Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/seg6RhmW_PTU3_ID66lOBss_dH0.roa
File: seg6RhmW_PTU3_ID66lOBss_dH0.roa (raw, json)
Hash identifier: YhcoW/P0Id/l4BwdTxsqRhJSe6H/ca6ug1qVCPAxLNw=
Subject key identifier: B1:E8:3A:46:19:96:FC:F4:D4:DF:F2:03:EB:A9:4E:06:CB:3F:74:7D
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27711DEC
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/seg6RhmW_PTU3_ID66lOBss_dH0.roa
Signing time: Sat 01 Jan 2022 16:08:04 +0000
ROA not before: Sat 01 Jan 2022 16:08:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41124
IP address blocks: 93.171.64.0/21 maxlen: 24
92.253.208.0/22 maxlen: 24
146.158.64.0/22 maxlen: 24
31.148.140.0/22 maxlen: 24
146.120.200.0/22 maxlen: 24
95.47.32.0/22 maxlen: 24
95.46.232.0/21 maxlen: 24
146.120.152.0/22 maxlen: 24
146.158.24.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 661724652 (0x27711dec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1e83a461996fcf4d4dff203eba94e06cb3f747d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:13:8f:6c:0b:7c:d0:01:36:82:cb:2c:c9:99:
46:ae:c4:1a:fe:e5:9c:6f:38:17:e6:7d:43:4d:d0:
1a:0c:59:b2:96:51:0e:7a:c1:d7:29:e3:58:7b:ea:
95:3a:fd:38:93:04:fc:38:ee:01:68:5c:89:b4:ea:
c4:22:f1:b4:30:f9:e9:12:c6:af:60:ef:d4:64:9b:
20:1f:12:63:1f:ca:0e:1b:bc:97:51:9d:3a:59:d6:
17:d8:35:72:36:c3:4e:e2:b8:b6:bc:f2:7b:ab:d4:
31:ae:80:07:31:bc:38:b3:53:e2:8e:6e:05:7a:00:
96:d3:8f:6a:d1:45:ee:b7:80:45:b7:c9:42:2f:19:
30:7a:96:df:17:ad:1a:e7:6a:59:47:1e:c2:4f:10:
94:67:23:db:df:74:72:99:34:79:c4:2a:0a:68:22:
b9:73:83:01:1a:3d:ff:d2:ab:c9:78:b7:e3:d2:30:
fd:78:4c:2e:11:ef:3f:3c:0d:d0:79:41:e3:a9:bf:
7a:62:02:76:ec:e7:35:6c:a7:6b:2d:12:9b:32:a3:
03:d6:7b:1e:6e:a1:f0:3b:9d:8c:16:ef:c8:06:47:
f6:15:b0:77:fd:9b:22:4c:59:53:cd:d9:d8:f2:c4:
a0:54:65:c2:60:25:85:5c:d1:8e:80:23:bc:e9:eb:
66:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E8:3A:46:19:96:FC:F4:D4:DF:F2:03:EB:A9:4E:06:CB:3F:74:7D
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/seg6RhmW_PTU3_ID66lOBss_dH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.140.0/22
92.253.208.0/22
93.171.64.0/21
95.46.232.0/21
95.47.32.0/22
146.120.152.0/22
146.120.200.0/22
146.158.24.0/22
146.158.64.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:0a:6e:e4:3c:e6:71:1b:84:bb:26:1c:0b:56:f2:db:45:f2:
a0:e0:30:5b:af:82:7b:8e:c9:48:b3:93:80:90:88:d1:72:7a:
84:d5:49:10:4a:eb:3c:c0:d0:73:69:13:ec:87:29:e8:b2:bc:
7e:58:2c:71:e6:2a:a4:76:ae:86:6e:e9:a4:8f:ca:19:7d:9c:
69:a9:a6:2d:d9:a6:55:e2:be:29:23:d2:62:55:c4:b9:9e:15:
48:aa:28:6f:52:d2:4d:6b:27:ef:49:86:c2:76:d1:4c:3e:66:
40:a7:2f:a7:4e:fe:68:8a:ab:29:38:dd:e6:ed:3b:07:a7:2d:
1a:ac:7f:5c:b3:a4:f8:46:ae:7f:d3:d1:dc:f9:43:67:0a:f7:
fc:33:67:49:82:36:96:90:38:b3:f7:23:05:2f:5a:df:a0:e8:
6b:e4:af:73:ec:cd:07:80:97:57:7e:89:9b:8b:cd:aa:dc:1c:
70:9c:6a:a2:eb:c1:11:e8:95:55:71:50:75:2f:59:97:1f:d8:
d5:2c:c2:d8:d5:44:3e:53:dd:9a:ec:ec:4a:9b:92:54:92:70:
9c:3e:45:46:1f:a8:43:8a:58:49:71:e4:c5:a3:80:85:18:8c:
ad:52:eb:c1:2f:f0:fa:1a:c5:5a:c0:79:c1:ad:88:56:4c:5a:
ce:96:8e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:27:08 2025 by rpki-client