Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/j0bNoAQlMTxDLvwXKpzmBeQBvDQ.roa
File: j0bNoAQlMTxDLvwXKpzmBeQBvDQ.roa (raw, json)
Hash identifier: CXWzJfaJy3eC2gobf/uaS97+YChovAuuKbfBDTX49Ak=
Subject key identifier: 8F:46:CD:A0:04:25:31:3C:43:2E:FC:17:2A:9C:E6:05:E4:01:BC:34
Certificate issuer: /CN=c2c3b5e97c46a93bc3a35cc71055c4f0dfc6c451
Certificate serial: 01887165BADA4458F59374CA466C25C4139A
Authority key identifier: C2:C3:B5:E9:7C:46:A9:3B:C3:A3:5C:C7:10:55:C4:F0:DF:C6:C4:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsO16XxGqTvDo1zHEFXE8N_GxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/j0bNoAQlMTxDLvwXKpzmBeQBvDQ.roa
Signing time: Wed 31 May 2023 10:41:12 +0000
ROA not before: Wed 31 May 2023 10:41:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28964
IP address blocks: 178.254.164.0/24 maxlen: 24
178.254.166.0/24 maxlen: 24
178.254.160.0/23 maxlen: 23
178.254.162.0/24 maxlen: 24
5.172.32.0/24 maxlen: 24
178.254.167.0/24 maxlen: 24
178.254.178.0/24 maxlen: 24
178.254.174.0/24 maxlen: 24
178.254.173.0/24 maxlen: 24
178.254.185.0/24 maxlen: 24
109.111.255.0/24 maxlen: 24
89.23.94.0/23 maxlen: 23
193.104.68.0/24 maxlen: 24
109.111.242.0/24 maxlen: 24
109.111.241.0/24 maxlen: 24
109.111.249.0/24 maxlen: 24
109.111.251.0/24 maxlen: 24
89.23.64.0/24 maxlen: 24
89.23.66.0/23 maxlen: 23
185.157.45.0/24 maxlen: 24
185.157.46.0/24 maxlen: 24
185.157.47.0/24 maxlen: 24
89.23.72.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:65:ba:da:44:58:f5:93:74:ca:46:6c:25:c4:13:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c3b5e97c46a93bc3a35cc71055c4f0dfc6c451
Validity
Not Before: May 31 10:41:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f46cda00425313c432efc172a9ce605e401bc34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:48:a2:04:9e:9c:ad:0b:76:e4:e3:0c:69:35:
a7:84:b2:81:08:d2:2d:bd:fc:e7:10:df:f8:e7:18:
bc:6f:7b:68:fd:dd:cc:d6:cb:03:61:d8:a5:09:45:
82:46:60:68:a3:1c:12:33:8c:b4:6f:e5:ba:0c:81:
1c:e8:2b:71:94:c6:93:d0:a3:d5:3e:47:48:78:d2:
6b:4f:ba:44:b4:00:31:80:57:e0:50:59:c2:5b:ef:
94:95:79:d2:96:cd:9b:3f:f3:94:60:a2:f0:aa:a5:
53:e2:a1:c4:9d:c8:fe:38:f0:20:bf:4a:6c:22:ce:
02:71:cb:d3:33:d1:ae:46:6e:39:2c:fe:b3:73:8d:
eb:26:79:34:ad:63:ea:83:5f:6a:65:44:df:5d:be:
19:41:bd:85:c4:2a:7b:f9:35:47:26:7e:93:3c:9d:
8a:fa:69:e4:0f:c3:7c:03:bb:c7:c4:6b:f4:b5:69:
ac:87:c5:0b:12:1e:ad:92:b6:78:5a:fb:2f:bd:57:
5d:af:77:bb:4f:09:a4:ca:7c:92:9d:c7:5f:9b:c8:
9f:39:15:91:44:e2:34:55:ab:12:4d:07:be:99:34:
e1:74:06:92:d9:ab:13:7b:c9:d7:2c:47:7b:a4:1d:
02:53:21:09:f1:f0:15:4d:62:9a:28:0d:63:30:eb:
79:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:46:CD:A0:04:25:31:3C:43:2E:FC:17:2A:9C:E6:05:E4:01:BC:34
X509v3 Authority Key Identifier:
keyid:C2:C3:B5:E9:7C:46:A9:3B:C3:A3:5C:C7:10:55:C4:F0:DF:C6:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsO16XxGqTvDo1zHEFXE8N_GxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/j0bNoAQlMTxDLvwXKpzmBeQBvDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/wsO16XxGqTvDo1zHEFXE8N_GxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.32.0/24
89.23.64.0/24
89.23.66.0/23
89.23.72.0/23
89.23.94.0/23
109.111.241.0-109.111.242.255
109.111.249.0/24
109.111.251.0/24
109.111.255.0/24
178.254.160.0-178.254.162.255
178.254.164.0/24
178.254.166.0/23
178.254.173.0-178.254.174.255
178.254.178.0/24
178.254.185.0/24
185.157.45.0-185.157.47.255
193.104.68.0/24
Signature Algorithm: sha256WithRSAEncryption
39:d0:27:20:f2:7c:b4:66:6b:23:33:7b:8c:26:3f:11:6e:31:
36:73:d4:ef:f2:b6:b1:79:69:f6:19:c1:0c:36:21:e8:29:92:
28:a4:bd:58:3c:13:3b:cc:22:b6:1f:0e:aa:d2:ea:0c:12:7d:
7a:f8:bd:9d:a7:67:b4:67:8b:b9:67:14:01:2e:43:2c:35:5f:
80:af:9f:58:56:ce:15:21:34:4e:ad:6f:d6:f9:d6:4a:f3:27:
0e:a6:34:9c:dd:88:16:40:e1:25:00:e4:55:1c:53:c8:e0:7c:
fa:11:fe:34:4b:e2:da:d7:ac:80:c1:b0:2a:05:51:81:02:23:
be:43:e4:17:c3:95:a4:ae:ce:df:53:5c:d2:bc:21:05:14:13:
a1:78:31:ca:2f:55:79:60:f1:0e:b4:30:19:89:9b:62:6b:3c:
f5:6d:45:c4:f5:54:d6:c9:6c:7e:5b:e8:26:34:c5:17:7c:98:
3d:e3:fb:5e:d4:f1:f9:e8:77:49:18:ee:ab:01:8b:ad:6b:5e:
e4:48:c1:97:18:63:70:47:72:b9:9f:3d:0e:de:82:19:b3:75:
23:9c:7f:b0:f7:fe:3c:4a:e3:77:72:16:aa:68:25:13:e9:52:
c8:1e:a3:14:56:6e:ba:49:5b:81:56:3b:1e:64:03:d9:ac:69:
fa:81:31:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:14 2023 by rpki-client on console-fra.rpki-client.org