Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/8o6RF3h27zDJVYftaZz_oycLtbM.roa
File: 8o6RF3h27zDJVYftaZz_oycLtbM.roa (raw, json)
Hash identifier: rtGuCvpwEe1eTSjyh1AN0pRWAwiCZ1ahG4HL7NvL0EA=
Subject key identifier: F2:8E:91:17:78:76:EF:30:C9:55:87:ED:69:9C:FF:A3:27:0B:B5:B3
Certificate issuer: /CN=679a75debd65359a45317f203f11a321e14b2f2c
Certificate serial: 06929D47
Authority key identifier: 67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/8o6RF3h27zDJVYftaZz_oycLtbM.roa
Signing time: Thu 28 Apr 2022 23:37:54 +0000
ROA not before: Thu 28 Apr 2022 23:37:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 37.156.226.0/24 maxlen: 24
93.113.31.0/24 maxlen: 24
87.121.136.0/21 maxlen: 24
94.176.96.0/24 maxlen: 24
93.113.175.0/24 maxlen: 24
185.61.156.0/22 maxlen: 24
31.177.0.0/21 maxlen: 24
188.241.223.0/24 maxlen: 24
185.137.36.0/22 maxlen: 24
62.245.0.0/19 maxlen: 24
93.114.129.0/24 maxlen: 24
86.106.135.0/24 maxlen: 24
86.104.228.0/24 maxlen: 24
89.44.77.0/24 maxlen: 24
46.102.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110271815 (0x6929d47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=679a75debd65359a45317f203f11a321e14b2f2c
Validity
Not Before: Apr 28 23:37:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f28e91177876ef30c95587ed699cffa3270bb5b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f0:c2:ee:6f:b9:7d:16:45:4c:26:64:35:1d:
f4:76:f0:1a:4a:d4:2c:15:48:21:0a:46:69:00:a5:
5f:6c:a1:dc:ec:0e:ce:87:6a:0d:07:5b:2b:8f:e4:
f3:43:fc:61:f9:6a:8e:f8:65:86:f3:d2:71:d6:34:
ca:eb:15:d1:99:8a:54:0a:28:7b:d1:cf:2c:70:f7:
e5:90:53:f5:29:57:7a:53:a2:56:12:81:77:6a:16:
13:34:60:9f:05:1e:71:7f:4c:d1:5c:42:70:42:d0:
71:98:a7:79:39:63:44:b7:06:c0:43:80:36:b6:ba:
16:71:ea:93:6d:48:ba:5f:32:28:11:e5:79:13:e5:
d2:3e:4f:a5:83:e6:af:57:0a:c2:77:b4:4b:cc:c5:
04:4d:1b:db:59:11:76:42:e5:ce:17:57:61:6a:8e:
a4:f8:b6:97:c5:4e:1b:72:00:50:89:c1:5e:2a:ee:
3a:e8:f3:30:80:19:04:f2:b7:d0:4a:dd:f3:7c:73:
ba:03:f8:be:9a:21:b4:df:9d:76:ce:1a:f2:b1:47:
b7:7d:a5:64:fb:b1:6f:e0:92:cd:1f:d0:e7:39:ee:
07:57:7a:e4:ae:1e:c6:63:31:e9:9c:10:c7:80:0d:
91:a3:bf:a0:4c:42:48:01:8d:2d:58:b6:35:eb:c2:
bd:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:8E:91:17:78:76:EF:30:C9:55:87:ED:69:9C:FF:A3:27:0B:B5:B3
X509v3 Authority Key Identifier:
keyid:67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/8o6RF3h27zDJVYftaZz_oycLtbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/Z5p13r1lNZpFMX8gPxGjIeFLLyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.0.0/21
37.156.226.0/24
46.102.116.0/24
62.245.0.0/19
86.104.228.0/24
86.106.135.0/24
87.121.136.0/21
89.44.77.0/24
93.113.31.0/24
93.113.175.0/24
93.114.129.0/24
94.176.96.0/24
185.61.156.0/22
185.137.36.0/22
188.241.223.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:c8:19:41:4f:25:80:df:7e:84:2f:cf:7a:e4:7e:d5:ab:c5:
4c:f8:97:48:b5:c6:70:a2:0f:97:21:b7:ee:dc:57:72:37:ae:
94:61:f0:0d:8a:df:5f:5d:1f:24:63:bb:15:2b:73:75:04:fc:
3d:87:3b:c3:b6:65:9f:95:df:84:8c:6e:9e:e9:ee:ca:89:34:
56:e2:16:0d:0c:bf:ac:9e:4d:05:c8:e6:be:c4:99:ac:c1:e3:
55:64:7b:3f:0a:89:09:a3:a2:2a:1e:f2:b6:a6:17:da:d2:af:
0e:2a:df:32:6c:1d:11:b5:f6:4e:20:cc:f2:5a:7b:01:7e:31:
d7:73:e5:04:d2:3a:24:e1:ff:cc:9f:5f:ff:bd:a9:ad:38:4a:
c2:07:f3:71:08:93:ad:97:79:5f:d9:0a:a9:e9:0d:4b:d8:32:
cc:04:75:1c:8d:61:96:a1:95:37:63:b1:fc:ad:79:27:ab:0f:
79:01:a5:b9:b8:56:9f:b3:d7:31:a3:c4:2b:d5:d6:4f:ba:b7:
a4:42:1c:72:25:8e:51:17:c1:23:8c:f0:f0:69:a3:52:65:c9:
eb:9e:d8:ef:3d:a5:e5:31:40:e3:37:83:bb:99:75:e8:e4:82:
27:48:34:b6:27:83:c2:1c:3e:47:6f:1c:a3:09:c2:a8:6a:de:
ff:f8:8a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:36 2025 by rpki-client