Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/ImOUetmuKl9iYvc_8D41PZoWCyY.roa
File: ImOUetmuKl9iYvc_8D41PZoWCyY.roa (raw, json)
Hash identifier: Ayu3u4LWoHacKxt13sb91EXsOoOlHnD09zKpfqMkb4s=
Subject key identifier: 22:63:94:7A:D9:AE:2A:5F:62:62:F7:3F:F0:3E:35:3D:9A:16:0B:26
Certificate issuer: /CN=6b85894a84baa0eca0e6ef44a992fc2ba00f5277
Certificate serial: 0192E2F96B9C0E3A8A29B3CE2D4E88A0147C
Authority key identifier: 6B:85:89:4A:84:BA:A0:EC:A0:E6:EF:44:A9:92:FC:2B:A0:0F:52:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4WJSoS6oOyg5u9EqZL8K6APUnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/ImOUetmuKl9iYvc_8D41PZoWCyY.roa
Signing time: Thu 31 Oct 2024 14:27:29 +0000
ROA not before: Thu 31 Oct 2024 14:27:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39582
IP address blocks: 89.106.0.0/19 maxlen: 24
89.106.0.0/24 maxlen: 24
89.106.1.0/24 maxlen: 24
89.106.2.0/24 maxlen: 24
89.106.3.0/24 maxlen: 24
89.106.4.0/24 maxlen: 24
89.106.5.0/24 maxlen: 24
89.106.6.0/24 maxlen: 24
89.106.7.0/24 maxlen: 24
89.106.8.0/24 maxlen: 24
89.106.9.0/24 maxlen: 24
89.106.10.0/24 maxlen: 24
89.106.11.0/24 maxlen: 24
89.106.12.0/24 maxlen: 24
89.106.15.0/24 maxlen: 24
89.106.16.0/24 maxlen: 24
89.106.17.0/24 maxlen: 24
89.106.18.0/24 maxlen: 24
89.106.19.0/24 maxlen: 24
89.106.20.0/24 maxlen: 24
89.106.21.0/24 maxlen: 24
89.106.22.0/24 maxlen: 24
89.106.23.0/24 maxlen: 24
89.106.24.0/24 maxlen: 24
89.106.25.0/24 maxlen: 24
89.106.26.0/24 maxlen: 24
89.106.27.0/24 maxlen: 24
89.106.28.0/24 maxlen: 24
89.106.29.0/24 maxlen: 24
89.106.30.0/24 maxlen: 24
89.106.31.0/24 maxlen: 24
2a02:4300::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e2:f9:6b:9c:0e:3a:8a:29:b3:ce:2d:4e:88:a0:14:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b85894a84baa0eca0e6ef44a992fc2ba00f5277
Validity
Not Before: Oct 31 14:27:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2263947ad9ae2a5f6262f73ff03e353d9a160b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:03:d5:d2:62:be:ac:22:63:ab:d0:d5:c2:9e:
76:e0:64:01:3b:da:b2:01:f9:8d:e0:e0:ba:63:f0:
3e:83:6e:78:51:b6:2c:11:a7:2b:f0:80:d3:53:5b:
d5:51:b8:53:22:c7:2a:6d:56:f6:b4:4f:bb:81:53:
74:f4:5a:87:ec:30:14:20:67:94:42:2c:19:c5:97:
9c:57:f5:78:bf:41:d6:c1:82:d7:a7:ac:ea:76:c4:
68:8b:2c:c9:a1:2a:fd:24:70:ea:fe:40:c8:29:5f:
32:4d:2e:cd:58:8c:59:29:68:0a:5f:41:5b:63:06:
8d:13:cd:ac:0e:63:74:6f:26:3d:42:2e:34:f9:31:
32:67:e9:b8:c2:6c:df:43:28:c8:6b:dc:7b:47:2c:
df:c5:d6:21:e3:23:e9:0b:25:f6:6c:7b:06:72:87:
75:5e:d9:71:8c:27:66:54:0a:bd:66:6e:14:bf:c7:
26:24:c2:be:0e:16:89:37:c5:39:72:49:ff:c0:aa:
97:96:32:36:65:95:ae:a6:8f:e3:2a:8b:df:19:03:
94:6e:dd:25:cc:55:a7:18:25:74:48:43:78:42:1e:
41:4d:6f:9e:60:3d:2b:74:ef:47:6e:f0:3b:53:d9:
1e:2a:1b:a2:5d:0d:a5:b7:47:0b:4f:82:02:75:ed:
2a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:63:94:7A:D9:AE:2A:5F:62:62:F7:3F:F0:3E:35:3D:9A:16:0B:26
X509v3 Authority Key Identifier:
keyid:6B:85:89:4A:84:BA:A0:EC:A0:E6:EF:44:A9:92:FC:2B:A0:0F:52:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4WJSoS6oOyg5u9EqZL8K6APUnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/ImOUetmuKl9iYvc_8D41PZoWCyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/a4WJSoS6oOyg5u9EqZL8K6APUnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.0.0/19
IPv6:
2a02:4300::/32
Signature Algorithm: sha256WithRSAEncryption
82:2b:72:4b:6a:ec:02:61:b6:9b:7f:03:77:e5:ea:a1:45:df:
77:bc:d2:77:7e:db:6f:6c:b6:b1:02:b9:dc:7d:8f:cb:4d:bf:
bf:1d:3b:bf:ab:41:c4:33:36:26:13:73:e7:78:58:b1:b5:33:
b0:fe:d2:3a:d9:5a:88:08:c9:5c:b4:b7:dd:c6:75:9c:20:d6:
6d:19:25:f2:40:18:3e:91:be:1e:53:89:75:fa:1a:2e:89:e6:
c9:75:22:ad:d3:89:95:77:de:15:1f:02:b3:15:d5:c6:78:bd:
f5:65:61:2c:b0:5a:21:df:ee:eb:e5:72:10:e4:76:a3:97:8d:
c4:d0:e9:bd:d5:94:65:9a:1d:24:54:ed:53:26:37:e5:1a:00:
3c:cb:53:68:8a:e2:76:25:59:32:c4:e9:01:9c:63:87:5b:cc:
67:0d:c1:d5:cd:e1:1a:ea:20:e4:7f:ba:e4:36:8c:04:84:9d:
de:ea:a2:e3:15:52:b5:53:7e:9b:39:61:4e:45:8b:bf:79:16:
fa:9c:df:77:fc:93:0a:e8:d9:fe:dc:95:09:6a:d5:68:fc:48:
8f:8e:3d:4b:04:18:0e:13:f2:7c:4d:e6:b8:cb:7c:3e:78:8f:
fe:3e:5d:a9:25:0c:b9:4b:82:46:13:46:e2:14:73:d4:7d:66:
9f:62:48:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:34 2025 by rpki-client