Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ea2b76-b5b8-40ef-9500-496e256cc6b1/1/tnumXhyZkNDA0kF4gT4Y1lzlDk8.roa
File: tnumXhyZkNDA0kF4gT4Y1lzlDk8.roa (raw, json)
Hash identifier: zZ7zjIU7udriBllpuNgkKhl/ppKW0Q9Mz4zrYyvl0ow=
Subject key identifier: B6:7B:A6:5E:1C:99:90:D0:C0:D2:41:78:81:3E:18:D6:5C:E5:0E:4F
Certificate issuer: /CN=21b410a17440fcab1cdc90afa6fcb724c80c82a9
Certificate serial: 2A316B68
Authority key identifier: 21:B4:10:A1:74:40:FC:AB:1C:DC:90:AF:A6:FC:B7:24:C8:0C:82:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbQQoXRA_Ksc3JCvpvy3JMgMgqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ea2b76-b5b8-40ef-9500-496e256cc6b1/1/tnumXhyZkNDA0kF4gT4Y1lzlDk8.roa
Signing time: Wed 01 Jun 2022 08:20:20 +0000
ROA not before: Wed 01 Jun 2022 08:20:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 188.208.24.0/23 maxlen: 23
188.208.24.0/22 maxlen: 22
188.208.24.0/24 maxlen: 24
188.208.25.0/24 maxlen: 24
188.208.27.0/24 maxlen: 24
188.208.26.0/24 maxlen: 24
188.208.26.0/23 maxlen: 23
185.16.122.0/24 maxlen: 24
185.16.122.0/23 maxlen: 23
185.16.121.0/24 maxlen: 24
185.16.120.0/24 maxlen: 24
185.16.120.0/23 maxlen: 23
185.16.120.0/22 maxlen: 22
185.16.123.0/24 maxlen: 24
89.37.83.0/24 maxlen: 24
89.37.82.0/23 maxlen: 23
89.37.82.0/24 maxlen: 24
89.37.81.0/24 maxlen: 24
89.37.80.0/24 maxlen: 24
89.37.80.0/23 maxlen: 23
89.37.80.0/22 maxlen: 22
188.247.171.0/24 maxlen: 24
188.247.170.0/24 maxlen: 24
188.247.169.0/24 maxlen: 24
188.247.168.0/22 maxlen: 24
188.247.168.0/24 maxlen: 24
89.32.195.0/24 maxlen: 24
89.32.194.0/23 maxlen: 23
89.32.194.0/24 maxlen: 24
89.36.43.0/24 maxlen: 24
89.36.42.0/24 maxlen: 24
89.36.42.0/23 maxlen: 23
89.36.41.0/24 maxlen: 24
89.36.40.0/24 maxlen: 24
89.36.40.0/22 maxlen: 22
89.36.40.0/23 maxlen: 23
89.42.237.0/24 maxlen: 24
89.42.236.0/24 maxlen: 24
89.42.236.0/23 maxlen: 23
188.239.186.0/23 maxlen: 23
188.239.186.0/24 maxlen: 24
188.239.185.0/24 maxlen: 24
188.239.184.0/23 maxlen: 23
188.239.184.0/22 maxlen: 22
188.239.184.0/24 maxlen: 24
188.239.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 707881832 (0x2a316b68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b410a17440fcab1cdc90afa6fcb724c80c82a9
Validity
Not Before: Jun 1 08:20:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b67ba65e1c9990d0c0d24178813e18d65ce50e4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ef:fa:6e:13:54:15:a2:55:5c:95:aa:9e:0e:
