Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/BOYu798puyeHyzk3HIqR4RFvfmc.roa
File: BOYu798puyeHyzk3HIqR4RFvfmc.roa (raw, json)
Hash identifier: mtWC0vD+s3LH0ydlV4qE/CaUUaowhag35TJfqguu/AE=
Subject key identifier: 04:E6:2E:EF:DF:29:BB:27:87:CB:39:37:1C:8A:91:E1:11:6F:7E:67
Certificate issuer: /CN=f0cc7a447482e57b0604babb82a52409cde3b36d
Certificate serial: 018F778D158C87B7BF756AFEB46DD1F462F8
Authority key identifier: F0:CC:7A:44:74:82:E5:7B:06:04:BA:BB:82:A5:24:09:CD:E3:B3:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Mx6RHSC5XsGBLq7gqUkCc3js20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/BOYu798puyeHyzk3HIqR4RFvfmc.roa
Signing time: Tue 14 May 2024 14:41:25 +0000
ROA not before: Tue 14 May 2024 14:41:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 85.198.34.0/24 maxlen: 24
85.198.35.0/24 maxlen: 24
85.198.38.0/24 maxlen: 24
85.198.39.0/24 maxlen: 24
85.198.42.0/24 maxlen: 24
85.198.43.0/24 maxlen: 24
91.123.12.0/24 maxlen: 24
91.123.13.0/24 maxlen: 24
91.123.14.0/24 maxlen: 24
91.123.15.0/24 maxlen: 24
190.106.177.0/24 maxlen: 24
190.106.178.0/24 maxlen: 24
190.106.179.0/24 maxlen: 24
190.106.180.0/24 maxlen: 24
190.106.181.0/24 maxlen: 24
190.106.182.0/24 maxlen: 24
190.106.184.0/24 maxlen: 24
206.195.137.0/24 maxlen: 24
206.195.138.0/24 maxlen: 24
206.195.139.0/24 maxlen: 24
206.195.140.0/24 maxlen: 24
206.195.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:77:8d:15:8c:87:b7:bf:75:6a:fe:b4:6d:d1:f4:62:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0cc7a447482e57b0604babb82a52409cde3b36d
Validity
Not Before: May 14 14:41:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04e62eefdf29bb2787cb39371c8a91e1116f7e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:00:5f:ae:09:34:0a:42:fc:18:c5:dc:04:24:
0c:ca:45:17:b6:50:e8:b3:57:b3:2a:98:7f:6c:0d:
36:bf:d4:26:ba:f1:28:43:36:97:1b:67:b9:51:30:
09:c0:5f:b4:c1:cf:17:54:d4:35:26:a9:2f:f2:e3:
58:89:c3:50:91:9f:e2:f9:75:ce:28:a6:ca:e4:54:
69:d3:3f:30:9e:6d:9e:c2:fd:cf:ad:43:e2:73:01:
63:a1:b8:40:c1:84:3a:5f:95:cb:09:1b:8b:62:7f:
f2:22:82:e1:56:17:3e:af:15:c8:ed:59:96:7b:ba:
4d:c5:29:c2:98:19:c2:e9:e8:3a:7b:a4:c0:9c:e8:
b3:80:5c:83:6e:fe:ec:32:1c:ec:25:73:ea:9c:9f:
95:eb:c9:00:18:97:c2:1c:1c:0f:27:cd:1c:2b:3a:
a8:6b:97:98:ef:4c:b0:35:6b:46:2b:ae:85:06:72:
b0:85:1f:7d:dc:f3:8a:04:de:ae:5b:36:78:12:69:
1b:2d:5e:ff:1c:ea:cf:36:39:dc:5e:d0:22:73:3c:
43:d8:a6:3e:97:79:2e:b6:6b:8f:54:df:77:c6:77:
7d:1c:45:f5:ef:cc:7e:f2:eb:a8:7b:a0:eb:c3:9f:
e2:5c:1b:3e:e8:92:eb:5e:3d:b3:fa:d0:a2:73:d9:
89:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E6:2E:EF:DF:29:BB:27:87:CB:39:37:1C:8A:91:E1:11:6F:7E:67
X509v3 Authority Key Identifier:
keyid:F0:CC:7A:44:74:82:E5:7B:06:04:BA:BB:82:A5:24:09:CD:E3:B3:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Mx6RHSC5XsGBLq7gqUkCc3js20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/BOYu798puyeHyzk3HIqR4RFvfmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/8Mx6RHSC5XsGBLq7gqUkCc3js20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.198.34.0/23
85.198.38.0/23
85.198.42.0/23
91.123.12.0/22
190.106.177.0-190.106.182.255
190.106.184.0/24
206.195.137.0-206.195.140.255
206.195.143.0/24
Signature Algorithm: sha256WithRSAEncryption
af:02:1f:8c:91:61:55:6b:27:a5:59:73:37:f4:85:b5:c0:a5:
f1:b2:f4:a5:ee:83:5e:15:6b:d9:d3:e1:f6:82:cc:fc:9c:de:
b2:c8:8f:14:60:94:b7:29:50:97:c6:29:15:fa:96:c8:fd:b9:
11:19:b7:ec:49:be:a6:4b:b4:67:21:c7:9c:34:30:57:83:6a:
8d:20:bd:c2:a0:92:ea:91:51:64:a7:c1:39:df:20:68:72:da:
59:bb:9a:47:b3:4d:ca:36:11:d5:ca:3b:a6:25:49:f4:1c:ee:
e6:5c:79:84:58:8e:86:ec:ab:14:e8:34:f5:29:fb:f2:64:ad:
3e:9a:b8:85:01:62:8d:8e:7e:29:b7:6b:73:4b:e5:82:3c:64:
5f:ce:a9:ec:b6:b7:87:3c:91:be:cc:e6:e2:a9:08:be:7e:96:
79:64:d2:79:8c:9f:d5:b9:0a:a4:6e:df:56:b4:52:a1:6b:dc:
41:af:e6:15:5f:81:3b:37:f2:32:f7:8f:2a:e0:1b:0c:ef:96:
63:9d:cd:da:33:69:d0:a2:8d:77:49:24:19:ff:f3:b7:0e:a6:
d0:57:90:d4:82:12:36:b0:90:28:3e:33:e4:08:12:a3:d6:05:
66:0e:d7:e8:66:c3:e0:cc:66:2b:93:1d:db:85:77:b4:32:be:
a9:b2:1f:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:14:08 2025 by rpki-client