Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/FtJU8J9U2_OLLatx6LfvbHOKR_c.roa
File: FtJU8J9U2_OLLatx6LfvbHOKR_c.roa (raw, json)
Hash identifier: dIJaTNJ0+ASaTltOhTPasps3097ycgeaovaUGMkuSR8=
Subject key identifier: 16:D2:54:F0:9F:54:DB:F3:8B:2D:AB:71:E8:B7:EF:6C:73:8A:47:F7
Certificate issuer: /CN=078629f5f61fb25564284fbfeffb93c3ed44bfe2
Certificate serial: 019425223A2BB169CF681907A5E676A60C35
Authority key identifier: 07:86:29:F5:F6:1F:B2:55:64:28:4F:BF:EF:FB:93:C3:ED:44:BF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/FtJU8J9U2_OLLatx6LfvbHOKR_c.roa
Signing time: Thu 02 Jan 2025 03:49:47 +0000
ROA not before: Thu 02 Jan 2025 03:49:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201978
IP address blocks: 185.1.132.0/24 maxlen: 24
185.50.68.0/24 maxlen: 24
185.50.69.0/24 maxlen: 24
185.50.70.0/24 maxlen: 24
185.50.71.0/24 maxlen: 24
185.114.20.0/24 maxlen: 24
185.114.21.0/24 maxlen: 24
185.114.22.0/24 maxlen: 24
185.114.23.0/24 maxlen: 24
185.146.88.0/24 maxlen: 24
185.146.89.0/24 maxlen: 24
185.146.90.0/24 maxlen: 24
185.146.91.0/24 maxlen: 24
185.169.52.0/24 maxlen: 24
185.169.53.0/24 maxlen: 24
185.169.54.0/24 maxlen: 24
185.169.55.0/24 maxlen: 24
194.61.116.0/24 maxlen: 24
194.61.117.0/24 maxlen: 24
194.61.118.0/24 maxlen: 24
194.61.119.0/24 maxlen: 24
2a01:a420::/29 maxlen: 29
2a0a:3900::/29 maxlen: 29
2a0f:d500::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:3a:2b:b1:69:cf:68:19:07:a5:e6:76:a6:0c:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=078629f5f61fb25564284fbfeffb93c3ed44bfe2
Validity
Not Before: Jan 2 03:49:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16d254f09f54dbf38b2dab71e8b7ef6c738a47f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2f:78:d3:eb:be:ac:14:66:40:7a:38:28:7f:
82:8e:2d:4e:61:e5:6e:5f:67:8a:1d:63:1c:44:c6:
8b:0a:24:9b:34:24:11:1c:8e:99:5a:ca:00:bd:94:
4c:ae:5e:69:6a:31:c2:24:f4:99:13:75:e4:b7:81:
d9:d3:ec:e7:42:83:95:26:ff:16:60:89:a0:04:ef:
15:97:49:23:a8:03:ad:2e:f1:d7:0a:dd:27:37:96:
94:03:3c:4c:f2:11:b0:16:08:c4:de:d2:f5:3f:bd:
cf:c1:16:d2:38:2d:0f:f2:54:17:2e:0c:46:fc:95:
49:fb:62:73:d1:89:16:55:f9:49:e1:8c:bd:72:c2:
f4:5f:f9:e6:99:ea:02:cb:81:46:96:96:c1:e4:59:
d6:d9:97:4e:6d:ca:a9:55:58:13:fb:ce:88:68:a4:
d7:67:a9:ac:98:a7:b6:85:9d:44:d8:ea:79:7e:47:
c9:df:1e:3f:b1:c9:d7:d2:e6:3d:76:ab:35:fe:43:
94:fe:a1:5a:8a:03:51:3f:41:21:09:19:b4:8f:77:
91:b7:4c:27:22:ac:68:43:ea:68:a7:cb:0b:62:17:
10:a4:31:50:13:f7:ce:dd:c1:07:8a:f7:1f:c0:d6:
6b:b5:fe:fd:d3:54:e1:01:0a:5e:a3:41:33:97:17:
89:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D2:54:F0:9F:54:DB:F3:8B:2D:AB:71:E8:B7:EF:6C:73:8A:47:F7
X509v3 Authority Key Identifier:
keyid:07:86:29:F5:F6:1F:B2:55:64:28:4F:BF:EF:FB:93:C3:ED:44:BF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/FtJU8J9U2_OLLatx6LfvbHOKR_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.132.0/24
185.50.68.0/22
185.114.20.0/22
185.146.88.0/22
185.169.52.0/22
194.61.116.0/22
IPv6:
2a01:a420::/29
2a0a:3900::/29
2a0f:d500::/29
Signature Algorithm: sha256WithRSAEncryption
8d:3a:f9:73:ef:76:55:bb:1d:cb:bd:89:da:25:9d:7e:ee:39:
df:d8:f6:8e:ad:7f:fd:2f:67:d1:c5:0b:b8:ba:fb:2f:b0:99:
74:28:c8:10:54:99:01:da:88:6f:32:43:e4:c6:55:3a:cf:77:
00:3e:95:b6:6a:9e:75:0b:ea:d1:cf:6b:2f:6c:d2:b0:9f:33:
64:c3:ca:82:ed:d0:50:b1:80:e2:f2:15:09:0d:71:03:01:48:
0a:2c:da:d4:30:1b:7c:c6:f0:5f:06:ac:2b:e5:82:9d:f1:ce:
34:36:88:5d:a2:0e:37:62:b2:48:ec:f1:89:74:57:08:50:01:
86:75:26:9e:63:64:21:71:8f:e3:d1:82:f6:56:a3:65:7a:f7:
09:05:b8:77:72:36:a1:15:f2:6a:ca:56:fd:2c:c4:d6:f8:e4:
45:6f:2f:67:39:6c:75:e4:6e:ae:c1:d7:8a:98:24:7f:15:f0:
c1:1e:03:14:87:f1:8a:2d:93:d6:bd:3a:b8:77:ff:13:92:2a:
1c:7a:35:f9:8f:55:09:d6:b7:de:74:49:5a:6d:47:04:25:41:
cc:fc:10:41:b5:45:6f:86:88:57:cf:d0:b2:57:d8:f2:52:d2:
20:f3:5c:68:df:3c:06:7f:1f:2f:b0:c0:b0:6a:21:4e:cb:56:
7f:84:07:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:05:41 2025 by rpki-client