28:24:02:7f:2d:8d:e7:63:c1:fa:a6:42:9c:b9:b4:
c4:c4:11:0a:f3:9a:99:e0:af:a2:80:f1:6a:f2:c1:
21:dd:fe:b8:96:82:59:00:83:3b:37:09:34:33:28:
a7:8e:27:e6:b2:ed:78:35:3f:46:d8:67:85:4e:f2:
69:a6:72:e6:02:33:9b:73:c0:1d:38:ca:26:02:e7:
af:f0:74:3c:8b:36:9e:e7:c7:f0:43:64:76:11:d8:
66:9a:2d:50:c6:86:d7:ec:e9:23:06:5c:02:f1:65:
05:d1:06:8f:26:83:c1:d9:b2:cc:69:0a:46:65:0e:
4c:1e:e9:3f:de:72:37:81:c7:9f:7b:e2:69:8b:4f:
20:c3:35:6c:b1:74:73:2d:0e:d9:13:f8:a8:b8:3e:
05:d0:85:5d:31:17:1f:20:23:52:8f:26:3e:a1:92:
d7:60:85:2d:68:21:ce:b7:28:84:85:2a:65:fe:8d:
55:dc:88:e1:cd:c4:9b:5b:25:18:0b:c1:44:70:b6:
b9:13:99:ae:1b:ad:03:78:f6:80:be:6e:cd:37:ec:
22:be:dd:ed:d1:c0:d4:a5:7b:07:c1:de:10:9d:fb:
c2:27:23:ec:1d:6f:aa:ed:76:48:2c:6a:fd:2e:43:
ee:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7B:A6:5E:1C:99:90:D0:C0:D2:41:78:81:3E:18:D6:5C:E5:0E:4F
X509v3 Authority Key Identifier:
keyid:21:B4:10:A1:74:40:FC:AB:1C:DC:90:AF:A6:FC:B7:24:C8:0C:82:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbQQoXRA_Ksc3JCvpvy3JMgMgqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ea2b76-b5b8-40ef-9500-496e256cc6b1/1/tnumXhyZkNDA0kF4gT4Y1lzlDk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ea2b76-b5b8-40ef-9500-496e256cc6b1/1/IbQQoXRA_Ksc3JCvpvy3JMgMgqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.32.194.0/23
89.36.40.0/22
89.37.80.0/22
89.42.236.0/23
185.16.120.0/22
188.208.24.0/22
188.239.184.0/22
188.247.168.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:53:4a:ef:25:94:2c:43:e2:af:4a:4c:5c:2d:62:25:e2:e6:
21:b5:df:46:c0:3f:e4:5d:61:9d:75:0e:7f:93:8f:18:76:91:
45:49:f1:c6:63:37:1b:67:a8:98:6b:4f:19:40:4a:b7:b7:b5:
2f:ce:4e:79:f8:9e:96:69:5e:12:01:72:06:99:c5:e4:c3:93:
c8:58:a6:40:9b:80:f1:a9:b6:78:d0:22:ba:f0:92:5e:47:a4:
e8:70:68:f5:77:96:74:fb:de:5a:20:f5:05:9d:29:b5:1f:0b:
7d:a8:e7:6f:59:cd:b9:bf:ec:6b:96:02:45:f2:41:b7:b6:c2:
7a:a4:57:58:67:28:68:c3:3e:77:4c:80:1d:36:d3:30:9e:be:
8a:62:e2:9f:05:84:77:53:80:8a:3e:c1:3b:49:bb:1e:8a:07:
19:99:62:a0:ad:c4:8c:c2:4c:52:0e:22:0f:5f:8e:5c:9d:42:
64:51:3a:c7:ff:fc:2a:9f:1a:c4:58:1b:eb:5d:13:53:03:c8:
54:83:09:8e:a0:99:0f:cf:2b:ea:11:d9:fc:05:f0:62:09:fe:
45:07:bd:4b:62:8d:4e:12:ac:21:7c:e7:7d:3c:06:89:70:6e:
9c:c2:b5:65:82:05:1c:0f:90:ac:d6:8b:b1:8f:f7:68:59:b5:
2f:d6:dc:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:31 2024 by rpki-client on console-fra.rpki-client.org