Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/CYI6XSkf1F0ZL5XzzG6Q66N_Xc8.roa
File: CYI6XSkf1F0ZL5XzzG6Q66N_Xc8.roa (raw, json)
Hash identifier: TpmPqGfCl/bLNjv5u066XruCEZrl9uhzoh5TWDcgp7g=
Subject key identifier: 09:82:3A:5D:29:1F:D4:5D:19:2F:95:F3:CC:6E:90:EB:A3:7F:5D:CF
Certificate issuer: /CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Certificate serial: 31B05280
Authority key identifier: 6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/CYI6XSkf1F0ZL5XzzG6Q66N_Xc8.roa
Signing time: Thu 31 Mar 2022 03:56:00 +0000
ROA not before: Thu 31 Mar 2022 03:56:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39246
IP address blocks: 77.78.134.0/24 maxlen: 24
77.78.133.0/24 maxlen: 24
77.78.139.0/24 maxlen: 24
77.78.138.0/24 maxlen: 24
77.78.137.0/24 maxlen: 24
77.78.136.0/24 maxlen: 24
77.78.135.0/24 maxlen: 24
77.78.143.0/24 maxlen: 24
77.78.142.0/24 maxlen: 24
77.78.141.0/24 maxlen: 24
77.78.140.0/24 maxlen: 24
77.78.132.0/24 maxlen: 24
77.78.131.0/24 maxlen: 24
77.78.129.0/24 maxlen: 24
77.78.128.0/24 maxlen: 24
109.121.132.0/24 maxlen: 24
109.121.131.0/24 maxlen: 24
109.121.130.0/24 maxlen: 24
109.121.129.0/24 maxlen: 24
109.121.151.0/24 maxlen: 24
109.121.150.0/24 maxlen: 24
109.121.149.0/24 maxlen: 24
109.121.148.0/24 maxlen: 24
62.192.132.0/24 maxlen: 24
62.192.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 833639040 (0x31b05280)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Validity
Not Before: Mar 31 03:56:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09823a5d291fd45d192f95f3cc6e90eba37f5dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:06:1f:f5:b9:c5:f2:63:55:33:3b:c0:21:9c:
a9:06:9d:0d:0e:5c:39:97:ac:1e:f2:13:18:ea:d7:
02:64:2b:82:d0:e2:15:1d:38:40:c4:db:4e:14:5a:
11:a4:56:aa:34:e0:43:df:5f:31:3c:b1:20:20:2e:
74:5f:fc:91:6a:98:d2:81:09:32:2e:51:ca:83:5a:
ef:92:73:51:83:00:c7:a2:04:a8:71:e8:43:72:ab:
16:6b:61:e9:71:0c:5a:a2:5b:7b:e8:b8:29:1e:64:
62:29:55:61:65:0d:f3:ea:11:97:b7:1c:5a:53:b4:
a4:67:18:ef:19:cf:e4:c8:a9:45:79:1b:be:8b:95:
75:de:c7:24:0d:06:ac:89:a2:7d:ff:e2:18:ae:f6:
f2:3c:e1:e2:9a:13:b0:df:50:74:c3:26:36:96:6d:
59:a0:f4:31:97:ae:90:f6:f2:87:12:54:3e:4a:1f:
62:ef:6b:f7:10:1e:cd:82:6b:4d:1e:49:53:9d:2b:
13:04:8b:8d:ce:d3:60:d7:82:59:1a:8c:82:ee:1b:
52:f8:bd:07:cc:d6:90:f5:01:da:37:36:75:94:e5:
87:da:b5:89:e8:d4:e2:0e:96:2a:4b:12:7d:5e:3e:
89:6a:3d:c5:b6:bd:5a:13:7e:95:f8:22:66:a6:5a:
a2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:82:3A:5D:29:1F:D4:5D:19:2F:95:F3:CC:6E:90:EB:A3:7F:5D:CF
X509v3 Authority Key Identifier:
keyid:6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/CYI6XSkf1F0ZL5XzzG6Q66N_Xc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/bdLps6TXsks6aqFPPto_FPopx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.132.0/23
77.78.128.0/23
77.78.131.0-77.78.143.255
109.121.129.0-109.121.132.255
109.121.148.0/22
Signature Algorithm: sha256WithRSAEncryption
82:7e:d6:de:e2:bf:4c:fe:18:f4:5f:c6:8d:8a:3b:e9:9d:29:
17:83:dd:da:a1:65:c7:7b:07:66:82:9e:42:b1:40:4e:f5:db:
7b:a0:e0:a2:99:db:7d:8b:5c:62:50:2f:cb:4e:e2:54:95:f0:
eb:0d:32:eb:6e:88:71:c1:67:1a:be:51:95:e8:e1:a7:e6:4c:
cd:c1:0e:7b:b6:98:a4:fc:9c:ef:08:ac:a2:95:54:4e:a2:e7:
94:7d:e6:06:9a:a0:01:b3:35:03:51:42:13:e7:41:b3:1f:41:
48:95:9e:ef:34:ed:71:f0:13:d8:c6:e2:68:c6:71:68:55:64:
06:15:74:0a:15:8b:4e:cf:66:38:54:82:a7:e8:34:12:dd:f3:
60:83:d4:37:a4:f9:f9:02:4b:80:22:f2:dc:e9:89:7a:c9:fa:
4d:5d:48:ed:3c:7f:a4:5e:50:5e:3a:f6:c4:24:a7:6f:7a:76:
f7:58:79:d0:6b:7e:06:59:3a:4e:17:5d:b0:97:ae:ee:b1:1f:
20:e6:29:86:dc:a3:9e:f3:e3:bd:9a:96:81:5c:76:4f:af:c5:
26:ea:5b:ae:0b:88:5b:34:fc:ae:11:9a:a0:ad:4c:dc:3f:5f:
6d:03:4b:34:06:30:41:70:77:0e:15:38:aa:fe:a8:4f:41:63:
ec:a6:72:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-fra.rpki-client.org