 01899BFFEB2CCAAD07D4C5A79C88CC6C8AE4
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/8Yjf9JyMCbqY8pR90y_pnNI-itA.roa
Signing time: Fri 28 Jul 2023 10:16:27 +0000
ROA not before: Fri 28 Jul 2023 10:16:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.139.0/24 maxlen: 24
176.46.137.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.138.0/24 maxlen: 24
176.46.140.0/24 maxlen: 24
176.46.142.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.143.0/24 maxlen: 24
176.46.144.0/20 maxlen: 24
176.46.132.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.160.0/22 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
37.49.144.0/22 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.148.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:ff:eb:2c:ca:ad:07:d4:c5:a7:9c:88:cc:6c:8a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Jul 28 10:16:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f188dff49c8c09ba98f2947dd32fe99cd23e8ad0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:12:75:2d:c6:a8:67:25:09:44:e2:fb:55:68:
72:ce:e6:4b:43:8f:a4:8a:f1:8f:eb:28:7e:fd:27:
36:94:52:18:00:b1:73:a8:7d:30:79:36:28:da:41:
62:1c:b3:5e:2e:85:73:b3:14:e3:36:a8:01:81:95:
ed:68:37:be:7a:23:80:c9:eb:12:35:ec:e1:11:3f:
59:89:12:71:4f:0b:f0:26:ef:07:0d:cc:35:79:88:
57:77:7d:a5:ce:a6:47:f7:dd:c6:6c:a2:83:b0:13:
f6:e7:3b:d6:5a:a2:65:eb:0a:d4:31:94:37:e8:c2:
d2:80:02:b2:e9:2a:f7:f3:4d:b3:08:4f:e0:85:21:
f1:e7:d1:38:a2:6f:a2:3c:ce:f6:58:38:69:e7:4c:
50:0e:f6:86:e8:32:88:8b:df:c3:82:03:95:e6:02:
6a:34:f4:c2:e0:a8:d0:31:3d:50:bc:7c:0a:8d:91:
fb:a1:46:54:c2:6b:e9:b6:1c:2c:e0:ed:ce:ae:b8:
3d:32:20:4f:d3:9a:cf:5c:b3:85:48:e2:45:e7:cf:
25:cb:0b:58:22:f1:83:f9:6f:6e:fa:17:df:88:ef:
75:9c:bf:f0:48:e7:ee:e4:23:21:bf:d4:af:6a:8b:
22:12:80:61:8a:2b:7c:00:8c:ab:5e:b3:7b:a6:eb:
20:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:88:DF:F4:9C:8C:09:BA:98:F2:94:7D:D3:2F:E9:9C:D2:3E:8A:D0
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/8Yjf9JyMCbqY8pR90y_pnNI-itA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.144.0/21
94.74.137.0/24
94.74.156.0/24
94.74.158.0/23
94.74.168.0/23
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
176.46.128.0/19
Signature Algorithm: sha256WithRSAEncryption
83:e5:4e:6c:4d:54:40:79:94:03:6b:2b:a0:11:7e:2c:86:40:
92:db:65:15:7b:61:a4:ae:67:03:4a:b3:ea:73:ac:1b:a4:9e:
9b:13:dd:6d:5d:22:ac:3f:d1:45:4e:b8:00:ef:e9:47:8f:c4:
da:60:4e:41:4c:75:c8:ee:f1:09:10:df:75:ca:25:56:f2:64:
ea:21:79:ab:48:84:75:c8:97:0a:81:2e:23:d9:0d:d9:0a:85:
34:84:68:7b:af:a6:4a:33:3c:15:af:e9:5b:8f:8b:3b:6a:b1:
fb:59:1b:7d:39:e0:cb:24:c0:8b:fe:b6:df:f1:f6:12:87:2d:
7f:5b:a2:25:09:e0:04:01:fe:fd:a5:aa:2d:32:0d:80:54:89:
22:1d:2f:b6:b4:ef:35:e9:dc:42:2d:bd:0d:46:c5:d8:b7:f1:
b7:f3:4c:6f:89:c0:7b:fc:d6:83:13:29:a8:98:f2:35:8b:52:
05:65:9f:18:54:02:f6:80:0e:1d:4d:91:92:19:b0:05:72:3f:
75:ac:b7:e0:fd:5c:6e:76:76:30:54:6f:ab:3a:d2:cd:ce:09:
9d:bb:f6:56:36:8a:a9:6b:1d:80:9b:55:57:a3:04:88:18:ba:
cc:c1:fd:99:dc:f6:05:99:a3:96:2f:55:c4:45:51:9e:c5:ab:
46:14:ae:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:10 2025 by rpki-client