Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/FFctW5Nxic8rVuB4XyvQ2uv38kM.roa
File: FFctW5Nxic8rVuB4XyvQ2uv38kM.roa (raw, json)
Hash identifier: sJrifz5BEYFj1r7PIxvBAx/Lv9i23nk78id/17TZ53o=
Subject key identifier: 14:57:2D:5B:93:71:89:CF:2B:56:E0:78:5F:2B:D0:DA:EB:F7:F2:43
Certificate issuer: /CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Certificate serial: 0185A0EED5708BC61D2152B7C6BF840449FD
Authority key identifier: 9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/FFctW5Nxic8rVuB4XyvQ2uv38kM.roa
Signing time: Wed 11 Jan 2023 13:04:44 +0000
ROA not before: Wed 11 Jan 2023 13:04:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212865
IP address blocks: 80.238.134.0/24 maxlen: 24
80.238.136.0/24 maxlen: 24
80.238.139.0/24 maxlen: 24
80.238.140.0/22 maxlen: 22
80.238.144.0/20 maxlen: 20
80.238.160.0/20 maxlen: 20
80.238.176.0/20 maxlen: 20
80.238.129.0/24 maxlen: 24
80.238.130.0/24 maxlen: 24
62.65.141.0/24 maxlen: 24
62.65.144.0/21 maxlen: 21
62.65.142.0/24 maxlen: 24
62.65.143.0/24 maxlen: 24
62.65.153.0/24 maxlen: 24
62.65.154.0/23 maxlen: 23
62.65.156.0/23 maxlen: 23
62.65.158.0/24 maxlen: 24
80.238.192.0/21 maxlen: 21
80.238.200.0/22 maxlen: 22
80.238.208.0/21 maxlen: 21
80.238.218.0/24 maxlen: 24
80.238.216.0/23 maxlen: 23
80.238.216.0/22 maxlen: 22
80.238.225.0/24 maxlen: 24
80.238.223.0/24 maxlen: 24
94.78.2.0/24 maxlen: 24
94.78.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a0:ee:d5:70:8b:c6:1d:21:52:b7:c6:bf:84:04:49:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Validity
Not Before: Jan 11 13:04:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14572d5b937189cf2b56e0785f2bd0daebf7f243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f2:63:9b:65:b4:cc:ed:a3:5a:0c:66:3e:e9:
12:5e:cd:23:a1:f2:49:7e:bd:10:32:c9:6a:fd:44:
be:5b:e5:59:e3:81:4f:62:ed:34:7e:95:4b:fb:bd:
02:3e:9d:5d:72:6a:51:11:c0:4e:8b:f4:d4:67:b9:
5b:3c:de:14:18:8e:0e:d4:b9:6c:08:5f:d4:c1:1a:
25:ee:ec:bb:f0:41:d9:25:7e:9d:5f:f6:5b:f8:b8:
d4:ce:00:d7:2d:bd:1d:97:33:d5:82:4f:fa:18:cf:
3f:f5:65:6b:00:f2:30:bc:08:4e:c1:a6:23:f9:8d:
5d:e8:7a:d4:cc:71:dd:65:ab:8f:76:2b:2b:b0:bb:
96:aa:07:88:75:19:1d:47:2d:eb:e9:8f:9f:55:f2:
83:1e:70:85:c7:9f:bf:7b:3d:d0:c7:89:36:1f:81:
2d:72:1f:a4:02:05:17:0d:03:b8:da:ea:7e:cd:f1:
12:f7:4d:ef:85:1c:60:e3:47:9a:80:8b:45:f7:a2:
74:a9:04:f7:84:f4:2f:73:e4:77:2c:c5:e2:ab:35:
0f:34:ce:70:82:c3:22:b1:ef:4f:63:92:c2:35:3d:
ef:99:07:4e:bb:7e:ef:ac:fa:fa:d8:63:61:6a:7e:
b5:35:7d:85:76:45:bc:80:d8:d8:f1:c3:e6:93:a5:
eb:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:57:2D:5B:93:71:89:CF:2B:56:E0:78:5F:2B:D0:DA:EB:F7:F2:43
X509v3 Authority Key Identifier:
keyid:9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/FFctW5Nxic8rVuB4XyvQ2uv38kM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/n2YrPPqLkFkGjCnUa5kmO6LeUME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.65.141.0-62.65.151.255
62.65.153.0-62.65.158.255
80.238.129.0-80.238.130.255
80.238.134.0/24
80.238.136.0/24
80.238.139.0-80.238.203.255
80.238.208.0-80.238.219.255
80.238.223.0/24
80.238.225.0/24
94.78.2.0/23
Signature Algorithm: sha256WithRSAEncryption
45:ff:ba:43:ed:00:2b:dc:f4:5f:da:23:d0:61:e0:6d:fc:8b:
4a:a9:6f:9c:35:59:00:ad:4a:28:a1:e4:eb:d2:29:ac:d0:47:
4e:32:da:f0:85:9f:9e:7a:dc:75:65:55:e7:71:c1:e8:4d:2e:
ad:81:ae:b3:c1:d9:f8:d4:d4:a1:7b:4f:66:bf:e4:0f:1e:6b:
4c:e2:fc:3c:07:37:1b:51:ff:d0:9d:70:fd:a8:7e:7a:e2:e9:
7a:a6:0b:fe:8b:59:1e:df:e3:2b:61:66:ff:b1:b2:42:1e:b9:
ae:31:ee:42:4b:fe:77:96:37:e1:24:2d:5d:36:99:f4:fa:b5:
8e:6e:f5:5a:a3:09:d8:01:cb:52:ba:69:da:0f:95:fe:fc:59:
59:08:a0:8f:60:98:7c:b4:a9:c0:27:99:3b:5f:90:11:ee:09:
03:bf:75:a2:05:2b:41:d9:0a:d1:e8:90:d9:cd:ce:52:e1:d9:
04:e1:bb:6c:19:07:bd:ae:63:44:80:e9:c1:5a:ed:30:99:f3:
06:6b:ac:28:4a:10:d5:b1:b6:88:88:ca:39:8b:d8:10:7e:63:
bb:20:14:d4:62:95:94:8a:63:a7:04:e4:d5:1b:20:fe:b1:e2:
d0:38:d6:bc:69:30:b4:2e:8c:98:9d:b9:89:ce:c3:e1:c4:86:
dc:19:9d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:33 2024 by rpki-client on console-fra.rpki-client.org