Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/SYRnChSsh0_v6fjwXGx7ILcwh_8.roa
File: SYRnChSsh0_v6fjwXGx7ILcwh_8.roa (raw, json)
Hash identifier: ub+o2UwDjpsKp4KwHEYNQcFaXm52BqcyybdGRXcC+wM=
Subject key identifier: 49:84:67:0A:14:AC:87:4F:EF:E9:F8:F0:5C:6C:7B:20:B7:30:87:FF
Certificate issuer: /CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Certificate serial: 01942143C938ED0AA3F78B8AEEE80699309C
Authority key identifier: 7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/SYRnChSsh0_v6fjwXGx7ILcwh_8.roa
Signing time: Wed 01 Jan 2025 09:47:57 +0000
ROA not before: Wed 01 Jan 2025 09:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212661
IP address blocks: 185.123.148.0/24 maxlen: 24
193.3.37.0/24 maxlen: 24
212.146.160.0/22 maxlen: 22
212.146.160.0/24 maxlen: 24
212.146.161.0/24 maxlen: 24
212.146.164.0/22 maxlen: 22
212.146.172.0/24 maxlen: 24
212.146.175.0/24 maxlen: 24
212.146.176.0/22 maxlen: 22
212.146.180.0/22 maxlen: 22
212.146.188.0/24 maxlen: 24
212.146.190.0/24 maxlen: 24
2a06:dac0::/44 maxlen: 44
2a06:dac0:100::/44 maxlen: 44
2a06:dac0:200::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:c9:38:ed:0a:a3:f7:8b:8a:ee:e8:06:99:30:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Validity
Not Before: Jan 1 09:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4984670a14ac874fefe9f8f05c6c7b20b73087ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:99:a7:8a:e1:36:e6:2b:ff:dc:ce:9c:22:48:
67:5c:b0:5c:36:df:0b:ad:f8:7d:cc:2b:b9:61:4f:
5b:af:c4:6c:79:ae:3e:e9:55:fd:61:2e:d3:76:30:
d4:dd:ba:95:fb:6e:a0:6b:8a:fe:e1:1b:22:8a:40:
d0:d6:ac:4c:05:67:a6:a0:69:1e:a2:ca:4d:fd:1e:
6c:51:c1:02:ef:d7:00:52:f3:b8:c4:f2:7c:1e:0d:
f1:9c:61:84:d7:88:c9:70:9b:6c:a7:8b:94:c0:83:
63:ab:5d:ab:b3:d7:42:22:4b:86:9a:1f:b3:c8:b2:
7a:2d:fe:c2:22:fd:b2:91:5c:d7:41:d1:38:3a:b0:
06:52:8b:d2:a6:cd:5a:d0:0d:e6:90:80:89:b9:88:
3a:4b:25:61:11:70:01:0e:4a:44:9b:c5:32:ee:61:
d0:c2:7a:7b:e7:75:f1:4e:b5:89:da:3a:09:91:24:
23:4b:f1:88:ed:5d:e1:84:65:70:cd:f3:4d:de:bc:
f2:15:9b:10:c6:ec:ab:bf:7d:87:5b:fd:59:3f:8f:
fa:28:83:b5:29:12:f9:79:63:f4:60:88:42:1b:a6:
ac:0a:61:d1:d8:32:fa:05:93:0a:7a:df:a7:7f:f4:
38:80:e6:82:db:01:e9:78:48:a1:8a:b1:72:59:a4:
df:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:84:67:0A:14:AC:87:4F:EF:E9:F8:F0:5C:6C:7B:20:B7:30:87:FF
X509v3 Authority Key Identifier:
keyid:7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/SYRnChSsh0_v6fjwXGx7ILcwh_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.148.0/24
193.3.37.0/24
212.146.160.0/21
212.146.172.0/24
212.146.175.0-212.146.183.255
212.146.188.0/24
212.146.190.0/24
IPv6:
2a06:dac0::/44
2a06:dac0:100::/44
2a06:dac0:200::/44
Signature Algorithm: sha256WithRSAEncryption
b2:72:f1:e1:fc:9e:c3:62:3e:b0:4b:3c:88:41:7a:d9:12:58:
04:6d:9f:54:7b:c1:47:4c:24:5f:1d:e7:e5:e4:c9:5b:4d:65:
9e:ea:97:e4:9e:e0:7f:ec:df:85:35:55:13:35:9a:fd:3f:4e:
5c:30:43:5f:70:24:14:f9:5b:15:f5:56:cb:d5:ce:76:21:a5:
ab:02:be:c7:06:97:63:99:51:4d:04:12:3f:12:3a:be:06:ed:
c3:58:dd:04:f3:48:47:11:81:ed:d2:af:30:23:2d:cf:fa:27:
4e:c9:0d:32:1a:c6:81:27:2e:99:37:87:e9:d8:40:34:fb:eb:
15:a4:4d:c1:fa:aa:f6:08:49:ca:df:02:7d:b3:a7:1a:f6:b3:
03:ad:d0:a4:a9:6d:b0:b3:2a:e2:36:19:94:b1:06:fc:28:95:
7c:7c:c0:a7:27:53:bb:03:8b:0d:d3:9b:84:0b:1b:d2:7f:8f:
ba:13:0d:e7:0e:0b:ce:32:58:93:38:d2:28:a2:3b:2b:f3:d4:
bd:c3:f5:39:14:db:07:bd:97:bf:8b:1f:c8:5e:c2:14:a1:2e:
da:3e:86:d0:3b:53:73:1c:aa:22:c9:ea:bc:37:91:ab:4f:aa:
5b:bf:b9:5f:6b:39:6d:2e:2a:1a:12:f0:fa:b5:23:84:de:f4:
6b:64:2f:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:30 2025 by rpki-client