Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/sShlO8BaOUYAl2QDny8zZhdyHEY.roa
File: sShlO8BaOUYAl2QDny8zZhdyHEY.roa (raw, json)
Hash identifier: dyTyL6E2m8cCzh4Wq5YV8fDGuaZy5VYrmnLNMZJei64=
Subject key identifier: B1:28:65:3B:C0:5A:39:46:00:97:64:03:9F:2F:33:66:17:72:1C:46
Certificate issuer: /CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Certificate serial: 01856E2FC656E048447D080F765469E465E3
Authority key identifier: 92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/sShlO8BaOUYAl2QDny8zZhdyHEY.roa
Signing time: Sun 01 Jan 2023 16:35:02 +0000
ROA not before: Sun 01 Jan 2023 16:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59588
IP address blocks: 151.236.160.0/24 maxlen: 24
151.236.161.0/24 maxlen: 24
151.236.162.0/23 maxlen: 23
151.236.162.0/24 maxlen: 24
151.236.163.0/24 maxlen: 24
151.236.160.0/23 maxlen: 23
151.236.166.0/24 maxlen: 24
151.236.164.0/23 maxlen: 23
151.236.164.0/24 maxlen: 24
151.236.165.0/24 maxlen: 24
151.236.172.0/23 maxlen: 23
151.236.171.0/24 maxlen: 24
151.236.172.0/24 maxlen: 24
151.236.168.0/23 maxlen: 23
151.236.168.0/24 maxlen: 24
151.236.169.0/24 maxlen: 24
151.236.170.0/24 maxlen: 24
151.236.170.0/23 maxlen: 23
151.236.166.0/23 maxlen: 23
151.236.167.0/24 maxlen: 24
151.236.173.0/24 maxlen: 24
151.236.176.0/23 maxlen: 23
151.236.175.0/24 maxlen: 24
151.236.176.0/24 maxlen: 24
151.236.177.0/24 maxlen: 24
151.236.174.0/23 maxlen: 23
151.236.174.0/24 maxlen: 24
151.236.178.0/23 maxlen: 23
151.236.178.0/24 maxlen: 24
151.236.179.0/24 maxlen: 24
151.236.186.0/24 maxlen: 24
151.236.182.0/24 maxlen: 24
151.236.180.0/24 maxlen: 24
151.236.180.0/23 maxlen: 23
151.236.181.0/24 maxlen: 24
151.236.189.0/24 maxlen: 24
151.236.190.0/24 maxlen: 24
151.236.190.0/23 maxlen: 23
151.236.191.0/24 maxlen: 24
151.236.188.0/23 maxlen: 23
151.236.188.0/24 maxlen: 24
45.153.119.0/24 maxlen: 24
45.153.116.0/24 maxlen: 24
45.153.116.0/23 maxlen: 23
45.153.117.0/24 maxlen: 24
45.153.118.0/23 maxlen: 23
45.153.118.0/24 maxlen: 24
2a10:2200:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:c6:56:e0:48:44:7d:08:0f:76:54:69:e4:65:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Validity
Not Before: Jan 1 16:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b128653bc05a3946009764039f2f336617721c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:50:3e:ce:a0:58:0a:a8:78:c0:55:91:b1:8b:
40:96:18:8a:8a:23:23:3a:7e:f3:d5:4c:fb:13:b1:
13:ab:8d:73:0a:a8:d7:d2:c5:62:59:30:91:f0:ca:
b7:f2:e6:e3:d3:3b:8f:2d:f9:20:56:55:c2:80:a3:
33:fd:78:e7:a6:ca:ab:8b:5e:68:5a:b7:32:ae:1d:
87:90:8a:2c:47:16:49:05:82:3c:27:0c:55:20:6f:
85:dd:9e:2b:92:04:d8:45:25:50:68:8d:2c:2c:f7:
d9:4b:40:56:2a:b7:cd:55:79:39:24:3f:45:13:fe:
ba:8d:08:ab:ee:17:a0:ad:86:fa:39:92:ca:77:10:
33:19:07:6d:42:b6:d9:04:f4:dc:3c:a2:f5:1f:c6:
e6:12:c9:3e:e0:df:01:21:5a:cd:59:0d:b8:75:52:
84:55:b0:05:91:30:e1:f7:c7:22:21:d7:f8:00:81:
54:dd:d6:e8:38:58:cf:78:6e:fe:a2:85:bc:61:c8:
25:ee:ba:46:41:36:70:01:20:7f:e9:97:32:c6:d1:
1c:32:8f:00:27:e2:f6:c4:f1:f9:04:3c:1e:75:2d:
ef:0d:92:e7:1e:7a:b9:3e:04:e3:54:b0:ac:fc:ed:
99:0f:e7:51:e9:52:25:87:29:83:6a:03:63:67:71:
fa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:28:65:3B:C0:5A:39:46:00:97:64:03:9F:2F:33:66:17:72:1C:46
X509v3 Authority Key Identifier:
keyid:92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/sShlO8BaOUYAl2QDny8zZhdyHEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/khkujXhVgfcrGGRCJL2MP6ii0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.116.0/22
151.236.160.0-151.236.182.255
151.236.186.0/24
151.236.188.0/22
IPv6:
2a10:2200:2::/48
Signature Algorithm: sha256WithRSAEncryption
7c:63:97:24:27:ac:fb:05:9d:0f:cb:65:bc:5a:9b:54:6b:c1:
da:c5:74:45:07:d5:2b:56:b4:f4:2e:13:9e:c2:30:82:73:e2:
e8:91:22:e7:cf:a8:73:c1:22:47:58:d8:2c:47:3f:85:a4:25:
28:46:f9:04:9d:5f:a9:ef:e6:74:0a:54:cd:9f:f8:27:0e:38:
4e:95:50:a8:92:0b:fd:47:ba:16:de:c9:81:f3:5b:f4:56:68:
cb:91:e6:b6:00:40:30:d8:c9:0c:76:c7:32:47:d3:58:b4:0b:
56:18:15:c3:fb:d6:6c:ee:c5:57:61:fe:1c:ec:b2:b3:8b:a8:
fe:14:8f:f1:21:cb:97:c3:8f:cc:bc:f7:a4:ba:06:cb:d9:f9:
2b:65:13:ab:4f:b8:f5:3f:43:31:5c:94:3d:8a:1b:46:a7:bd:
91:0b:6b:55:a8:a1:e7:0a:7c:01:f0:d7:67:f5:23:67:9c:b0:
67:1c:0c:c6:58:d2:7d:d8:42:1b:6b:de:ee:e6:d4:8a:61:5e:
ee:e1:41:95:0a:d1:1d:ec:05:6a:31:43:e6:b6:25:2f:57:41:
d6:b7:7b:47:9c:af:49:3b:f9:8d:5c:57:04:d7:b2:d1:ce:5f:
e4:6e:a5:e7:5c:cc:b7:fe:53:0c:98:d2:ab:f8:68:ef:e3:f7:
5c:6a:73:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:17:59 2025 by rpki-client