Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/S_8J185smRqhA1Si8iOba1ZY2uk.roa
File: S_8J185smRqhA1Si8iOba1ZY2uk.roa (raw, json)
Hash identifier: wkcZFD+YXLIq4LSPaREQVs2wBTTrlK/JSUfUIPe9tdU=
Subject key identifier: 4B:FF:09:D7:CE:6C:99:1A:A1:03:54:A2:F2:23:9B:6B:56:58:DA:E9
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018A548B85BCC97B8077F932060AC887EF92
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/S_8J185smRqhA1Si8iOba1ZY2uk.roa
Signing time: Sat 02 Sep 2023 06:19:04 +0000
ROA not before: Sat 02 Sep 2023 06:19:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.137.0/24 maxlen: 24
176.46.140.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.143.0/24 maxlen: 24
176.46.144.0/24 maxlen: 24
176.46.145.0/24 maxlen: 24
176.46.146.0/24 maxlen: 24
176.46.147.0/24 maxlen: 24
176.46.148.0/24 maxlen: 24
176.46.149.0/24 maxlen: 24
176.46.150.0/24 maxlen: 24
176.46.151.0/24 maxlen: 24
176.46.152.0/24 maxlen: 24
176.46.154.0/24 maxlen: 24
176.46.155.0/24 maxlen: 24
176.46.156.0/24 maxlen: 24
176.46.157.0/24 maxlen: 24
176.46.153.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
31.170.55.0/24 maxlen: 24
37.49.144.0/24 maxlen: 24
37.49.145.0/24 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.147.0/24 maxlen: 24
37.49.148.0/24 maxlen: 24
37.49.149.0/24 maxlen: 24
37.49.150.0/24 maxlen: 24
37.49.151.0/24 maxlen: 24
109.203.164.0/24 maxlen: 24
109.203.165.0/24 maxlen: 24
109.203.166.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:54:8b:85:bc:c9:7b:80:77:f9:32:06:0a:c8:87:ef:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Sep 2 06:19:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bff09d7ce6c991aa10354a2f2239b6b5658dae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e2:ce:b7:c3:3e:de:f1:fe:a6:45:e6:13:16:
b8:0e:65:4f:80:bf:02:ea:10:fa:13:7d:26:72:9b:
68:26:10:bd:df:e1:ea:20:42:17:b0:c6:8f:97:93:
30:fa:30:34:33:09:61:2e:40:93:08:57:b8:9a:b3:
1d:f4:7e:4a:41:61:06:89:7a:9f:cc:36:43:8b:4d:
72:a6:d7:f6:f3:89:93:c4:9a:cb:5e:2f:d0:55:6a:
4c:da:f9:70:2c:38:71:9b:15:d7:8c:92:c1:d0:05:
46:b0:fc:87:57:93:11:53:26:34:57:64:56:30:55:
e6:11:53:73:9d:dd:16:42:a6:ea:b1:82:6f:7d:68:
36:c6:bb:68:28:c0:2a:f3:c7:6d:69:1c:ab:32:65:
98:7f:1b:cd:d0:51:6d:ae:ac:11:e7:87:03:c0:f6:
0a:bb:8c:d6:70:4c:33:c3:34:7d:78:f0:fa:78:ec:
c0:7a:74:a8:f8:99:e7:e8:61:17:bd:fe:85:02:ee:
d9:c7:1f:68:09:4c:d0:46:45:f4:ae:bb:87:63:3d:
87:af:f5:9f:14:87:ae:71:89:47:99:fb:6e:ad:43:
bb:23:6c:96:98:6b:ec:63:52:df:eb:51:66:e2:3c:
fa:0b:aa:63:b8:3e:bb:d9:18:d4:79:33:45:65:96:
5e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:FF:09:D7:CE:6C:99:1A:A1:03:54:A2:F2:23:9B:6B:56:58:DA:E9
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/S_8J185smRqhA1Si8iOba1ZY2uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/21
94.74.140.0/24
94.74.147.0/24
94.74.156.0/24
94.74.158.0/23
94.74.164.0/24
94.74.168.0/23
94.74.171.0/24
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.164.0-109.203.166.255
176.46.128.0/24
176.46.130.0-176.46.137.255
176.46.140.0/23
176.46.143.0-176.46.157.255
Signature Algorithm: sha256WithRSAEncryption
75:fa:cf:e4:31:f4:71:9e:00:ef:93:72:1f:e1:d2:e3:3d:f7:
f1:02:9e:c6:62:0d:59:bf:77:e1:29:28:f3:29:7c:90:b1:0f:
48:fb:0c:b3:f5:31:34:1f:00:cf:a4:fc:b8:9c:93:aa:e2:c5:
20:5d:c7:04:7e:ee:cc:18:e1:1c:a9:01:3a:0f:0d:62:87:52:
00:0c:b1:44:17:bb:4d:f8:c7:16:3d:3f:dc:a0:9a:a9:45:78:
4c:30:5e:e8:3e:65:30:27:87:38:54:79:9a:3b:03:e4:27:a4:
9a:cf:70:01:5a:85:50:5c:63:75:e5:83:1f:2b:f9:3e:28:f7:
41:cf:de:ca:3b:ee:7c:6d:aa:10:84:46:71:50:7e:ce:6f:15:
f7:d0:b7:3c:e3:03:3a:30:20:b1:91:88:c3:d4:c5:51:27:d4:
1b:76:5a:88:22:b5:a6:c6:1a:e3:6f:41:72:f5:f0:25:1f:9b:
3b:35:f5:2e:65:eb:a6:11:9f:75:f9:d1:ca:e1:52:82:55:35:
66:d2:d9:cc:52:30:66:c1:b5:38:c7:e0:f7:93:d0:10:aa:31:
70:af:c1:4f:a0:13:29:35:14:56:9f:6e:56:1e:5e:2d:1c:18:
93:4f:d0:5d:c3:dc:2f:bd:85:99:cf:a7:89:74:04:5e:96:92:
3e:7a:b4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:49 2025 by rpki-client