Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ZPOGA6qm0CCn8AgKqbsk_cFKc4Q.roa
File: ZPOGA6qm0CCn8AgKqbsk_cFKc4Q.roa (raw, json)
Hash identifier: 45K0LtWt7XGZPUBgEfovT2bMjM65uMqwvAaGZLTDiFk=
Subject key identifier: 64:F3:86:03:AA:A6:D0:20:A7:F0:08:0A:A9:BB:24:FD:C1:4A:73:84
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 01834EFBCA86DC7D46A88C294A29FF22DC00
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ZPOGA6qm0CCn8AgKqbsk_cFKc4Q.roa
Signing time: Sun 18 Sep 2022 05:04:27 +0000
ROA not before: Sun 18 Sep 2022 05:04:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.145.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.157.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
94.74.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:4e:fb:ca:86:dc:7d:46:a8:8c:29:4a:29:ff:22:dc:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Sep 18 05:04:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64f38603aaa6d020a7f0080aa9bb24fdc14a7384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:07:45:44:e3:53:4e:64:b5:ed:3d:cb:de:d3:
07:2c:ea:03:fb:a5:e8:46:ac:40:37:19:ad:40:9f:
1b:bc:4e:1a:81:ff:36:b1:92:bc:67:28:bd:47:ef:
0e:34:fe:5b:aa:f1:ab:9e:2b:fb:0c:ea:b1:e6:79:
4b:41:e6:f3:be:d5:b2:32:e7:de:c9:0f:2b:68:94:
62:33:ba:de:2f:e8:e8:cb:e3:10:79:78:38:94:81:
a3:93:a2:81:b9:6a:33:90:9f:d7:d2:a6:b6:4c:1e:
7f:82:a7:af:03:b4:3c:cf:45:41:97:2b:ff:b2:1d:
72:f1:12:eb:23:8b:fa:8a:2e:3e:c3:93:fe:6d:88:
fb:2c:4b:c0:d8:97:61:e6:15:02:da:a7:0c:7e:88:
1b:61:44:01:3b:de:29:95:a7:b5:9c:81:20:0b:a5:
52:d7:0d:76:60:66:cd:ed:ee:fd:e5:8b:95:64:bc:
e9:c9:11:9b:b9:09:c7:53:de:67:57:e6:da:08:87:
c5:ac:83:d0:72:7b:2e:70:b9:37:7b:57:b6:c6:a0:
57:53:8c:c3:45:26:d8:d4:91:38:c7:39:f5:a1:76:
81:4f:08:e9:ed:df:8e:54:ee:ce:5d:2f:57:97:7a:
52:e1:5c:63:5e:95:96:5d:ac:d8:8b:2d:42:b7:de:
aa:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F3:86:03:AA:A6:D0:20:A7:F0:08:0A:A9:BB:24:FD:C1:4A:73:84
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ZPOGA6qm0CCn8AgKqbsk_cFKc4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
94.74.137.0/24
94.74.140.0/24
94.74.145.0/24
94.74.147.0/24
94.74.156.0/22
94.74.164.0/24
94.74.168.0/23
94.74.171.0/24
94.74.173.0/24
94.74.182.0/24
94.74.187.0/24
94.74.191.0/24
Signature Algorithm: sha256WithRSAEncryption
75:33:a8:52:42:a7:c2:5d:52:24:b9:78:32:8a:46:6b:ff:67:
2e:f9:54:5e:f1:2b:86:33:51:96:25:4f:2a:ba:7a:95:3b:24:
89:bb:57:84:27:22:2c:45:31:ee:e6:64:47:1e:da:b7:1b:38:
55:a9:b5:cd:5a:86:bf:fc:c3:20:c8:20:75:98:a0:fb:c6:8b:
f3:93:8d:57:5b:e8:72:12:75:eb:9c:44:1d:f1:a2:90:8a:b3:
6b:79:57:64:02:5b:e4:67:33:1a:39:70:c1:76:92:fd:ce:67:
b2:38:1d:2c:12:02:28:fa:3d:3c:7a:79:41:ac:d0:ea:5f:54:
89:d7:75:6e:a2:3d:0d:c3:a4:79:1b:15:25:61:4e:12:19:97:
6e:b4:19:95:2c:30:1c:8c:cc:60:42:48:38:6a:fd:ff:67:8b:
98:d4:62:b3:d9:77:d9:5d:10:64:2a:c4:61:2b:ad:7e:20:05:
24:66:a2:3e:29:22:46:f6:10:49:27:be:ac:a7:2d:31:32:e6:
26:2e:38:57:eb:f4:bc:57:67:27:fc:df:22:03:09:ad:23:8d:
88:c9:c5:24:f6:46:7e:d3:d2:4a:06:7a:4e:3a:cd:42:7f:10:
c1:5b:d7:b2:f4:42:a1:96:98:8f:94:e7:cd:ee:dc:09:10:20:
0e:10:10:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:02 2025 by rpki-client