Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/bbd4c4-d2cd-41b7-9a4a-855169842eac/1/m-dZ7zWHuSMRPSk_gmiy-qo4_Ac.roa
File: m-dZ7zWHuSMRPSk_gmiy-qo4_Ac.roa (raw, json)
Hash identifier: fVOcHyFbM5GKgao+CUa9ImDG2sS7v3Rrpi+zmXtV41c=
Subject key identifier: 9B:E7:59:EF:35:87:B9:23:11:3D:29:3F:82:68:B2:FA:AA:38:FC:07
Certificate issuer: /CN=fde59773d5e03870c87d57090976fb33b03c685e
Certificate serial: 01CB7EED
Authority key identifier: FD:E5:97:73:D5:E0:38:70:C8:7D:57:09:09:76:FB:33:B0:3C:68:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_eWXc9XgOHDIfVcJCXb7M7A8aF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/bbd4c4-d2cd-41b7-9a4a-855169842eac/1/m-dZ7zWHuSMRPSk_gmiy-qo4_Ac.roa
Signing time: Tue 17 May 2022 00:20:30 +0000
ROA not before: Tue 17 May 2022 00:20:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30889
IP address blocks: 195.214.240.0/21 maxlen: 24
45.145.124.0/22 maxlen: 24
79.98.96.0/21 maxlen: 24
185.172.16.0/22 maxlen: 24
194.177.32.0/19 maxlen: 24
185.95.120.0/22 maxlen: 24
185.196.248.0/22 maxlen: 24
185.15.128.0/22 maxlen: 24
193.27.194.0/23 maxlen: 24
185.149.8.0/22 maxlen: 24
2a01:6d8::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30113517 (0x1cb7eed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fde59773d5e03870c87d57090976fb33b03c685e
Validity
Not Before: May 17 00:20:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9be759ef3587b923113d293f8268b2faaa38fc07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5b:8f:e5:a3:1c:d1:9a:7e:64:14:56:4c:4e:
b3:1c:40:0e:5f:64:32:ff:ed:99:fc:ac:16:49:d9:
d4:69:ac:3c:55:c8:57:8b:62:84:2a:47:47:c6:18:
8f:68:2e:87:70:87:a9:c7:86:3e:90:e1:0f:e3:40:
c3:b4:ba:c0:62:2e:c1:33:db:46:0d:bb:ae:4a:3d:
58:ba:3f:76:33:f3:8b:9b:c8:ea:75:2e:7f:d7:8d:
34:30:94:95:05:20:75:a1:55:cf:1a:03:1d:13:d3:
0f:63:40:30:3f:07:64:51:d1:dc:4a:62:df:d3:a9:
fb:e3:43:00:46:4e:d4:57:09:36:d6:a8:8a:6b:af:
fa:2f:e5:0d:d8:41:74:a5:94:4a:3c:66:93:eb:3c:
75:05:8d:ac:54:43:a9:b9:d6:d1:58:e4:f9:64:01:
e3:f3:e9:64:c2:90:96:f5:f6:5d:75:aa:d2:92:e2:
34:3f:13:f2:44:53:5d:d4:48:b3:4f:42:6f:8d:7e:
6d:36:b4:b7:df:e4:70:0c:a0:c1:d2:1d:18:71:48:
dd:d9:81:c5:b9:16:f4:98:f3:8c:3a:5a:2a:2c:7e:
59:84:55:b2:fa:d0:32:e7:46:72:3e:1b:06:79:52:
61:8e:9a:46:07:d2:2e:30:9d:b8:4b:0e:cd:6d:3d:
73:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E7:59:EF:35:87:B9:23:11:3D:29:3F:82:68:B2:FA:AA:38:FC:07
X509v3 Authority Key Identifier:
keyid:FD:E5:97:73:D5:E0:38:70:C8:7D:57:09:09:76:FB:33:B0:3C:68:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_eWXc9XgOHDIfVcJCXb7M7A8aF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/bbd4c4-d2cd-41b7-9a4a-855169842eac/1/m-dZ7zWHuSMRPSk_gmiy-qo4_Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/bbd4c4-d2cd-41b7-9a4a-855169842eac/1/_eWXc9XgOHDIfVcJCXb7M7A8aF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.124.0/22
79.98.96.0/21
185.15.128.0/22
185.95.120.0/22
185.149.8.0/22
185.172.16.0/22
185.196.248.0/22
193.27.194.0/23
194.177.32.0/19
195.214.240.0/21
IPv6:
2a01:6d8::/32
Signature Algorithm: sha256WithRSAEncryption
a4:63:40:a2:55:dc:5d:8f:2c:6c:f8:9e:c7:50:5b:71:e1:70:
2c:27:e7:92:c0:eb:e3:a0:28:ef:12:bc:e4:7b:67:cf:63:74:
f6:c3:69:87:c5:98:59:7b:fb:ad:90:38:6b:fe:b1:81:dc:3b:
b6:f6:9e:7c:12:78:7e:d1:f3:e1:85:67:db:81:dc:a9:ed:63:
6d:06:aa:81:6a:a0:93:c7:83:25:f6:99:59:e6:42:88:39:1c:
bf:3f:ab:1f:a4:59:e6:a5:fe:06:df:8b:61:ca:80:66:f6:91:
99:2a:bb:d5:16:62:c5:b5:d5:44:0d:46:ff:c4:1e:60:67:92:
99:a6:26:b9:f8:24:23:24:5e:93:1a:13:1e:9a:6f:fe:e0:85:
ec:dd:68:a8:59:96:dd:1c:d8:8e:2c:9e:0b:71:94:df:c9:30:
13:bb:b5:b5:5c:74:2a:40:c5:2c:27:84:ac:53:d8:d2:00:54:
c5:e4:51:53:7a:48:61:b5:48:08:a8:3d:e9:e9:04:8b:93:7d:
34:4a:b8:36:10:d2:34:fc:4f:b1:23:92:e2:78:cd:9d:c5:65:
34:04:69:6a:38:a7:34:9a:94:9c:04:06:e5:44:f3:02:60:09:
8b:71:1f:08:8d:59:23:8c:db:03:af:4e:34:e3:57:03:36:e3:
a3:a5:d1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:40 2025 by rpki-client