Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/9YsrlcB5l8zaTcP-H54bcvNvmt0.roa
File: 9YsrlcB5l8zaTcP-H54bcvNvmt0.roa (raw, json)
Hash identifier: Ef32SJHpmK3WrG1tx+ryVu53cGdZqxN0zLRKJUw81IY=
Subject key identifier: F5:8B:2B:95:C0:79:97:CC:DA:4D:C3:FE:1F:9E:1B:72:F3:6F:9A:DD
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018674115206CAC27C1F6743D6EF44BE03E4
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/9YsrlcB5l8zaTcP-H54bcvNvmt0.roa
Signing time: Tue 21 Feb 2023 13:02:17 +0000
ROA not before: Tue 21 Feb 2023 13:02:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 212.221.0.0/17 maxlen: 24
46.33.64.0/19 maxlen: 24
77.77.128.0/18 maxlen: 24
213.251.0.0/18 maxlen: 24
212.115.128.0/18 maxlen: 24
185.160.40.0/22 maxlen: 22
213.200.64.0/18 maxlen: 18
195.143.0.0/16 maxlen: 24
141.136.96.0/20 maxlen: 20
194.121.52.0/22 maxlen: 22
213.254.192.0/18 maxlen: 24
89.149.128.0/18 maxlen: 24
77.67.0.0/17 maxlen: 24
87.119.64.0/18 maxlen: 24
134.222.0.0/16 maxlen: 16
212.222.0.0/16 maxlen: 24
2001:668::/29 maxlen: 64
2a00:1750::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:11:52:06:ca:c2:7c:1f:67:43:d6:ef:44:be:03:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Feb 21 13:02:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f58b2b95c07997ccda4dc3fe1f9e1b72f36f9add
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5a:b3:51:83:9a:71:c0:62:ed:9a:cc:06:2c:
09:5c:53:e6:5f:3e:b7:b0:9a:80:94:24:9e:86:04:
ba:1c:56:7b:1c:13:5d:62:ba:cc:03:55:63:83:16:
da:b6:20:2b:49:c5:95:39:28:34:4d:87:49:51:f1:
0f:a3:1d:42:f5:e2:ec:7f:64:a6:d2:d3:9a:ac:80:
b7:56:94:ea:be:ca:9d:3a:cf:ec:aa:97:23:cc:b9:
53:42:a5:70:f1:17:e2:39:6d:12:08:fe:0f:29:dd:
cd:30:60:81:64:49:26:23:51:bc:cf:9d:45:8e:a0:
38:5a:fc:c6:67:60:fa:b9:75:92:01:52:be:86:66:
41:bf:98:e2:2c:76:b7:02:42:7d:d7:d3:70:a1:69:
9f:4c:f5:5f:79:84:1a:ce:32:6f:6b:63:5c:34:5d:
98:5f:8b:55:9b:39:f0:f3:6b:42:d6:d7:b6:0a:0a:
50:f9:f1:a7:8f:82:ac:a7:a9:df:70:14:9d:84:e9:
2c:e1:5b:1e:9c:58:66:80:9d:5d:b2:3c:8a:8c:57:
ab:17:0b:f1:80:75:18:fe:a8:9a:e5:e2:99:ec:58:
d3:20:50:7f:55:ac:0f:f1:fa:b4:bc:8a:31:db:2e:
8e:35:e7:29:72:8b:28:db:cd:64:f9:85:2c:1e:9e:
ed:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:8B:2B:95:C0:79:97:CC:DA:4D:C3:FE:1F:9E:1B:72:F3:6F:9A:DD
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/9YsrlcB5l8zaTcP-H54bcvNvmt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.33.64.0/19
77.67.0.0/17
77.77.128.0/18
87.119.64.0/18
89.149.128.0/18
134.222.0.0/16
141.136.96.0/20
185.160.40.0/22
194.121.52.0/22
195.143.0.0/16
212.115.128.0/18
212.221.0.0/17
212.222.0.0/16
213.200.64.0/18
213.251.0.0/18
213.254.192.0/18
IPv6:
2001:668::/29
2a00:1750::/32
Signature Algorithm: sha256WithRSAEncryption
6b:3f:26:12:18:00:f8:02:1e:6d:e5:46:e8:3d:3a:2b:c8:49:
a3:be:b6:03:8e:12:3a:c3:0a:6a:d2:b5:b1:0d:bf:d5:83:93:
dd:6a:0a:22:6f:d7:80:78:15:3b:70:71:65:2e:98:d0:ca:2d:
2f:e7:6c:bd:ae:38:e4:0a:05:39:fe:7a:33:1c:ea:ba:c9:ef:
0c:0d:54:cc:ee:3d:fd:c1:8f:ba:90:64:62:7d:eb:c5:fe:c8:
0a:cd:6d:f0:b5:5f:29:ea:9e:ab:2d:85:3c:bb:3a:2e:74:ee:
58:22:45:0a:aa:80:fd:fc:c2:2f:ff:c0:27:09:a3:f3:4a:40:
5b:03:6d:af:a3:14:a8:66:cf:93:0c:7a:02:41:af:7a:46:b2:
28:c8:2e:6d:30:99:30:a5:21:08:a2:5b:23:47:d2:23:40:84:
c8:2e:93:c5:bf:0e:de:bc:73:5a:a1:63:68:d6:f5:6f:48:bd:
c5:6a:fd:6c:86:1c:fa:90:7d:bd:2c:4a:37:86:95:17:6f:a0:
31:46:db:c1:a4:47:51:39:ef:e5:e2:67:a1:f7:49:dd:63:c0:
f1:5d:b2:b6:3a:d2:82:c4:79:45:d6:9e:89:89:f4:c5:43:1a:
22:05:1e:5d:a4:2e:0d:db:8b:a4:84:07:59:d5:84:7a:e3:21:
49:24:56:03
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:26:20 2025 by rpki-client