Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/v6wjpDf36jgibY3b8l8jb99tDwE.roa
File: v6wjpDf36jgibY3b8l8jb99tDwE.roa (raw, json)
Hash identifier: 0SgK2WWCu0nm13iGi5Xe01mURZD0ZKsu1bEOBo121lY=
Subject key identifier: BF:AC:23:A4:37:F7:EA:38:22:6D:8D:DB:F2:5F:23:6F:DF:6D:0F:01
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 0194258F1620F0CFED245E8516F86616F2A7
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/v6wjpDf36jgibY3b8l8jb99tDwE.roa
Signing time: Thu 02 Jan 2025 05:48:41 +0000
ROA not before: Thu 02 Jan 2025 05:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8456
IP address blocks: 79.123.176.0/23 maxlen: 23
79.123.178.0/24 maxlen: 24
79.123.179.0/24 maxlen: 24
79.123.180.0/24 maxlen: 24
79.123.181.0/24 maxlen: 24
79.123.182.0/24 maxlen: 24
79.123.183.0/24 maxlen: 24
95.183.228.0/24 maxlen: 24
193.140.192.0/24 maxlen: 24
193.140.193.0/24 maxlen: 24
193.140.194.0/24 maxlen: 24
193.140.195.0/24 maxlen: 24
193.140.196.0/22 maxlen: 22
193.140.196.0/24 maxlen: 24
193.140.199.0/24 maxlen: 24
193.140.200.0/22 maxlen: 22
193.140.200.0/24 maxlen: 24
193.140.201.0/24 maxlen: 24
193.140.203.0/24 maxlen: 24
193.140.204.0/22 maxlen: 24
193.140.208.0/21 maxlen: 21
193.255.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:16:20:f0:cf:ed:24:5e:85:16:f8:66:16:f2:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 2 05:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bfac23a437f7ea38226d8ddbf25f236fdf6d0f01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b0:35:24:05:e5:98:1c:33:1f:e3:49:d4:d2:
d6:ce:32:5e:ad:fa:78:46:f4:69:01:54:46:52:af:
9e:57:83:5b:31:46:f6:61:e5:85:9b:72:5b:ae:83:
07:9a:dd:43:01:46:46:6f:ce:f8:d6:d0:31:48:7a:
ff:34:78:1f:50:12:c2:46:9b:22:38:1e:69:d1:2d:
e8:cd:8d:bf:8f:0e:e0:3d:7d:cc:a5:50:9a:74:37:
ec:6b:45:4a:3f:92:64:23:74:06:64:61:90:38:43:
18:e4:25:1f:81:d6:51:0f:c9:c7:59:4a:b8:6c:dc:
5d:da:ad:0d:a6:4d:d9:53:da:a2:0a:b4:47:72:6b:
e8:6a:2c:a0:fb:f2:4c:ea:81:08:0c:45:89:10:b5:
2f:77:86:5f:e5:6a:5d:93:53:db:4f:d9:44:4a:4b:
8b:c9:1b:fe:e2:cd:aa:60:59:71:3f:5f:50:9b:ac:
33:16:84:a4:e3:20:f4:b3:9c:56:0c:8f:c8:29:d0:
55:0e:d7:31:d7:72:ac:24:58:c8:e9:1d:47:d5:d1:
a3:ad:70:db:7f:42:b4:e0:bc:9e:0f:92:e0:5b:ce:
62:52:91:c9:b7:a3:50:79:72:d4:23:17:4f:f2:10:
4d:c8:0c:37:ea:74:f0:a9:f1:0d:16:cc:a4:31:b4:
a9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AC:23:A4:37:F7:EA:38:22:6D:8D:DB:F2:5F:23:6F:DF:6D:0F:01
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/v6wjpDf36jgibY3b8l8jb99tDwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.123.176.0/21
95.183.228.0/24
193.140.192.0-193.140.215.255
193.255.30.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ed:62:07:b4:3a:36:df:74:0e:2f:c4:93:09:da:52:8d:fe:
d1:59:b4:3c:f4:d5:9f:96:72:8f:4f:35:4d:66:6f:fd:aa:3c:
81:e6:36:0b:84:ab:f4:76:77:8b:5f:9a:1f:bb:e8:f4:bc:91:
25:6d:96:5b:f1:84:56:9a:a1:75:a0:22:e7:eb:b9:3b:3a:7b:
0f:cb:6a:1c:cd:61:17:03:0b:e3:3e:90:3c:00:ff:32:23:08:
24:cd:f4:17:5d:b5:93:44:56:f4:e5:2a:33:97:13:df:b4:95:
a5:32:5a:36:ef:87:b1:ce:86:4c:77:71:ed:7d:13:f4:24:37:
9f:fd:cd:35:39:e7:7c:af:f7:88:62:45:9c:28:12:22:02:45:
12:de:13:6a:09:6a:4a:bb:f6:03:b2:22:a2:c0:04:29:14:b4:
f7:9f:f2:eb:de:0e:d4:96:01:61:6e:f0:4e:c4:19:78:07:89:
f4:e3:31:4f:bc:a2:60:0b:0b:65:d1:16:34:f9:14:a7:0c:1e:
6e:30:d3:71:ea:81:c5:91:48:f3:0a:fa:33:75:a0:30:7e:70:
d8:cb:fc:7d:4e:3f:fe:b1:d3:1e:25:9e:44:a1:c7:12:a7:b1:
49:29:e8:3d:a6:57:19:fe:06:6b:65:5c:4c:46:78:79:d5:d3:
44:2e:b5:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:06:22 2025 by rpki-client