Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/TVUYtd48N1XmRE3ZuJMM0kkxSpo.roa
File: TVUYtd48N1XmRE3ZuJMM0kkxSpo.roa (raw, json)
Hash identifier: GLBP6OPVaz4RG1tTgr/IDPIlHW2Wp4zuqaVglk1xiZg=
Subject key identifier: 4D:55:18:B5:DE:3C:37:55:E6:44:4D:D9:B8:93:0C:D2:49:31:4A:9A
Certificate issuer: /CN=d2f1c8842e7cf891b234d3a1e0e2e0ef73e842aa
Certificate serial: 01914A0DBB11438D99F5D8F410647CA260F7
Authority key identifier: D2:F1:C8:84:2E:7C:F8:91:B2:34:D3:A1:E0:E2:E0:EF:73:E8:42:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0vHIhC58-JGyNNOh4OLg73PoQqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/TVUYtd48N1XmRE3ZuJMM0kkxSpo.roa
Signing time: Tue 13 Aug 2024 04:44:59 +0000
ROA not before: Tue 13 Aug 2024 04:44:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8339
IP address blocks: 62.40.128.0/17 maxlen: 24
81.217.0.0/16 maxlen: 24
82.149.96.0/19 maxlen: 24
82.218.0.0/16 maxlen: 24
89.104.0.0/19 maxlen: 24
92.62.16.0/20 maxlen: 24
94.16.32.0/19 maxlen: 24
95.143.224.0/20 maxlen: 24
176.120.160.0/21 maxlen: 21
178.18.160.0/20 maxlen: 24
185.100.96.0/22 maxlen: 24
194.106.224.0/19 maxlen: 24
195.202.128.0/19 maxlen: 24
195.202.160.0/19 maxlen: 24
195.230.160.0/19 maxlen: 24
202.170.80.0/21 maxlen: 24
2a00:1b38::/32 maxlen: 32
2a02:e200::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4a:0d:bb:11:43:8d:99:f5:d8:f4:10:64:7c:a2:60:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2f1c8842e7cf891b234d3a1e0e2e0ef73e842aa
Validity
Not Before: Aug 13 04:44:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d5518b5de3c3755e6444dd9b8930cd249314a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:81:50:c6:6f:0e:e2:48:90:e2:39:ea:ff:58:
03:aa:bb:8d:61:0c:b0:20:a0:58:7a:83:c1:55:cb:
03:83:05:95:e2:7c:42:c9:70:43:70:ec:4c:38:b0:
fb:18:33:f2:bd:98:19:bc:9d:0f:aa:b5:5c:b8:3d:
8e:54:51:f8:31:17:fa:59:36:bf:c7:c0:52:4c:22:
1f:32:c8:62:16:14:79:78:03:5e:fe:d3:df:1d:e6:
7c:7f:bb:54:69:16:78:70:0b:c0:46:43:25:67:80:
09:a0:b1:e0:be:a1:2d:d5:e9:c4:f4:20:81:28:b3:
78:3b:fa:dc:a9:b9:d9:40:25:b4:c8:58:27:ee:a5:
75:e6:ef:0b:b5:c5:51:ca:b4:8a:42:5c:80:a6:00:
95:1c:8f:52:58:6c:07:4f:53:d8:56:30:a9:4d:29:
bf:bf:0a:97:ed:e7:07:43:56:10:33:86:3c:41:82:
a3:92:be:e4:4c:76:f0:31:36:f5:fd:fd:36:58:1c:
22:81:e4:df:d4:29:a7:a3:15:5d:b6:d3:96:59:17:
7e:53:03:98:d9:d3:96:cf:ff:76:ff:82:8d:4e:9c:
3e:ba:e4:f5:57:d4:25:43:34:85:bd:4e:d1:f0:8e:
87:9f:19:52:1a:d2:a5:da:1f:c4:ad:6a:9b:1c:45:
39:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:55:18:B5:DE:3C:37:55:E6:44:4D:D9:B8:93:0C:D2:49:31:4A:9A
X509v3 Authority Key Identifier:
keyid:D2:F1:C8:84:2E:7C:F8:91:B2:34:D3:A1:E0:E2:E0:EF:73:E8:42:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0vHIhC58-JGyNNOh4OLg73PoQqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/TVUYtd48N1XmRE3ZuJMM0kkxSpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/0vHIhC58-JGyNNOh4OLg73PoQqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.40.128.0/17
81.217.0.0/16
82.149.96.0/19
82.218.0.0/16
89.104.0.0/19
92.62.16.0/20
94.16.32.0/19
95.143.224.0/20
176.120.160.0/21
178.18.160.0/20
185.100.96.0/22
194.106.224.0/19
195.202.128.0/18
195.230.160.0/19
202.170.80.0/21
IPv6:
2a00:1b38::/32
2a02:e200::/30
Signature Algorithm: sha256WithRSAEncryption
67:b8:83:27:b5:ab:fa:4f:49:7f:e1:d0:e7:03:ae:d3:28:38:
46:4f:8a:be:1e:49:72:af:81:6a:71:4a:a4:79:10:9d:8d:42:
46:7f:1a:03:19:b6:61:d6:31:16:74:cf:ce:77:01:40:4e:58:
fb:3d:a0:7a:7b:0f:82:99:c9:ea:58:d4:c4:ba:b7:05:81:a8:
0f:ab:dd:df:b7:da:bd:b6:3d:db:65:01:20:15:83:5c:cd:5d:
e0:4b:0b:b7:1e:f6:f9:d5:50:11:e4:71:48:55:bf:28:dc:df:
69:48:43:f1:a8:0d:98:3c:32:8c:ec:5a:08:f4:36:f8:5c:b8:
22:bc:50:23:32:f7:4b:8f:77:fa:10:d1:9c:36:38:44:ca:fe:
74:15:3e:0f:4c:d3:5d:26:4a:f5:6e:74:20:ec:09:13:ed:f3:
b2:2c:06:a7:0d:91:8a:66:c8:26:21:b4:6b:07:a2:71:51:f8:
fe:be:f5:54:f5:7a:1c:02:f1:35:39:d1:11:ab:7c:98:a4:a0:
0d:c1:43:ec:aa:97:61:b1:93:db:36:64:c0:2c:62:08:b0:1e:
e2:ff:c1:ab:5d:e5:00:3c:a5:00:62:b2:db:0f:58:05:9c:19:
e2:b5:34:07:73:b0:c5:9c:ce:be:4e:dd:89:52:d5:be:f3:7b:
83:8c:18:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:28 2024 by rpki-client on console.sobornost.net