Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/B2eA6kJ0z5gY_uC_H4NTICL6dzM.roa
File: B2eA6kJ0z5gY_uC_H4NTICL6dzM.roa (raw, json)
Hash identifier: HWrx7IBjivd/zEvDWcOv9hHazjNpNiPfirL7ay1n6eo=
Subject key identifier: 07:67:80:EA:42:74:CF:98:18:FE:E0:BF:1F:83:53:20:22:FA:77:33
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258F94A56FF7E5CA27A28539DCC75952
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/B2eA6kJ0z5gY_uC_H4NTICL6dzM.roa
Signing time: Thu 02 Jan 2025 05:49:14 +0000
ROA not before: Thu 02 Jan 2025 05:49:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41124
IP address blocks: 93.171.64.0/21 maxlen: 24
93.171.228.0/23 maxlen: 24
95.47.32.0/22 maxlen: 24
95.47.192.0/22 maxlen: 24
146.120.124.0/22 maxlen: 24
146.120.152.0/22 maxlen: 24
146.120.176.0/22 maxlen: 24
146.158.24.0/22 maxlen: 24
146.158.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:94:a5:6f:f7:e5:ca:27:a2:85:39:dc:c7:59:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=076780ea4274cf9818fee0bf1f83532022fa7733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a7:c3:d7:b4:85:5b:29:38:70:33:74:93:74:
e4:6e:34:8e:31:bd:54:3c:ad:85:e3:61:73:2e:f5:
73:06:08:34:5b:ed:49:a3:1c:f1:26:2b:96:91:27:
34:bb:63:56:82:0a:17:39:08:aa:24:67:dc:cd:3d:
ba:b0:e5:29:f4:a8:a8:0b:d6:92:51:51:ed:f5:d9:
af:b0:2b:88:ad:74:65:67:fe:90:00:2e:68:71:b1:
f0:aa:fe:54:86:ca:df:12:0c:9c:e6:76:e0:2a:12:
e1:34:a9:cc:f9:b0:68:c3:f2:70:16:99:a8:15:b5:
a6:fd:d8:4e:ab:b5:88:2c:18:dc:96:b8:98:02:a5:
3d:a9:1d:70:bf:41:19:c3:0b:98:6e:bf:8f:b0:ac:
a1:cd:e3:83:82:b3:d1:50:90:93:4f:ac:5a:ca:ef:
11:0c:d4:4b:df:89:77:9b:90:a7:64:ca:77:58:af:
d2:ce:30:86:b5:9c:f7:de:d3:29:76:9d:d0:70:c8:
53:bc:05:de:76:91:ca:34:06:81:52:7d:72:1b:0a:
50:63:36:fe:0b:9c:da:4b:f3:c0:f3:fb:e9:ed:6a:
b2:08:40:a5:5f:ad:b2:02:a5:43:a3:d4:2b:4f:05:
af:c4:1f:40:7e:9c:46:85:7e:47:df:d5:03:3c:b0:
e1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:67:80:EA:42:74:CF:98:18:FE:E0:BF:1F:83:53:20:22:FA:77:33
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/B2eA6kJ0z5gY_uC_H4NTICL6dzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.64.0/21
93.171.228.0/23
95.47.32.0/22
95.47.192.0/22
146.120.124.0/22
146.120.152.0/22
146.120.176.0/22
146.158.24.0/22
146.158.64.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:05:bf:9b:34:8a:51:fe:a7:c9:87:cd:e5:b9:55:e4:ea:ef:
30:28:fe:d1:c4:87:b1:e0:c9:8a:db:f0:61:3e:e1:e1:12:b7:
bd:43:1e:ff:e5:67:03:a5:2c:9f:03:47:f9:2c:0f:aa:0a:97:
bc:12:fc:05:6a:ca:5b:01:8e:3e:53:fc:6c:94:1d:7c:07:16:
5d:d6:fa:e4:5b:35:24:49:71:97:8e:03:55:52:bc:69:d1:c7:
1b:70:9b:48:dc:6c:32:08:7a:13:b5:21:6d:23:ba:47:6b:29:
71:de:89:cf:a9:96:72:3b:f2:34:f6:df:2e:97:f5:84:7f:81:
8e:23:5c:d4:d8:f6:ba:56:f3:05:b6:f6:37:e2:bc:fb:ab:7e:
b6:43:75:73:2a:51:2a:c9:85:6d:ca:0a:d9:ab:20:4b:50:74:
3c:4a:30:7d:de:c1:67:de:a6:e9:df:04:54:cd:92:73:99:88:
f5:46:72:b3:50:fe:12:ba:18:cd:58:c2:a2:62:d4:3d:cf:bb:
71:69:11:89:97:39:ab:ad:2d:7f:40:88:05:f2:eb:25:27:79:
b1:6c:bc:18:4d:74:64:88:8f:4a:69:ef:b1:32:be:be:04:1d:
41:b5:66:47:8a:5e:c3:23:35:c0:c4:b8:29:b2:90:04:18:41:
3f:e4:97:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:23 2025 by rpki-client