Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/HylrvRwt1dQ8eW0Y61ak-kV9dZs.roa
File: HylrvRwt1dQ8eW0Y61ak-kV9dZs.roa (raw, json)
Hash identifier: cGtry4Kmy8kQIJHKv+upJzgTG1dIapxN663mwDSLCXo=
Subject key identifier: 1F:29:6B:BD:1C:2D:D5:D4:3C:79:6D:18:EB:56:A4:FA:45:7D:75:9B
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018608C41147A9E05C98EE63E5022FE3432C
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/HylrvRwt1dQ8eW0Y61ak-kV9dZs.roa
Signing time: Tue 31 Jan 2023 16:58:32 +0000
ROA not before: Tue 31 Jan 2023 16:58:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.109.192.0/21 maxlen: 24
85.237.198.0/24 maxlen: 24
85.237.205.0/24 maxlen: 24
85.237.203.0/24 maxlen: 24
85.158.57.0/24 maxlen: 24
85.237.208.0/20 maxlen: 24
185.93.32.0/24 maxlen: 24
185.93.34.0/23 maxlen: 24
194.169.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:c4:11:47:a9:e0:5c:98:ee:63:e5:02:2f:e3:43:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 31 16:58:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f296bbd1c2dd5d43c796d18eb56a4fa457d759b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:b6:a0:8f:c6:c8:42:dd:dd:4a:af:e8:a6:6c:
a3:35:e8:68:4e:79:43:33:76:16:20:85:32:8a:65:
d0:98:fa:1a:2e:bb:f1:f9:5c:c3:8d:62:16:09:1f:
3b:ef:cb:f9:25:f4:09:dc:82:8a:21:f8:13:5f:69:
00:48:8e:c0:4c:82:b0:c4:cc:1c:53:80:a2:7e:4b:
aa:c5:ef:e9:98:35:2f:ac:1f:c9:d7:97:d9:5c:ee:
e8:35:c4:c4:64:7a:bf:88:15:97:4f:2d:bb:f8:0d:
da:d4:84:c1:4f:4b:ee:b5:9c:14:59:36:58:5a:51:
ab:7f:cc:35:22:0a:ea:d6:6a:a3:77:78:a3:d9:54:
eb:f3:4b:02:a8:b2:33:c1:fc:c9:75:73:68:2e:af:
e6:de:33:5c:13:da:74:58:49:07:e7:b2:9c:a3:4e:
bb:5a:12:bb:f1:b4:f6:06:79:1e:d9:2f:a5:bc:4e:
32:e3:a9:68:f7:03:92:4f:11:a1:bc:27:e9:90:da:
75:cc:30:4f:74:08:f4:39:a7:a0:1b:03:1c:ec:44:
b0:8c:68:b1:c8:da:81:a3:13:3c:4e:39:1e:16:50:
c7:7b:5f:52:69:df:b6:6a:a5:4f:74:a0:6c:fe:90:
46:77:2a:1d:d8:26:29:e7:d5:0d:1c:a8:71:f8:17:
31:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:29:6B:BD:1C:2D:D5:D4:3C:79:6D:18:EB:56:A4:FA:45:7D:75:9B
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/HylrvRwt1dQ8eW0Y61ak-kV9dZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.57.0/24
85.237.198.0/24
85.237.203.0/24
85.237.205.0/24
85.237.208.0/20
185.93.32.0/24
185.93.34.0/23
193.109.192.0/21
194.169.217.0/24
Signature Algorithm: sha256WithRSAEncryption
67:e5:52:79:72:4e:18:f7:e6:e1:a5:ff:a4:d3:d8:9f:7d:3b:
a9:99:31:da:3e:8b:d2:be:f1:e4:0c:6a:e9:aa:37:f0:e7:83:
14:f2:8a:ad:dc:d5:74:f5:64:1b:33:39:0c:4f:0f:7e:42:43:
fb:06:8a:60:33:f1:12:f7:d4:3d:6b:26:e7:ad:48:79:92:02:
0b:0a:61:f1:0e:92:22:db:9c:34:09:88:c7:c5:a2:ce:65:39:
b1:26:c6:af:01:51:7d:e3:b2:40:a4:52:2b:5e:b5:93:3d:a4:
8b:51:d0:b3:5f:00:12:5f:18:e6:59:31:63:78:22:c9:46:63:
ea:4c:12:56:19:2a:54:66:58:61:b8:77:c6:8f:fb:47:8a:0f:
56:8b:87:ef:ce:05:85:cd:ea:9b:31:30:0d:23:cc:0f:17:12:
8e:0e:0b:00:f8:f3:c6:c4:87:8f:ac:84:42:1e:34:6a:ed:73:
6e:a7:e5:f3:69:f1:1f:c2:74:4d:fd:60:5f:92:f7:ec:79:73:
0a:a4:3c:50:97:78:ec:a7:ee:5e:60:76:b6:d7:f5:4d:3d:a9:
b1:13:65:ce:a1:23:e6:7f:53:a0:61:f8:ca:0f:80:18:d8:ba:
50:1f:c2:84:31:69:ea:03:4f:cb:67:69:8a:c3:d2:5c:de:3f:
a5:cd:48:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org