Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/bb2647-0950-46a4-b56d-34eb67b475f6/1/9PtV820La-QxlyTXoQ9d9ZcapJg.roa
File: 9PtV820La-QxlyTXoQ9d9ZcapJg.roa (raw, json)
Hash identifier: 4luRRXU3ZX0IiTOVOGCPxGoae2PyjiuN4bvP2Y0Fqys=
Subject key identifier: F4:FB:55:F3:6D:0B:6B:E4:31:97:24:D7:A1:0F:5D:F5:97:1A:A4:98
Certificate issuer: /CN=7a6735b7a553a1680c11add3e48c3635b53979ca
Certificate serial: 018B6D6C4C71F5EF6B8CA826C3E6E85E876F
Authority key identifier: 7A:67:35:B7:A5:53:A1:68:0C:11:AD:D3:E4:8C:36:35:B5:39:79:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/emc1t6VToWgMEa3T5Iw2NbU5eco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/bb2647-0950-46a4-b56d-34eb67b475f6/1/9PtV820La-QxlyTXoQ9d9ZcapJg.roa
Signing time: Thu 26 Oct 2023 19:18:15 +0000
ROA not before: Thu 26 Oct 2023 19:18:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49604
IP address blocks: 185.31.240.0/22 maxlen: 24
85.234.246.0/23 maxlen: 24
85.234.242.0/23 maxlen: 23
85.234.244.0/23 maxlen: 23
217.146.64.0/20 maxlen: 24
85.222.232.0/22 maxlen: 24
2a02:29ea:1e::/48 maxlen: 48
2a02:29ea:a::/48 maxlen: 48
2a02:29ea:14::/48 maxlen: 48
2a02:29e8::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6d:6c:4c:71:f5:ef:6b:8c:a8:26:c3:e6:e8:5e:87:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a6735b7a553a1680c11add3e48c3635b53979ca
Validity
Not Before: Oct 26 19:18:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4fb55f36d0b6be4319724d7a10f5df5971aa498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:36:44:dc:e3:6e:9f:f3:8c:94:82:00:17:19:
8c:73:c0:35:15:b7:5c:f6:37:ed:c4:a5:4f:83:0d:
8a:ef:fe:58:e5:1d:fd:e4:fe:b2:31:29:5b:5c:b3:
cc:41:75:d3:0f:c3:35:be:4c:37:7f:21:64:da:36:
ed:6e:88:04:b6:92:45:3e:07:d5:de:25:41:9f:23:
a3:e2:40:95:bb:ed:5e:d3:ca:82:7c:da:a5:81:4d:
84:01:bf:1a:e9:d4:86:05:e8:95:5e:02:86:60:52:
ff:ad:df:cf:22:9f:4f:57:5a:3a:7e:1f:c1:35:c2:
8e:cb:5a:93:48:6b:ee:cc:27:51:54:22:88:76:61:
b3:e4:a5:ad:9d:71:e5:e5:93:89:ae:c4:47:c9:1e:
ac:b8:03:f8:4e:fb:82:7a:57:ac:ae:d5:6a:ac:ce:
38:75:2c:3e:d8:a3:09:79:1f:92:69:95:db:ff:0a:
68:d0:56:ec:c0:92:0e:9f:31:f8:1e:8c:f6:ca:93:
77:3f:df:44:18:b2:f8:3e:37:90:1a:c5:85:14:6c:
cd:7b:a9:ba:b0:38:3b:00:e2:9d:95:16:ad:46:9b:
fa:1b:c7:d3:9f:36:76:62:5f:0f:f6:e7:6a:19:21:
c3:07:6f:fd:fa:2c:92:6e:bb:e2:8c:1d:15:09:7f:
98:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:FB:55:F3:6D:0B:6B:E4:31:97:24:D7:A1:0F:5D:F5:97:1A:A4:98
X509v3 Authority Key Identifier:
keyid:7A:67:35:B7:A5:53:A1:68:0C:11:AD:D3:E4:8C:36:35:B5:39:79:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/emc1t6VToWgMEa3T5Iw2NbU5eco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb2647-0950-46a4-b56d-34eb67b475f6/1/9PtV820La-QxlyTXoQ9d9ZcapJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb2647-0950-46a4-b56d-34eb67b475f6/1/emc1t6VToWgMEa3T5Iw2NbU5eco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.222.232.0/22
85.234.242.0-85.234.247.255
185.31.240.0/22
217.146.64.0/20
IPv6:
2a02:29e8::/32
2a02:29ea:a::/48
2a02:29ea:14::/48
2a02:29ea:1e::/48
Signature Algorithm: sha256WithRSAEncryption
21:a7:7e:ef:c6:ff:b2:43:5c:39:b6:49:24:98:e9:f1:16:15:
59:1f:64:79:b0:ad:1e:b1:cd:df:00:3a:c9:b5:3f:15:15:88:
9a:b9:9a:7b:6d:25:4c:7e:25:07:28:59:b4:d8:18:99:b4:16:
91:12:ac:3b:b3:1c:92:de:fe:7d:13:4d:61:41:3a:09:f0:43:
55:f5:51:69:35:21:90:cb:d1:25:8f:55:5b:aa:bd:de:9c:8d:
20:fe:ff:59:2d:30:86:5a:ce:5c:9f:f1:5b:29:1c:eb:ce:6f:
70:f9:6a:33:7f:47:cc:1e:37:3f:ae:37:ee:31:91:0b:d3:ef:
61:8e:69:0c:22:5e:18:9d:15:88:72:99:db:cb:ef:d8:ad:83:
60:b1:c3:33:34:14:66:63:ac:d4:14:64:66:a2:0c:d9:11:20:
2b:df:d8:86:b6:71:79:e7:6a:f5:c4:53:a8:ce:91:3d:5b:46:
1c:e7:2a:e1:7d:ec:4d:82:2e:ab:84:ca:cc:00:d3:2e:e0:e8:
00:53:aa:e3:3b:a1:01:9b:8a:a8:2d:96:b1:0b:62:98:64:e2:
c4:05:d3:7a:d6:3c:65:83:4f:86:c1:62:3b:5b:c1:a5:96:b3:
22:64:a7:a7:5c:ae:2f:6a:4d:b9:0b:f4:36:c6:87:e9:6f:4f:
4e:c7:b9:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:37:36 2025 by rpki-client