Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/syNk_zFRkRiiJi9P691cfUseKKE.roa
File: syNk_zFRkRiiJi9P691cfUseKKE.roa (raw, json)
Hash identifier: mnEbK7fEthj1GxKi7UkizbXlEcvvwhgo1K1EW7IB7ns=
Subject key identifier: B3:23:64:FF:31:51:91:18:A2:26:2F:4F:EB:DD:5C:7D:4B:1E:28:A1
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2A159935
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/syNk_zFRkRiiJi9P691cfUseKKE.roa
Signing time: Wed 01 Jun 2022 09:32:23 +0000
ROA not before: Wed 01 Jun 2022 09:32:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51812
IP address blocks: 95.46.152.0/23 maxlen: 23
93.170.104.0/23 maxlen: 23
146.120.186.0/23 maxlen: 24
93.170.120.0/23 maxlen: 23
92.253.216.0/23 maxlen: 23
146.120.114.0/23 maxlen: 24
93.170.32.0/23 maxlen: 23
93.171.216.0/23 maxlen: 24
93.170.50.0/23 maxlen: 24
93.171.14.0/23 maxlen: 23
146.120.156.0/23 maxlen: 24
95.47.202.0/23 maxlen: 23
95.46.38.0/23 maxlen: 23
146.120.98.0/23 maxlen: 23
93.170.138.0/23 maxlen: 23
93.171.98.0/23 maxlen: 24
92.38.88.0/23 maxlen: 24
92.38.90.0/23 maxlen: 24
95.47.184.0/23 maxlen: 23
93.170.172.0/23 maxlen: 23
146.158.10.0/23 maxlen: 24
95.46.12.0/23 maxlen: 23
95.46.14.0/23 maxlen: 23
95.47.198.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 706058549 (0x2a159935)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 1 09:32:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b32364ff31519118a2262f4febdd5c7d4b1e28a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e4:0d:d2:b7:a4:87:af:7f:0a:7f:d2:1b:13:
11:5f:91:16:9d:0c:4c:bd:21:88:c7:ec:b2:1a:8d:
ca:f2:28:5e:c9:3d:2d:d7:57:08:c0:4f:1b:fd:4e:
b6:28:24:f9:6d:89:75:1f:bd:d1:52:36:97:64:b3:
03:43:88:4d:7f:df:74:7f:86:c2:dc:9f:88:ca:00:
db:df:6d:29:7f:38:de:6c:3b:bc:9d:8f:a6:bd:65:
1f:4f:2d:ed:45:26:e1:06:b6:31:a5:83:0f:15:e7:
4c:c6:24:4b:4a:28:3f:7a:de:0b:62:58:6d:cd:b2:
fb:b5:ca:9b:0c:66:4d:cb:e9:6f:da:47:6b:4f:45:
d1:c3:8d:50:0b:01:c5:2a:72:90:65:d0:75:f0:3f:
1b:31:1d:4d:2e:b6:53:70:4d:2e:fd:86:f2:fa:31:
0e:72:d9:f0:5e:65:04:a9:f3:64:53:21:ba:90:1e:
c4:10:e9:8a:bf:4b:78:53:c7:44:ec:61:17:7d:51:
a1:42:a2:56:c6:b6:00:f6:62:66:46:2d:d2:11:af:
f4:d2:82:97:85:01:bd:6e:5d:db:d3:32:89:4e:06:
05:ce:01:ba:1a:b2:ef:1b:21:80:18:94:26:e6:a2:
2b:74:54:0e:98:99:e4:bf:e4:79:c9:5b:63:aa:2b:
d7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:23:64:FF:31:51:91:18:A2:26:2F:4F:EB:DD:5C:7D:4B:1E:28:A1
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/syNk_zFRkRiiJi9P691cfUseKKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.88.0/22
92.253.216.0/23
93.170.32.0/23
93.170.50.0/23
93.170.104.0/23
93.170.120.0/23
93.170.138.0/23
93.170.172.0/23
93.171.14.0/23
93.171.98.0/23
93.171.216.0/23
95.46.12.0/22
95.46.38.0/23
95.46.152.0/23
95.47.184.0/23
95.47.198.0/23
95.47.202.0/23
146.120.98.0/23
146.120.114.0/23
146.120.156.0/23
146.120.186.0/23
146.158.10.0/23
Signature Algorithm: sha256WithRSAEncryption
32:1e:48:f7:b2:47:cc:7e:10:21:95:72:06:c1:fe:ba:cd:31:
c5:03:ed:16:1b:96:78:42:5c:af:80:ad:e5:7b:75:76:09:bb:
eb:ba:ad:c3:61:d2:56:27:59:a2:87:66:66:7c:0e:c6:b1:a9:
33:24:8a:f5:61:ef:9b:2a:52:7c:ce:62:b3:d4:6b:e4:5b:ab:
29:e2:d8:b2:c9:59:b6:7d:58:0d:10:6b:26:7a:aa:72:58:5a:
c7:44:99:4f:4c:34:62:84:7c:db:47:9f:ea:48:98:4f:e5:74:
b5:cd:b7:f9:f9:c8:7d:c9:55:57:ea:da:8e:ef:b3:1f:84:e2:
13:d6:d9:05:ca:49:8f:e5:64:c9:81:e3:22:4d:fa:c4:e1:0e:
55:75:dc:4c:d6:37:8b:d9:dc:89:c8:13:75:7d:49:2a:91:61:
45:f3:90:d2:4a:53:5f:c5:fe:df:9f:65:69:ad:94:df:13:5f:
2f:d1:ec:dc:dc:ad:8f:e0:f0:53:e7:49:3e:0d:8a:ea:a4:b3:
05:f8:47:2a:c7:63:d5:5b:be:87:d1:f1:09:f1:47:7b:ab:fd:
1e:74:29:c0:2b:7f:9f:29:23:1f:a9:04:8d:c3:ab:75:7d:01:
e0:f7:48:be:53:4a:b7:cc:0c:a1:c4:55:aa:82:00:c3:40:64:
c4:24:02:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:22 2025 by rpki-client