Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/c8ec95-b5f5-44fb-b93d-2092af647070/1/lTOd3hBQybTJYUaIkT_YY472lOU.roa
File: lTOd3hBQybTJYUaIkT_YY472lOU.roa (raw, json)
Hash identifier: Iw3lBvRj2sPfTjh+Ds3PJOQSA5KNcoYBYYMusxWhPyc=
Subject key identifier: 95:33:9D:DE:10:50:C9:B4:C9:61:46:88:91:3F:D8:63:8E:F6:94:E5
Certificate issuer: /CN=8c186a56ea84c13c62768a9d17bae133cedf1045
Certificate serial: 01919E614E99FB7B08AEF53D2E4D286B41C4
Authority key identifier: 8C:18:6A:56:EA:84:C1:3C:62:76:8A:9D:17:BA:E1:33:CE:DF:10:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBhqVuqEwTxidoqdF7rhM87fEEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/c8ec95-b5f5-44fb-b93d-2092af647070/1/lTOd3hBQybTJYUaIkT_YY472lOU.roa
Signing time: Thu 29 Aug 2024 13:44:22 +0000
ROA not before: Thu 29 Aug 2024 13:44:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1299
IP address blocks: 31.22.12.0/22 maxlen: 24
45.89.4.0/22 maxlen: 24
51.179.192.0/18 maxlen: 24
62.64.128.0/21 maxlen: 24
62.64.136.0/22 maxlen: 24
62.64.144.0/20 maxlen: 24
141.195.128.0/18 maxlen: 24
185.102.148.0/22 maxlen: 24
185.147.244.0/23 maxlen: 24
188.74.64.0/19 maxlen: 24
212.132.160.0/19 maxlen: 24
217.142.64.0/18 maxlen: 24
217.168.248.0/21 maxlen: 24
2a04:c880::/32 maxlen: 48
2a05:87c0::/29 maxlen: 48
2a0a:5580::/29 maxlen: 48
2a0f:9d80::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9e:61:4e:99:fb:7b:08:ae:f5:3d:2e:4d:28:6b:41:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c186a56ea84c13c62768a9d17bae133cedf1045
Validity
Not Before: Aug 29 13:44:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95339dde1050c9b4c9614688913fd8638ef694e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9a:12:27:e5:de:6c:ce:0f:26:b7:f4:27:9b:
71:26:c3:6e:10:ed:c4:ff:ef:48:83:41:05:27:cc:
6b:b5:32:75:b7:f5:4c:e7:b1:32:b9:ae:e2:5a:ba:
eb:9b:3a:be:3e:4c:30:e5:09:7b:92:19:78:1f:cb:
de:4f:4f:f8:3c:67:cf:b3:03:02:d1:29:0a:b9:76:
31:fc:ce:06:80:c7:17:e6:d4:49:87:b4:44:b7:2b:
51:a7:40:61:42:2d:62:07:9e:63:f0:d4:39:8b:f1:
86:18:66:dc:9f:b5:f4:3e:69:98:6e:fc:07:dd:31:
ba:54:f2:6e:8d:73:b7:06:21:81:fb:4b:d6:9d:06:
ae:22:44:98:24:7e:f6:da:81:4f:a0:ad:9b:e1:e6:
06:0d:2e:92:79:17:b5:13:c3:fa:05:19:06:4f:0e:
bc:cd:d5:30:2c:0c:fe:43:79:f5:9b:f9:7f:a8:3c:
56:f4:d0:54:aa:ac:37:3d:d0:2f:9c:3b:58:a9:4c:
29:a8:b2:41:4e:a6:56:fb:9f:35:61:55:71:14:d0:
6c:4a:27:dc:2a:3c:ed:39:23:57:f3:c5:53:d8:2a:
48:ae:12:86:07:db:76:26:1e:f9:6e:db:ec:23:ee:
d0:e0:05:a3:dc:f0:9f:97:0d:29:9e:43:06:4b:c3:
85:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:33:9D:DE:10:50:C9:B4:C9:61:46:88:91:3F:D8:63:8E:F6:94:E5
X509v3 Authority Key Identifier:
keyid:8C:18:6A:56:EA:84:C1:3C:62:76:8A:9D:17:BA:E1:33:CE:DF:10:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBhqVuqEwTxidoqdF7rhM87fEEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c8ec95-b5f5-44fb-b93d-2092af647070/1/lTOd3hBQybTJYUaIkT_YY472lOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c8ec95-b5f5-44fb-b93d-2092af647070/1/jBhqVuqEwTxidoqdF7rhM87fEEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.22.12.0/22
45.89.4.0/22
51.179.192.0/18
62.64.128.0-62.64.139.255
62.64.144.0/20
141.195.128.0/18
185.102.148.0/22
185.147.244.0/23
188.74.64.0/19
212.132.160.0/19
217.142.64.0/18
217.168.248.0/21
IPv6:
2a04:c880::/32
2a05:87c0::/29
2a0a:5580::/29
2a0f:9d80::/32
Signature Algorithm: sha256WithRSAEncryption
1f:0f:3a:90:63:b2:4e:7e:30:fd:4a:e7:51:3b:b0:3b:78:2b:
42:a5:10:64:78:8a:4b:e8:e6:b3:d0:8f:47:89:4b:a0:84:20:
93:31:71:9f:32:49:a5:cd:ed:f0:e8:ff:22:ab:31:c2:e2:e1:
23:26:1a:22:bb:94:9b:60:d8:ee:f9:b1:bb:f4:0d:1f:51:6a:
cc:fa:50:65:1c:a8:c4:a9:20:f6:d8:ed:d5:e3:64:cb:e9:ac:
48:d4:53:7e:30:ae:2c:f2:e3:d5:8a:1d:50:41:0b:7b:66:f0:
4b:08:40:43:2d:78:b8:ab:8e:17:a8:24:2e:08:4a:7d:a3:c8:
5b:63:b5:9d:ad:19:31:44:ab:13:90:73:7e:f9:85:2d:b4:c7:
b0:85:5a:94:7a:f2:a1:90:1b:ad:58:01:a9:df:31:a2:45:ef:
6d:15:3e:6d:e3:c4:0a:4d:31:e1:09:d9:75:04:d8:cb:82:f2:
73:d6:c9:1b:31:c7:1a:7d:67:e3:21:7c:aa:74:04:d8:2c:07:
70:64:82:fc:f6:c7:24:65:12:34:f6:8b:9a:c8:cf:c5:56:a4:
10:bc:0e:9d:05:50:86:59:0b:40:d6:d1:52:16:62:c3:e5:b0:
66:28:c7:95:e7:ac:42:fc:59:81:e6:5f:33:6d:7f:17:4a:5f:
69:3a:ef:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:00:35 2025 by rpki-client