Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/neESxPh1r4qMAQ4WnYlXkGjaIOs.roa
File: neESxPh1r4qMAQ4WnYlXkGjaIOs.roa (raw, json)
Hash identifier: 60rvOST7iuueHxikC3AvHFlQBF+byH2bnoTbrkRSb88=
Subject key identifier: 9D:E1:12:C4:F8:75:AF:8A:8C:01:0E:16:9D:89:57:90:68:DA:20:EB
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0194274841B23801C80E2052B223DEF76522
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/neESxPh1r4qMAQ4WnYlXkGjaIOs.roa
Signing time: Thu 02 Jan 2025 13:50:34 +0000
ROA not before: Thu 02 Jan 2025 13:50:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9201
IP address blocks: 192.36.7.0/24 maxlen: 24
192.36.55.0/24 maxlen: 24
192.36.251.0/24 maxlen: 24
192.71.136.0/24 maxlen: 24
192.121.27.0/24 maxlen: 24
192.165.140.0/24 maxlen: 24
192.165.141.0/24 maxlen: 24
192.165.184.0/24 maxlen: 24
193.182.24.0/23 maxlen: 23
193.182.26.0/23 maxlen: 23
193.182.28.0/23 maxlen: 23
193.182.30.0/23 maxlen: 23
193.182.32.0/23 maxlen: 23
193.182.34.0/23 maxlen: 23
193.182.36.0/23 maxlen: 23
193.182.38.0/23 maxlen: 23
193.182.40.0/23 maxlen: 23
193.182.42.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:41:b2:38:01:c8:0e:20:52:b2:23:de:f7:65:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 13:50:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9de112c4f875af8a8c010e169d89579068da20eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:70:fb:14:54:39:4c:7b:34:5e:ff:c7:d7:a9:
66:e7:93:8c:e2:67:42:c8:09:cf:b1:0e:d3:df:dd:
0a:6f:f2:24:34:38:4e:77:07:46:3a:7c:88:92:e0:
a1:5c:b6:2f:77:38:d4:96:16:04:16:a1:c1:dc:c8:
c7:9d:cb:06:35:bb:72:72:9f:5f:f4:fa:72:89:97:
5f:e2:6d:70:79:4b:77:76:96:35:2b:3e:fc:68:d3:
88:71:c6:46:9c:a7:5e:3b:f2:be:b5:95:6a:a9:ea:
d8:85:61:65:54:af:70:78:30:dc:83:0c:91:68:57:
e9:97:ef:75:d5:f6:f3:34:ad:f1:2b:be:31:4f:73:
2a:41:4e:f6:8c:bd:3d:95:23:40:b0:52:38:a9:47:
cc:90:70:b1:73:df:c3:f4:5f:3e:5a:fb:23:7b:62:
8a:73:76:e1:33:4b:7d:b7:84:80:38:09:ec:73:a8:
7d:a9:7d:d3:44:12:db:3f:f3:87:ba:8f:38:be:55:
a4:10:aa:fd:f7:0b:2c:fc:b3:bd:48:e3:be:40:d0:
12:e5:87:a4:f6:c4:2d:99:4c:e8:82:6d:45:54:b5:
48:87:42:e4:7a:b3:72:86:a1:eb:98:d1:47:9b:d4:
fd:ca:7a:58:77:33:23:64:54:b4:13:ca:28:52:8c:
ae:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E1:12:C4:F8:75:AF:8A:8C:01:0E:16:9D:89:57:90:68:DA:20:EB
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/neESxPh1r4qMAQ4WnYlXkGjaIOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.7.0/24
192.36.55.0/24
192.36.251.0/24
192.71.136.0/24
192.121.27.0/24
192.165.140.0/23
192.165.184.0/24
193.182.24.0-193.182.43.255
Signature Algorithm: sha256WithRSAEncryption
61:3e:61:40:a6:f2:7c:68:55:b9:04:49:72:d6:e7:5d:73:cc:
ae:6c:c2:d1:b4:78:25:0b:ef:18:a7:23:52:60:c2:70:c9:08:
d8:d9:14:1a:64:ba:1d:ea:3b:72:fe:0b:b3:66:a9:69:19:af:
76:ce:f4:b8:32:08:77:fe:2d:90:36:28:f4:4c:01:b3:53:2b:
b8:16:3c:a2:31:a1:8e:8c:2e:9c:95:7d:a6:75:f3:0f:ed:0c:
7b:d1:47:dc:14:7e:fd:b0:19:55:9f:9f:94:9e:a7:f2:f7:38:
0b:aa:96:53:37:a8:5a:53:53:c0:ae:c5:ad:ae:6d:d6:05:c2:
7b:b8:f7:12:8b:ac:43:92:28:4d:08:94:ec:d7:17:56:63:ea:
29:6f:a6:51:0e:cd:44:3a:b5:b5:b0:ad:dc:f3:87:4b:d5:5e:
27:e2:8c:2e:f5:8b:50:ef:18:36:d3:65:22:79:8f:73:be:f2:
24:46:8b:e1:83:12:d2:70:04:05:df:ed:fd:7f:cf:2b:7e:96:
e8:fc:98:7e:bc:03:3a:4a:74:00:ae:cc:f6:f4:0d:08:ae:84:
90:e4:63:df:3c:1f:ca:fa:28:b8:df:d6:d9:67:de:24:2c:fc:
aa:e7:7e:6d:27:0b:8d:7e:82:84:7c:a1:c0:61:78:3d:aa:f9:
03:18:9f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:41 2025 by rpki-client