Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/JZDVuy5q2EXJaUBY-ap58zSxc80.roa
File: JZDVuy5q2EXJaUBY-ap58zSxc80.roa (raw, json)
Hash identifier: WYF5nTC30OB4XxsEB3YUcIs++vj/m5WUQvBpeCFombg=
Subject key identifier: 25:90:D5:BB:2E:6A:D8:45:C9:69:40:58:F9:AA:79:F3:34:B1:73:CD
Certificate issuer: /CN=2ac943517f5e3b747e7530320789a03444b43912
Certificate serial: 0191741D9951399F48A138DFC2CA675A2544
Authority key identifier: 2A:C9:43:51:7F:5E:3B:74:7E:75:30:32:07:89:A0:34:44:B4:39:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/JZDVuy5q2EXJaUBY-ap58zSxc80.roa
Signing time: Wed 21 Aug 2024 08:46:22 +0000
ROA not before: Wed 21 Aug 2024 08:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49033
IP address blocks: 94.46.216.0/22 maxlen: 24
94.46.218.0/23 maxlen: 23
103.104.60.0/22 maxlen: 24
113.212.72.0/22 maxlen: 24
185.91.92.0/22 maxlen: 24
185.116.144.0/22 maxlen: 24
185.166.88.0/22 maxlen: 22
185.166.88.0/24 maxlen: 24
185.166.89.0/24 maxlen: 24
185.166.90.0/23 maxlen: 24
185.166.90.0/24 maxlen: 24
185.166.91.0/24 maxlen: 24
185.171.48.0/22 maxlen: 24
185.232.160.0/22 maxlen: 24
185.238.108.0/22 maxlen: 24
204.8.80.0/22 maxlen: 24
2a0f:dcc0::/29 maxlen: 48
2a0f:ddc0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:74:1d:99:51:39:9f:48:a1:38:df:c2:ca:67:5a:25:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac943517f5e3b747e7530320789a03444b43912
Validity
Not Before: Aug 21 08:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2590d5bb2e6ad845c9694058f9aa79f334b173cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:11:8f:04:00:78:33:ac:ad:dc:0a:12:02:85:
ab:26:42:de:3e:2c:8e:2d:13:14:0e:11:7b:55:f2:
37:7f:78:2c:45:02:36:ce:29:0c:fe:24:96:21:35:
62:13:0c:66:fb:53:6a:29:58:21:48:82:b8:97:1a:
7e:8f:cb:ac:24:34:f3:33:3e:5f:39:ba:e1:9a:da:
de:69:2e:f1:41:be:95:90:27:b6:32:50:dc:f5:01:
92:9a:b1:75:5d:9a:f5:43:bb:68:6f:a0:a6:36:71:
08:1b:39:6f:f5:0e:c6:c4:ed:9a:7c:fc:4b:e7:d4:
eb:25:13:eb:50:3b:68:33:4a:0f:b1:d5:1c:e6:94:
29:23:60:ec:ba:ff:08:c2:4d:00:d6:35:db:14:a2:
aa:34:1a:9a:7d:4a:a2:5d:6c:24:95:f3:66:0c:ad:
73:63:74:12:2a:15:59:a9:80:64:91:e7:fb:41:e3:
f3:f9:09:3f:d0:61:56:09:8a:98:23:8e:ac:5e:1f:
84:b1:29:12:9c:b5:66:25:74:5e:0a:41:f7:52:9d:
13:dc:f0:07:cb:7d:fa:89:69:59:fb:80:79:b6:ae:
37:d8:f0:9f:61:24:21:16:89:89:89:d1:c1:9a:10:
d0:f2:c0:a3:38:e7:50:7f:4a:eb:1f:b4:06:5c:61:
bb:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:90:D5:BB:2E:6A:D8:45:C9:69:40:58:F9:AA:79:F3:34:B1:73:CD
X509v3 Authority Key Identifier:
keyid:2A:C9:43:51:7F:5E:3B:74:7E:75:30:32:07:89:A0:34:44:B4:39:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/JZDVuy5q2EXJaUBY-ap58zSxc80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/KslDUX9eO3R-dTAyB4mgNES0ORI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.46.216.0/22
103.104.60.0/22
113.212.72.0/22
185.91.92.0/22
185.116.144.0/22
185.166.88.0/22
185.171.48.0/22
185.232.160.0/22
185.238.108.0/22
204.8.80.0/22
IPv6:
2a0f:dcc0::/29
2a0f:ddc0::/29
Signature Algorithm: sha256WithRSAEncryption
7d:50:2b:5b:b7:fe:6a:bb:f7:2e:be:d5:44:e3:8f:c5:bf:ac:
2e:a7:a5:0c:bb:a4:18:b8:32:3f:50:b4:98:1b:82:97:fb:73:
84:5d:f1:24:87:49:15:81:8c:5b:17:45:aa:d4:92:62:05:b6:
a9:19:a5:47:30:c6:ba:3a:6c:ab:bf:51:b5:60:cb:5c:65:c1:
20:a3:4f:6b:30:6d:55:cb:58:9d:42:11:21:66:52:d4:8e:e3:
50:6d:1e:c2:60:c3:60:fc:9e:34:34:bb:59:39:64:d9:fd:04:
42:d2:2e:53:23:4e:d9:13:46:52:90:42:03:00:a8:1b:0d:15:
5c:61:df:49:5e:56:d9:d8:58:a9:1b:52:78:35:c1:a6:42:3a:
98:34:c8:bb:c0:bc:22:4c:fb:0b:68:b4:a5:b9:31:21:e5:43:
2c:84:c9:2c:73:06:11:66:d0:78:a0:00:8a:cf:94:d5:82:fc:
2b:b3:56:52:2b:cf:b3:de:d7:41:4c:fa:d9:06:7d:26:e5:ff:
6e:20:bf:a1:b6:71:61:7b:e4:90:1d:ce:e1:91:3a:06:ef:c6:
9a:be:21:65:94:ab:a2:82:fa:ad:43:6e:80:44:76:c7:f0:8e:
66:14:fd:86:c6:ac:70:14:34:08:3f:1e:3b:23:07:1c:60:29:
20:a2:93:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:34 2024 by rpki-client on console.sobornost.net