Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/Y9lkKqKsnQqZGmQo1Xo2fiLr5iU.roa
File: Y9lkKqKsnQqZGmQo1Xo2fiLr5iU.roa (raw, json)
Hash identifier: 6A0trmFdZaEK+JW4D/IW96VMnZJTTVLOPMuYPUfapNM=
Subject key identifier: 63:D9:64:2A:A2:AC:9D:0A:99:1A:64:28:D5:7A:36:7E:22:EB:E6:25
Certificate issuer: /CN=b0fa0c7abc10796915e335ba19780e473e027969
Certificate serial: 019424459C30A22710BBC9967551594638C3
Authority key identifier: B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/Y9lkKqKsnQqZGmQo1Xo2fiLr5iU.roa
Signing time: Wed 01 Jan 2025 23:48:49 +0000
ROA not before: Wed 01 Jan 2025 23:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9211
IP address blocks: 194.49.7.0/24 maxlen: 24
212.12.32.0/20 maxlen: 20
212.12.56.0/21 maxlen: 21
213.238.32.0/20 maxlen: 20
213.238.35.0/24 maxlen: 24
213.238.50.0/23 maxlen: 23
213.238.52.0/22 maxlen: 22
2a00:ea8::/32 maxlen: 32
2a00:eab::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:9c:30:a2:27:10:bb:c9:96:75:51:59:46:38:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0fa0c7abc10796915e335ba19780e473e027969
Validity
Not Before: Jan 1 23:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63d9642aa2ac9d0a991a6428d57a367e22ebe625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1e:c2:c0:be:3d:5d:4f:9b:58:b9:02:a6:83:
7f:8c:09:ce:7d:45:33:a3:68:47:d0:00:63:15:b6:
6f:b1:8b:ba:62:5a:f2:68:ff:e8:0b:69:f0:43:58:
06:9e:94:22:96:2e:96:79:fb:54:eb:b5:16:35:a9:
5e:da:34:a8:c5:04:c2:89:61:d9:26:45:93:1f:a3:
2b:ee:bf:4f:1e:6b:dc:97:91:25:c7:4e:d7:d3:1e:
e3:d6:f5:8d:c2:1e:3c:9e:7f:c6:60:0e:ee:2a:c7:
ee:99:31:20:c9:2d:c2:84:39:1e:6f:bb:59:13:68:
ac:54:ec:e8:af:5c:25:76:90:a7:bb:03:97:c1:67:
e9:da:bc:c8:a8:76:26:d6:9a:96:be:d1:01:b2:95:
19:f7:ca:8b:0f:4a:83:e6:bc:ed:23:ce:40:5f:f0:
2b:f1:fc:ae:fe:d5:1c:7f:48:59:c6:5a:9e:c4:c5:
87:24:5b:64:8a:28:eb:fd:59:62:fd:83:b6:78:ca:
7e:7b:98:aa:6a:38:b7:4a:6b:97:26:20:36:10:d0:
66:0c:c1:a6:6a:e2:eb:73:6a:38:81:64:6e:62:52:
4b:9b:b5:8f:00:0f:14:b3:48:ce:93:c8:12:8f:4e:
79:b5:fc:71:8e:0d:83:16:87:11:fc:95:5c:d5:3b:
ec:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D9:64:2A:A2:AC:9D:0A:99:1A:64:28:D5:7A:36:7E:22:EB:E6:25
X509v3 Authority Key Identifier:
keyid:B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/Y9lkKqKsnQqZGmQo1Xo2fiLr5iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.7.0/24
212.12.32.0/20
212.12.56.0/21
213.238.32.0/20
213.238.50.0-213.238.55.255
IPv6:
2a00:ea8::/32
2a00:eab::/32
Signature Algorithm: sha256WithRSAEncryption
2d:77:18:14:97:48:2b:ee:45:52:76:3b:77:f8:40:69:13:38:
b1:0b:60:7b:1e:c1:8e:cd:c7:59:99:71:0b:a6:01:4a:a7:f1:
86:78:ef:3d:77:c7:a7:ab:91:4f:d7:0f:6b:ef:b9:e8:59:0e:
b5:69:f3:e2:1d:08:94:b5:c8:ee:68:92:01:fe:04:d1:56:b9:
b7:43:d6:a7:92:48:83:64:9c:72:3a:4d:f6:7c:74:d3:ca:bc:
29:8d:fa:52:6b:e7:44:8d:d6:02:f2:4e:09:1d:4f:b6:b3:b5:
13:40:eb:40:10:ef:60:80:34:29:52:8b:0d:47:f1:24:75:c3:
78:78:b6:3c:2f:4c:17:f0:d6:30:2c:f9:82:8c:d8:e2:06:1b:
e2:f8:7f:39:b5:af:be:6e:44:bb:75:4b:0f:dd:fa:c5:65:c9:
ed:fd:fc:58:8a:fd:4f:3d:57:71:87:3a:32:11:0f:e9:21:25:
8c:5d:5d:35:a3:2b:59:f5:4b:b6:a4:89:a1:2c:20:6b:b9:77:
31:40:a7:b2:50:f3:25:44:81:bf:af:24:d1:c1:32:e3:28:19:
46:07:27:04:4b:5f:bc:29:72:fa:8d:7c:29:df:62:74:01:2a:
e7:85:a8:07:a7:4a:ab:1e:bd:4b:bf:c1:64:13:bf:71:52:fc:
01:ae:70:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:13:24 2025 by rpki-client