Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Rs2N_BU95_YG8zKChFr7aLu1dZ0.roa
File: Rs2N_BU95_YG8zKChFr7aLu1dZ0.roa (raw, json)
Hash identifier: yGtW8RWDaTvf352MRflQT85vp1xOzNxq1M9e/BpqPIM=
Subject key identifier: 46:CD:8D:FC:15:3D:E7:F6:06:F3:32:82:84:5A:FB:68:BB:B5:75:9D
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01942747E883DE2383FC84C7BC6D8E3AD02D
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Rs2N_BU95_YG8zKChFr7aLu1dZ0.roa
Signing time: Thu 02 Jan 2025 13:50:11 +0000
ROA not before: Thu 02 Jan 2025 13:50:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34754
IP address blocks: 87.254.160.0/19 maxlen: 24
87.254.160.0/23 maxlen: 24
87.254.162.0/23 maxlen: 24
87.254.162.0/24 maxlen: 24
87.254.163.0/24 maxlen: 24
87.254.164.0/23 maxlen: 24
87.254.164.0/24 maxlen: 24
87.254.165.0/24 maxlen: 24
87.254.166.0/23 maxlen: 24
87.254.168.0/24 maxlen: 24
87.254.169.0/24 maxlen: 24
87.254.170.0/23 maxlen: 24
87.254.172.0/23 maxlen: 24
87.254.172.0/24 maxlen: 24
87.254.173.0/24 maxlen: 24
88.87.0.0/19 maxlen: 24
88.87.0.0/24 maxlen: 24
88.87.1.0/24 maxlen: 24
88.87.2.0/24 maxlen: 24
88.87.3.0/24 maxlen: 24
88.87.4.0/24 maxlen: 24
88.87.5.0/24 maxlen: 24
88.87.6.0/23 maxlen: 24
88.87.8.0/23 maxlen: 24
88.87.8.0/24 maxlen: 24
88.87.10.0/23 maxlen: 24
88.87.10.0/24 maxlen: 24
88.87.12.0/23 maxlen: 24
88.87.14.0/24 maxlen: 24
88.87.15.0/24 maxlen: 24
88.87.16.0/23 maxlen: 24
88.87.18.0/23 maxlen: 24
88.87.20.0/23 maxlen: 24
88.87.22.0/23 maxlen: 24
88.87.22.0/24 maxlen: 24
88.87.23.0/24 maxlen: 24
88.87.24.0/22 maxlen: 24
88.87.28.0/23 maxlen: 24
88.87.30.0/24 maxlen: 24
88.87.31.0/24 maxlen: 24
109.199.128.0/19 maxlen: 24
193.228.172.0/23 maxlen: 24
193.228.182.0/23 maxlen: 24
212.50.64.0/19 maxlen: 24
212.50.64.0/22 maxlen: 24
212.50.68.0/22 maxlen: 24
212.50.70.0/24 maxlen: 24
212.50.72.0/22 maxlen: 24
212.50.76.0/22 maxlen: 24
212.50.76.0/24 maxlen: 24
212.50.77.0/24 maxlen: 24
212.50.78.0/24 maxlen: 24
212.50.79.0/24 maxlen: 24
212.50.80.0/23 maxlen: 24
212.50.82.0/23 maxlen: 24
212.50.84.0/23 maxlen: 24
212.50.86.0/23 maxlen: 24
212.50.88.0/23 maxlen: 24
212.50.90.0/23 maxlen: 24
212.50.91.0/24 maxlen: 24
212.50.92.0/24 maxlen: 24
212.50.93.0/24 maxlen: 24
212.50.94.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:e8:83:de:23:83:fc:84:c7:bc:6d:8e:3a:d0:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 2 13:50:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=46cd8dfc153de7f606f33282845afb68bbb5759d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:40:13:4d:b0:3a:3a:b0:b9:53:4a:e8:89:06:
3d:5c:95:5e:e6:06:b8:c7:42:b7:9f:82:1f:e7:55:
a3:c0:ec:cd:e7:e6:56:50:ba:2f:46:43:8a:3d:8a:
9c:50:7f:8d:90:99:10:73:21:7c:b8:fe:bd:ba:09:
be:b5:59:47:f6:a5:c8:83:08:ec:b4:e9:91:1d:f0:
8c:87:3a:e6:7b:b1:67:3d:43:d5:3a:68:42:e0:c3:
79:92:9c:9c:6e:89:b1:40:27:7b:70:d5:8a:18:7c:
8e:12:35:a9:1d:8b:13:88:4a:8f:d0:2e:8b:ab:8e:
a1:76:b9:df:1f:0b:55:79:09:b9:67:1b:b2:b2:c4:
42:75:ea:79:9e:91:4c:61:0f:6b:92:a6:33:bb:61:
6e:d2:1d:30:cc:e9:f0:94:14:38:a8:99:bc:23:59:
c6:75:2e:f7:ec:bf:24:52:c4:cf:2d:d4:9c:e1:e1:
1a:59:80:9a:ca:1f:eb:41:18:a2:bb:84:19:43:ee:
df:46:96:c4:2d:75:5f:bf:20:4d:ed:be:da:f0:70:
a3:a9:1b:1c:13:b0:09:45:7b:29:e3:0d:07:91:e5:
77:00:ad:4c:72:70:b2:b6:58:d4:f5:67:96:3e:6c:
e8:8b:16:b3:94:1c:10:a7:23:ef:88:ab:ed:2b:0c:
26:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CD:8D:FC:15:3D:E7:F6:06:F3:32:82:84:5A:FB:68:BB:B5:75:9D
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Rs2N_BU95_YG8zKChFr7aLu1dZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.160.0/19
88.87.0.0/19
109.199.128.0/19
193.228.172.0/23
193.228.182.0/23
212.50.64.0/19
Signature Algorithm: sha256WithRSAEncryption
2a:c0:16:49:5d:ba:48:e4:d0:70:78:f4:bd:04:f0:38:c4:d1:
a1:7d:9c:81:38:ec:2b:29:61:d0:7b:be:f4:aa:4a:8d:32:3d:
bc:06:85:b1:bf:e0:59:d7:b1:8f:f1:99:f9:91:3a:14:46:46:
b4:54:ab:25:6f:56:9b:0a:54:53:55:7b:a7:45:94:d9:c9:5a:
39:0f:f3:21:39:46:2d:5a:8a:90:6a:13:cc:13:00:b5:87:d2:
08:ea:87:2f:65:aa:7b:32:0f:e2:a6:22:00:68:ba:3e:f4:0a:
fc:12:32:26:fe:f7:79:15:df:69:f2:ce:d0:b9:e4:37:1d:1e:
9f:3d:7f:df:55:56:35:ea:b2:11:cd:23:17:64:ff:f8:93:35:
5c:35:f1:4c:0e:dd:37:7e:1e:71:8c:c1:63:54:8a:72:38:8b:
49:0c:10:5f:78:60:2e:69:71:05:49:87:7d:77:24:35:5d:d8:
3e:0e:9f:da:ce:43:8e:68:40:4c:19:52:9a:e6:3e:5c:36:4a:
10:04:ad:12:08:16:da:6d:19:de:da:7a:fd:c8:0b:47:a6:0c:
10:b1:3e:96:f6:04:f0:46:bf:a9:7d:f3:f2:fa:c4:a0:4a:63:
0f:83:a8:44:34:36:33:88:d3:62:31:32:9e:f2:99:a9:17:56:
99:7c:36:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 10:51:12 2025 by rpki-client