Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/NYo2mRwTrj01WLxpQXRjXzYcyuM.roa
File: NYo2mRwTrj01WLxpQXRjXzYcyuM.roa (raw, json)
Hash identifier: AAPorN87CsYbkfi0eF9l6binBjdwhEvPsHz1KuRQswU=
Subject key identifier: 35:8A:36:99:1C:13:AE:3D:35:58:BC:69:41:74:63:5F:36:1C:CA:E3
Certificate issuer: /CN=42f48f7fae012916a775d5e3b6fa231098343ea0
Certificate serial: 0184A417888B26BD42E9193308C17F4F0701
Authority key identifier: 42:F4:8F:7F:AE:01:29:16:A7:75:D5:E3:B6:FA:23:10:98:34:3E:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvSPf64BKRanddXjtvojEJg0PqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/NYo2mRwTrj01WLxpQXRjXzYcyuM.roa
Signing time: Wed 23 Nov 2022 10:45:16 +0000
ROA not before: Wed 23 Nov 2022 10:45:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34304
IP address blocks: 86.107.58.0/23 maxlen: 23
86.107.57.0/24 maxlen: 24
188.211.164.0/23 maxlen: 23
86.107.63.0/24 maxlen: 24
86.107.60.0/23 maxlen: 23
193.138.192.0/23 maxlen: 23
193.138.194.0/24 maxlen: 24
89.47.0.0/24 maxlen: 24
89.47.14.0/24 maxlen: 24
89.47.12.0/24 maxlen: 24
89.35.224.0/24 maxlen: 24
89.35.229.0/24 maxlen: 24
89.35.232.0/24 maxlen: 24
89.35.236.0/24 maxlen: 24
89.35.234.0/23 maxlen: 23
89.35.238.0/24 maxlen: 24
2a05:8880::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a4:17:88:8b:26:bd:42:e9:19:33:08:c1:7f:4f:07:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f48f7fae012916a775d5e3b6fa231098343ea0
Validity
Not Before: Nov 23 10:45:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=358a36991c13ae3d3558bc694174635f361ccae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a1:73:c0:4e:4f:d8:35:1e:9a:65:8b:95:e3:
03:c3:bb:36:a6:6c:61:ce:cf:61:35:64:82:e3:68:
9b:70:8d:99:b2:af:bd:4f:e7:09:a7:41:4c:49:2d:
1c:2f:72:54:26:a0:07:70:27:14:78:44:52:1c:31:
8f:f7:4f:c5:04:4d:b4:ca:f9:7f:99:55:e1:4d:d9:
37:a1:8e:e1:55:e0:72:61:e5:63:68:76:53:a3:80:
de:a1:01:2b:5d:fb:e7:b9:c7:e4:7a:d3:46:89:74:
45:90:da:72:23:1a:b2:d8:1e:8b:5b:62:7c:5b:af:
e5:2c:94:ea:1d:c7:5e:a4:4d:0f:64:62:0a:67:08:
f5:6e:de:95:f9:a5:1d:56:15:e1:49:2e:74:87:73:
9b:ee:b1:e2:75:a3:8e:15:e1:3e:e2:d0:c2:17:c4:
28:3b:99:86:7d:da:d8:0c:b8:17:73:4b:e2:c0:9a:
9d:5b:27:8f:2d:fc:97:e3:41:42:91:5f:16:3a:a5:
66:48:6a:44:26:2c:b8:6d:df:ce:37:5b:65:00:22:
10:27:26:8b:50:cf:3b:00:50:31:b4:a8:56:51:8a:
9d:96:c5:ae:7d:42:9e:74:06:17:31:6b:d9:58:a6:
77:ff:a8:ba:28:30:08:62:ee:9b:cb:da:7b:e5:bd:
2e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:8A:36:99:1C:13:AE:3D:35:58:BC:69:41:74:63:5F:36:1C:CA:E3
X509v3 Authority Key Identifier:
keyid:42:F4:8F:7F:AE:01:29:16:A7:75:D5:E3:B6:FA:23:10:98:34:3E:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvSPf64BKRanddXjtvojEJg0PqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/NYo2mRwTrj01WLxpQXRjXzYcyuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/QvSPf64BKRanddXjtvojEJg0PqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.57.0-86.107.61.255
86.107.63.0/24
89.35.224.0/24
89.35.229.0/24
89.35.232.0/24
89.35.234.0-89.35.236.255
89.35.238.0/24
89.47.0.0/24
89.47.12.0/24
89.47.14.0/24
188.211.164.0/23
193.138.192.0-193.138.194.255
IPv6:
2a05:8880::/30
Signature Algorithm: sha256WithRSAEncryption
18:c8:40:23:11:3b:7e:90:3e:77:7e:f2:02:44:65:2d:03:68:
2d:91:e5:08:7f:02:14:39:65:f8:33:2c:fe:18:d7:c9:c8:e6:
f5:89:5a:78:44:da:51:2f:a3:f8:16:67:09:68:70:e7:c8:f6:
78:11:33:8e:c3:04:a6:83:58:3e:39:a6:f8:1c:fd:2e:60:f1:
7f:b0:d4:03:16:f0:d2:8b:5a:56:5b:38:20:85:e0:34:c7:d6:
49:47:9e:50:be:68:1f:b7:e1:8e:31:e5:80:4a:56:bc:a7:8a:
a9:5a:aa:90:e8:a9:52:0f:96:c8:42:39:f9:40:87:05:67:5e:
98:68:87:05:28:95:46:6f:07:27:2d:b7:09:d4:78:98:40:8b:
94:f2:aa:bf:3c:bf:fd:3f:c2:86:69:eb:28:e5:c4:5f:46:37:
e8:75:9e:ec:1f:2a:cc:d2:3d:cf:f8:22:08:39:2f:9b:35:a6:
2e:d3:52:a2:a0:d3:24:09:f2:3e:44:66:03:0d:ab:bd:07:04:
09:5d:da:e0:50:7d:a7:08:5f:44:57:88:1c:24:df:3b:0b:f9:
a1:c0:f0:63:4f:bd:92:39:d8:25:b1:c1:e4:64:23:e4:eb:8e:
1a:d0:67:ad:88:0e:47:62:21:48:c3:56:05:34:f8:a2:90:a0:
43:ae:8e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:45 2025 by rpki-client