Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/vPV9dz88bxRLFllfuEaOC15gy5Y.roa
File: vPV9dz88bxRLFllfuEaOC15gy5Y.roa (raw, json)
Hash identifier: cp9UMYQ01EEn7wrBKB+rVVON2FNcD+tVioa+rd0AtrE=
Subject key identifier: BC:F5:7D:77:3F:3C:6F:14:4B:16:59:5F:B8:46:8E:0B:5E:60:CB:96
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 0187461D8ACA0F3B554CA2302C980C006FED
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/vPV9dz88bxRLFllfuEaOC15gy5Y.roa
Signing time: Mon 03 Apr 2023 07:55:53 +0000
ROA not before: Mon 03 Apr 2023 07:55:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12325
IP address blocks: 86.105.144.0/22 maxlen: 24
185.18.224.0/23 maxlen: 24
86.106.26.0/24 maxlen: 24
93.115.108.0/24 maxlen: 24
89.35.124.0/23 maxlen: 24
89.46.128.0/22 maxlen: 24
89.39.94.0/23 maxlen: 24
89.39.123.0/24 maxlen: 24
89.45.228.0/24 maxlen: 24
188.215.40.0/22 maxlen: 24
89.40.222.0/23 maxlen: 24
31.14.228.0/22 maxlen: 24
89.46.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:46:1d:8a:ca:0f:3b:55:4c:a2:30:2c:98:0c:00:6f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 3 07:55:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcf57d773f3c6f144b16595fb8468e0b5e60cb96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d2:14:b8:33:78:78:70:15:55:6d:34:b4:18:
1a:fe:72:7c:9f:ce:b7:25:8f:4f:67:0a:b1:7c:78:
88:28:ca:34:40:b0:ce:6e:d8:e4:98:ab:26:3e:78:
36:f2:06:aa:58:17:8f:9e:33:30:f3:e6:6b:fd:1f:
21:eb:d7:d5:2f:03:4e:72:3b:d2:c0:c2:00:9a:2a:
21:3c:50:2d:53:4b:63:9f:ef:c0:e6:9b:84:81:e3:
a1:a2:7e:68:82:b6:1e:6f:ca:00:81:f4:0f:60:b9:
39:06:96:6b:fd:fb:25:5c:21:08:d0:d0:44:ac:b1:
3e:59:78:ba:c2:e9:e1:94:d9:b9:f6:2d:02:ea:b0:
b7:df:d7:d4:48:45:95:88:e8:dc:9e:22:e5:8a:a2:
a5:67:e0:27:2f:6e:f1:7b:04:fd:62:db:3a:1c:5b:
16:bf:7c:d7:7c:1b:87:23:91:36:aa:ac:9a:ca:d7:
03:9d:ea:b4:18:a8:f6:d0:32:ac:ce:cb:63:bb:39:
c0:be:9b:98:8e:76:b7:e4:19:11:0b:1e:06:1d:d1:
c1:3f:bd:0c:3e:e9:fe:92:7f:a5:70:94:b1:21:03:
02:0b:4e:8e:04:e2:b8:e7:58:3f:75:52:a8:d8:2a:
8f:48:1c:66:df:22:46:59:81:40:11:63:39:5f:bc:
c6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F5:7D:77:3F:3C:6F:14:4B:16:59:5F:B8:46:8E:0B:5E:60:CB:96
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/vPV9dz88bxRLFllfuEaOC15gy5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.228.0/22
86.105.144.0/22
86.106.26.0/24
89.35.124.0/23
89.39.94.0/23
89.39.123.0/24
89.40.222.0/23
89.45.228.0/24
89.46.128.0/22
89.46.232.0/21
93.115.108.0/24
185.18.224.0/23
188.215.40.0/22
Signature Algorithm: sha256WithRSAEncryption
92:bd:f7:31:e9:1b:86:57:9c:6b:8f:d4:7d:a6:60:77:6b:de:
a0:7f:38:af:e6:c6:0a:bb:d1:af:41:6f:cb:b7:45:0e:1b:c4:
a8:e5:54:8f:b7:7c:b6:06:39:6a:2a:b5:cb:37:fc:5e:f8:51:
be:57:f0:70:50:b2:c5:27:ec:8e:88:15:8e:f6:db:c5:64:eb:
c3:f9:94:1b:86:b7:a6:44:bc:73:1c:9e:24:6e:02:33:19:ac:
55:89:76:5e:bb:8b:55:bb:ac:0c:6f:0d:7c:fb:83:d6:f6:18:
7d:b7:57:a4:33:88:fc:28:ae:c7:50:d7:51:91:02:48:27:27:
36:5f:68:a7:62:07:e1:c8:95:8b:f7:57:20:80:28:fa:d1:52:
68:05:7e:d2:a8:a7:31:89:06:ce:51:cf:e8:c9:0d:70:03:f2:
2c:bc:4f:d3:51:48:b2:b9:8e:61:48:d6:45:59:80:e1:60:4b:
41:b9:94:41:31:39:86:a1:38:4b:af:a1:db:de:2a:b7:44:79:
cb:45:ec:4a:4d:3a:96:f3:49:16:6b:99:1e:35:fa:56:17:d7:
7f:62:16:ed:9c:62:e8:30:f0:41:97:43:16:53:c0:ad:f0:d9:
3e:a7:6d:84:2c:38:bc:77:4d:20:e3:c5:33:1d:3d:e2:5e:55:
24:76:af:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:02 2025 by rpki-client