Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/oEr6Jo7vel0b07w8Fkr5-jPxuWM.roa
File: oEr6Jo7vel0b07w8Fkr5-jPxuWM.roa (raw, json)
Hash identifier: 59adhRjIeGRjNN72ogrJWf487hjVhnsJBVAbSj1Y6qg=
Subject key identifier: A0:4A:FA:26:8E:EF:7A:5D:1B:D3:BC:3C:16:4A:F9:FA:33:F1:B9:63
Certificate issuer: /CN=71e0b873cc1a78d43bb70319ffa5495057901a64
Certificate serial: 01E14409
Authority key identifier: 71:E0:B8:73:CC:1A:78:D4:3B:B7:03:19:FF:A5:49:50:57:90:1A:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/oEr6Jo7vel0b07w8Fkr5-jPxuWM.roa
Signing time: Wed 20 Apr 2022 14:57:16 +0000
ROA not before: Wed 20 Apr 2022 14:57:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.37.236.0/24 maxlen: 24
185.2.160.0/22 maxlen: 22
62.112.130.0/24 maxlen: 24
62.112.129.0/24 maxlen: 24
62.112.132.0/24 maxlen: 24
62.112.131.0/24 maxlen: 24
62.112.128.0/24 maxlen: 24
62.112.134.0/24 maxlen: 24
62.112.133.0/24 maxlen: 24
62.112.135.0/24 maxlen: 24
62.112.137.0/24 maxlen: 24
62.112.136.0/24 maxlen: 24
62.112.139.0/24 maxlen: 24
62.112.138.0/24 maxlen: 24
62.112.144.0/24 maxlen: 24
62.112.143.0/24 maxlen: 24
62.112.145.0/24 maxlen: 24
62.112.141.0/24 maxlen: 24
62.112.140.0/24 maxlen: 24
62.112.142.0/24 maxlen: 24
62.112.148.0/24 maxlen: 24
62.112.147.0/24 maxlen: 24
62.112.149.0/24 maxlen: 24
62.112.146.0/24 maxlen: 24
62.112.151.0/24 maxlen: 24
62.112.150.0/24 maxlen: 24
62.112.152.0/24 maxlen: 24
62.112.158.0/24 maxlen: 24
62.112.157.0/24 maxlen: 24
62.112.159.0/24 maxlen: 24
62.112.155.0/24 maxlen: 24
62.112.154.0/24 maxlen: 24
62.112.156.0/24 maxlen: 24
62.112.153.0/24 maxlen: 24
195.184.92.0/24 maxlen: 24
195.184.92.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31540233 (0x1e14409)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71e0b873cc1a78d43bb70319ffa5495057901a64
Validity
Not Before: Apr 20 14:57:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a04afa268eef7a5d1bd3bc3c164af9fa33f1b963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:77:44:e8:a0:88:37:da:22:67:a8:72:fe:0a:
ed:21:e7:9a:bc:62:ae:f0:ba:52:ea:a0:2e:4b:05:
c2:cc:b3:91:65:44:b2:70:4f:9e:68:e0:8b:6a:70:
57:c5:d0:d7:41:d3:2b:91:e9:84:82:3d:4c:4f:80:
3c:3a:31:80:a3:ca:18:42:64:23:d1:b7:03:12:13:
0d:0f:06:36:6c:fc:b9:a4:76:d8:dd:fd:d4:79:e5:
ce:80:e7:8a:41:fb:28:ae:ff:5d:35:3b:08:d3:1d:
b4:94:3d:47:f2:bf:5a:7d:6e:9a:17:3d:24:51:93:
83:67:a5:e9:fd:ff:87:4f:3d:f9:79:ae:61:6a:df:
af:3d:fe:aa:75:34:54:a1:3b:6e:e6:1f:9a:61:45:
9c:b9:39:db:aa:ac:f5:7f:82:fe:73:7b:b8:bb:95:
34:f3:91:c2:84:2c:ad:a3:f9:2f:b1:6f:00:b3:fe:
d0:80:3d:1b:e7:96:00:5f:63:ee:20:0c:31:f3:84:
da:cf:c5:03:59:d0:6a:f8:bd:d0:fe:f8:54:a9:3f:
65:51:66:ce:cb:ea:03:dc:b0:34:8a:c5:ac:3f:3f:
bb:ce:fc:ee:37:ca:46:59:63:6c:a6:53:45:e4:3a:
65:22:c6:97:d8:de:0f:67:34:38:c2:8d:0b:db:40:
dd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:4A:FA:26:8E:EF:7A:5D:1B:D3:BC:3C:16:4A:F9:FA:33:F1:B9:63
X509v3 Authority Key Identifier:
keyid:71:E0:B8:73:CC:1A:78:D4:3B:B7:03:19:FF:A5:49:50:57:90:1A:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/oEr6Jo7vel0b07w8Fkr5-jPxuWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.128.0/19
185.2.160.0/22
193.37.236.0/24
195.184.92.0/23
Signature Algorithm: sha256WithRSAEncryption
00:4a:83:9b:b3:9e:34:9a:a1:f5:22:fb:6b:f3:96:0c:bc:d2:
43:d1:c7:25:f0:23:e6:9d:6a:7b:eb:73:1e:e5:a2:9b:68:09:
19:b2:f9:31:41:37:d9:9e:74:84:9b:fd:a9:9c:97:b9:81:cb:
21:c3:a2:bb:13:ad:8a:6d:1f:eb:84:dd:9a:44:e1:a0:47:a6:
12:13:90:22:32:62:48:ca:f3:cb:97:33:38:b8:4e:4f:ca:07:
31:ab:35:38:6e:c8:ec:bf:19:f0:97:12:f0:6a:b1:64:f8:ea:
be:4a:0e:5c:8c:48:ba:1a:86:59:0f:fe:9c:64:cf:c6:f2:47:
da:25:93:22:70:68:30:77:f1:ac:7b:73:fb:c6:ed:c3:12:c4:
4a:2f:cb:78:2c:57:46:83:c2:e6:af:2a:fc:a4:9f:f5:eb:df:
e8:53:31:2c:91:85:c5:bc:97:0e:35:8e:ee:5f:c7:73:ae:73:
19:00:66:1d:b8:0a:8c:73:31:51:24:ee:80:5d:bc:08:ad:b4:
ad:07:74:b7:ca:8c:af:20:98:77:9c:6d:bf:79:d3:e3:c3:14:
7d:94:9b:84:55:f4:0c:4b:96:ec:19:23:2d:e9:06:89:35:b4:
c4:81:80:ab:92:60:6a:a9:1a:91:62:bf:75:7a:8c:19:21:18:
a5:ce:be:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:11 2024 by rpki-client on console-ams.rpki-client.org