Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/b71Z2l-w5wNU3d_bOQ3-NsxQGtk.roa
File: b71Z2l-w5wNU3d_bOQ3-NsxQGtk.roa (raw, json)
Hash identifier: NTDcHS8KPnkCL0YZId8USdqHg/drOYotHssVpbwTMhY=
Subject key identifier: 6F:BD:59:DA:5F:B0:E7:03:54:DD:DF:DB:39:0D:FE:36:CC:50:1A:D9
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 01882FCBEF905A590659C1B8CEFB641575BB
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/b71Z2l-w5wNU3d_bOQ3-NsxQGtk.roa
Signing time: Thu 18 May 2023 16:57:54 +0000
ROA not before: Thu 18 May 2023 16:57:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 176.46.133.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.139.0/24 maxlen: 24
176.46.137.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.138.0/24 maxlen: 24
176.46.140.0/24 maxlen: 24
176.46.142.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.143.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.163.0/24 maxlen: 24
109.203.160.0/22 maxlen: 24
31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
37.49.144.0/22 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.148.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2f:cb:ef:90:5a:59:06:59:c1:b8:ce:fb:64:15:75:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: May 18 16:57:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fbd59da5fb0e70354dddfdb390dfe36cc501ad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8e:68:f0:e1:23:e0:d1:0a:a5:6f:68:5a:cd:
c8:82:f4:8a:7d:64:68:0a:d9:b6:da:41:5c:dc:41:
79:2f:47:34:62:58:c8:bd:1e:28:06:12:19:d3:c2:
47:e6:cc:74:6d:83:34:f8:c6:ba:30:8f:82:8a:77:
8e:03:06:28:cc:b0:dd:0c:69:9a:31:b7:d8:4d:dc:
49:7d:55:fa:ad:48:14:ef:96:af:02:e7:15:a0:91:
a1:bc:f5:fc:44:a7:ca:05:80:c0:c4:c1:d2:92:4c:
d5:76:6f:03:b6:e7:3a:3d:f4:b8:45:b3:e7:10:62:
21:c7:44:d8:98:bb:80:57:ae:58:e4:92:2e:0b:0d:
46:48:60:c6:8e:90:94:1d:b8:0c:a1:6f:31:7d:fc:
a1:95:32:23:14:c2:b8:c4:19:4c:02:86:16:be:a8:
f3:0b:0c:93:76:8b:73:3c:24:07:c3:4c:a8:93:25:
87:0b:4c:02:38:99:05:cf:2e:53:e4:aa:fa:a2:8d:
00:52:da:b0:08:84:21:17:a0:e7:63:b0:19:a5:32:
48:56:14:96:60:7f:90:56:ef:4d:cf:41:dc:93:71:
85:fb:c7:e4:da:62:e1:7d:5a:32:46:ce:ef:9a:32:
84:19:75:cc:01:70:bd:a3:67:5c:96:5c:a3:be:85:
0d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BD:59:DA:5F:B0:E7:03:54:DD:DF:DB:39:0D:FE:36:CC:50:1A:D9
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/b71Z2l-w5wNU3d_bOQ3-NsxQGtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/21
94.74.137.0/24
94.74.140.0/24
94.74.147.0/24
94.74.156.0/24
94.74.158.0/23
94.74.168.0/23
94.74.171.0/24
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
176.46.128.0/20
Signature Algorithm: sha256WithRSAEncryption
6d:fd:50:41:d7:81:a2:8d:df:77:6d:35:aa:35:f0:2e:ad:46:
b7:45:0b:ac:fb:86:d8:8c:46:4c:66:b6:4e:c2:ea:46:e7:e5:
9e:7a:3b:2c:c4:b8:e6:49:45:e8:bc:f8:42:4e:2d:4e:0a:d5:
d1:b3:61:d9:13:f3:6b:8b:2c:0f:ee:16:8d:dd:79:03:a3:e3:
60:5a:8d:75:79:47:7b:7c:b1:5f:d0:cb:4a:a8:d1:22:52:50:
83:95:d5:ee:f4:8b:98:1f:d1:42:cc:ad:2d:7a:99:d1:47:1e:
fa:f5:72:fc:79:21:25:4a:6d:8a:db:84:03:a7:d3:5f:51:f3:
84:32:48:c7:e6:cd:04:00:82:b8:5a:d5:25:9a:86:ad:58:55:
55:14:9d:ad:da:e0:88:6f:4f:44:9b:91:0a:a6:8e:f7:d6:64:
94:23:94:f0:81:fe:4d:46:b8:96:60:b8:79:7c:92:56:db:b7:
02:f9:3e:35:71:eb:0d:3d:bd:9e:be:55:b2:ba:76:f7:f5:3d:
b6:34:da:1c:8e:fc:6d:74:2c:da:0d:9b:5f:83:47:80:b1:42:
44:29:9e:02:64:b0:5d:6b:fd:ba:1c:10:70:91:ce:77:0f:49:
bb:1b:a4:73:11:d8:af:4c:7c:e7:99:13:a0:b0:ca:c4:7d:35:
5a:bb:6b:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:25 2025 by rpki-client