Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/z1HbgF83tUPDafwyrFUvhnVfBSI.roa
File: z1HbgF83tUPDafwyrFUvhnVfBSI.roa (raw, json)
Hash identifier: M4kl6p3Muv0ZCK8YB2U3krHANx0k77aGuotmnLEgebI=
Subject key identifier: CF:51:DB:80:5F:37:B5:43:C3:69:FC:32:AC:55:2F:86:75:5F:05:22
Certificate issuer: /CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Certificate serial: 0194DAA705C590D741F06ACD024A5973C5CD
Authority key identifier: 24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/z1HbgF83tUPDafwyrFUvhnVfBSI.roa
Signing time: Thu 06 Feb 2025 09:46:06 +0000
ROA not before: Thu 06 Feb 2025 09:46:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9141
IP address blocks: 31.178.0.0/17 maxlen: 17
31.178.128.0/17 maxlen: 17
31.179.0.0/17 maxlen: 17
31.179.128.0/17 maxlen: 24
83.175.176.0/20 maxlen: 20
85.222.0.0/19 maxlen: 19
85.222.32.0/19 maxlen: 19
85.222.52.0/22 maxlen: 22
85.222.64.0/19 maxlen: 19
85.222.96.0/19 maxlen: 19
89.68.0.0/14 maxlen: 14
89.70.108.0/22 maxlen: 22
89.72.228.0/22 maxlen: 22
89.77.216.0/22 maxlen: 22
195.34.210.0/23 maxlen: 23
217.119.64.0/20 maxlen: 20
2a02:a300::/29 maxlen: 29
2a02:a308::/29 maxlen: 29
2a02:a310::/32 maxlen: 32
2a02:a315:e500::/40 maxlen: 40
2a02:a316:e100::/40 maxlen: 40
2a02:a319:6000::/40 maxlen: 40
2a02:a31b:c400::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:da:a7:05:c5:90:d7:41:f0:6a:cd:02:4a:59:73:c5:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Validity
Not Before: Feb 6 09:46:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cf51db805f37b543c369fc32ac552f86755f0522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:10:b5:25:68:54:a1:e6:34:b1:13:2f:52:dc:
90:08:0c:6a:b3:59:38:a4:fe:b7:31:34:34:5a:ad:
ea:36:d1:03:43:6f:a4:63:41:90:a5:de:ba:dd:43:
fa:af:e6:2e:91:28:88:56:42:f1:60:7b:8b:77:07:
fa:06:19:89:11:8a:7a:c3:83:7c:eb:5c:b5:b2:b9:
37:d5:1d:77:56:66:ea:55:5b:fe:ae:b1:84:f4:6e:
9d:9c:ce:a4:9b:24:81:3b:99:0e:0f:fd:4c:c6:0d:
21:9a:3f:05:7c:80:9f:8a:7a:c8:e7:42:aa:55:8b:
75:bb:94:c5:6b:49:a6:e8:04:4c:56:9a:a9:e3:2a:
e1:54:1f:83:0c:c8:63:c9:2c:3a:0f:27:c9:b3:0a:
05:04:76:80:d0:72:58:4e:dc:3a:ad:30:8a:8a:f0:
b8:60:e7:9c:a8:e4:55:3b:c5:ae:70:41:d2:48:b0:
0b:6c:cb:29:e5:f1:47:17:0d:7b:23:a8:81:f3:11:
d1:ea:bb:1f:15:6a:21:8b:a7:fa:16:16:61:1c:5c:
9f:ce:e3:ed:f4:69:9d:7b:88:12:82:dd:45:65:ee:
9b:c2:8d:a3:86:db:3f:bf:de:36:77:67:e4:ff:a5:
2a:7c:6f:e3:75:64:9f:6a:3c:78:4e:6a:dd:c6:ba:
a8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:51:DB:80:5F:37:B5:43:C3:69:FC:32:AC:55:2F:86:75:5F:05:22
X509v3 Authority Key Identifier:
keyid:24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/z1HbgF83tUPDafwyrFUvhnVfBSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/JBR8iz83hQ6fkHSZOEXE4Gn47-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.178.0.0/15
83.175.176.0/20
85.222.0.0/17
89.68.0.0/14
89.72.228.0/22
89.77.216.0/22
195.34.210.0/23
217.119.64.0/20
IPv6:
2a02:a300::-2a02:a310:ffff:ffff:ffff:ffff:ffff:ffff
2a02:a315:e500::/40
2a02:a316:e100::/40
2a02:a319:6000::/40
2a02:a31b:c400::/40
Signature Algorithm: sha256WithRSAEncryption
7c:77:ed:ae:b1:0e:3e:e3:61:b7:67:35:b9:77:1a:7f:62:67:
13:a3:17:c6:e0:1c:a0:d9:bc:46:72:6a:ff:29:0f:57:73:76:
5d:0c:6d:03:c3:3d:a8:b2:9f:11:ce:f1:dc:f8:e5:69:db:0f:
e4:af:9c:a3:7d:ad:0c:3a:ce:1a:60:1b:f3:b2:49:84:1b:da:
3f:88:df:da:31:a3:68:99:da:7e:bb:ce:ee:3c:50:ed:18:7a:
29:88:25:91:0e:3c:48:33:5b:d2:f3:a2:10:2a:e7:ae:f1:a7:
7c:83:84:e5:b8:f6:b7:9b:59:1a:d8:1c:8a:eb:57:10:7b:15:
2e:21:ef:51:bf:ed:c7:47:09:0c:08:67:88:6d:1e:f4:83:8c:
e6:62:3f:e2:82:18:2b:da:78:a5:b7:8b:23:45:13:ea:1a:00:
66:ec:15:34:e7:df:58:87:38:18:de:50:7b:7d:ef:cd:7f:21:
15:90:f3:01:33:d8:ac:3e:69:28:06:16:76:76:e4:a1:8a:7a:
dc:02:39:15:79:79:31:86:c1:95:c2:58:aa:34:4a:79:4c:33:
20:db:6d:19:b9:06:e5:d4:7d:2f:01:07:88:3a:57:03:8b:56:
9b:d2:1b:02:53:08:75:02:c0:3e:6d:13:a8:b0:c8:17:b1:b6:
95:e0:c6:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:42:46 2025 by rpki-client