Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/atcLD8CRabxdAZFjtj2OVKMKTuo.roa
File: atcLD8CRabxdAZFjtj2OVKMKTuo.roa (raw, json)
Hash identifier: Wq8lxZXHt3/vWBaBQlH2K+GS50xe+qQI8rPWrULDAGY=
Subject key identifier: 6A:D7:0B:0F:C0:91:69:BC:5D:01:91:63:B6:3D:8E:54:A3:0A:4E:EA
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 082AF6D6
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/atcLD8CRabxdAZFjtj2OVKMKTuo.roa
Signing time: Wed 08 Jun 2022 08:49:04 +0000
ROA not before: Wed 08 Jun 2022 08:49:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.145.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.157.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
94.74.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137033430 (0x82af6d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Jun 8 08:49:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ad70b0fc09169bc5d019163b63d8e54a30a4eea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:cf:3a:20:1a:bd:ce:61:54:cb:0a:d9:0e:6e:
62:c1:df:66:02:75:18:81:bd:76:39:2c:cb:c0:fa:
6b:b3:f1:22:19:ba:67:a1:92:9e:6a:3d:aa:78:01:
b9:de:67:d6:0d:e8:c3:cd:eb:ff:40:94:a3:b4:dd:
3e:95:98:ca:18:29:24:85:15:78:f8:1a:d5:da:f8:
00:0f:25:a8:4b:d1:af:88:95:71:fe:7f:e5:e4:72:
1d:2d:27:da:54:36:0b:d5:68:ed:59:68:f0:29:db:
de:f4:7d:7d:11:00:79:a9:92:6b:35:1b:7e:a1:b8:
9d:f3:28:50:bd:8d:32:4d:42:bd:c7:a7:ae:89:d4:
3e:f7:7f:f3:80:97:3e:15:dc:ac:7e:70:59:3c:1f:
27:a0:4b:fb:ee:6b:06:58:76:02:0a:15:1a:8f:a6:
c9:74:81:da:63:4d:dd:09:a8:e3:b4:57:c1:d0:f4:
e2:f5:1e:b8:7b:60:6c:db:d4:dc:b5:fe:65:ef:18:
38:af:f9:af:cc:06:bc:63:f1:b8:96:d1:e4:d2:ad:
60:00:9c:8b:01:9c:26:13:e0:6a:37:08:d2:df:4e:
38:8d:32:da:f3:08:48:e9:9b:0e:6e:a8:7e:40:a2:
17:94:bc:8d:d6:5b:30:5c:74:99:51:fb:7d:95:e1:
d2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D7:0B:0F:C0:91:69:BC:5D:01:91:63:B6:3D:8E:54:A3:0A:4E:EA
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/atcLD8CRabxdAZFjtj2OVKMKTuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
94.74.137.0/24
94.74.140.0/24
94.74.145.0/24
94.74.147.0/24
94.74.156.0/22
94.74.164.0/24
94.74.168.0/23
94.74.171.0/24
94.74.173.0/24
94.74.182.0/24
94.74.187.0/24
94.74.191.0/24
Signature Algorithm: sha256WithRSAEncryption
49:c1:56:6f:74:f8:cb:3d:e4:cc:a7:cb:10:83:9e:12:2c:6b:
48:1b:f4:0b:65:29:f3:30:a1:43:cb:de:7d:9d:8c:64:5c:42:
4c:22:0d:8b:56:c5:ba:16:90:f3:eb:db:09:64:d5:fb:74:a9:
38:a6:4f:a2:ed:46:98:93:b8:7d:cc:51:6d:9e:97:51:9c:14:
37:b3:54:9d:33:04:e6:05:66:e2:c7:fb:ab:4e:22:df:52:56:
49:79:b2:c2:8f:4c:f6:53:c6:0f:57:6e:5a:bf:49:8b:02:3c:
00:fc:47:85:91:4e:c6:4f:57:73:7b:e7:63:5e:92:46:e4:c4:
ce:0a:b8:3d:21:01:b9:e0:0e:ac:a5:c1:55:aa:61:a5:79:ce:
e4:87:88:8a:77:7f:d8:c6:2d:a2:f4:bc:8a:68:a1:b3:3e:0a:
e5:f7:26:a3:af:08:76:d2:97:89:84:e5:ba:e5:74:1a:b0:9c:
8b:80:16:42:79:9d:37:7c:bc:e0:97:67:b2:a7:55:fa:d5:66:
52:e0:94:55:e8:45:64:71:71:88:bc:d8:76:6e:51:64:80:37:
c6:3d:7c:50:c1:88:9c:16:88:0f:09:0d:07:54:16:8c:1d:89:
cc:75:ec:21:31:54:04:62:c3:dd:ae:17:44:af:ef:cc:75:1d:
cd:e7:e4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:37 2025 by rpki-client