Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2038aa-7de5-4581-933a-d1a0c320c28a/1/U2CDu0Wrjq89cwa3y94kqrOTv8Y.roa
File: U2CDu0Wrjq89cwa3y94kqrOTv8Y.roa (raw, json)
Hash identifier: nwqBjVh5FFMNlPvqdAlxzR1U+Ohbeqgio8lWI6gSsXg=
Subject key identifier: 53:60:83:BB:45:AB:8E:AF:3D:73:06:B7:CB:DE:24:AA:B3:93:BF:C6
Certificate issuer: /CN=8023d3d35800ef3cb2a56c38bf914397381e0ff1
Certificate serial: 0AB2C8AF
Authority key identifier: 80:23:D3:D3:58:00:EF:3C:B2:A5:6C:38:BF:91:43:97:38:1E:0F:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gCPT01gA7zyypWw4v5FDlzgeD_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2038aa-7de5-4581-933a-d1a0c320c28a/1/U2CDu0Wrjq89cwa3y94kqrOTv8Y.roa
Signing time: Sat 01 Jan 2022 10:55:40 +0000
ROA not before: Sat 01 Jan 2022 10:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62353
IP address blocks: 213.159.16.0/22 maxlen: 22
213.159.16.0/21 maxlen: 21
213.159.20.0/22 maxlen: 22
185.22.14.0/23 maxlen: 23
185.22.12.0/23 maxlen: 23
185.22.12.0/22 maxlen: 22
185.81.8.0/22 maxlen: 22
185.81.8.0/23 maxlen: 23
185.81.11.0/24 maxlen: 24
185.81.10.0/23 maxlen: 23
185.81.8.0/24 maxlen: 24
2a00:5d60::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179488943 (0xab2c8af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8023d3d35800ef3cb2a56c38bf914397381e0ff1
Validity
Not Before: Jan 1 10:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=536083bb45ab8eaf3d7306b7cbde24aab393bfc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3a:b9:4b:eb:78:86:18:a9:b1:dc:94:bf:e3:
16:09:7a:98:0e:1b:d4:ad:40:87:b0:8a:89:06:bd:
6c:f1:0a:60:d9:41:29:0d:7c:b1:51:6d:e8:1e:4d:
e1:b5:2b:8b:a6:92:45:c8:7c:cc:f9:31:ba:c4:11:
83:b4:15:b7:2e:7b:9b:89:37:44:63:ed:72:da:f1:
ac:28:43:b6:69:59:33:56:1a:2e:9c:6c:e0:fb:38:
63:d6:c4:a3:54:2d:af:94:fd:cc:b7:b7:82:05:a4:
24:dd:7e:64:50:b0:57:4f:86:d4:84:9c:f5:a0:c0:
f1:16:55:ae:8b:e4:fc:67:e4:19:6e:4a:63:ca:78:
d5:b3:b3:fa:88:c8:8e:71:7a:73:50:36:d0:8f:bd:
3d:07:aa:6f:e7:28:5a:e6:32:6f:ac:c9:58:b3:ea:
04:3e:be:dd:cd:67:92:a9:b4:eb:c4:d6:40:9a:5c:
56:a9:97:d6:31:38:da:fd:a7:6a:d6:7c:2d:37:c4:
d3:f9:de:63:66:31:21:8b:44:57:be:88:db:01:b5:
df:6d:30:b0:5f:38:47:6e:f0:7e:b6:42:85:95:db:
a1:a7:c0:6e:93:08:6c:52:8b:b0:b9:c8:6f:ae:f9:
99:47:be:64:47:fe:61:0c:51:1c:c5:f6:f0:de:8b:
47:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:60:83:BB:45:AB:8E:AF:3D:73:06:B7:CB:DE:24:AA:B3:93:BF:C6
X509v3 Authority Key Identifier:
keyid:80:23:D3:D3:58:00:EF:3C:B2:A5:6C:38:BF:91:43:97:38:1E:0F:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gCPT01gA7zyypWw4v5FDlzgeD_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2038aa-7de5-4581-933a-d1a0c320c28a/1/U2CDu0Wrjq89cwa3y94kqrOTv8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2038aa-7de5-4581-933a-d1a0c320c28a/1/gCPT01gA7zyypWw4v5FDlzgeD_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.12.0/22
185.81.8.0/22
213.159.16.0/21
IPv6:
2a00:5d60::/32
Signature Algorithm: sha256WithRSAEncryption
35:5f:d1:ab:65:a0:5a:84:30:6b:da:dc:18:5e:ea:06:2c:36:
be:07:1d:8c:56:ed:80:ed:9b:02:78:4c:ae:b1:e4:32:f6:52:
cf:23:c6:a7:8a:6f:2d:e9:3c:96:5e:6d:15:22:b4:9a:1c:a7:
4a:f0:22:29:c2:84:a8:9a:31:43:39:e2:4c:3e:f4:34:db:94:
da:a6:cb:16:bd:36:21:ac:e0:ba:d8:f8:b5:cc:c3:ec:9a:34:
2b:49:cb:ac:54:0d:90:57:36:20:2b:c0:f6:5a:6d:b1:53:9c:
49:08:2e:62:a1:9e:71:cc:e4:0e:37:84:8c:f0:1d:41:ee:9f:
4a:77:27:25:4b:ad:9d:f4:0c:3a:bd:e7:7c:de:32:4c:60:3f:
7d:a3:ee:c0:b7:91:a0:75:08:ac:21:f5:4b:16:cf:30:c5:d5:
9a:2e:ae:8e:c3:87:5e:b1:46:03:c7:fb:a5:80:42:92:ac:31:
a5:49:87:97:5f:50:73:e4:66:ad:f6:19:42:8b:0f:ac:e3:45:
68:7b:35:a0:cc:7c:fb:9b:6c:4e:60:3c:e2:e1:10:c7:92:22:
a4:5c:db:45:89:19:ec:71:37:70:4f:44:e3:58:6a:15:70:e6:
33:34:3b:1b:c1:3c:7d:3a:00:fa:a7:02:a9:1d:30:1b:51:b2:
85:97:dd:55
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:01 2024 by rpki-client on console-fra.rpki-client.org