Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Q0ARIigYmJxLGw8-hnaFZuMPaAI.roa
File: Q0ARIigYmJxLGw8-hnaFZuMPaAI.roa (raw, json)
Hash identifier: ls969YjP+vbAbUUliQr/vbVPDGu4VdOWV360GsJzoQ4=
Subject key identifier: 43:40:11:22:28:18:98:9C:4B:1B:0F:3E:86:76:85:66:E3:0F:68:02
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 01842D001763E296B1255864A5D9A0A86C2D
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Q0ARIigYmJxLGw8-hnaFZuMPaAI.roa
Signing time: Mon 31 Oct 2022 07:44:51 +0000
ROA not before: Mon 31 Oct 2022 07:44:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
109.203.160.0/22 maxlen: 24
37.49.144.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.145.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.157.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
94.74.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2d:00:17:63:e2:96:b1:25:58:64:a5:d9:a0:a8:6c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Oct 31 07:44:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=434011222818989c4b1b0f3e86768566e30f6802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:88:e9:eb:e8:57:1d:a5:01:14:74:d8:ca:bc:
86:0f:91:bc:23:95:37:43:47:df:27:2b:af:30:01:
8f:2a:22:f2:05:5f:c3:0e:2f:12:a9:6f:e3:60:96:
06:30:c1:19:b1:ac:8c:fc:a0:6f:b2:b7:62:2e:c9:
ac:3e:1a:66:ba:6d:6d:6c:dc:7e:94:bd:75:fb:56:
51:14:cd:81:c7:25:03:ec:40:a5:7c:b7:8a:25:71:
07:3b:04:e7:f2:82:95:1a:34:3b:84:1e:d7:16:9e:
85:3f:c7:02:9e:d1:fc:f7:b3:23:d1:36:08:ce:46:
15:46:da:a7:28:f7:67:2f:ac:69:a2:7a:1c:a2:94:
57:04:fd:5e:f4:5c:a8:2b:65:13:bb:a9:a9:16:ce:
54:ff:a1:78:3f:97:c6:c8:82:44:9b:e7:bd:9c:fb:
66:bb:bd:e1:0e:9b:25:cc:5b:42:96:3d:d9:58:b8:
e7:d2:01:d5:c0:de:4d:d4:ae:88:6f:e5:5a:1b:83:
2b:19:15:9f:2d:87:bc:8b:ae:4d:4c:a7:e8:6c:71:
c7:6f:a0:8b:ad:b6:dc:e3:00:1a:71:05:8a:e9:23:
10:bb:aa:20:de:a9:59:2e:cf:46:25:2f:f4:22:ea:
70:25:33:5e:6d:ee:b8:65:a0:2f:5a:0d:9f:bf:28:
87:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:40:11:22:28:18:98:9C:4B:1B:0F:3E:86:76:85:66:E3:0F:68:02
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Q0ARIigYmJxLGw8-hnaFZuMPaAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/22
94.74.137.0/24
94.74.140.0/24
94.74.145.0/24
94.74.147.0/24
94.74.156.0/22
94.74.164.0/24
94.74.171.0/24
94.74.173.0/24
94.74.182.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:66:d0:a7:a8:08:57:6b:72:4c:f9:d1:a5:4c:ed:40:0c:cc:
1c:8e:ab:49:14:40:15:08:48:25:79:c8:53:3b:e9:24:0b:7a:
14:0b:e6:d6:07:7e:b8:b1:42:7e:f9:4f:91:03:bd:01:76:3a:
ff:b7:8f:57:7a:a3:95:35:25:7f:e0:94:1c:c1:be:0b:63:a6:
04:21:1d:10:c5:31:d1:ab:90:1b:81:5c:94:f1:db:73:f9:ae:
6a:55:26:93:01:72:24:e9:c4:2d:e4:a7:a9:fa:01:43:8a:60:
c6:3c:b5:ea:53:27:6d:ae:fa:7c:34:7f:24:63:19:2a:fe:20:
47:bd:b1:51:d0:d3:43:77:b5:29:f0:9c:05:58:ad:66:5a:6c:
74:5e:de:db:52:7a:d8:c7:16:be:5a:80:13:4c:55:ea:ce:94:
3e:af:74:5b:d7:5a:91:94:2a:89:76:21:de:1f:7d:de:0d:da:
58:ed:11:8e:fb:6a:7a:51:1b:3f:59:25:c2:bd:bc:90:c1:c5:
03:51:a0:d7:98:7d:fc:1d:1c:d9:b5:81:0c:84:e8:4c:69:4f:
07:1e:eb:cf:92:c2:56:ba:76:4d:e0:99:80:3e:fc:35:8d:7f:
94:74:13:59:72:fe:4c:b9:d9:71:41:31:16:c8:5c:d4:4b:9c:
26:8c:cb:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:21 2025 by rpki-client