Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/BlG3jQfVjM03W_XNmscrdnSC2Gg.roa
File: BlG3jQfVjM03W_XNmscrdnSC2Gg.roa (raw, json)
Hash identifier: 4s35jknnG6l2I+5i9Hx7XS9gqJW6iD+6HWFlEpyOdhM=
Subject key identifier: 06:51:B7:8D:07:D5:8C:CD:37:5B:F5:CD:9A:C7:2B:76:74:82:D8:68
Certificate issuer: /CN=593b53fb9306346f272494928d77839cbaf9ddc7
Certificate serial: 019425FD6F86F662537BC61CE8558C8F0CF9
Authority key identifier: 59:3B:53:FB:93:06:34:6F:27:24:94:92:8D:77:83:9C:BA:F9:DD:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WTtT-5MGNG8nJJSSjXeDnLr53cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/BlG3jQfVjM03W_XNmscrdnSC2Gg.roa
Signing time: Thu 02 Jan 2025 07:49:13 +0000
ROA not before: Thu 02 Jan 2025 07:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12417
IP address blocks: 91.234.46.0/24 maxlen: 24
178.218.160.0/20 maxlen: 24
178.218.163.0/24 maxlen: 24
178.218.170.0/24 maxlen: 24
178.218.171.0/24 maxlen: 24
178.218.172.0/24 maxlen: 24
178.218.173.0/24 maxlen: 24
178.218.174.0/24 maxlen: 24
185.220.24.0/22 maxlen: 24
185.220.24.0/24 maxlen: 24
185.220.25.0/24 maxlen: 24
185.220.27.0/24 maxlen: 24
2a0b:ee41::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:6f:86:f6:62:53:7b:c6:1c:e8:55:8c:8f:0c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=593b53fb9306346f272494928d77839cbaf9ddc7
Validity
Not Before: Jan 2 07:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0651b78d07d58ccd375bf5cd9ac72b767482d868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bd:8a:df:06:5a:45:e3:9a:43:95:8a:f1:61:
5f:3b:96:59:ad:26:4a:9c:d2:6e:00:ae:9a:3a:2e:
4f:81:f0:9f:e9:a3:ea:b8:77:a0:ed:c7:de:f9:95:
2a:5d:63:8c:b3:a3:93:ce:14:73:01:de:a7:28:1b:
fd:82:7e:12:07:07:bf:de:31:a2:e5:52:47:47:19:
2f:3f:2a:73:ac:9a:58:07:cd:64:39:bf:df:8e:58:
9f:60:1c:e5:0e:39:54:01:4b:74:89:0f:84:d1:b3:
d6:c4:42:98:9b:0c:f6:e5:b1:5c:22:f7:cf:5b:0f:
6c:01:97:ae:62:4f:8e:a0:e7:ba:de:0b:ad:ab:3b:
9b:0d:b0:d9:a8:8d:02:33:a0:45:8d:9d:76:28:20:
ad:8b:8e:d9:98:5d:14:a6:f0:f1:0f:a7:1d:e0:68:
2b:7c:b9:29:83:f7:3a:77:e5:4c:d1:48:8e:34:2d:
d7:ec:38:31:81:8d:c8:6e:c7:c1:b4:7c:04:be:9d:
66:a1:ab:f1:e3:5c:a6:a2:8d:a1:49:63:fc:df:9e:
9d:2c:f0:12:7c:63:a1:19:76:c3:d0:44:e3:d4:49:
29:a1:d1:a9:ff:91:3b:a6:aa:c3:98:07:ea:86:5b:
6c:e9:48:b6:44:8c:64:19:6c:2a:c2:fb:ba:6f:5a:
51:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:51:B7:8D:07:D5:8C:CD:37:5B:F5:CD:9A:C7:2B:76:74:82:D8:68
X509v3 Authority Key Identifier:
keyid:59:3B:53:FB:93:06:34:6F:27:24:94:92:8D:77:83:9C:BA:F9:DD:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WTtT-5MGNG8nJJSSjXeDnLr53cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/BlG3jQfVjM03W_XNmscrdnSC2Gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/WTtT-5MGNG8nJJSSjXeDnLr53cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.46.0/24
178.218.160.0/20
185.220.24.0/22
IPv6:
2a0b:ee41::/32
Signature Algorithm: sha256WithRSAEncryption
70:e0:0c:1b:9c:67:95:87:05:cb:9d:c4:fb:81:cd:16:66:b5:
f0:b8:ec:b6:33:f4:78:27:6a:80:da:55:39:91:fe:2e:14:4b:
1a:c6:2f:f3:1c:a2:82:9c:86:97:ae:60:cb:23:89:ae:45:a5:
78:aa:81:7d:b4:69:67:82:46:41:ac:ab:21:75:a5:e2:51:ca:
85:a7:72:58:3d:a5:46:17:8f:d7:0a:c2:e5:01:17:32:f4:ab:
b6:11:02:f6:a8:c7:10:e7:cc:61:d6:a5:4d:f5:ae:b5:8d:a0:
d5:28:4c:36:eb:73:6d:34:53:a4:df:d0:61:07:72:88:ca:53:
e2:16:23:61:69:35:63:98:31:2d:40:d2:ab:30:39:02:40:8d:
5e:ca:f4:84:9f:3b:7f:c5:c7:07:ec:fd:0f:44:1d:e2:26:22:
eb:33:a6:a6:54:99:2e:50:ca:aa:95:25:11:8e:c4:02:4a:21:
74:f0:6c:e9:82:de:a6:7c:17:01:f5:e2:a2:fd:32:d2:c4:14:
06:f9:9d:ef:8f:4a:e6:e7:76:0f:b7:6d:50:ca:d1:cc:bd:43:
a2:d9:00:65:8f:68:e4:a2:0d:a6:87:dd:a2:ec:7a:ed:b2:9c:
33:d8:28:e0:8a:69:2d:cc:b5:af:52:34:bc:da:aa:a3:a6:d7:
74:c5:a5:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:56:05 2025 by rpki-client