Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/JJcgLVPb850opiHg5sZotBPwDWU.roa
File: JJcgLVPb850opiHg5sZotBPwDWU.roa (raw, json)
Hash identifier: 6fuVEx3ta+Bi0xXbKujGCb6hEsWaZ1k5xslleb8SoKo=
Subject key identifier: 24:97:20:2D:53:DB:F3:9D:28:A6:21:E0:E6:C6:68:B4:13:F0:0D:65
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 01854F64C281B60849557378F7E092A37FCB
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/JJcgLVPb850opiHg5sZotBPwDWU.roa
Signing time: Mon 26 Dec 2022 17:04:41 +0000
ROA not before: Mon 26 Dec 2022 17:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.137.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.160.0/22 maxlen: 24
31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
37.49.144.0/22 maxlen: 24
37.49.148.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:4f:64:c2:81:b6:08:49:55:73:78:f7:e0:92:a3:7f:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Dec 26 17:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2497202d53dbf39d28a621e0e6c668b413f00d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c7:cc:f7:66:0d:01:9c:10:4a:e6:a0:aa:99:
a9:95:9a:7d:a8:45:36:7f:0d:db:b3:20:4b:09:cf:
4f:96:47:53:af:95:33:55:35:6f:94:e3:52:90:b0:
3f:32:65:7e:f5:d4:0e:cc:ae:68:16:cb:f2:b2:db:
18:2e:68:7e:6c:98:97:20:7f:43:80:b7:f1:de:ba:
2c:c6:d8:f9:93:ce:d2:d3:5e:b5:25:f3:ed:8a:df:
1a:0e:a6:90:83:f4:2e:10:54:5c:ff:71:e4:77:62:
9e:a7:b5:9c:14:49:a3:f1:e1:d3:50:f2:8d:fa:ff:
49:3b:e0:69:e7:ea:a2:76:9b:a2:95:93:18:4b:bb:
ef:4a:73:a3:13:3e:43:21:3c:82:37:2d:96:46:96:
34:01:86:bb:79:01:e6:b9:f5:17:8d:ae:ec:f1:6d:
0c:ca:5d:2c:b7:fb:df:88:d2:bd:a7:22:d5:08:f5:
3d:73:dd:92:66:ce:77:30:12:cc:89:2a:f1:75:f1:
fb:65:86:73:f6:d0:a0:b4:68:dd:eb:06:ee:12:62:
82:fc:59:fd:fe:2a:58:a6:02:4f:1a:0c:91:9c:00:
94:3b:40:d5:9f:98:d8:0c:d3:76:51:2a:1c:81:e3:
97:d4:31:57:99:74:5c:78:af:6b:8d:30:d1:d0:b6:
cf:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:97:20:2D:53:DB:F3:9D:28:A6:21:E0:E6:C6:68:B4:13:F0:0D:65
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/JJcgLVPb850opiHg5sZotBPwDWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/21
94.74.137.0/24
94.74.140.0/24
94.74.147.0/24
94.74.156.0/24
94.74.158.0/23
94.74.164.0/24
94.74.168.0/23
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
176.46.128.0-176.46.137.255
Signature Algorithm: sha256WithRSAEncryption
79:73:57:e3:e4:5d:52:68:a7:b8:bd:1c:97:a4:64:13:c8:73:
06:9c:67:d5:24:c5:54:63:22:dc:5d:cf:be:8e:a2:99:5b:e0:
33:c6:02:23:ee:0f:fd:c9:cf:d4:c9:8e:5b:2e:27:43:3d:22:
b4:f9:22:04:36:9e:b1:1c:72:4b:6b:ff:44:94:d3:47:11:3d:
be:d5:66:d8:ea:87:f2:ad:4f:88:5c:b8:cd:f0:7b:a5:cf:8a:
8e:5d:bd:d5:3a:ae:9e:d3:bc:92:b0:f3:dd:9f:e7:f8:c8:5c:
30:72:f8:31:ba:d3:23:f1:04:a4:be:16:03:b5:b8:5e:1e:63:
8a:55:8b:2d:37:e9:d9:1c:a6:11:5e:0c:27:57:b4:02:17:02:
86:f1:22:b3:3a:05:0f:30:2f:bd:63:ec:22:86:2a:2a:af:11:
80:d7:a9:5e:3b:e2:05:1b:80:32:4a:d3:ef:e1:08:98:a8:20:
46:85:55:af:f5:ac:ac:00:72:df:cf:6a:f1:79:3e:8d:22:32:
6a:79:17:e4:a2:6c:94:fd:5c:8e:28:28:22:67:70:c0:49:c6:
fa:7e:2f:0b:ed:d5:0a:58:7b:1c:b4:e2:22:a3:73:3f:2d:1a:
7b:4f:f9:e0:fb:6a:15:57:a6:f3:07:05:ae:99:e8:e0:9a:11:
dd:0d:a3:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:10 2025 by rpki-client