Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/ld5z8xfqkyaTj3CL-O48rXobLow.roa
File: ld5z8xfqkyaTj3CL-O48rXobLow.roa (raw, json)
Hash identifier: x9J1z4ZKNnV9V7kewp2eRzG+uQ6wDuMnrJBPabawh/4=
Subject key identifier: 95:DE:73:F3:17:EA:93:26:93:8F:70:8B:F8:EE:3C:AD:7A:1B:2E:8C
Certificate issuer: /CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Certificate serial: 0187945C2CA56E7FED33F714D4DD972DCE3E
Authority key identifier: D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/ld5z8xfqkyaTj3CL-O48rXobLow.roa
Signing time: Tue 18 Apr 2023 12:34:41 +0000
ROA not before: Tue 18 Apr 2023 12:34:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16246
IP address blocks: 77.87.232.0/21 maxlen: 21
95.143.128.0/20 maxlen: 20
91.197.116.0/22 maxlen: 22
92.240.160.0/19 maxlen: 19
94.74.192.0/18 maxlen: 18
176.98.96.0/20 maxlen: 20
188.175.0.0/16 maxlen: 16
82.150.160.0/19 maxlen: 19
78.108.144.0/21 maxlen: 21
213.180.32.0/19 maxlen: 19
78.108.152.0/21 maxlen: 21
185.15.252.0/22 maxlen: 22
178.17.96.0/20 maxlen: 20
86.63.192.0/19 maxlen: 19
2a03:b4c0::/32 maxlen: 32
2a02:350::/29 maxlen: 29
2a00:d480::/32 maxlen: 32
2a00:1e60::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:94:5c:2c:a5:6e:7f:ed:33:f7:14:d4:dd:97:2d:ce:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Validity
Not Before: Apr 18 12:34:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95de73f317ea9326938f708bf8ee3cad7a1b2e8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:45:6a:9a:75:ad:5e:83:ff:7e:24:f4:b4:de:
01:d3:1c:77:c2:8f:8c:d1:64:51:c6:c0:0b:fd:bd:
1e:22:15:60:88:3c:5e:e7:47:2e:90:7c:18:e9:c7:
80:6a:40:28:1a:1b:64:2b:0a:a3:ed:79:17:6c:09:
42:49:ea:db:d2:6d:30:e6:83:3a:61:a6:4a:35:e5:
f5:88:bb:4c:92:21:c6:55:db:a9:50:8e:b7:18:70:
21:fc:fa:1d:32:e3:c1:16:94:be:d9:ef:f2:dc:ef:
5d:8e:13:0b:2d:de:69:85:4a:7b:f9:de:56:9c:7f:
6b:25:6e:93:cc:05:68:1f:55:e0:3c:22:85:ec:c8:
0c:0e:11:53:0d:1d:9d:99:d5:ff:d2:9d:bd:09:b5:
43:8a:7b:db:7c:ea:75:e1:a2:64:7d:f4:9a:ce:50:
8d:1a:ad:20:73:6f:02:b4:93:a4:47:39:15:5f:c4:
5f:15:d8:88:f1:1f:72:ca:6e:a1:da:7e:46:26:90:
e8:fc:70:2e:f3:f7:a1:3c:80:70:5f:a5:41:e8:f8:
f6:02:d5:0b:de:98:76:9c:41:c3:b4:da:db:92:7f:
f1:79:52:84:ed:93:da:9f:1e:33:4a:7a:e1:e1:4a:
45:e3:97:70:cd:a9:76:77:b6:92:22:0d:52:99:3c:
50:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DE:73:F3:17:EA:93:26:93:8F:70:8B:F8:EE:3C:AD:7A:1B:2E:8C
X509v3 Authority Key Identifier:
keyid:D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/ld5z8xfqkyaTj3CL-O48rXobLow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/1P8P7Ne_RBSJMXiN_n8g1npnoNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.232.0/21
78.108.144.0/20
82.150.160.0/19
86.63.192.0/19
91.197.116.0/22
92.240.160.0/19
94.74.192.0/18
95.143.128.0/20
176.98.96.0/20
178.17.96.0/20
185.15.252.0/22
188.175.0.0/16
213.180.32.0/19
IPv6:
2a00:1e60::/32
2a00:d480::/32
2a02:350::/29
2a03:b4c0::/32
Signature Algorithm: sha256WithRSAEncryption
cd:37:8d:8c:89:b8:06:2a:17:b2:3c:13:af:da:97:3b:7c:eb:
b2:91:bb:6a:3e:6d:8d:41:a6:f0:30:28:08:94:51:29:ca:9f:
aa:51:2c:81:fd:75:09:a5:08:3f:df:99:19:f3:6a:82:75:53:
3f:b8:f5:61:c8:22:c1:d3:21:7b:a0:6b:43:da:7d:8d:24:c4:
aa:88:ea:12:c9:c3:20:63:45:53:3e:a6:82:05:dc:ac:07:c1:
f4:43:bd:84:71:2a:13:3a:c1:55:be:2c:61:a7:cb:0f:48:73:
40:4b:dd:d6:cb:cc:bf:80:26:e2:90:ca:60:44:a2:9c:77:f4:
6a:66:a9:ee:8b:67:85:65:3c:1f:f9:ea:0f:21:ad:20:b2:04:
08:e1:c4:0d:e3:01:d6:09:90:af:68:12:5e:1c:c0:cc:22:58:
98:40:d1:f1:27:57:65:70:7e:a8:d9:f8:92:6c:ea:41:f2:ac:
d9:74:21:ce:58:da:1f:90:b0:c5:3e:12:e1:5f:a0:25:f6:45:
b6:5e:ae:49:55:ae:4b:49:db:db:ce:65:44:72:0b:78:7b:2d:
bc:75:be:8a:36:c3:be:51:0f:35:c4:f5:1b:2d:a2:d4:70:9f:
fb:53:27:ae:8e:2b:4e:ab:99:c3:43:88:14:9b:0a:a9:64:4a:
14:16:0c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:08 2025 by rpki-client