Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/9zWDUYDTONhfjoox6avTGD92gRM.roa
File: 9zWDUYDTONhfjoox6avTGD92gRM.roa (raw, json)
Hash identifier: faetXrco7oo1Wv/x6UK2yIUKHT9B8MOEiCSiFEDBlsM=
Subject key identifier: F7:35:83:51:80:D3:38:D8:5F:8E:8A:31:E9:AB:D3:18:3F:76:81:13
Certificate issuer: /CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Certificate serial: 01907D18AC819D0F9E0AB2FA0D693C9DFA28
Authority key identifier: 0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/9zWDUYDTONhfjoox6avTGD92gRM.roa
Signing time: Thu 04 Jul 2024 09:34:47 +0000
ROA not before: Thu 04 Jul 2024 09:34:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24685
IP address blocks: 31.172.136.0/23 maxlen: 32
31.172.140.0/23 maxlen: 32
80.92.224.0/24 maxlen: 32
80.92.226.0/24 maxlen: 32
80.92.231.0/24 maxlen: 32
80.92.233.0/24 maxlen: 32
80.92.234.0/24 maxlen: 32
80.92.235.0/24 maxlen: 32
82.117.229.0/24 maxlen: 32
85.90.223.0/24 maxlen: 32
92.60.178.0/23 maxlen: 32
92.60.178.0/24 maxlen: 32
92.60.179.0/24 maxlen: 32
128.0.170.0/24 maxlen: 32
128.0.172.0/24 maxlen: 32
128.0.174.0/24 maxlen: 32
185.38.208.0/24 maxlen: 32
185.38.209.0/24 maxlen: 32
185.39.196.0/24 maxlen: 32
193.111.0.0/24 maxlen: 32
193.111.48.0/23 maxlen: 32
2a01:6b0:7::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7d:18:ac:81:9d:0f:9e:0a:b2:fa:0d:69:3c:9d:fa:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Validity
Not Before: Jul 4 09:34:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f735835180d338d85f8e8a31e9abd3183f768113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:07:bc:a8:eb:92:52:c9:40:6b:dd:3e:99:a4:
b8:42:48:6f:59:05:63:91:c2:30:a2:ac:63:0a:06:
45:e5:83:50:8e:30:fe:7d:08:c5:d3:64:ac:38:e3:
07:42:8d:49:98:e9:71:e8:b7:64:32:c5:a2:85:d9:
99:58:28:9f:bb:75:59:c7:32:a5:44:4d:6f:d9:59:
e5:5d:78:54:e9:cd:96:40:ae:19:d6:c6:5c:a2:bf:
e6:28:b2:59:6a:c4:59:6c:47:94:cb:51:01:23:7b:
0e:aa:9b:46:c7:9a:ce:73:a8:15:ce:2c:f9:de:13:
8d:eb:49:ec:ee:95:d6:63:f4:d3:8b:9e:44:79:b6:
00:49:12:d6:26:23:9a:1f:ce:4e:da:68:e3:c5:e4:
7f:b4:5e:77:49:b0:5a:de:0e:6a:13:18:f4:06:96:
d0:05:64:a6:f6:5c:67:b1:f7:b6:09:66:36:0c:7e:
9d:76:b1:e3:ff:c3:36:3b:40:bf:37:af:33:c3:1c:
b8:bb:78:6e:6a:30:fa:0b:34:81:bd:6e:30:8d:15:
ca:c8:08:93:af:e5:be:d6:5a:73:62:66:7f:a5:c9:
16:52:86:65:70:ac:27:9b:2f:03:e9:59:2e:b2:0f:
37:bb:77:e6:45:47:8a:99:46:cf:c4:db:1e:64:db:
b9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:35:83:51:80:D3:38:D8:5F:8E:8A:31:E9:AB:D3:18:3F:76:81:13
X509v3 Authority Key Identifier:
keyid:0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/9zWDUYDTONhfjoox6avTGD92gRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/DYcUK9wrPw0ISKDYALaTCxq7NLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.136.0/23
31.172.140.0/23
80.92.224.0/24
80.92.226.0/24
80.92.231.0/24
80.92.233.0-80.92.235.255
82.117.229.0/24
85.90.223.0/24
92.60.178.0/23
128.0.170.0/24
128.0.172.0/24
128.0.174.0/24
185.38.208.0/23
185.39.196.0/24
193.111.0.0/24
193.111.48.0/23
IPv6:
2a01:6b0:7::/48
Signature Algorithm: sha256WithRSAEncryption
76:14:d7:3d:ac:92:8f:21:56:7b:38:cd:69:dd:bd:e3:93:22:
5a:06:8a:09:44:26:d8:51:5e:2f:56:7c:9a:44:5e:e1:d9:af:
38:44:ba:6a:42:e1:a5:dc:35:5a:28:a4:9c:8d:cd:83:09:a9:
c6:7a:39:2d:6f:28:65:41:79:b5:67:3c:67:69:54:fb:54:e0:
5d:6f:64:93:0f:dd:19:67:8e:59:bf:bd:53:70:bf:20:f8:9a:
1d:d4:44:79:a5:0d:e3:87:3d:a1:d0:de:3d:af:c7:2f:d7:a3:
8f:4e:17:da:8a:f2:0e:3d:55:6b:33:53:7a:b5:ba:cc:30:81:
71:c5:02:96:17:97:04:cb:5d:d1:a4:97:63:c6:47:5a:02:ec:
70:b7:ba:28:0e:96:ce:b8:a8:e0:4a:a9:f7:34:55:f6:75:9b:
0d:d4:55:01:8c:ce:e5:15:1e:f6:19:ad:df:51:9c:26:d9:f1:
04:3d:49:05:d0:dc:c7:a5:f9:00:8e:44:e6:48:e0:a3:1e:78:
ef:f4:9b:65:5b:8c:4c:f1:ed:01:32:8e:a8:15:b9:da:ef:50:
38:8d:90:1c:19:b4:e3:1f:df:ac:d2:1b:ae:23:45:a7:d6:a4:
87:29:75:37:2a:b5:fe:b5:68:0f:e4:07:37:00:a6:eb:05:a6:
d3:cc:a2:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 09:03:56 2025 by rpki-client