Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/w3Wg3pNISpC5_ls4Db1X8o6Cycg.roa
File: w3Wg3pNISpC5_ls4Db1X8o6Cycg.roa (raw, json)
Hash identifier: W1IvV3JDdZM0GeJOGOGDgmoh3KarXETsgWF4Mlm/0aE=
Subject key identifier: C3:75:A0:DE:93:48:4A:90:B9:FE:5B:38:0D:BD:57:F2:8E:82:C9:C8
Certificate issuer: /CN=4944680c20d1af01f169b18ac9c77d9877133cde
Certificate serial: 0413A723
Authority key identifier: 49:44:68:0C:20:D1:AF:01:F1:69:B1:8A:C9:C7:7D:98:77:13:3C:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SURoDCDRrwHxabGKycd9mHcTPN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/w3Wg3pNISpC5_ls4Db1X8o6Cycg.roa
Signing time: Fri 13 May 2022 13:24:30 +0000
ROA not before: Fri 13 May 2022 13:24:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51474
IP address blocks: 176.108.224.0/22 maxlen: 22
176.108.228.0/22 maxlen: 22
31.131.160.0/22 maxlen: 22
195.54.54.0/24 maxlen: 24
195.54.55.0/24 maxlen: 24
194.213.6.0/24 maxlen: 24
185.76.52.0/23 maxlen: 23
185.76.54.0/23 maxlen: 23
91.239.164.0/23 maxlen: 23
91.233.193.0/24 maxlen: 24
91.233.194.0/23 maxlen: 23
91.242.48.0/23 maxlen: 23
91.242.50.0/23 maxlen: 23
91.239.166.0/23 maxlen: 23
176.113.96.0/23 maxlen: 23
194.107.122.0/24 maxlen: 24
178.212.201.0/24 maxlen: 24
178.212.206.0/24 maxlen: 24
178.212.200.0/24 maxlen: 24
178.212.207.0/24 maxlen: 24
2a00:aa80::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68396835 (0x413a723)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4944680c20d1af01f169b18ac9c77d9877133cde
Validity
Not Before: May 13 13:24:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c375a0de93484a90b9fe5b380dbd57f28e82c9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b6:57:06:eb:08:c0:e2:74:f5:c8:64:d0:82:
ad:00:c4:48:d3:d4:63:2f:5d:c4:b3:bc:f2:08:47:
3b:e7:4d:a5:f8:ec:ee:ed:1f:eb:31:14:39:75:5f:
3c:2e:c0:16:7c:d7:bb:4a:a8:a0:e2:1a:65:66:79:
e5:2b:e1:2e:2b:67:a8:bc:a7:dc:01:96:9a:c5:16:
55:03:eb:f2:0a:58:0d:5e:95:b4:ee:a9:1f:a9:df:
10:e1:af:d2:7b:8d:87:cd:71:9a:fa:dc:72:96:a9:
e1:78:fa:eb:71:21:56:a8:6f:1f:ce:f2:2b:5b:4b:
12:3a:30:4c:d0:6c:a5:55:b6:5d:64:b1:8d:5a:81:
3e:f1:5b:38:82:a7:9b:0d:44:bd:c0:56:6e:2a:82:
cd:ac:c2:d7:50:ab:e6:47:5c:e2:04:81:87:65:c1:
0e:86:4b:e0:99:34:2c:85:22:ef:a7:f4:1b:b4:e6:
74:c5:12:2a:82:d4:01:18:ae:b7:29:74:86:d5:9e:
7c:a5:5d:1f:88:d5:60:ab:e1:b8:1b:09:f3:7b:04:
85:0e:32:01:71:22:f2:71:46:d3:a5:94:51:b9:e1:
85:c5:33:a0:70:3a:0a:de:c2:a4:b6:a4:0e:ec:d0:
85:d0:09:c2:47:d9:fb:a6:bf:d5:0e:42:dc:d9:40:
3d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:75:A0:DE:93:48:4A:90:B9:FE:5B:38:0D:BD:57:F2:8E:82:C9:C8
X509v3 Authority Key Identifier:
keyid:49:44:68:0C:20:D1:AF:01:F1:69:B1:8A:C9:C7:7D:98:77:13:3C:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SURoDCDRrwHxabGKycd9mHcTPN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/w3Wg3pNISpC5_ls4Db1X8o6Cycg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/SURoDCDRrwHxabGKycd9mHcTPN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.160.0/22
91.233.193.0-91.233.195.255
91.239.164.0/22
91.242.48.0/22
176.108.224.0/21
176.113.96.0/23
178.212.200.0/23
178.212.206.0/23
185.76.52.0/22
194.107.122.0/24
194.213.6.0/24
195.54.54.0/23
IPv6:
2a00:aa80::/32
Signature Algorithm: sha256WithRSAEncryption
6c:72:9d:f6:5d:30:da:fc:32:be:60:d3:bb:1c:c8:0a:d1:84:
00:3c:2c:45:7a:14:a2:b6:f6:22:6a:ef:41:1e:21:b9:ec:00:
de:9b:0f:29:17:78:aa:0c:3e:4c:67:ca:31:18:8f:39:b1:4a:
87:db:3a:e6:9b:0a:64:f2:a6:2e:fd:8a:49:f3:10:3a:00:b2:
bd:ad:0b:72:ca:8f:90:f7:20:98:71:62:9e:27:84:ba:1b:75:
92:6a:26:ca:67:66:1f:53:1f:a3:a7:02:f7:4b:fc:09:45:fb:
eb:64:7f:72:d6:ad:47:c1:ed:70:db:c5:57:61:d2:f9:8a:45:
0f:1e:1a:28:3e:93:74:c6:22:2f:fa:88:84:f2:9c:87:f0:36:
33:6b:25:f3:43:54:cb:33:db:ae:d1:c8:0c:c5:ed:91:09:90:
56:95:27:da:4a:58:17:19:f3:bf:57:e9:d6:0d:8e:e6:9c:f5:
18:e8:d6:d9:6a:bd:3f:8e:74:29:34:0d:65:3d:9b:46:d4:1f:
bf:4a:aa:08:56:e6:b9:6d:cf:bd:ec:16:a0:4a:da:86:52:5a:
be:d1:51:43:9b:d4:3f:ed:20:ae:d9:b3:e0:b9:5d:70:63:01:
19:89:b0:a6:ce:38:11:8e:c2:8e:22:45:6c:c0:d7:85:fc:79:
c4:79:47:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:52 2024 by rpki-client on console-fra.rpki-client.org