Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/f6bd5f-7e26-4072-9d1a-157e3c169918/1/xH6HfpRUurEMwdggpnmFYVmBiBM.roa
File: xH6HfpRUurEMwdggpnmFYVmBiBM.roa (raw, json)
Hash identifier: rgYvcyowCKNTIagt0mEmok2gtdv1F5uXAdv3VLyTQPA=
Subject key identifier: C4:7E:87:7E:94:54:BA:B1:0C:C1:D8:20:A6:79:85:61:59:81:88:13
Certificate issuer: /CN=c74eb7ea35238d02997c42eb574a38a30e5d00e7
Certificate serial: 02861302
Authority key identifier: C7:4E:B7:EA:35:23:8D:02:99:7C:42:EB:57:4A:38:A3:0E:5D:00:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0636jUjjQKZfELrV0o4ow5dAOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/f6bd5f-7e26-4072-9d1a-157e3c169918/1/xH6HfpRUurEMwdggpnmFYVmBiBM.roa
Signing time: Thu 17 Mar 2022 09:12:26 +0000
ROA not before: Thu 17 Mar 2022 09:12:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34569
IP address blocks: 109.120.192.0/18 maxlen: 18
109.120.213.0/24 maxlen: 24
212.25.32.0/19 maxlen: 19
212.25.58.0/24 maxlen: 24
212.25.62.0/24 maxlen: 24
109.120.215.0/24 maxlen: 24
185.211.200.0/23 maxlen: 23
109.120.218.0/23 maxlen: 23
109.120.222.0/23 maxlen: 23
109.120.224.0/22 maxlen: 22
109.120.220.0/23 maxlen: 23
109.120.230.0/23 maxlen: 23
109.120.228.0/23 maxlen: 24
109.120.232.0/23 maxlen: 23
109.120.240.0/23 maxlen: 23
109.120.238.0/23 maxlen: 23
109.120.242.0/23 maxlen: 23
109.120.244.0/22 maxlen: 22
109.120.252.0/23 maxlen: 23
109.120.248.0/22 maxlen: 22
77.78.38.0/24 maxlen: 24
77.78.56.0/22 maxlen: 22
77.78.60.0/22 maxlen: 22
77.78.0.0/18 maxlen: 18
77.78.20.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42341122 (0x2861302)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74eb7ea35238d02997c42eb574a38a30e5d00e7
Validity
Not Before: Mar 17 09:12:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c47e877e9454bab10cc1d820a679856159818813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:42:57:5a:3c:07:3c:5f:e5:66:7c:89:ec:1e:
6f:2d:a1:c5:73:8c:6b:dd:19:60:2f:83:23:ed:25:
d9:2c:fb:bc:e1:c4:44:68:8b:12:3c:70:d4:5f:f6:
36:93:f5:4f:80:03:b8:39:e5:36:9b:ae:84:fd:93:
71:fc:71:4e:ca:0e:aa:5d:00:1f:9d:2c:ab:fc:05:
86:71:32:60:f7:84:db:00:b1:9f:eb:b3:a1:6a:06:
47:97:cc:90:ae:59:77:21:e0:97:50:39:5e:10:53:
cd:01:56:4b:c0:33:37:92:db:40:a4:c7:43:6f:88:
fc:47:80:cb:66:ca:18:79:37:27:a8:08:0c:b6:50:
60:ff:7a:71:cb:33:cc:28:8c:17:37:b3:20:42:68:
09:1a:c6:9f:ad:08:73:dc:98:84:84:89:84:92:75:
d2:ef:af:73:9d:93:c9:10:f7:93:5a:00:d1:8f:05:
98:aa:b8:e9:64:0e:ea:de:ab:d8:b8:0c:aa:30:a2:
3f:26:96:31:9b:47:8a:10:4d:e1:2c:2e:f4:b5:b6:
c9:71:b6:c6:13:0c:42:f3:37:d5:3a:cd:0d:ec:b6:
a8:a1:33:a8:22:9e:95:e3:a7:0c:f8:19:5a:14:6a:
8d:c1:5d:2a:e1:a2:ef:7c:93:53:51:58:07:1d:92:
3c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:7E:87:7E:94:54:BA:B1:0C:C1:D8:20:A6:79:85:61:59:81:88:13
X509v3 Authority Key Identifier:
keyid:C7:4E:B7:EA:35:23:8D:02:99:7C:42:EB:57:4A:38:A3:0E:5D:00:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0636jUjjQKZfELrV0o4ow5dAOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/f6bd5f-7e26-4072-9d1a-157e3c169918/1/xH6HfpRUurEMwdggpnmFYVmBiBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/f6bd5f-7e26-4072-9d1a-157e3c169918/1/x0636jUjjQKZfELrV0o4ow5dAOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.0.0/18
109.120.192.0/18
185.211.200.0/23
212.25.32.0/19
Signature Algorithm: sha256WithRSAEncryption
22:59:cf:d0:db:b2:c6:ae:aa:ef:79:2c:18:d2:14:17:cb:28:
0e:1d:d8:00:d1:17:68:8b:42:6e:76:2b:cb:af:53:03:93:3b:
c9:13:2d:63:c0:72:7d:fd:41:a3:be:a3:1a:f6:32:40:48:c4:
d6:f7:ac:0d:ce:e7:1f:1d:ad:9e:6a:97:f7:cd:ec:8d:ca:2d:
3a:6d:cc:a9:a8:22:45:ad:a7:40:41:e2:94:bb:2d:af:bd:26:
7a:dc:c1:75:99:2a:7e:8c:ca:75:b2:98:b2:12:54:43:db:55:
9a:6b:9f:6b:de:8d:90:30:01:5e:45:e3:45:cd:58:02:64:0a:
c4:4b:e1:af:fa:7f:8c:ac:b6:2b:1d:dd:1c:b9:c5:8b:ff:eb:
60:13:e3:6f:c9:02:3c:a9:e7:8e:4e:ed:58:60:e7:af:fe:1c:
32:f4:16:bc:42:49:4c:9d:94:28:59:5e:58:4f:5d:52:19:2d:
21:df:8d:59:33:ea:cf:62:f7:f8:52:33:36:0c:72:a0:18:fa:
6c:60:d7:92:61:12:75:8d:f5:2a:cd:32:29:59:ae:57:d7:cb:
62:44:82:a1:96:01:59:a0:7c:cf:8f:65:df:b1:b7:9d:b0:75:
1d:64:9b:60:67:6a:23:fe:55:4b:c4:b8:0b:66:07:4d:c9:c3:
82:51:23:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:00 2024 by rpki-client on console-fra.rpki-client.org