Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/aJG3xPMuNPeK-dzGG5slIHCn4RU.roa
File: aJG3xPMuNPeK-dzGG5slIHCn4RU.roa (raw, json)
Hash identifier: NCytpCVdT0E4fueWs8o2sbwtE56I8UqPP+uDmrsXJ+c=
Subject key identifier: 68:91:B7:C4:F3:2E:34:F7:8A:F9:DC:C6:1B:9B:25:20:70:A7:E1:15
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0184F6B3F7F8763CBE949313CC1E41B82C71
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/aJG3xPMuNPeK-dzGG5slIHCn4RU.roa
Signing time: Fri 09 Dec 2022 11:45:00 +0000
ROA not before: Fri 09 Dec 2022 11:45:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.137.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.160.0/22 maxlen: 24
31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
37.49.144.0/22 maxlen: 24
37.49.148.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.145.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f6:b3:f7:f8:76:3c:be:94:93:13:cc:1e:41:b8:2c:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Dec 9 11:45:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6891b7c4f32e34f78af9dcc61b9b252070a7e115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:48:33:a8:d8:f4:47:6e:5c:bf:ad:82:eb:d1:
65:f5:65:b0:dd:91:35:55:d4:2b:51:1e:68:c0:bd:
90:5c:6c:d9:74:48:59:01:7a:a2:04:36:73:37:91:
1d:15:b0:ad:36:e1:e6:d4:f8:60:b4:87:f7:b7:a4:
e8:f2:40:06:9d:57:ad:75:39:f2:37:4e:20:3e:92:
97:81:7b:23:4a:98:25:c3:2f:85:36:fe:15:c8:76:
0b:b8:9f:f0:0f:6c:db:89:74:f9:23:d1:0e:fe:f4:
69:b2:1a:ac:f6:d3:25:80:68:64:6c:da:59:af:fd:
5e:36:da:5e:4a:22:e9:55:b6:05:96:50:fc:9e:76:
52:e6:f5:86:d8:72:2d:31:98:8f:5b:d7:30:f6:2c:
70:9d:b5:b0:37:98:46:49:6c:6a:9f:d6:51:63:1b:
9a:d9:db:84:73:11:8a:03:0a:48:a6:26:66:ee:77:
81:4e:aa:a4:02:5e:44:cc:d1:13:2b:0f:07:a8:16:
58:da:04:b7:24:e1:4d:6c:1f:75:47:d8:2d:56:4b:
71:04:88:b4:09:1b:96:4f:2c:56:62:04:20:aa:3c:
43:bb:02:dc:d6:67:f4:fe:26:41:48:a7:09:71:3d:
71:ee:61:9a:e9:f1:4b:a0:1c:3a:f8:64:4e:a0:f6:
11:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:91:B7:C4:F3:2E:34:F7:8A:F9:DC:C6:1B:9B:25:20:70:A7:E1:15
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/aJG3xPMuNPeK-dzGG5slIHCn4RU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/21
94.74.137.0/24
94.74.140.0/24
94.74.145.0/24
94.74.147.0/24
94.74.156.0/24
94.74.158.0/23
94.74.164.0/24
94.74.168.0/23
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
176.46.128.0-176.46.137.255
Signature Algorithm: sha256WithRSAEncryption
4e:73:bf:58:d1:ee:3c:93:49:32:16:8a:09:6d:da:92:0e:59:
4b:fe:ce:7b:d8:7d:23:64:3e:46:c6:60:32:cb:33:b7:d8:4b:
1d:d4:c1:b9:1c:84:d3:b2:5d:d4:da:a6:de:df:7a:ae:8e:15:
c5:39:f6:16:a7:d7:98:a7:f9:5b:40:d2:cf:3c:14:5f:85:62:
62:d1:bd:22:23:57:19:a6:68:5c:e4:61:9f:b9:19:82:f2:52:
76:84:eb:b9:f5:3e:70:76:c8:c4:40:79:a4:5c:2b:6c:05:49:
d4:18:cc:c0:72:df:26:a9:d0:f0:55:41:cf:3c:7b:4b:3c:bd:
a9:d8:8b:53:78:d7:de:c4:03:b4:97:89:43:9e:d0:08:2f:44:
25:47:0d:0d:8b:ce:30:94:91:77:41:a1:98:d7:1c:49:ac:f6:
6a:a3:63:23:a7:2d:a9:7f:9f:08:70:50:e5:1b:79:24:77:93:
04:58:fb:3c:2f:0a:3b:75:2a:f1:24:a1:cf:2a:df:18:5c:03:
f0:96:ef:59:08:0f:05:5c:ee:f7:be:08:26:09:84:d7:b5:e3:
66:48:07:15:48:ce:50:5f:86:2a:c6:7b:9a:6f:18:a0:f4:a2:
b5:8a:b0:30:8a:5b:e5:11:41:e3:55:26:b9:94:a5:72:a6:b6:
8f:f0:03:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:07 2025 by rpki-client