Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Ej8-mkziTjV4Anj0Wmq97pGkhlY.roa
File: Ej8-mkziTjV4Anj0Wmq97pGkhlY.roa (raw, json)
Hash identifier: QMGdJFucXYwBkA80msXTFymF3xlXltqEOJdoRuUd5iE=
Subject key identifier: 12:3F:3E:9A:4C:E2:4E:35:78:02:78:F4:5A:6A:BD:EE:91:A4:86:56
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 44129307
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Ej8-mkziTjV4Anj0Wmq97pGkhlY.roa
Signing time: Mon 30 May 2022 12:43:14 +0000
ROA not before: Mon 30 May 2022 12:43:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42708
IP address blocks: 192.165.76.0/24 maxlen: 24
194.68.37.0/24 maxlen: 24
192.121.153.0/24 maxlen: 24
194.68.38.0/24 maxlen: 24
194.14.177.0/24 maxlen: 24
193.180.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1142067975 (0x44129307)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: May 30 12:43:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=123f3e9a4ce24e35780278f45a6abdee91a48656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2e:b3:a3:c8:c8:72:f8:5f:8a:b3:9d:38:fe:
09:04:06:15:86:d0:ea:1a:9b:4f:41:fb:52:2f:09:
52:31:8e:fd:9a:42:3f:3c:67:82:bb:64:29:b6:0c:
d0:ba:7b:ab:b6:de:b7:2a:92:6a:3b:92:3e:97:9e:
25:91:95:c0:3b:32:a2:1a:a6:44:9d:07:85:50:53:
dc:54:76:d8:65:1b:bb:50:f6:bc:9e:b6:f9:15:f2:
46:48:ae:c7:d6:ec:44:19:bb:15:1d:8b:8e:34:88:
12:51:f9:f3:a5:83:04:15:de:2a:6e:a4:13:8e:50:
dd:0d:63:c6:a5:74:ef:50:93:84:c5:34:ff:c4:34:
22:0b:95:38:54:5c:40:15:34:52:bf:75:e4:36:2c:
4d:fe:a0:81:f2:99:6d:a7:ec:38:1d:9d:95:91:38:
73:6c:09:cf:9a:1e:39:2b:38:3a:5e:db:5a:43:fe:
de:90:ff:20:d0:05:6a:75:d2:29:84:c9:80:56:a9:
12:4e:40:c7:f4:d3:30:00:61:ec:2e:70:63:37:c8:
38:0e:fd:cf:bf:9c:ff:53:d9:84:15:b9:33:fb:c1:
d9:fd:53:8e:66:d2:d1:93:5a:33:63:14:04:88:5c:
9b:58:d3:a3:1e:06:5f:56:65:0d:9f:5a:db:9f:c1:
8f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3F:3E:9A:4C:E2:4E:35:78:02:78:F4:5A:6A:BD:EE:91:A4:86:56
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Ej8-mkziTjV4Anj0Wmq97pGkhlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.121.153.0/24
192.165.76.0/24
193.180.200.0/24
194.14.177.0/24
194.68.37.0-194.68.38.255
Signature Algorithm: sha256WithRSAEncryption
6a:14:81:e6:20:c2:7b:bb:3c:f1:7a:2f:6b:bf:2f:2e:d1:4a:
dd:70:d4:5c:0c:4c:4c:6a:91:32:42:fb:20:ee:59:57:38:b6:
bd:d4:ca:63:d3:52:9c:d7:9e:10:d0:cb:b9:a9:e2:a6:66:4d:
bb:66:92:f7:d9:b5:08:2c:ea:c5:02:20:32:9a:60:64:60:58:
1b:2e:e7:01:c4:99:1a:a2:ea:d4:c3:7f:d8:85:c6:33:d0:c5:
ac:b3:bc:73:c2:54:7d:75:4d:a9:62:4f:64:eb:72:6c:1c:f1:
bd:39:55:dd:f1:dc:d6:51:da:54:c2:c5:c8:c2:28:e1:70:d3:
a7:71:b6:1e:41:54:17:b7:8a:4d:e2:71:a2:aa:b7:96:90:75:
a9:aa:d5:19:2c:29:a2:30:e2:ec:27:61:bb:33:27:3d:4c:08:
1d:9a:e7:c8:b5:3b:cb:5e:55:4a:48:0d:83:10:fe:ba:4f:82:
22:e5:48:e6:02:33:36:d2:79:a4:aa:24:3d:a6:44:de:27:12:
56:03:41:f0:a2:2b:55:3f:86:9e:ee:e4:cd:bf:59:fb:f8:6a:
e7:d9:88:12:20:03:11:a4:3c:50:70:ac:8c:27:b6:e2:c7:af:
1e:d4:55:7c:6c:62:ab:fe:5e:ef:66:2d:31:88:23:96:a5:80:
e6:df:73:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:23 2025 by rpki-client