Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3d7874-2588-407f-acb9-13d9efbf5ccf/1/R2m_3K4eXi-IUFsekXhAjvl1wrU.roa
File: R2m_3K4eXi-IUFsekXhAjvl1wrU.roa (raw, json)
Hash identifier: EjN9oN02hnoBT1MUZHAJnokWOLO9EfhJnQvw6humiYU=
Subject key identifier: 47:69:BF:DC:AE:1E:5E:2F:88:50:5B:1E:91:78:40:8E:F9:75:C2:B5
Certificate issuer: /CN=cfa349e3b6ac2fa262413c20cbc41d6a53743193
Certificate serial: 088AEF5F
Authority key identifier: CF:A3:49:E3:B6:AC:2F:A2:62:41:3C:20:CB:C4:1D:6A:53:74:31:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z6NJ47asL6JiQTwgy8QdalN0MZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3d7874-2588-407f-acb9-13d9efbf5ccf/1/R2m_3K4eXi-IUFsekXhAjvl1wrU.roa
Signing time: Wed 22 Jun 2022 19:47:32 +0000
ROA not before: Wed 22 Jun 2022 19:47:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 194.53.68.0/22 maxlen: 32
194.53.70.0/24 maxlen: 24
194.110.48.0/22 maxlen: 32
194.33.156.0/22 maxlen: 32
194.34.128.0/22 maxlen: 32
193.228.72.0/22 maxlen: 32
193.142.132.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143322975 (0x88aef5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfa349e3b6ac2fa262413c20cbc41d6a53743193
Validity
Not Before: Jun 22 19:47:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4769bfdcae1e5e2f88505b1e9178408ef975c2b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ce:ac:16:9d:a8:01:62:bf:e4:50:2f:b6:42:
09:04:45:1f:ea:77:a4:7b:9e:bd:b4:38:5c:19:a1:
90:d2:33:0a:f2:15:e9:65:c9:87:8e:26:9b:9a:99:
a5:16:5f:0f:2b:f3:87:2b:01:d0:f1:b7:10:47:ba:
ab:7d:2d:10:43:3d:32:b6:e5:4f:bf:eb:76:52:16:
41:5d:68:b4:e6:6a:72:1a:78:80:1a:6e:50:cf:5e:
64:7f:72:86:4e:05:a1:fc:5d:77:72:f0:60:01:51:
32:a8:72:3d:55:34:b8:6c:e4:2c:b3:03:ec:bc:d1:
13:30:b7:25:99:d1:8f:d6:3d:85:b6:15:1d:60:37:
48:60:91:5d:0b:b9:2b:4a:17:49:98:e0:59:b0:d5:
63:92:a9:3e:53:f0:c1:62:33:65:f5:41:b4:5b:20:
c9:f7:d1:f7:f8:bc:e2:72:9c:8f:c0:59:f6:9b:90:
ef:5e:87:1b:0a:90:ea:ea:ff:81:a3:46:a7:e0:7a:
a2:f3:b0:92:c2:67:7a:71:87:66:04:3b:e6:89:c2:
51:31:5a:9f:72:0e:a1:1e:0d:c2:a0:5e:a9:d0:d8:
5c:39:8c:c7:cc:e3:9e:06:f3:f1:f3:e7:9f:5f:0c:
76:90:f5:52:93:4c:f3:a6:13:10:eb:8c:b0:84:b7:
3d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:69:BF:DC:AE:1E:5E:2F:88:50:5B:1E:91:78:40:8E:F9:75:C2:B5
X509v3 Authority Key Identifier:
keyid:CF:A3:49:E3:B6:AC:2F:A2:62:41:3C:20:CB:C4:1D:6A:53:74:31:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z6NJ47asL6JiQTwgy8QdalN0MZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d7874-2588-407f-acb9-13d9efbf5ccf/1/R2m_3K4eXi-IUFsekXhAjvl1wrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d7874-2588-407f-acb9-13d9efbf5ccf/1/z6NJ47asL6JiQTwgy8QdalN0MZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.132.0/22
193.228.72.0/22
194.33.156.0/22
194.34.128.0/22
194.53.68.0/22
194.110.48.0/22
Signature Algorithm: sha256WithRSAEncryption
d3:47:89:fe:89:da:72:e5:04:cf:6a:6b:6f:7d:d0:19:5f:09:
00:be:db:61:4d:4d:05:20:c1:89:13:69:d0:3c:98:93:d5:70:
54:31:93:3a:fa:3b:b7:ae:dc:15:f6:1d:85:44:bc:b6:dd:2b:
5e:74:0e:95:a8:0a:02:ef:9e:71:7d:30:95:ce:a1:d7:25:cb:
63:cd:e2:c9:68:2f:3a:f1:9c:85:00:26:b9:e1:48:18:06:20:
c9:23:d2:1e:72:c0:71:79:76:29:93:43:d6:e4:58:f4:1d:ec:
a9:cb:ec:19:a8:36:85:84:50:eb:3b:e1:58:67:21:4b:c2:57:
7b:d7:a0:cd:cc:f7:31:d2:4d:c8:7b:be:c5:af:11:b6:9b:12:
09:a2:83:5c:f5:f2:94:d3:a8:69:b8:d5:1a:17:1b:e5:10:26:
56:3f:f5:28:41:8b:4e:c5:60:74:c0:ee:1c:a0:dd:a4:8e:89:
dc:49:34:a8:65:0d:8b:5d:62:82:ad:e1:2a:08:b1:69:80:9f:
3a:f7:f6:7b:11:c3:67:83:03:71:ce:46:0b:6c:e5:55:45:f1:
5a:4b:f9:53:fa:07:c4:22:b8:0b:f0:b1:2f:f0:79:5f:1d:82:
cc:4b:3b:74:44:0c:e0:46:31:0c:53:5c:a0:0e:d3:e1:58:75:
17:ce:48:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:50:21 2025 by rpki-client