Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Ng0ZYgUhPvQPlVRJ8uPnVP3CPRA.roa
File: Ng0ZYgUhPvQPlVRJ8uPnVP3CPRA.roa (raw, json)
Hash identifier: Yy6ORp4iKto8y8eonuOlSqir8wLQPD2JFxB+p6/Ka6M=
Subject key identifier: 36:0D:19:62:05:21:3E:F4:0F:95:54:49:F2:E3:E7:54:FD:C2:3D:10
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018848F34F524CC111876E85790CF3ABA33E
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Ng0ZYgUhPvQPlVRJ8uPnVP3CPRA.roa
Signing time: Tue 23 May 2023 14:11:24 +0000
ROA not before: Tue 23 May 2023 14:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42649
IP address blocks: 193.234.83.0/24 maxlen: 24
193.234.86.0/24 maxlen: 24
193.180.121.0/24 maxlen: 24
194.103.4.0/24 maxlen: 24
193.235.73.0/24 maxlen: 24
193.183.239.0/24 maxlen: 24
194.68.159.0/24 maxlen: 24
193.234.255.0/24 maxlen: 24
192.71.184.0/24 maxlen: 24
192.165.198.0/24 maxlen: 24
193.180.20.0/24 maxlen: 24
194.68.43.0/24 maxlen: 24
193.235.193.0/24 maxlen: 24
194.68.160.0/24 maxlen: 24
192.165.127.0/24 maxlen: 24
192.165.138.0/23 maxlen: 24
193.235.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:48:f3:4f:52:4c:c1:11:87:6e:85:79:0c:f3:ab:a3:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: May 23 14:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=360d196205213ef40f955449f2e3e754fdc23d10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d6:69:49:d3:c6:86:38:99:7b:a5:f9:82:67:
ae:97:fc:1f:08:5e:ce:9d:b2:c9:47:e0:15:92:85:
52:99:1b:e3:66:29:de:9e:e3:bb:2f:b4:43:38:7d:
b8:bc:88:79:49:14:14:f6:3b:20:d0:e8:f7:59:32:
f1:0f:92:1f:37:89:c9:97:53:1b:51:c6:45:d8:a7:
f8:50:f2:6c:41:a4:ce:53:b9:4e:53:cc:46:5e:f7:
bd:90:42:96:d9:98:5e:88:db:30:37:e8:29:25:6f:
2f:84:a3:d8:bb:a4:b9:a1:a2:5b:3a:d5:4d:63:7e:
99:1d:85:fb:26:37:de:03:ff:a7:d5:2d:88:4a:32:
aa:8c:5b:70:67:ef:08:f2:16:83:2c:46:69:cb:20:
b8:eb:f2:f1:e8:7a:e6:21:18:40:ec:0a:0b:c6:5b:
f8:36:48:38:f5:7d:68:f5:90:0d:91:c5:8f:19:b9:
4e:5b:57:f8:b2:20:42:9f:59:2a:ea:97:24:d9:37:
6f:62:f3:40:9f:ea:60:ac:79:3a:ba:ef:ec:59:38:
31:12:6e:1a:3e:99:0e:29:e7:bd:01:0c:21:58:56:
e3:7b:42:46:e4:42:90:a7:cd:da:56:94:e3:2b:4d:
d3:2a:67:73:47:3d:18:a0:2f:29:f4:48:68:7d:ab:
d1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0D:19:62:05:21:3E:F4:0F:95:54:49:F2:E3:E7:54:FD:C2:3D:10
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Ng0ZYgUhPvQPlVRJ8uPnVP3CPRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.184.0/24
192.165.127.0/24
192.165.138.0/23
192.165.198.0/24
193.180.20.0/24
193.180.121.0/24
193.183.239.0/24
193.234.83.0/24
193.234.86.0/24
193.234.255.0/24
193.235.73.0/24
193.235.130.0/24
193.235.193.0/24
194.68.43.0/24
194.68.159.0-194.68.160.255
194.103.4.0/24
Signature Algorithm: sha256WithRSAEncryption
04:bb:94:7a:a0:85:55:95:59:f8:c6:be:f4:27:9d:6d:d9:05:
d1:50:46:00:d7:70:f0:93:94:a6:31:80:62:ee:74:67:f8:7b:
a4:4f:c2:85:5a:2a:59:05:f0:46:a2:74:b8:f2:24:5b:b5:1e:
e6:cd:b9:14:55:1c:5b:df:f4:47:12:e2:6a:19:a0:1c:e6:cd:
79:6a:64:67:fb:55:91:cb:d4:06:69:40:03:77:66:a3:49:9f:
c5:97:a2:a0:de:1e:ed:2b:74:12:95:ce:1d:a5:13:f5:5c:31:
1d:9f:2e:0f:66:0f:bd:d0:b8:f6:cd:1d:45:df:9e:5a:5c:dd:
e4:fd:e4:72:78:43:34:63:00:9f:67:65:a2:8b:eb:83:2c:d8:
d8:0b:61:da:47:5b:db:51:9d:7e:c1:0f:73:7a:46:18:f5:cc:
ad:a7:f8:87:7b:92:5d:a7:9c:fb:1b:40:a6:e7:86:37:88:33:
a1:a9:ac:f0:b1:af:8b:cb:78:e8:d2:0a:d5:6c:4b:1c:e3:25:
7b:95:57:da:f8:9b:cf:11:e5:ff:12:30:18:cd:54:6b:f5:94:
5e:04:4d:d6:ce:a9:83:c5:6b:86:8b:d7:63:d2:3a:67:61:22:
67:98:2c:ec:e8:7f:eb:e4:7d:79:d9:b6:01:2a:eb:c8:e9:79:
d3:4a:2a:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:31 2025 by rpki-client