Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/bbnG-D5tW-GLQaIGwRmZo0lb9TM.roa
File: bbnG-D5tW-GLQaIGwRmZo0lb9TM.roa (raw, json)
Hash identifier: bB5+fdTFcZ9xQ1OTsEB1h6qZNoYoFeAs7tf6MXrUk6s=
Subject key identifier: 6D:B9:C6:F8:3E:6D:5B:E1:8B:41:A2:06:C1:19:99:A3:49:5B:F5:33
Certificate issuer: /CN=56db1eaf1792a2cd5289dc7fc5242ea35245134e
Certificate serial: 01855D1F775DA439913A06609D92D7F7C1E3
Authority key identifier: 56:DB:1E:AF:17:92:A2:CD:52:89:DC:7F:C5:24:2E:A3:52:45:13:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VtserxeSos1Sidx_xSQuo1JFE04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/bbnG-D5tW-GLQaIGwRmZo0lb9TM.roa
Signing time: Thu 29 Dec 2022 09:03:41 +0000
ROA not before: Thu 29 Dec 2022 09:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25393
IP address blocks: 195.234.112.0/22 maxlen: 24
78.27.224.0/19 maxlen: 24
77.87.192.0/21 maxlen: 24
195.39.197.0/24 maxlen: 24
89.184.68.0/22 maxlen: 24
89.184.72.0/21 maxlen: 24
89.184.88.0/21 maxlen: 24
195.177.116.0/22 maxlen: 24
2a02:2278:215::/48 maxlen: 48
2a02:2278:210::/48 maxlen: 48
2a02:2278:209::/48 maxlen: 48
2a02:2278:204::/48 maxlen: 48
2a02:2278:208::/48 maxlen: 48
2a02:2279::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:1f:77:5d:a4:39:91:3a:06:60:9d:92:d7:f7:c1:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56db1eaf1792a2cd5289dc7fc5242ea35245134e
Validity
Not Before: Dec 29 09:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6db9c6f83e6d5be18b41a206c11999a3495bf533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b4:3d:db:81:55:55:34:2d:ce:bf:49:94:ee:
2a:93:b1:7e:f5:e0:74:e7:8e:38:e9:98:80:4e:b0:
03:f1:ae:ac:5f:32:01:b8:86:72:46:a4:08:73:99:
40:53:2c:ec:75:05:3e:42:a2:68:10:e0:4c:64:44:
14:dc:ad:d4:30:b5:25:b4:6f:45:7f:15:44:16:a2:
c5:4c:9e:03:ee:b2:ae:b0:53:d3:5e:6a:e2:3f:0c:
a4:58:45:e1:b5:19:5b:24:88:6a:6c:83:6a:47:ca:
d4:fe:0e:a5:80:da:fe:4e:d6:a3:1e:64:9a:99:a3:
6e:04:25:f7:2d:7b:e7:5e:42:5a:54:52:91:8c:b4:
b0:4c:7f:8d:51:b4:df:48:28:5f:48:f1:20:69:57:
99:f7:82:19:0d:cb:38:1a:a6:41:ab:3c:15:39:be:
3d:b6:61:7d:69:e4:50:dc:08:0a:c7:25:e9:2e:a4:
8c:7b:82:fb:eb:87:f7:7a:d6:24:9c:e8:c4:c1:76:
b5:02:bb:a5:cf:99:63:b2:41:c1:71:df:16:20:24:
ea:5f:8c:28:68:f6:47:7e:04:91:e5:79:23:0e:dc:
e8:45:b5:aa:67:86:09:e1:ae:ba:30:4f:63:51:2c:
eb:d8:92:c6:07:d7:a3:16:72:40:91:a3:21:fc:37:
8a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B9:C6:F8:3E:6D:5B:E1:8B:41:A2:06:C1:19:99:A3:49:5B:F5:33
X509v3 Authority Key Identifier:
keyid:56:DB:1E:AF:17:92:A2:CD:52:89:DC:7F:C5:24:2E:A3:52:45:13:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtserxeSos1Sidx_xSQuo1JFE04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/bbnG-D5tW-GLQaIGwRmZo0lb9TM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/VtserxeSos1Sidx_xSQuo1JFE04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.192.0/21
78.27.224.0/19
89.184.68.0-89.184.79.255
89.184.88.0/21
195.39.197.0/24
195.177.116.0/22
195.234.112.0/22
IPv6:
2a02:2278:204::/48
2a02:2278:208::/47
2a02:2278:210::/48
2a02:2278:215::/48
2a02:2279::/32
Signature Algorithm: sha256WithRSAEncryption
c9:13:23:5e:75:88:a1:39:ea:20:6d:dd:15:9d:91:4d:73:4d:
4c:a0:2e:14:5f:6a:47:4f:65:a7:b8:c4:05:47:8d:51:5d:99:
15:33:dc:a0:e5:12:4c:63:33:c9:fd:aa:f7:28:9c:7d:31:5b:
0d:6e:bb:18:4c:54:47:b9:0f:56:75:10:97:ae:82:93:ce:72:
44:68:6d:ba:fe:5b:da:c2:39:14:d6:bc:16:3e:2e:d4:62:99:
a2:5a:ca:1c:73:4d:74:28:d9:1e:f2:8e:ca:8f:b4:a5:b7:6f:
74:74:c2:ee:65:70:45:4e:62:b1:51:ee:06:f7:c3:4a:05:af:
f9:c5:3c:14:37:f7:e1:07:9d:23:92:21:fa:2c:33:14:4c:03:
16:e6:1c:21:71:f1:be:58:8b:12:2a:7a:e3:24:ed:9d:17:6c:
c4:b5:35:aa:43:d7:0d:2e:c1:91:92:fc:32:78:ba:a8:23:7e:
bd:75:bb:df:2a:4d:5e:72:e1:e2:1a:e3:df:88:7f:75:12:1b:
2f:78:5d:f0:d5:54:09:f1:8e:fb:81:b7:4c:14:c3:2b:19:ab:
58:c2:fe:a3:14:2b:e3:cd:17:0f:73:da:9d:f1:42:41:b0:64:
f0:2c:86:8a:04:1b:46:41:e3:63:95:ba:a3:1e:14:93:b7:22:
f6:13:cf:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:02 2025 by rpki-client