Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/C3bQMRmtLfyKqffanrJ7_7vWCk8.roa
File: C3bQMRmtLfyKqffanrJ7_7vWCk8.roa (raw, json)
Hash identifier: EqbhaUJu7cZDNVqNN0UffRpUBKao2EeOOhzgBDrLfd4=
Subject key identifier: 0B:76:D0:31:19:AD:2D:FC:8A:A9:F7:DA:9E:B2:7B:FF:BB:D6:0A:4F
Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Certificate serial: 01943761BA009DD2F28A8BEEF188DCE50B5C
Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/C3bQMRmtLfyKqffanrJ7_7vWCk8.roa
Signing time: Sun 05 Jan 2025 16:52:18 +0000
ROA not before: Sun 05 Jan 2025 16:52:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213354
IP address blocks: 91.228.68.0/22 maxlen: 22
185.248.192.0/23 maxlen: 23
185.248.194.0/23 maxlen: 23
194.15.112.0/24 maxlen: 24
194.15.113.0/24 maxlen: 24
194.26.18.0/24 maxlen: 24
194.62.244.0/24 maxlen: 24
194.62.245.0/24 maxlen: 24
194.62.246.0/23 maxlen: 23
2a11:9c00::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:37:61:ba:00:9d:d2:f2:8a:8b:ee:f1:88:dc:e5:0b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Validity
Not Before: Jan 5 16:52:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0b76d03119ad2dfc8aa9f7da9eb27bffbbd60a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ea:5c:f9:e9:75:71:f4:67:9a:aa:03:0f:56:
95:31:c1:a0:3d:52:31:e4:05:59:8f:55:01:e8:27:
71:93:a7:1e:d7:58:ad:e2:80:b3:68:3c:1b:dc:fd:
05:36:01:b8:27:91:6c:75:81:b2:8b:a9:d8:94:91:
38:36:6f:8f:8d:4a:26:69:ef:ca:5a:70:f8:a6:fe:
9b:41:c1:b6:79:06:c4:2f:01:da:1d:39:4c:2c:e7:
0d:77:fd:62:03:0b:70:51:e9:22:38:a3:cb:6b:27:
f9:b2:20:df:38:f9:52:80:a7:37:e0:e1:e0:c6:53:
6f:bf:0a:cb:05:2f:25:95:11:85:01:29:db:b7:1c:
c9:a8:ef:1a:b9:c1:fd:63:7e:87:d2:a6:a5:84:74:
36:4c:64:20:1e:43:af:01:b0:84:ab:d9:46:c3:d6:
63:66:da:b0:80:7c:d9:cd:0b:28:da:bc:43:c5:09:
74:12:c2:ee:9a:e6:8e:3e:61:ef:79:0e:71:6b:77:
c2:bb:6a:06:08:37:ec:52:bd:83:2a:7a:d9:3d:ce:
72:2d:7f:c1:ea:10:90:ce:1e:9a:86:30:f3:47:08:
10:aa:2b:11:60:c9:46:64:54:94:9a:f4:59:2c:a1:
f9:21:9d:9a:43:6f:46:4b:0f:5b:94:04:f5:1a:fb:
ff:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:76:D0:31:19:AD:2D:FC:8A:A9:F7:DA:9E:B2:7B:FF:BB:D6:0A:4F
X509v3 Authority Key Identifier:
keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/C3bQMRmtLfyKqffanrJ7_7vWCk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.68.0/22
185.248.192.0/22
194.15.112.0/23
194.26.18.0/24
194.62.244.0/22
IPv6:
2a11:9c00::/40
Signature Algorithm: sha256WithRSAEncryption
69:6d:48:3c:35:b8:62:61:e7:1e:e1:ea:dd:e3:e1:41:43:71:
ee:87:af:15:1d:3d:44:f5:b7:91:87:b7:17:96:cf:df:26:59:
50:bd:8e:a4:5e:34:89:be:6a:7a:46:f7:53:da:a8:ba:e4:04:
0a:4b:10:72:a9:9f:49:3a:0c:f8:93:31:af:18:56:61:19:96:
86:4d:64:8d:3c:aa:69:1c:43:7c:b6:34:c6:d9:91:5e:ac:ca:
78:22:8e:d3:54:3a:f9:03:83:fb:20:7e:fb:b7:cc:b4:57:c5:
78:7b:e1:9a:52:91:a7:11:de:d8:37:16:ad:3a:cf:b7:66:69:
de:7f:27:d3:8f:50:f2:7f:89:8a:0a:0c:85:aa:69:cf:5a:f1:
83:36:c4:a8:03:10:eb:aa:f7:c3:b8:93:27:fc:80:66:81:b5:
6a:9b:25:0c:2a:bb:09:e3:0d:63:b5:bb:93:8b:fe:f7:27:4a:
cf:fe:60:21:2d:8e:d1:2c:0a:77:40:2e:f2:d9:99:92:49:7f:
c2:0d:3c:64:f4:7e:0d:92:09:69:95:00:0d:af:35:0b:64:25:
d2:76:8a:81:fa:ad:94:df:0c:da:3a:a6:62:90:b9:60:ca:86:
19:4b:db:25:ad:4d:60:80:f8:b4:93:b5:c6:87:2d:b7:2f:e7:
f7:79:79:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:33:21 2025 by rpki-client