Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/8itV9xWHFHdTXKpqeEhCTQCDtgQ.roa
File: 8itV9xWHFHdTXKpqeEhCTQCDtgQ.roa (raw, json)
Hash identifier: IGgvOD3XWScHpgLEzxxfj7PVgHe8ms7t+bYGas+qjLA=
Subject key identifier: F2:2B:55:F7:15:87:14:77:53:5C:AA:6A:78:48:42:4D:00:83:B6:04
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 0185CA8B380B5A364B6E878A9A69479AD971
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/8itV9xWHFHdTXKpqeEhCTQCDtgQ.roa
Signing time: Thu 19 Jan 2023 14:59:59 +0000
ROA not before: Thu 19 Jan 2023 14:59:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12325
IP address blocks: 188.212.121.0/24 maxlen: 24
94.177.28.0/24 maxlen: 24
86.105.144.0/22 maxlen: 24
185.18.224.0/23 maxlen: 24
89.35.124.0/23 maxlen: 24
89.35.130.0/23 maxlen: 24
128.0.41.0/24 maxlen: 24
89.46.128.0/22 maxlen: 24
89.37.192.0/22 maxlen: 24
89.46.42.0/24 maxlen: 24
188.213.212.0/24 maxlen: 24
188.213.216.0/24 maxlen: 24
94.176.213.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
188.215.40.0/22 maxlen: 24
92.114.32.0/24 maxlen: 24
89.40.222.0/23 maxlen: 24
92.114.54.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
188.211.238.0/24 maxlen: 24
31.14.228.0/22 maxlen: 24
89.46.232.0/21 maxlen: 24
89.44.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ca:8b:38:0b:5a:36:4b:6e:87:8a:9a:69:47:9a:d9:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 19 14:59:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f22b55f715871477535caa6a7848424d0083b604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:5e:1d:95:93:5d:fc:22:77:61:93:34:13:e7:
fd:d4:f2:f7:87:41:e6:6f:74:7e:f4:05:8f:03:0b:
d4:1f:65:29:7d:bb:6b:f4:ac:55:6c:e1:0f:ab:b4:
ed:f6:f4:4c:7b:14:4c:17:49:2f:48:4f:ab:5f:97:
ba:92:fa:f5:7e:1b:17:44:70:39:33:48:35:84:01:
d2:95:82:87:d5:c9:58:51:50:b6:4b:ea:2a:51:d0:
ac:06:fa:f0:8b:54:e8:9f:4d:92:41:96:12:e8:98:
3c:6b:fa:90:3e:92:ef:8c:9a:33:5d:25:aa:8d:95:
7d:78:d1:11:09:5a:7d:20:87:77:a8:4b:2e:53:35:
4c:db:fa:c0:d2:b1:03:4d:4e:ad:76:cb:e5:ba:d4:
fd:af:20:e5:8c:3b:1e:72:39:0a:bd:93:9e:a8:99:
43:fc:e1:e1:11:54:2f:82:0f:0e:01:75:3a:32:95:
03:19:08:07:66:f8:c9:16:d9:05:05:7b:9e:27:0d:
47:43:98:b6:4f:f1:9e:d6:0d:d0:fc:50:a1:1b:14:
10:0c:22:a5:68:2a:98:e2:26:3a:dc:27:d1:77:d6:
7a:d7:77:08:e9:e2:73:e2:be:94:ca:37:64:ac:8e:
9d:30:02:82:ca:bf:a5:c2:70:f0:a3:24:10:2c:0c:
d9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:2B:55:F7:15:87:14:77:53:5C:AA:6A:78:48:42:4D:00:83:B6:04
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/8itV9xWHFHdTXKpqeEhCTQCDtgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.228.0/22
77.81.100.0/24
86.105.144.0/22
89.35.124.0/23
89.35.130.0/23
89.37.192.0/22
89.40.222.0/23
89.44.105.0/24
89.46.42.0/24
89.46.128.0/22
89.46.232.0/21
89.47.36.0/24
92.114.32.0/24
92.114.54.0/24
94.176.213.0/24
94.177.28.0/24
128.0.41.0/24
185.18.224.0/23
188.211.238.0/24
188.212.121.0/24
188.213.212.0/24
188.213.216.0/24
188.215.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:74:dd:5d:d5:8b:8d:12:3b:19:ee:f3:dc:90:04:29:3f:9d:
f9:c0:8d:8d:da:02:ed:67:dd:9e:67:20:61:c6:ce:2c:9b:be:
15:3a:58:79:df:20:3e:31:43:a7:a2:69:a8:2e:25:44:ad:0f:
96:00:0e:48:2c:a1:43:f5:28:29:c4:1c:7f:7d:05:02:b2:1b:
d7:fd:b9:bd:f3:a6:20:a8:2c:72:9e:01:f2:3c:6f:99:70:cb:
ee:34:6d:6f:34:f6:1c:03:ca:49:91:d4:bc:91:f4:7c:1f:34:
17:d2:bd:39:0c:ed:d3:03:51:9d:55:f4:ea:04:1c:c0:5e:c7:
f4:84:b5:43:1c:f9:2b:51:7d:7a:4c:4a:f5:7c:92:04:ca:24:
68:4f:2d:43:e3:aa:18:e2:af:c7:ca:5b:22:e9:d2:ff:54:4a:
79:e6:19:4e:16:2f:c3:70:5d:7e:b4:0b:ba:ed:d6:14:b4:ca:
da:20:fe:39:97:cf:a2:a5:6c:7d:3a:b6:ca:24:20:df:ce:28:
c2:26:62:2f:ba:83:af:2c:f1:3c:fc:3a:81:40:71:62:57:97:
10:0f:da:9f:e9:ff:12:ce:9f:68:13:56:f1:ce:d6:3c:e4:79:
8d:08:8e:f3:c1:22:31:61:f1:09:92:9e:3c:01:0e:0f:c0:6b:
0d:2c:32:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:57 2025 by rpki-client