Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ea2b76-b5b8-40ef-9500-496e256cc6b1/1/RE47DgNVYtXKgpgBrl8P7M-HjWQ.roa
File: RE47DgNVYtXKgpgBrl8P7M-HjWQ.roa (raw, json)
Hash identifier: 3Z8xsZmFZabtyZffnO1662tnEiD9/YloYu1NQI3juyQ=
Subject key identifier: 44:4E:3B:0E:03:55:62:D5:CA:82:98:01:AE:5F:0F:EC:CF:87:8D:64
Certificate issuer: /CN=21b410a17440fcab1cdc90afa6fcb724c80c82a9
Certificate serial: 2A1D18A6
Authority key identifier: 21:B4:10:A1:74:40:FC:AB:1C:DC:90:AF:A6:FC:B7:24:C8:0C:82:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbQQoXRA_Ksc3JCvpvy3JMgMgqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ea2b76-b5b8-40ef-9500-496e256cc6b1/1/RE47DgNVYtXKgpgBrl8P7M-HjWQ.roa
Signing time: Wed 25 May 2022 07:27:55 +0000
ROA not before: Wed 25 May 2022 07:27:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 188.208.24.0/23 maxlen: 23
188.208.24.0/22 maxlen: 22
188.208.24.0/24 maxlen: 24
188.208.25.0/24 maxlen: 24
188.208.27.0/24 maxlen: 24
188.208.26.0/24 maxlen: 24
188.208.26.0/23 maxlen: 23
185.16.122.0/24 maxlen: 24
185.16.122.0/23 maxlen: 23
185.16.121.0/24 maxlen: 24
185.16.120.0/24 maxlen: 24
185.16.120.0/23 maxlen: 23
185.16.120.0/22 maxlen: 22
185.16.123.0/24 maxlen: 24
188.247.171.0/24 maxlen: 24
188.247.170.0/24 maxlen: 24
188.247.169.0/24 maxlen: 24
188.247.168.0/22 maxlen: 24
188.247.168.0/24 maxlen: 24
89.32.195.0/24 maxlen: 24
89.32.194.0/23 maxlen: 23
89.32.194.0/24 maxlen: 24
89.36.43.0/24 maxlen: 24
89.36.42.0/24 maxlen: 24
89.36.42.0/23 maxlen: 23
89.36.41.0/24 maxlen: 24
89.36.40.0/24 maxlen: 24
89.36.40.0/22 maxlen: 22
89.36.40.0/23 maxlen: 23
89.42.237.0/24 maxlen: 24
89.42.236.0/24 maxlen: 24
89.42.236.0/23 maxlen: 23
188.239.186.0/23 maxlen: 23
188.239.186.0/24 maxlen: 24
188.239.185.0/24 maxlen: 24
188.239.184.0/23 maxlen: 23
188.239.184.0/22 maxlen: 22
188.239.184.0/24 maxlen: 24
188.239.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 706549926 (0x2a1d18a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b410a17440fcab1cdc90afa6fcb724c80c82a9
Validity
Not Before: May 25 07:27:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=444e3b0e035562d5ca829801ae5f0feccf878d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e7:8c:f8:30:f4:ee:e7:5f:5e:4c:0e:f7:11:
25:38:a6:c5:47:a8:52:10:b1:ca:87:cc:e6:75:03:
45:b1:5a:e3:04:e7:a2:79:75:b8:a7:f5:e4:f9:db:
6c:5e:6c:88:48:9b:15:79:91:9a:80:b7:29:2b:e5:
07:59:f4:45:4c:a9:80:45:00:55:a5:94:42:ef:af:
71:34:81:a1:4f:aa:b2:02:2b:92:e6:d4:0a:47:44:
99:7a:07:3f:f3:73:1f:96:ab:f5:03:54:02:ae:16:
21:8c:80:02:3f:98:d7:6a:cf:3a:cc:31:30:c1:ab:
ef:b6:96:36:ff:b2:c8:00:e1:43:20:fb:76:24:d4:
e4:d4:b5:af:3a:d7:a7:9c:46:dd:77:ff:fe:e0:63:
e2:2c:97:da:7c:c7:16:80:4c:3d:95:19:77:b0:cb:
94:cf:9c:52:89:45:ca:81:af:6b:59:3d:bd:7d:f3:
8e:75:a0:5a:e4:37:0c:14:d3:0b:81:21:ef:65:00:
8a:70:34:8a:0c:6b:6b:7b:bf:76:59:7c:e3:0f:fe:
6c:85:aa:05:de:f9:79:88:bd:10:18:1a:99:cb:02:
84:a1:bc:a1:70:d5:c7:db:ee:c7:09:3a:68:c1:e1:
b9:d5:a7:8a:3f:ef:ae:79:aa:00:fe:0f:c5:8e:77:
7d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:4E:3B:0E:03:55:62:D5:CA:82:98:01:AE:5F:0F:EC:CF:87:8D:64
X509v3 Authority Key Identifier:
keyid:21:B4:10:A1:74:40:FC:AB:1C:DC:90:AF:A6:FC:B7:24:C8:0C:82:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbQQoXRA_Ksc3JCvpvy3JMgMgqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ea2b76-b5b8-40ef-9500-496e256cc6b1/1/RE47DgNVYtXKgpgBrl8P7M-HjWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ea2b76-b5b8-40ef-9500-496e256cc6b1/1/IbQQoXRA_Ksc3JCvpvy3JMgMgqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.32.194.0/23
89.36.40.0/22
89.42.236.0/23
185.16.120.0/22
188.208.24.0/22
188.239.184.0/22
188.247.168.0/22
Signature Algorithm: sha256WithRSAEncryption
40:fd:6f:84:54:61:b4:ba:7a:62:44:00:9b:01:94:61:e4:07:
4b:94:e4:89:50:6f:be:46:9d:21:a8:53:de:b8:7c:67:8c:11:
2f:41:93:0d:fc:c5:22:f8:b0:e9:b1:0b:86:ff:21:99:4d:34:
6c:2a:0a:7d:c3:68:6f:dd:b4:a7:02:41:28:9f:95:61:89:0b:
8b:88:e1:84:84:a8:a5:0c:cd:82:e6:4d:73:a3:ac:5a:b4:b3:
a2:f2:6c:b2:d9:cf:a0:3a:01:61:1a:d7:0e:69:81:eb:a7:4b:
c4:ec:36:24:58:50:1e:8c:b4:0a:03:d0:77:0c:74:0d:f9:c4:
8e:f4:ad:43:48:9d:cd:30:94:92:23:26:1f:53:a6:23:7c:e7:
ed:8c:5b:5f:08:a3:6d:dc:a5:ca:a7:3d:aa:11:1e:60:3c:cb:
a0:c2:d0:57:62:3a:49:26:b1:f9:aa:80:33:ca:a6:90:bb:66:
48:6f:21:b7:40:9f:be:a2:7f:00:a6:47:db:61:e5:2c:ef:7d:
b7:2b:34:0d:31:79:a1:fa:42:f0:50:58:eb:a3:f0:aa:47:7d:
9e:cd:01:45:84:56:bb:de:af:15:40:e8:5a:f9:9c:b0:de:8e:
db:9c:2d:c9:18:22:09:c1:0d:44:dd:76:fd:a0:fa:95:d7:67:
1e:57:c7:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:31 2024 by rpki-client on console-fra.rpki-client.org