Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/U42eKWgkhBOJJSTsbAxkGq8Mfvs.roa
File: U42eKWgkhBOJJSTsbAxkGq8Mfvs.roa (raw, json)
Hash identifier: FSs6Ddze8nq1+W6/phDNvTZ/bLOru8JNxQUClRVPlvs=
Subject key identifier: 53:8D:9E:29:68:24:84:13:89:25:24:EC:6C:0C:64:1A:AF:0C:7E:FB
Certificate issuer: /CN=71e0b873cc1a78d43bb70319ffa5495057901a64
Certificate serial: 027F8605
Authority key identifier: 71:E0:B8:73:CC:1A:78:D4:3B:B7:03:19:FF:A5:49:50:57:90:1A:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/U42eKWgkhBOJJSTsbAxkGq8Mfvs.roa
Signing time: Wed 29 Jun 2022 07:57:26 +0000
ROA not before: Wed 29 Jun 2022 07:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.37.236.0/24 maxlen: 24
62.112.130.0/24 maxlen: 24
62.112.129.0/24 maxlen: 24
62.112.132.0/24 maxlen: 24
62.112.131.0/24 maxlen: 24
62.112.128.0/24 maxlen: 24
62.112.134.0/24 maxlen: 24
62.112.133.0/24 maxlen: 24
62.112.135.0/24 maxlen: 24
62.112.137.0/24 maxlen: 24
62.112.136.0/24 maxlen: 24
62.112.139.0/24 maxlen: 24
62.112.138.0/24 maxlen: 24
62.112.144.0/24 maxlen: 24
62.112.143.0/24 maxlen: 24
62.112.145.0/24 maxlen: 24
62.112.141.0/24 maxlen: 24
62.112.140.0/24 maxlen: 24
62.112.142.0/24 maxlen: 24
62.112.148.0/24 maxlen: 24
62.112.147.0/24 maxlen: 24
62.112.149.0/24 maxlen: 24
62.112.146.0/24 maxlen: 24
62.112.151.0/24 maxlen: 24
62.112.150.0/24 maxlen: 24
62.112.152.0/24 maxlen: 24
62.112.158.0/24 maxlen: 24
62.112.157.0/24 maxlen: 24
62.112.159.0/24 maxlen: 24
62.112.155.0/24 maxlen: 24
62.112.154.0/24 maxlen: 24
62.112.156.0/24 maxlen: 24
62.112.153.0/24 maxlen: 24
195.184.92.0/24 maxlen: 24
195.184.92.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41911813 (0x27f8605)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71e0b873cc1a78d43bb70319ffa5495057901a64
Validity
Not Before: Jun 29 07:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=538d9e2968248413892524ec6c0c641aaf0c7efb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:84:33:98:c7:41:87:e2:fe:38:c3:bf:02:8c:
37:53:11:f7:d9:33:4f:0d:76:ae:62:cc:d3:55:12:
c1:5d:48:71:22:5c:e0:b4:81:c8:a5:7e:09:0d:1a:
11:a6:ef:e2:89:9e:46:4b:a7:df:27:21:43:74:00:
aa:6b:33:ea:8e:4f:1f:43:27:71:aa:cf:e7:77:bc:
d4:cc:8d:11:af:9b:dc:3d:8b:b5:65:04:a7:20:12:
f2:e5:58:9e:b0:9f:1d:60:13:0a:75:7d:b5:20:28:
fd:08:51:89:b7:34:43:12:fa:ef:a9:d9:ea:e7:c1:
b5:97:6c:0c:0d:4d:ee:51:44:ec:f8:a3:35:80:0c:
1c:b7:2a:ed:3b:82:7f:71:52:02:0c:3f:4a:89:cf:
29:dd:07:0e:17:29:58:dc:3e:39:92:3e:39:6c:07:
d9:46:b9:f4:7e:4a:9e:b2:36:c9:5f:92:ee:9e:ce:
6b:43:d7:f8:7c:e6:40:32:b8:0b:50:53:bb:da:0f:
f6:7a:4a:60:50:4a:4e:c7:90:a8:03:5d:a6:33:63:
43:6a:0e:53:7e:db:8d:8e:bd:7d:6b:61:c0:1b:3b:
b3:01:84:22:20:5c:04:dc:2d:eb:d5:50:7f:2d:d7:
5d:b8:d4:a0:9a:11:32:91:a5:b1:8c:6f:76:89:2e:
d2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:8D:9E:29:68:24:84:13:89:25:24:EC:6C:0C:64:1A:AF:0C:7E:FB
X509v3 Authority Key Identifier:
keyid:71:E0:B8:73:CC:1A:78:D4:3B:B7:03:19:FF:A5:49:50:57:90:1A:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/U42eKWgkhBOJJSTsbAxkGq8Mfvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.128.0/19
193.37.236.0/24
195.184.92.0/23
Signature Algorithm: sha256WithRSAEncryption
72:98:b8:4f:d8:8f:de:51:60:da:1e:a3:61:59:06:aa:17:7d:
15:e7:38:76:c2:1a:dc:61:37:2a:4e:71:d7:f4:80:b6:3a:f7:
98:5e:d3:46:66:25:e3:39:f5:07:15:80:f9:4e:f5:46:b9:cc:
2f:3a:cc:0c:de:3f:b6:32:46:62:3f:58:b4:06:43:53:58:bd:
11:94:ba:77:76:38:30:5c:fa:51:ba:34:0f:1a:e1:2c:01:51:
16:52:b8:e0:74:5e:90:d4:ef:3b:44:5c:d6:86:8b:7f:16:e1:
1d:48:66:19:49:1e:c0:0e:c4:17:75:09:74:8e:ec:e1:86:bb:
18:a7:13:a1:2a:55:aa:20:67:b9:da:68:78:c0:11:e8:3c:e8:
38:b6:7f:1e:42:c9:67:7d:49:33:76:fe:1a:53:71:84:6b:d5:
fc:38:9b:0e:bf:b1:8c:b4:75:eb:4c:59:11:3f:25:d2:9a:29:
ba:34:38:e9:96:77:e3:ce:6d:12:e4:36:67:1d:00:f6:ef:0e:
de:5b:0b:ab:53:d7:a7:48:92:bb:58:86:ee:de:92:df:36:cf:
1c:5a:4f:6b:0f:18:55:db:68:0d:39:48:c9:b7:67:82:0c:20:
1d:35:7d:59:87:f5:d8:27:e5:26:61:31:f0:b8:fd:d4:f6:31:
16:58:0b:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:11 2024 by rpki-client on console-ams.rpki-client.org