Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/DRBNNgw4Z3yS5LJADKAriT5xlYA.roa
File: DRBNNgw4Z3yS5LJADKAriT5xlYA.roa (raw, json)
Hash identifier: Ss5ctPIYmh/W01BiIm0bQbdRACosYRgFsa0kmXYd1Kc=
Subject key identifier: 0D:10:4D:36:0C:38:67:7C:92:E4:B2:40:0C:A0:2B:89:3E:71:95:80
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018B1D778BFCC7B634806E1AF723A884D554
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/DRBNNgw4Z3yS5LJADKAriT5xlYA.roa
Signing time: Wed 11 Oct 2023 06:40:55 +0000
ROA not before: Wed 11 Oct 2023 06:40:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 176.46.138.0/24 maxlen: 24
176.46.139.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.133.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.142.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.150.0/24 maxlen: 24
176.46.148.0/24 maxlen: 24
176.46.157.0/24 maxlen: 24
176.46.158.0/24 maxlen: 24
176.46.156.0/24 maxlen: 24
176.46.154.0/24 maxlen: 24
176.46.155.0/24 maxlen: 24
176.46.153.0/24 maxlen: 24
185.34.160.0/22 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
109.203.168.0/21 maxlen: 24
109.203.176.0/21 maxlen: 24
109.203.184.0/21 maxlen: 24
37.49.145.0/24 maxlen: 24
37.49.147.0/24 maxlen: 24
94.74.152.0/22 maxlen: 24
94.74.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:77:8b:fc:c7:b6:34:80:6e:1a:f7:23:a8:84:d5:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Oct 11 06:40:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d104d360c38677c92e4b2400ca02b893e719580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e6:6b:47:c1:53:2d:4f:57:ad:ff:8f:78:8e:
aa:25:f6:b5:c9:49:2e:1e:ad:c1:84:05:57:a8:89:
87:c4:03:8a:e7:d3:9d:ef:10:ce:93:f7:a0:a7:9c:
c7:64:a2:b0:dd:fa:47:87:2d:c4:22:c0:f7:89:75:
2a:65:6f:f8:ad:35:3e:31:58:79:7f:60:28:e6:0c:
7f:b9:9e:50:30:3f:38:19:97:e0:75:68:db:fe:b5:
e6:06:71:22:c6:77:25:c6:e3:2d:45:37:f3:dd:3e:
75:b2:ba:17:6a:47:ce:48:5d:bb:10:a2:04:de:17:
ac:35:2f:cd:45:19:11:2c:08:0a:72:77:cc:2c:cc:
a3:a1:99:41:49:12:5d:2f:59:6b:60:0c:1f:64:b1:
7e:2f:36:ac:d9:5c:ef:f0:d9:dd:c1:46:3c:0a:5b:
83:b4:9b:26:52:bc:46:44:3c:55:85:d6:ca:29:1f:
65:21:05:88:0e:5f:29:f4:cb:53:a5:dc:da:d0:b1:
5e:2d:5a:7e:f5:65:e5:2b:6e:95:7a:7b:c4:d8:6f:
37:76:84:57:10:82:50:6d:60:78:b0:78:d1:17:5c:
7e:07:ff:a7:72:9e:38:0e:32:de:00:6b:1e:b6:c8:
54:a9:df:67:c6:84:52:07:98:fd:0e:7d:35:2d:32:
75:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:10:4D:36:0C:38:67:7C:92:E4:B2:40:0C:A0:2B:89:3E:71:95:80
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/DRBNNgw4Z3yS5LJADKAriT5xlYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.145.0/24
37.49.147.0/24
94.74.152.0-94.74.156.255
109.203.168.0-109.203.191.255
176.46.129.0-176.46.130.255
176.46.133.0-176.46.136.255
176.46.138.0/23
176.46.141.0-176.46.142.255
176.46.148.0/24
176.46.150.0/24
176.46.153.0-176.46.158.255
185.34.160.0/22
Signature Algorithm: sha256WithRSAEncryption
62:ad:6b:b9:7b:5f:f6:d3:e3:9b:d8:6e:1a:d2:8d:dd:6c:4b:
84:98:c9:b8:f9:0e:9f:a3:5a:21:58:c4:1c:77:fe:55:11:9f:
41:57:ab:16:88:04:8b:4a:d7:4b:f5:b2:36:6e:42:cd:da:f2:
b5:91:26:14:57:7b:f7:9a:1c:1f:c8:f3:1c:fa:8c:a1:6b:6b:
77:cd:68:09:ff:1a:43:cf:2c:b7:93:2c:7c:b1:c8:26:a4:4b:
39:16:05:eb:9f:dc:26:39:43:f9:f4:9c:fe:0d:72:8e:84:00:
6c:ce:7a:76:14:5a:4d:92:7f:3a:96:f6:75:b6:72:66:ac:cd:
de:60:48:1d:e6:da:60:42:a6:6f:5e:2c:28:ac:44:2b:f5:d2:
5b:b7:4d:c4:3f:03:ad:ed:d6:5b:4c:c5:05:ea:92:c6:92:f5:
32:e2:7f:34:b2:1a:e8:52:eb:93:ce:a5:82:c6:bf:26:de:8b:
dd:0e:a9:2f:27:39:ca:b2:ba:15:4d:45:33:32:02:93:66:bc:
ec:8e:9b:a7:7b:04:45:6c:8d:12:77:70:87:21:fc:83:b3:21:
f4:c1:dc:77:c2:2d:6e:2c:2a:fc:d9:94:fe:88:07:41:3a:20:
09:67:36:07:0c:e0:ac:9a:68:d0:9e:45:92:41:cb:4d:fc:63:
f8:97:f5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:08 2025 by rpki-client