Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/Mb5HMIhl7VPji2HACMEsul3gGFY.roa
File: Mb5HMIhl7VPji2HACMEsul3gGFY.roa (raw, json)
Hash identifier: EsrfzmDZjDvrvYUmcGZVZwsBDI+d1MUqbZTPuOuEc2w=
Subject key identifier: 31:BE:47:30:88:65:ED:53:E3:8B:61:C0:08:C1:2C:BA:5D:E0:18:56
Certificate issuer: /CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Certificate serial: 0185A188A3190EF6A9520050E597333900B8
Authority key identifier: 9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/Mb5HMIhl7VPji2HACMEsul3gGFY.roa
Signing time: Wed 11 Jan 2023 15:52:44 +0000
ROA not before: Wed 11 Jan 2023 15:52:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15517
IP address blocks: 80.238.136.0/24 maxlen: 24
80.238.134.0/24 maxlen: 24
80.238.139.0/24 maxlen: 24
80.238.144.0/20 maxlen: 20
80.238.140.0/22 maxlen: 22
80.238.160.0/20 maxlen: 20
45.85.92.0/22 maxlen: 22
80.238.176.0/20 maxlen: 20
80.238.129.0/24 maxlen: 24
80.238.128.0/17 maxlen: 17
80.238.130.0/24 maxlen: 24
62.65.128.0/19 maxlen: 19
62.65.137.0/24 maxlen: 24
62.65.144.0/21 maxlen: 21
62.65.143.0/24 maxlen: 24
62.65.142.0/24 maxlen: 24
62.65.141.0/24 maxlen: 24
62.65.158.0/24 maxlen: 24
62.65.153.0/24 maxlen: 24
62.65.154.0/23 maxlen: 23
62.65.156.0/23 maxlen: 23
80.238.192.0/21 maxlen: 21
80.238.200.0/22 maxlen: 22
80.238.208.0/21 maxlen: 21
80.238.216.0/22 maxlen: 22
80.238.225.0/24 maxlen: 24
80.238.223.0/24 maxlen: 24
94.78.3.0/24 maxlen: 24
94.78.0.0/18 maxlen: 18
94.78.2.0/24 maxlen: 24
2a01:330::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a1:88:a3:19:0e:f6:a9:52:00:50:e5:97:33:39:00:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Validity
Not Before: Jan 11 15:52:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31be47308865ed53e38b61c008c12cba5de01856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:74:9a:b6:4d:53:3d:36:56:7c:cf:ad:22:c2:
1d:1a:b2:68:50:90:9c:05:07:6d:f6:be:69:11:53:
a1:7b:7b:9b:36:65:7d:4a:fd:a4:6f:9a:7b:10:c4:
72:04:8f:02:c7:40:78:d8:55:4d:a1:60:64:6b:3b:
aa:2c:c7:95:53:0d:23:e1:74:dc:4c:b1:ba:4a:54:
4c:7b:bd:a6:ce:94:29:2d:a6:4f:6b:71:a4:e4:e5:
c6:a7:2d:8d:c1:3d:3a:f3:56:73:18:66:24:d4:42:
8b:ac:f9:f3:d4:76:99:52:99:15:de:23:b3:c3:56:
65:bf:08:01:ee:f6:18:2f:df:bb:bb:b2:4c:dc:89:
64:ad:74:f0:e1:f0:65:ca:75:11:50:68:91:88:4a:
a4:ea:9f:90:48:d5:fe:28:6b:35:36:3d:77:01:fb:
9e:7b:68:f5:0a:fa:88:b1:7d:df:e2:70:93:c9:8b:
c3:c0:33:35:93:6a:70:65:a1:e4:64:bd:93:a4:3a:
e2:82:6b:df:04:c3:a3:09:02:ee:d1:f8:b9:79:23:
45:59:85:30:0d:b3:ee:89:8c:11:28:cd:75:d0:f8:
f0:5e:8d:78:a8:74:e6:0a:fd:db:d0:76:4c:b9:60:
0b:28:28:af:a7:cc:0e:ad:b1:7c:19:29:99:79:79:
44:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BE:47:30:88:65:ED:53:E3:8B:61:C0:08:C1:2C:BA:5D:E0:18:56
X509v3 Authority Key Identifier:
keyid:9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/Mb5HMIhl7VPji2HACMEsul3gGFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/n2YrPPqLkFkGjCnUa5kmO6LeUME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.92.0/22
62.65.128.0/19
80.238.128.0/17
94.78.0.0/18
IPv6:
2a01:330::/32
Signature Algorithm: sha256WithRSAEncryption
89:d0:ed:4a:36:d6:01:e8:4d:4f:9b:03:44:88:af:d8:c8:c2:
2e:8f:bb:00:30:c0:e7:db:c0:e7:58:91:50:d3:95:6f:36:ba:
5d:c5:d3:7c:e9:f4:47:89:2e:e9:7f:14:37:5d:d6:ed:99:5f:
fe:65:44:98:16:4e:80:48:37:75:9a:37:cf:ca:49:41:17:a2:
a0:36:10:ff:f4:e1:7e:39:ca:b7:d3:12:64:42:83:97:40:9d:
6b:cf:1e:cd:34:fe:28:7a:23:f9:b4:06:03:41:98:f0:20:ab:
6e:fb:0a:91:28:e2:f9:a2:88:68:a1:23:cd:f8:a6:2c:d4:11:
85:c3:d6:e6:f5:28:79:4a:63:1e:a8:67:92:3d:de:37:be:84:
55:ee:d5:81:f0:86:4a:3a:ff:df:2a:be:f0:7f:18:df:a4:2d:
f0:a7:f3:1e:59:2c:7b:d6:a4:57:b1:00:e6:ce:2f:65:0a:e4:
03:6c:a6:60:86:f7:0d:b7:1d:d8:b8:14:2c:14:cb:db:42:5d:
70:08:15:71:94:e4:ec:30:1e:81:0a:08:f9:21:f8:6a:d8:4b:
81:46:51:bf:9a:11:7e:8e:e8:ee:e3:b7:ed:4b:55:64:80:0b:
c2:40:40:11:78:55:ac:96:5f:87:91:2a:4b:5a:52:68:43:2f:
76:9c:20:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:33 2024 by rpki-client on console-fra.rpki-client.org