Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/ThrZuh24ePx3C6tGossD2a6EmqY.roa
File: ThrZuh24ePx3C6tGossD2a6EmqY.roa (raw, json)
Hash identifier: yICsZROHwYTAGMTP2XlTOSr2GCPtbIxooWiQqhe4kGU=
Subject key identifier: 4E:1A:D9:BA:1D:B8:78:FC:77:0B:AB:46:A2:CB:03:D9:AE:84:9A:A6
Certificate issuer: /CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Certificate serial: 03D64213
Authority key identifier: DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/ThrZuh24ePx3C6tGossD2a6EmqY.roa
Signing time: Mon 09 May 2022 17:22:00 +0000
ROA not before: Mon 09 May 2022 17:22:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 31.11.40.0/21 maxlen: 24
84.247.4.0/22 maxlen: 24
213.159.136.0/21 maxlen: 24
37.251.200.0/21 maxlen: 24
46.19.104.0/21 maxlen: 24
62.122.40.0/21 maxlen: 24
94.26.64.0/23 maxlen: 24
37.251.240.0/21 maxlen: 24
193.17.225.0/24 maxlen: 24
91.245.216.0/23 maxlen: 24
84.247.40.0/22 maxlen: 24
141.136.16.0/20 maxlen: 24
176.223.172.0/22 maxlen: 24
86.104.20.0/22 maxlen: 24
176.223.176.0/22 maxlen: 24
109.94.144.0/20 maxlen: 24
192.109.205.0/24 maxlen: 24
185.200.204.0/22 maxlen: 24
88.135.96.0/20 maxlen: 24
46.231.104.0/21 maxlen: 24
37.251.176.0/20 maxlen: 24
89.40.220.0/23 maxlen: 24
86.106.152.0/22 maxlen: 24
94.24.24.0/22 maxlen: 24
195.128.136.0/24 maxlen: 24
86.104.248.0/22 maxlen: 24
91.227.240.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64373267 (0x3d64213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Validity
Not Before: May 9 17:22:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e1ad9ba1db878fc770bab46a2cb03d9ae849aa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:93:54:c3:89:af:83:7f:2d:8a:23:74:a0:df:
1b:fa:9e:3d:80:4b:9e:79:86:e6:41:e7:62:ad:f6:
28:fa:27:7c:23:e2:d3:ad:d4:f4:15:44:f2:c0:99:
2c:a7:da:de:58:82:12:e0:b2:43:2e:da:01:ed:d2:
6c:06:f2:06:07:38:65:76:ad:1e:a5:b2:9d:10:34:
e9:de:82:c2:92:2f:a2:82:a9:e5:c2:c4:68:ff:5b:
b3:6d:2c:80:b6:87:c7:ce:8e:49:2b:a2:37:ff:7e:
d8:a1:1d:46:9e:3d:fe:ae:94:8d:be:69:e6:d1:78:
38:e4:44:22:7a:31:4a:7e:7f:66:56:92:47:4f:d1:
17:12:ed:fe:c1:50:ab:51:b0:22:8f:4a:ab:0c:8c:
4e:23:40:0f:b4:dd:9d:c4:da:16:ea:3d:cb:0e:5d:
87:c1:7b:fb:01:14:70:1c:76:12:31:70:ab:68:ec:
e8:02:66:30:f0:6a:7c:5b:e7:b1:5b:7d:4f:ef:c5:
30:6c:19:80:94:f6:81:d8:7a:ed:14:af:ff:ff:1c:
e0:04:89:ac:8f:88:33:47:44:9d:52:28:65:88:37:
9c:1f:17:31:67:83:17:06:36:fb:c2:e0:b4:0b:f5:
80:33:bd:e0:42:40:f2:7e:19:61:92:fe:13:cc:ef:
ee:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:1A:D9:BA:1D:B8:78:FC:77:0B:AB:46:A2:CB:03:D9:AE:84:9A:A6
X509v3 Authority Key Identifier:
keyid:DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/ThrZuh24ePx3C6tGossD2a6EmqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/2-jMj1rx5zYtRU892RqClSkZ22E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.40.0/21
37.251.176.0/20
37.251.200.0/21
37.251.240.0/21
46.19.104.0/21
46.231.104.0/21
62.122.40.0/21
84.247.4.0/22
84.247.40.0/22
86.104.20.0/22
86.104.248.0/22
86.106.152.0/22
88.135.96.0/20
89.40.220.0/23
91.227.240.0/23
91.245.216.0/23
94.24.24.0/22
94.26.64.0/23
109.94.144.0/20
141.136.16.0/20
176.223.172.0-176.223.179.255
185.200.204.0/22
192.109.205.0/24
193.17.225.0/24
195.128.136.0/24
213.159.136.0/21
Signature Algorithm: sha256WithRSAEncryption
43:0d:4a:5a:01:f0:3e:1e:ba:62:d0:06:2c:68:da:13:65:6d:
55:e7:96:35:c0:4d:cf:79:e6:be:fd:ce:26:18:30:37:fb:fd:
21:12:22:ee:3c:21:ba:73:8c:bb:3f:a2:16:e8:e0:4d:e4:52:
db:6a:23:f4:55:15:fd:a7:d9:72:bd:71:a8:93:23:6c:14:ff:
92:39:b6:8f:4a:d1:2f:db:34:87:42:f9:11:44:24:95:87:ff:
8a:3b:b5:46:38:1d:ad:5f:2c:b4:31:a8:89:f0:05:95:6c:17:
0a:97:6b:b9:d5:17:18:5c:92:44:ff:00:0d:e4:ed:d1:a6:2e:
57:c3:36:8d:f0:df:3b:cf:54:49:ca:02:f9:c0:9e:d9:14:cd:
fa:f6:08:f5:b5:11:bd:4c:a8:d7:83:d1:1b:31:db:5a:25:0d:
9f:51:2d:12:24:95:ab:55:3f:87:8d:7f:07:ad:a7:2b:24:33:
4c:89:15:43:7e:3f:1c:f9:ce:b2:c1:bf:be:6a:08:1e:0c:0c:
72:f3:67:09:d7:cb:51:18:a2:a1:6c:b1:fe:bf:56:ea:77:60:
4e:a3:81:49:d0:26:51:59:99:ea:2b:cd:37:a9:81:7e:4f:9e:
5f:97:72:d1:c9:d8:6e:53:3e:b8:87:8d:3c:82:09:53:48:f5:
38:40:be:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 06:56:13 2025 by rpki-client