Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/0e7176-c072-4503-a268-c72fd3a9d657/1/iFljMmrMCmzkqfNYQSr4_YNgB7k.roa
File: iFljMmrMCmzkqfNYQSr4_YNgB7k.roa (raw, json)
Hash identifier: FUdQG/pemiucpJNnOOv/WUFexG2Uq2dKchOg4oPf/Js=
Subject key identifier: 88:59:63:32:6A:CC:0A:6C:E4:A9:F3:58:41:2A:F8:FD:83:60:07:B9
Certificate issuer: /CN=ade362ef5888c9c213757f95114033719637237a
Certificate serial: 17DFFD22
Authority key identifier: AD:E3:62:EF:58:88:C9:C2:13:75:7F:95:11:40:33:71:96:37:23:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/reNi71iIycITdX-VEUAzcZY3I3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/0e7176-c072-4503-a268-c72fd3a9d657/1/iFljMmrMCmzkqfNYQSr4_YNgB7k.roa
Signing time: Sat 01 Jan 2022 03:54:53 +0000
ROA not before: Sat 01 Jan 2022 03:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21232
IP address blocks: 185.41.132.0/22 maxlen: 22
185.108.244.0/22 maxlen: 22
185.70.68.0/22 maxlen: 22
185.110.184.0/22 maxlen: 22
185.119.36.0/22 maxlen: 22
62.32.0.0/19 maxlen: 19
185.41.76.0/22 maxlen: 22
185.110.88.0/22 maxlen: 22
77.74.56.0/21 maxlen: 21
79.142.128.0/20 maxlen: 20
195.216.64.0/19 maxlen: 19
185.132.16.0/22 maxlen: 22
185.64.184.0/22 maxlen: 22
185.110.72.0/22 maxlen: 22
185.31.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400555298 (0x17dffd22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ade362ef5888c9c213757f95114033719637237a
Validity
Not Before: Jan 1 03:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=885963326acc0a6ce4a9f358412af8fd836007b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f7:29:cf:75:bb:1a:47:79:a6:63:b5:55:71:
14:9a:04:e5:21:2c:38:fd:07:44:a3:0c:85:d0:5f:
5f:41:f5:1a:1b:a7:15:4e:4c:e0:64:7f:f6:96:f2:
a2:f2:15:30:f9:c5:8a:b9:2c:23:54:df:4f:e2:34:
87:a1:dd:c8:c2:04:35:ad:d1:3a:ff:a6:19:ae:c1:
9e:75:cd:db:f3:f5:30:22:af:16:85:e7:d5:d2:02:
fe:c3:73:00:58:7b:cd:70:1b:7e:b1:bb:43:fb:f1:
79:b3:08:de:d8:bc:36:21:d1:ed:d6:98:6b:eb:71:
ae:78:2e:bb:56:b9:57:12:d1:35:10:ad:69:39:91:
5a:39:b3:4b:59:09:64:7e:54:c9:4d:87:92:48:68:
0d:32:e1:26:b3:ee:a7:9b:89:6e:7c:87:2b:36:a0:
ee:78:14:7e:f1:34:43:d8:db:bd:9d:3c:3f:46:13:
03:8f:0c:e3:b8:71:89:9a:2c:44:0e:4e:87:41:96:
4a:34:2d:a4:1a:47:cf:f8:77:9e:2e:a8:ad:52:ff:
0a:e2:e2:81:79:3d:74:e1:a0:1f:7c:09:7a:88:e8:
33:63:fd:a7:23:9c:e3:5c:6f:d4:fa:a9:c8:c4:b9:
40:00:00:8c:cb:62:5c:c7:99:40:19:77:ee:2d:84:
e2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:59:63:32:6A:CC:0A:6C:E4:A9:F3:58:41:2A:F8:FD:83:60:07:B9
X509v3 Authority Key Identifier:
keyid:AD:E3:62:EF:58:88:C9:C2:13:75:7F:95:11:40:33:71:96:37:23:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/reNi71iIycITdX-VEUAzcZY3I3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0e7176-c072-4503-a268-c72fd3a9d657/1/iFljMmrMCmzkqfNYQSr4_YNgB7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0e7176-c072-4503-a268-c72fd3a9d657/1/reNi71iIycITdX-VEUAzcZY3I3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.32.0.0/19
77.74.56.0/21
79.142.128.0/20
185.31.248.0/22
185.41.76.0/22
185.41.132.0/22
185.64.184.0/22
185.70.68.0/22
185.108.244.0/22
185.110.72.0/22
185.110.88.0/22
185.110.184.0/22
185.119.36.0/22
185.132.16.0/22
195.216.64.0/19
Signature Algorithm: sha256WithRSAEncryption
81:cc:85:db:23:e2:80:9d:02:4c:2e:d2:0d:7f:56:47:63:80:
32:c9:50:60:1e:a9:73:d2:48:37:0a:2f:b1:30:9e:cd:4c:7e:
64:57:03:b1:89:01:1c:7d:fa:59:3a:8d:98:f2:d9:30:a6:fb:
52:3e:b0:a7:92:f2:78:57:90:47:bc:f0:08:f9:b6:a7:16:40:
d6:03:0f:84:c1:aa:d6:f8:fc:27:d3:fd:e1:22:53:7d:6a:8b:
21:22:05:77:1c:30:41:09:14:78:90:cb:e7:46:b0:7f:7c:19:
34:6a:8c:d2:93:81:60:b0:48:e0:2e:f7:f8:c3:68:e9:85:6d:
0b:92:d3:9a:a7:cc:f9:06:c6:08:d2:13:92:c1:1c:63:64:7f:
d4:a2:67:24:08:3a:e7:8a:aa:e3:05:01:22:c3:77:fd:11:88:
fc:b7:4a:95:4b:f8:b2:d2:d8:06:4a:73:18:76:61:c8:a4:30:
17:b3:95:6a:e3:49:9d:a4:52:40:dd:02:de:ac:db:66:5c:57:
b6:00:1f:95:df:aa:78:e1:6d:bb:1f:c5:80:6a:20:ec:f4:50:
19:00:90:88:d2:65:93:c6:0e:80:8c:01:22:69:bd:98:69:72:
a3:c8:00:5b:84:0f:13:65:bf:98:aa:53:66:d3:9f:5c:e6:ab:
49:31:73:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:14:14 2025 by rpki-client