Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e5f7e9-80f9-4317-b21e-8336fec488f3/1/nTZMWJzyqInIU2WQldy9fxLxyzY.roa
File: nTZMWJzyqInIU2WQldy9fxLxyzY.roa (raw, json)
Hash identifier: W0poIv+P7fmZwzWNHnm2aKaASispJN6DZ+z/GJQdLnA=
Subject key identifier: 9D:36:4C:58:9C:F2:A8:89:C8:53:65:90:95:DC:BD:7F:12:F1:CB:36
Certificate issuer: /CN=170ef71a422a2f0fe91160579a4050618d8baf10
Certificate serial: 035A4FFF
Authority key identifier: 17:0E:F7:1A:42:2A:2F:0F:E9:11:60:57:9A:40:50:61:8D:8B:AF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fw73GkIqLw_pEWBXmkBQYY2LrxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e5f7e9-80f9-4317-b21e-8336fec488f3/1/nTZMWJzyqInIU2WQldy9fxLxyzY.roa
Signing time: Sat 01 Jan 2022 05:54:34 +0000
ROA not before: Sat 01 Jan 2022 05:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51088
IP address blocks: 46.244.0.0/19 maxlen: 19
5.10.192.0/24 maxlen: 24
185.51.52.0/23 maxlen: 23
178.249.152.0/21 maxlen: 21
46.244.96.0/19 maxlen: 19
185.205.52.0/22 maxlen: 22
2a02:166b::/32 maxlen: 32
2a02:1668::/32 maxlen: 32
2a06:2602::/32 maxlen: 48
2a0b:1c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56250367 (0x35a4fff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=170ef71a422a2f0fe91160579a4050618d8baf10
Validity
Not Before: Jan 1 05:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d364c589cf2a889c853659095dcbd7f12f1cb36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:37:3e:12:4e:f8:43:fd:d7:07:f9:ba:66:a4:
c3:ef:5d:df:d0:86:6e:2a:57:25:ea:e8:cd:8c:4b:
c0:ab:b2:c9:88:eb:5d:ea:df:9a:01:b0:76:46:aa:
c1:75:e1:8e:22:bc:2c:63:17:bb:cf:28:fd:f7:83:
a4:17:da:0f:4b:5b:f9:00:1d:e5:f4:b3:bf:a5:c9:
11:05:50:73:01:2c:81:75:b0:e0:3d:0c:13:df:5c:
ba:f9:8a:e0:c8:a2:41:ee:5b:a6:26:8d:a4:32:17:
d6:85:37:55:1c:9a:bd:03:e2:ec:18:86:48:51:09:
e1:e0:b6:73:99:24:33:9a:9a:92:b1:01:da:63:37:
3f:08:52:8a:1b:ce:e6:df:63:67:ca:05:ca:fb:99:
db:4b:f4:04:cc:f8:d2:87:65:59:7f:49:a2:98:23:
c2:b0:d7:ca:37:d4:e7:27:9d:d5:37:87:4a:77:b2:
92:80:fb:56:a4:75:60:31:38:a2:9e:43:38:d3:70:
d2:43:cd:ec:dd:af:18:c8:e4:42:b5:d4:a4:70:0b:
6b:6f:8d:53:aa:5d:34:05:70:63:5e:4a:9b:2f:df:
c3:c2:ff:4f:b8:f3:08:3e:04:e3:2c:2c:5e:63:c7:
6c:72:42:28:bf:aa:c5:eb:f8:f3:d0:0f:91:6e:7a:
c9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:36:4C:58:9C:F2:A8:89:C8:53:65:90:95:DC:BD:7F:12:F1:CB:36
X509v3 Authority Key Identifier:
keyid:17:0E:F7:1A:42:2A:2F:0F:E9:11:60:57:9A:40:50:61:8D:8B:AF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fw73GkIqLw_pEWBXmkBQYY2LrxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5f7e9-80f9-4317-b21e-8336fec488f3/1/nTZMWJzyqInIU2WQldy9fxLxyzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5f7e9-80f9-4317-b21e-8336fec488f3/1/Fw73GkIqLw_pEWBXmkBQYY2LrxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.192.0/24
46.244.0.0/19
46.244.96.0/19
178.249.152.0/21
185.51.52.0/23
185.205.52.0/22
IPv6:
2a02:1668::/32
2a02:166b::/32
2a06:2602::/32
2a0b:1c0::/29
Signature Algorithm: sha256WithRSAEncryption
71:f4:3a:ca:8c:6a:58:1f:38:f3:9f:49:e6:de:19:be:be:b5:
e9:f8:2e:49:e4:ae:17:96:6c:59:5e:5f:32:a4:c2:51:80:6d:
8f:1f:50:05:87:0b:31:0a:ec:52:25:44:b5:be:8d:fe:0d:64:
40:85:8c:b0:cc:4e:62:dc:73:a8:91:bc:ef:2d:04:f3:2d:e1:
19:17:87:63:f1:3b:dc:c5:84:ab:c7:0e:cc:1f:be:b5:b4:88:
60:13:90:86:50:a1:ae:88:c9:98:4b:b9:bf:6b:5c:be:25:7b:
3f:d5:95:fa:5c:9e:17:5a:9d:65:82:b2:6b:72:38:24:f3:38:
76:fb:4f:67:45:3d:5b:0b:05:9d:89:33:4e:e4:ec:b8:87:fd:
b0:38:49:6c:ed:04:77:b1:dc:b6:14:04:be:32:b9:6d:6a:53:
ab:e3:f5:0d:fd:96:43:b0:83:d0:47:2d:7b:f0:2b:83:f4:9f:
7b:63:51:48:ff:5f:ee:1d:79:47:ee:de:7c:c6:b1:4d:d0:0a:
bf:86:70:09:c1:03:78:e0:ae:ef:ab:40:03:54:3d:c0:8a:69:
d8:97:d2:4e:54:b7:f6:0b:1f:00:db:17:39:a6:cc:e6:01:51:
ce:75:45:41:93:44:55:2e:dc:19:9d:c9:5a:d5:24:c5:4e:3a:
9c:88:8b:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:21:55 2025 by rpki-client