Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/S4SHepST50ySI2gOGzrt3Du6r5s.roa
File: S4SHepST50ySI2gOGzrt3Du6r5s.roa (raw, json)
Hash identifier: pp3RyYnscf/RHDzMifWTOrcM1RaQfYs5oWq3TxM03qI=
Subject key identifier: 4B:84:87:7A:94:93:E7:4C:92:23:68:0E:1B:3A:ED:DC:3B:BA:AF:9B
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018674B7F2CA13B76B97CD327E4E8D57DF99
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/S4SHepST50ySI2gOGzrt3Du6r5s.roa
Signing time: Tue 21 Feb 2023 16:04:17 +0000
ROA not before: Tue 21 Feb 2023 16:04:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 286
IP address blocks: 62.132.116.0/23 maxlen: 23
62.132.114.0/23 maxlen: 23
92.71.0.0/17 maxlen: 17
62.132.132.0/23 maxlen: 23
62.41.160.0/24 maxlen: 24
62.41.80.0/22 maxlen: 22
62.41.84.0/23 maxlen: 23
62.41.102.0/24 maxlen: 24
62.41.16.0/21 maxlen: 21
62.132.0.0/22 maxlen: 22
62.41.24.0/22 maxlen: 22
62.132.16.0/22 maxlen: 22
62.41.37.0/24 maxlen: 24
62.41.32.0/24 maxlen: 24
62.132.24.0/23 maxlen: 23
62.132.28.0/24 maxlen: 24
92.71.128.0/18 maxlen: 18
62.132.42.0/23 maxlen: 23
62.41.56.0/21 maxlen: 21
194.121.52.0/22 maxlen: 22
62.41.64.0/20 maxlen: 20
62.41.0.0/20 maxlen: 20
2a00:1750::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:b7:f2:ca:13:b7:6b:97:cd:32:7e:4e:8d:57:df:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Feb 21 16:04:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b84877a9493e74c9223680e1b3aeddc3bbaaf9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0a:e7:53:b0:8d:d2:37:9a:b9:eb:64:8a:90:
64:ff:16:2e:2e:80:47:01:15:0d:53:fe:8c:6d:aa:
6f:bf:64:de:ea:81:96:bd:2a:fa:56:06:74:c8:42:
8e:17:3e:39:55:83:ad:8b:27:2e:1a:96:70:21:8e:
65:f0:5f:87:0b:b8:5b:66:d7:87:45:83:a6:c9:05:
c3:b3:02:4d:1e:62:cb:28:1b:36:ec:85:06:5b:dd:
02:38:60:40:f7:76:0b:66:f5:3e:42:a3:01:63:13:
68:ea:ba:ac:c5:5e:56:3b:c6:58:be:20:29:cf:57:
43:93:2f:65:db:89:d0:f9:03:0c:11:1f:84:70:2d:
bd:26:c7:9c:0c:68:26:81:08:77:a3:73:45:4d:2f:
f8:52:91:fa:1a:eb:2a:24:af:b3:ad:8d:ee:58:f6:
3c:2b:78:02:41:70:a6:c6:11:7f:d8:f5:5d:51:a6:
dd:a8:6e:51:75:ac:55:b5:c9:23:32:65:6d:9e:4a:
07:05:71:72:8c:aa:9f:54:6d:f4:74:32:db:dd:e7:
ce:5a:46:52:a5:bb:ec:65:4a:c2:e9:3a:2d:56:a3:
e2:91:69:79:0e:cc:d2:1c:0c:44:0c:e7:6f:b2:14:
c7:af:e9:ff:4e:b0:d4:5a:52:02:f8:f4:4e:15:94:
44:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:84:87:7A:94:93:E7:4C:92:23:68:0E:1B:3A:ED:DC:3B:BA:AF:9B
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/S4SHepST50ySI2gOGzrt3Du6r5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.41.0.0-62.41.27.255
62.41.32.0/24
62.41.37.0/24
62.41.56.0-62.41.85.255
62.41.102.0/24
62.41.160.0/24
62.132.0.0/22
62.132.16.0/22
62.132.24.0/23
62.132.28.0/24
62.132.42.0/23
62.132.114.0-62.132.117.255
62.132.132.0/23
92.71.0.0-92.71.191.255
194.121.52.0/22
IPv6:
2a00:1750::/32
Signature Algorithm: sha256WithRSAEncryption
9c:5e:b0:c9:76:a5:e0:7d:3a:c4:d0:88:19:15:0b:ed:04:44:
59:37:f4:1d:76:76:44:73:a8:5c:1d:e4:6a:86:6a:4e:2f:ff:
99:2b:26:8c:7d:b2:85:df:1e:b1:55:89:f4:8a:a5:44:4a:93:
8b:dc:39:46:b0:d7:98:60:a1:30:78:f2:8b:b4:f8:c5:63:98:
b4:f1:7b:24:85:14:aa:6e:c2:29:63:31:42:74:62:73:19:3c:
65:77:9c:fd:b1:a7:a9:ef:27:1d:f2:72:6a:5a:b5:2f:e1:3c:
53:58:a4:22:15:33:85:9d:a6:f8:97:49:a7:31:01:05:17:c5:
a2:67:ac:62:41:5a:da:fd:14:9f:98:95:78:e9:40:bd:a7:63:
ab:58:db:48:05:38:93:57:8a:5a:4c:d9:b8:c2:80:00:ff:f3:
ac:45:6b:3f:2a:42:88:6e:b6:72:59:05:25:00:ba:16:6b:a3:
71:76:5b:b3:2e:97:8c:cf:37:67:82:ee:97:09:88:e6:54:77:
c7:e8:9d:01:d2:fd:be:8d:e6:db:19:c8:7d:7f:27:5c:aa:bf:
c6:06:22:00:39:ca:bf:cb:ac:b5:00:9d:74:f4:98:bf:c7:4e:
80:00:0c:c2:72:c5:e0:72:92:56:09:14:87:0b:81:8d:6e:27:
14:5d:1a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:43 2025 by rpki-client