Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/SATfRb11Mj8YHPT541NwTxCxFrE.roa
File: SATfRb11Mj8YHPT541NwTxCxFrE.roa (raw, json)
Hash identifier: koVzUAl00owr9sLQ+sQWKMfmUpwxycXHBSBWrCcVvMc=
Subject key identifier: 48:04:DF:45:BD:75:32:3F:18:1C:F4:F9:E3:53:70:4F:10:B1:16:B1
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0185A1CC6438E8C330E5FA14FDF5CBBC2DBF
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/SATfRb11Mj8YHPT541NwTxCxFrE.roa
Signing time: Wed 11 Jan 2023 17:06:44 +0000
ROA not before: Wed 11 Jan 2023 17:06:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44208
IP address blocks: 176.46.138.0/23 maxlen: 24
94.74.190.0/24 maxlen: 24
176.46.144.0/20 maxlen: 24
176.46.140.0/22 maxlen: 24
109.203.160.0/19 maxlen: 24
94.74.128.0/18 maxlen: 24
94.74.136.0/24 maxlen: 24
31.170.48.0/20 maxlen: 24
94.74.165.0/24 maxlen: 24
185.34.160.0/22 maxlen: 24
94.74.166.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a1:cc:64:38:e8:c3:30:e5:fa:14:fd:f5:cb:bc:2d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Jan 11 17:06:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4804df45bd75323f181cf4f9e353704f10b116b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8f:1f:67:b7:f2:66:08:95:71:04:2a:66:d2:
67:a8:69:c7:48:6a:40:2e:b8:9c:91:29:d8:40:14:
e3:38:f1:d9:68:1f:45:e9:80:b6:5c:84:be:f2:be:
5e:3e:f3:80:4b:0c:2d:c2:36:ed:ba:bc:c1:84:32:
1c:e1:92:be:3f:97:43:56:e4:3c:8d:aa:b6:95:99:
4a:18:47:e3:81:50:fc:19:98:87:cb:81:d6:34:7f:
17:b4:6e:54:e8:ee:03:51:0b:cc:3b:ef:af:b2:5d:
bb:32:01:10:aa:f4:6a:af:23:9e:79:ec:a5:4e:f3:
a6:2a:08:ec:6d:7f:d2:3b:10:57:b5:91:01:d4:26:
93:32:6e:ce:1b:38:30:c4:19:a2:51:ba:17:32:8b:
0e:a8:42:f6:5a:7a:a4:69:52:08:da:9c:e5:02:c9:
6e:c6:1a:5c:33:07:93:6b:5a:74:78:ee:20:a1:2d:
dc:39:6d:8c:55:1e:ce:1c:59:27:87:2b:af:c5:c9:
34:88:2d:9c:ae:0c:57:b7:b1:95:65:92:06:6a:fa:
d1:de:e3:b8:24:35:a1:c7:2e:06:3c:23:4c:12:68:
36:0d:19:ca:52:6b:0f:a3:ec:f3:15:0e:9a:a2:28:
94:46:82:1b:15:a5:06:37:6e:d1:74:45:69:7a:6e:
4d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:04:DF:45:BD:75:32:3F:18:1C:F4:F9:E3:53:70:4F:10:B1:16:B1
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/SATfRb11Mj8YHPT541NwTxCxFrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.48.0/20
94.74.128.0/18
109.203.160.0/19
176.46.138.0-176.46.159.255
185.34.160.0/22
Signature Algorithm: sha256WithRSAEncryption
76:a6:ec:6d:d7:13:c6:eb:f7:0e:4b:6e:e0:5a:90:d2:0f:87:
26:15:52:9b:f2:8d:55:2c:b2:d2:a4:17:ee:57:c1:58:71:4a:
57:c0:60:5a:02:93:fd:2d:7d:cb:ce:b4:ff:10:ec:eb:d1:66:
48:21:51:e2:5a:a0:86:f6:45:46:de:2c:02:57:2b:1b:21:64:
24:af:e0:17:ff:d3:86:9b:25:0e:2e:db:ec:75:e9:71:31:6d:
fc:d8:77:fc:e7:4c:08:67:5e:a9:b3:3a:1c:db:00:93:22:1e:
a3:46:62:cd:19:34:6c:36:04:0b:61:04:06:a2:c8:35:a5:46:
9a:2f:bc:2a:97:e2:d4:d0:e6:25:e4:09:e7:4b:c8:13:43:fb:
a8:b2:f8:4d:cc:35:91:64:79:bd:c9:f4:71:e7:a1:4c:92:4f:
97:c6:e5:5b:5e:7b:45:18:cb:dc:68:06:ed:0d:1a:fb:57:12:
5f:a3:bc:3e:fc:f2:f8:47:dc:27:d9:d0:ac:27:8f:34:c6:37:
41:8f:f2:cd:4b:5c:6b:7d:11:15:48:59:63:af:30:eb:62:01:
34:63:07:d2:63:fc:74:9b:ac:9b:a6:2b:56:87:29:59:43:b2:
3d:a7:83:36:7a:f2:b4:64:29:c6:38:b4:2d:47:57:9f:f3:d8:
ff:9a:15:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:11 2025 by rpki-client