Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/HCfu3lJ3VBR4Qs2rxcpzfi5r0Qo.roa
File: HCfu3lJ3VBR4Qs2rxcpzfi5r0Qo.roa (raw, json)
Hash identifier: iGEytMUDEvMVraOkuXCUuTZkoMSzL6PfHlYLMjCMRVs=
Subject key identifier: 1C:27:EE:DE:52:77:54:14:78:42:CD:AB:C5:CA:73:7E:2E:6B:D1:0A
Certificate issuer: /CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Certificate serial: 018437E698F56F638F7D12A6BA0B976DAE59
Authority key identifier: 9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/HCfu3lJ3VBR4Qs2rxcpzfi5r0Qo.roa
Signing time: Wed 02 Nov 2022 10:32:50 +0000
ROA not before: Wed 02 Nov 2022 10:32:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212865
IP address blocks: 80.238.134.0/24 maxlen: 24
80.238.136.0/24 maxlen: 24
80.238.139.0/24 maxlen: 24
80.238.140.0/22 maxlen: 22
80.238.144.0/20 maxlen: 20
80.238.160.0/20 maxlen: 20
80.238.176.0/20 maxlen: 20
80.238.132.0/22 maxlen: 22
80.238.129.0/24 maxlen: 24
80.238.130.0/24 maxlen: 24
80.238.130.0/23 maxlen: 23
62.65.141.0/24 maxlen: 24
62.65.144.0/21 maxlen: 21
62.65.142.0/24 maxlen: 24
62.65.143.0/24 maxlen: 24
62.65.153.0/24 maxlen: 24
62.65.154.0/23 maxlen: 23
62.65.156.0/23 maxlen: 23
62.65.158.0/24 maxlen: 24
80.238.192.0/21 maxlen: 21
80.238.200.0/21 maxlen: 21
80.238.200.0/22 maxlen: 22
80.238.208.0/21 maxlen: 21
80.238.216.0/22 maxlen: 22
80.238.225.0/24 maxlen: 24
80.238.226.0/23 maxlen: 23
80.238.223.0/24 maxlen: 24
80.238.230.0/23 maxlen: 23
80.238.228.0/22 maxlen: 22
80.238.232.0/21 maxlen: 21
80.238.236.0/22 maxlen: 22
94.78.2.0/24 maxlen: 24
94.78.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:37:e6:98:f5:6f:63:8f:7d:12:a6:ba:0b:97:6d:ae:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Validity
Not Before: Nov 2 10:32:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c27eede527754147842cdabc5ca737e2e6bd10a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f1:fc:99:00:28:fa:2e:f3:4c:a5:f6:bb:ee:
ee:98:82:c3:f1:c8:6e:23:e2:1e:2f:9e:ff:93:5b:
f0:e5:81:45:73:1b:86:8c:0f:f2:a3:69:30:91:88:
66:c5:bc:1a:b1:d2:20:5f:56:32:17:d1:d8:be:e3:
0e:18:64:67:f1:e7:b3:c4:d5:e5:77:47:1e:54:23:
71:5f:a0:37:46:77:f6:cb:85:21:7a:b3:bc:19:a3:
9a:fa:8e:60:2a:62:28:e4:0f:a5:b6:01:fd:75:dc:
b7:0b:86:d8:3e:f5:a1:44:c8:8c:5b:60:4f:ad:e6:
85:7b:70:68:ae:fd:72:d0:ef:b6:79:a0:35:fb:77:
8e:d7:a1:77:9a:ad:26:96:e8:b3:c1:36:d4:35:36:
4c:b7:61:bf:4c:db:00:41:29:42:d1:cd:4b:95:94:
17:aa:e5:b1:d7:5d:f7:ff:16:f5:65:fb:ce:28:7d:
10:ce:de:4c:1a:8b:31:5d:84:26:39:44:b2:2b:a8:
c6:8c:bb:29:91:d7:a6:11:6f:fc:2d:af:41:02:0e:
8a:27:30:d5:26:7e:26:ee:b7:cd:2b:c1:c5:b5:6b:
e9:6d:72:e9:f7:00:06:ab:ae:db:ea:f6:70:cc:ed:
65:b2:a1:59:06:34:0c:b8:ce:cc:ae:30:f5:76:81:
58:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:27:EE:DE:52:77:54:14:78:42:CD:AB:C5:CA:73:7E:2E:6B:D1:0A
X509v3 Authority Key Identifier:
keyid:9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/HCfu3lJ3VBR4Qs2rxcpzfi5r0Qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/n2YrPPqLkFkGjCnUa5kmO6LeUME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.65.141.0-62.65.151.255
62.65.153.0-62.65.158.255
80.238.129.0-80.238.136.255
80.238.139.0-80.238.219.255
80.238.223.0/24
80.238.225.0-80.238.239.255
94.78.2.0/23
Signature Algorithm: sha256WithRSAEncryption
91:81:bd:06:cb:9e:dc:87:6d:67:e5:53:71:9b:97:18:3e:30:
39:fa:58:b0:15:61:55:a6:13:5f:93:09:76:98:f8:fc:af:fa:
b8:c3:c3:0e:0e:d4:b6:a6:a8:6e:d9:9e:6f:f1:2a:5e:1b:71:
06:1f:93:90:f8:fe:09:e5:e0:51:70:4a:b9:fb:f4:c8:37:0a:
e6:16:34:f6:2e:8c:e2:ce:9b:18:0a:f3:fa:07:16:03:5b:7f:
32:49:81:ae:68:7f:92:77:88:c1:ee:d9:7c:49:be:ea:31:b0:
1f:f7:ba:bc:c7:e2:c9:8c:00:a0:3b:7f:20:a2:82:0d:ad:16:
12:1b:a6:54:bf:87:f8:42:2d:71:20:9e:0c:ea:6a:47:60:50:
85:b6:6a:3a:97:5a:d2:f0:19:90:ea:25:b0:e0:26:de:ed:1b:
41:b6:de:72:22:bd:f5:b1:ed:46:dd:ec:5c:5a:9c:d7:c1:61:
7e:ec:05:40:34:82:48:1c:c6:04:15:ba:ed:1c:29:c9:a4:a5:
3a:97:4e:cd:ba:4a:94:c8:ab:6f:09:66:29:20:d9:d8:20:c1:
0f:a5:be:09:a3:ee:11:86:42:35:d8:f8:7e:71:ee:9e:f5:01:
4b:02:94:02:a1:cb:45:12:98:19:38:68:82:d6:7d:60:74:31:
ad:62:ed:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:33 2024 by rpki-client on console-fra.rpki-client.org