Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jyyenHi9Fkzk8K7ZSs3cEhHj0Dw.roa
File: jyyenHi9Fkzk8K7ZSs3cEhHj0Dw.roa (raw, json)
Hash identifier: 2i7ui4cZIVvnMXwiGeddZO6yQnX2RrnPIawKiFz82bI=
Subject key identifier: 8F:2C:9E:9C:78:BD:16:4C:E4:F0:AE:D9:4A:CD:DC:12:11:E3:D0:3C
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0194997320709B075717146BEE992E9271D8
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jyyenHi9Fkzk8K7ZSs3cEhHj0Dw.roa
Signing time: Fri 24 Jan 2025 17:54:06 +0000
ROA not before: Fri 24 Jan 2025 17:54:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5511
IP address blocks: 45.136.0.0/24 maxlen: 32
45.136.1.0/24 maxlen: 32
45.136.2.0/24 maxlen: 32
45.136.3.0/24 maxlen: 32
128.0.119.0/24 maxlen: 32
185.117.20.0/22 maxlen: 32
185.117.20.0/24 maxlen: 32
185.117.22.0/24 maxlen: 32
185.117.23.0/24 maxlen: 32
185.211.48.0/24 maxlen: 32
185.211.49.0/24 maxlen: 32
185.211.50.0/24 maxlen: 32
185.227.240.0/24 maxlen: 32
185.227.241.0/24 maxlen: 32
185.227.242.0/24 maxlen: 32
185.227.243.0/24 maxlen: 32
193.201.208.0/24 maxlen: 32
193.201.209.0/24 maxlen: 32
193.201.210.0/24 maxlen: 32
193.201.211.0/24 maxlen: 32
194.36.100.0/24 maxlen: 32
194.36.101.0/24 maxlen: 32
194.36.102.0/24 maxlen: 32
194.36.103.0/24 maxlen: 32
194.124.64.0/24 maxlen: 32
194.124.66.0/24 maxlen: 32
194.124.67.0/24 maxlen: 32
195.85.68.0/24 maxlen: 32
195.85.69.0/24 maxlen: 32
195.85.70.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:99:73:20:70:9b:07:57:17:14:6b:ee:99:2e:92:71:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 24 17:54:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8f2c9e9c78bd164ce4f0aed94acddc1211e3d03c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:92:ca:73:f8:af:15:ee:7c:90:55:29:07:34:
30:55:99:9b:5b:54:2c:6e:06:bf:e8:e6:ec:9a:ee:
c2:72:a4:d4:58:29:4e:6c:1a:68:cc:5c:50:e2:0d:
d3:06:f9:23:d2:03:03:14:69:d7:3a:d9:8b:cb:a9:
29:b7:f0:86:0f:8c:16:8c:bc:bd:c2:e7:83:42:f4:
ac:6e:6c:06:36:8e:83:a3:bd:f9:53:be:4b:59:24:
3a:73:e9:76:e8:f7:99:19:6d:80:a1:91:c4:da:6e:
2c:fe:bc:5c:dd:7f:b8:d2:7a:3c:21:92:34:46:a9:
17:de:56:5c:24:41:c1:1b:9a:55:65:a6:ad:96:63:
74:9d:81:0e:1c:e6:18:08:3e:de:89:67:9f:c3:7f:
98:5c:60:94:3e:cd:45:5c:7b:99:b4:d0:fc:36:94:
21:60:ab:ba:af:13:74:49:28:26:e3:d2:dd:90:2f:
ea:43:a7:b3:f4:2b:ae:63:4b:36:17:8d:6d:6a:de:
a2:50:57:dd:ee:b8:00:c7:cc:3e:95:39:92:49:46:
6b:0f:05:af:0f:f3:0d:6a:11:ce:fc:53:0b:5b:30:
db:33:a5:5c:e1:00:a5:e8:d4:cd:0f:25:31:6a:d2:
1e:4f:40:61:e2:90:d0:52:6e:a4:07:13:40:86:63:
e5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2C:9E:9C:78:BD:16:4C:E4:F0:AE:D9:4A:CD:DC:12:11:E3:D0:3C
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jyyenHi9Fkzk8K7ZSs3cEhHj0Dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.0.0/22
128.0.119.0/24
185.117.20.0/22
185.211.48.0-185.211.50.255
185.227.240.0/22
193.201.208.0/22
194.36.100.0/22
194.124.64.0/24
194.124.66.0/23
195.85.68.0-195.85.70.255
Signature Algorithm: sha256WithRSAEncryption
ce:54:db:de:43:44:d5:b0:61:ba:61:db:71:24:f4:bb:fd:c6:
db:ca:6a:40:67:e1:b7:57:b3:c2:94:a3:90:f4:19:9d:d4:cb:
c4:68:dc:dd:5b:39:a6:1e:5e:be:ce:fc:0d:9b:60:3d:73:de:
92:5e:10:ef:ee:95:00:e8:06:09:45:b0:7b:03:17:96:bc:1c:
51:4c:9c:74:a5:81:c4:0b:b6:47:86:d8:e1:8b:96:ef:7c:0c:
40:28:be:2b:26:dd:43:9b:cc:55:9d:aa:e7:ee:50:a1:82:fc:
ce:88:4d:a2:9c:88:87:83:9c:4c:04:0f:75:70:0e:7f:f3:b3:
cf:56:71:40:c6:ab:59:4d:f2:ae:ff:de:f1:05:a2:45:61:00:
d1:77:12:47:7d:60:d8:1a:00:bc:93:53:d7:9b:dd:ba:f9:5e:
62:94:b2:9c:9a:2c:59:b8:78:d1:38:62:85:53:18:80:7a:f5:
4d:ec:6d:1b:b5:35:89:22:be:29:ba:e3:fa:28:e2:1d:89:b6:
ac:23:a3:28:a1:a0:2f:0d:9f:ce:b8:c4:85:8b:71:cb:08:7d:
03:f7:7e:20:57:9b:d7:f4:54:42:48:9f:6e:02:4b:ae:8c:59:
ee:a2:af:a1:07:7e:2f:d2:b6:88:79:ac:cd:40:4b:85:7b:70:
70:b1:f5:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:47:18 2025 by rpki-client