Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/_9RCnWS_jxDCMj9d7dQC2yVuOXw.roa
File: _9RCnWS_jxDCMj9d7dQC2yVuOXw.roa (raw, json)
Hash identifier: ekWLW2ujHypkcQNj/vaehvnHuWyOJ+8OMaD36x+TF+M=
Subject key identifier: FF:D4:42:9D:64:BF:8F:10:C2:32:3F:5D:ED:D4:02:DB:25:6E:39:7C
Certificate issuer: /CN=3950303615aca6e5f6f5b5691c7c2c8dca5f234d
Certificate serial: 018FE9959EF41E4F19634A9D63201EEB5AE0
Authority key identifier: 39:50:30:36:15:AC:A6:E5:F6:F5:B5:69:1C:7C:2C:8D:CA:5F:23:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OVAwNhWspuX29bVpHHwsjcpfI00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/_9RCnWS_jxDCMj9d7dQC2yVuOXw.roa
Signing time: Wed 05 Jun 2024 18:07:27 +0000
ROA not before: Wed 05 Jun 2024 18:07:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15626
IP address blocks: 5.34.182.0/23 maxlen: 24
46.28.64.0/21 maxlen: 24
82.118.16.0/22 maxlen: 22
82.118.17.0/24 maxlen: 24
82.118.18.0/24 maxlen: 24
217.12.192.0/21 maxlen: 21
217.12.199.0/24 maxlen: 24
217.12.204.0/23 maxlen: 23
217.12.210.0/23 maxlen: 23
217.12.210.0/24 maxlen: 24
217.12.212.0/22 maxlen: 22
217.12.215.0/24 maxlen: 24
217.12.216.0/23 maxlen: 23
217.12.219.0/24 maxlen: 24
217.12.220.0/22 maxlen: 22
217.12.221.0/24 maxlen: 24
217.12.223.0/24 maxlen: 24
2a02:27a8::/32 maxlen: 32
2a02:27a8:0:2::/64 maxlen: 64
2a02:27a8:0:a::/64 maxlen: 64
2a02:27a8:feed::/48 maxlen: 48
2a02:27ad::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e9:95:9e:f4:1e:4f:19:63:4a:9d:63:20:1e:eb:5a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3950303615aca6e5f6f5b5691c7c2c8dca5f234d
Validity
Not Before: Jun 5 18:07:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffd4429d64bf8f10c2323f5dedd402db256e397c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6e:b7:75:53:71:08:b1:38:61:d5:49:80:f4:
fa:0a:20:d2:f3:0c:17:dc:68:72:81:87:41:ed:16:
39:fa:41:61:bf:83:66:03:7e:30:e2:22:0e:a6:dc:
6e:4a:d6:3a:50:70:58:1f:55:4e:cd:4c:4a:da:58:
d2:65:c3:e4:5f:64:1d:ce:ae:f0:35:27:2c:a7:43:
d0:a3:d6:4b:f7:9e:90:86:4e:f3:7b:37:73:80:0b:
1d:3c:d1:b1:ee:cd:d4:56:17:32:18:58:42:90:8a:
66:24:ef:b5:d4:3b:b1:fa:b9:1c:ad:1a:ca:00:6f:
c2:70:fa:de:0d:ec:9e:89:3f:c2:fc:3a:49:91:69:
a8:1e:6e:76:34:fc:df:de:06:b1:98:b2:a8:85:0b:
64:c3:ca:15:e9:a9:af:f2:c8:4f:f4:a9:48:99:71:
5e:87:c6:98:fd:41:43:06:c5:04:cf:91:a0:71:79:
07:77:35:81:28:00:77:d1:1b:5c:cd:6a:89:0d:b7:
18:80:ba:26:70:1c:7c:49:69:ee:32:e0:76:2c:ec:
de:9d:91:fb:11:b4:b2:d3:fb:4d:f6:ab:c1:b1:4b:
77:3f:c9:1f:79:6d:1b:d7:00:82:9a:c6:38:03:18:
c1:7b:76:3a:bd:fb:6b:b6:ed:8a:80:be:c6:28:63:
0f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:D4:42:9D:64:BF:8F:10:C2:32:3F:5D:ED:D4:02:DB:25:6E:39:7C
X509v3 Authority Key Identifier:
keyid:39:50:30:36:15:AC:A6:E5:F6:F5:B5:69:1C:7C:2C:8D:CA:5F:23:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OVAwNhWspuX29bVpHHwsjcpfI00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/_9RCnWS_jxDCMj9d7dQC2yVuOXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/OVAwNhWspuX29bVpHHwsjcpfI00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.182.0/23
46.28.64.0/21
82.118.16.0/22
217.12.192.0/21
217.12.204.0/23
217.12.210.0-217.12.217.255
217.12.219.0-217.12.223.255
IPv6:
2a02:27a8::/32
2a02:27ad::/32
Signature Algorithm: sha256WithRSAEncryption
7d:72:92:01:cb:53:3f:06:93:da:33:77:04:d2:33:9b:44:72:
e0:c0:cc:53:df:ac:4b:82:6c:8a:c7:e0:4f:e6:2a:57:10:8c:
bd:1a:09:eb:69:a9:5a:91:c3:80:ac:6f:ae:71:ec:f3:6a:68:
07:80:64:f2:bc:eb:67:4e:ab:f9:01:e8:58:23:0e:da:2f:32:
b3:d4:ff:fe:d6:97:e0:42:b4:c9:8b:e4:35:70:0f:31:16:59:
15:e2:82:fd:38:c1:47:fe:a3:60:a9:35:e4:13:72:4e:d4:8b:
f5:56:30:8e:73:eb:8f:d4:16:06:52:e2:49:64:86:cd:0c:e6:
e7:bc:2b:03:b3:cc:1d:5c:c8:61:98:2c:04:19:45:4b:d0:89:
7b:a3:d4:55:68:31:67:9f:71:cc:73:48:12:82:27:5c:4f:75:
aa:de:6d:12:56:c4:b0:54:29:f4:9e:58:cd:b7:05:81:18:60:
24:4b:eb:ab:66:4f:30:4e:97:fe:0b:fb:1b:7e:cf:0c:21:50:
b2:71:7b:53:f5:8a:6c:9c:41:54:84:6b:85:eb:94:89:c4:dd:
27:48:f8:11:bb:3e:c3:bf:bd:68:3b:16:9a:15:65:bd:ee:c3:
df:c0:c1:8a:b9:6c:c2:58:c5:de:a5:26:d4:82:57:22:cb:90:
13:3b:0f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 10:21:46 2024 by rpki-client on console-fra.rpki-client.org