Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/1560f1-bcc2-411a-8565-ec4a8af5a98e/1/kScOvFvsHQ8vwhC7JUnq0ePunCw.roa
File: kScOvFvsHQ8vwhC7JUnq0ePunCw.roa (raw, json)
Hash identifier: H9wfJQmHZjbfE6cwiWpm8LYMQDR7dOnbTVTFTqmdBZk=
Subject key identifier: 91:27:0E:BC:5B:EC:1D:0F:2F:C2:10:BB:25:49:EA:D1:E3:EE:9C:2C
Certificate issuer: /CN=6a9a54dfdb2aadd1f1efa90be1f02d8b214c6a3e
Certificate serial: 018A934B2509F8A0F3B6C1BE31F2E0329F92
Authority key identifier: 6A:9A:54:DF:DB:2A:AD:D1:F1:EF:A9:0B:E1:F0:2D:8B:21:4C:6A:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/appU39sqrdHx76kL4fAtiyFMaj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/1560f1-bcc2-411a-8565-ec4a8af5a98e/1/kScOvFvsHQ8vwhC7JUnq0ePunCw.roa
Signing time: Thu 14 Sep 2023 10:44:50 +0000
ROA not before: Thu 14 Sep 2023 10:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29062
IP address blocks: 185.16.230.0/24 maxlen: 24
185.16.228.0/23 maxlen: 24
31.223.225.0/24 maxlen: 24
31.223.224.0/23 maxlen: 23
31.223.224.0/21 maxlen: 24
31.223.224.0/24 maxlen: 24
31.223.226.0/24 maxlen: 24
31.223.228.0/24 maxlen: 24
31.223.227.0/24 maxlen: 24
31.223.230.0/24 maxlen: 24
31.223.229.0/24 maxlen: 24
31.223.231.0/24 maxlen: 24
195.177.72.0/23 maxlen: 24
195.177.72.0/22 maxlen: 24
195.177.74.0/23 maxlen: 23
195.177.75.0/24 maxlen: 24
2a00:6180::/33 maxlen: 33
2a00:6180:8000::/33 maxlen: 33
2a00:6180::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:93:4b:25:09:f8:a0:f3:b6:c1:be:31:f2:e0:32:9f:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a9a54dfdb2aadd1f1efa90be1f02d8b214c6a3e
Validity
Not Before: Sep 14 10:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91270ebc5bec1d0f2fc210bb2549ead1e3ee9c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d6:18:db:7c:b0:f1:f5:48:4c:e8:ee:6c:95:
1d:c3:a5:ef:9f:b4:29:2e:8b:f2:e6:5f:56:0f:e9:
24:88:92:fa:3f:cd:9f:c5:34:4e:98:6d:59:1d:c3:
09:56:3d:fa:c7:cc:94:09:be:bb:8a:04:82:0c:54:
00:3a:78:1c:ad:d8:d1:d6:41:fc:53:75:19:80:57:
0f:39:d6:8b:b0:33:bf:37:13:26:95:6e:04:83:c8:
ab:1b:c8:20:c3:0a:bb:ae:65:e4:c1:f8:52:3f:95:
42:3a:b7:fd:1f:f8:1a:7f:5a:ce:6c:a6:52:f7:44:
81:ed:c2:b6:20:e2:d0:56:13:ea:2b:ad:28:14:ac:
1b:a4:d6:e9:5b:31:81:93:f1:29:ec:df:d7:89:21:
06:9e:12:fc:4e:2a:79:3e:81:c3:95:81:2c:4c:2e:
c6:32:f3:8b:b6:49:e7:2d:f2:ea:9c:38:91:ad:fe:
29:e7:58:63:40:61:6d:d2:73:f0:e8:b8:ce:aa:c6:
58:ed:53:99:5b:d9:70:9f:e9:63:7d:cb:80:3a:6a:
94:d2:d1:2b:14:31:cc:d2:4a:52:74:c0:52:d5:cd:
25:6c:29:d8:bb:4f:0f:6c:c9:50:4f:52:39:33:57:
b4:53:36:79:bc:6e:6b:0f:22:f6:f1:5c:67:63:70:
02:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:27:0E:BC:5B:EC:1D:0F:2F:C2:10:BB:25:49:EA:D1:E3:EE:9C:2C
X509v3 Authority Key Identifier:
keyid:6A:9A:54:DF:DB:2A:AD:D1:F1:EF:A9:0B:E1:F0:2D:8B:21:4C:6A:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/appU39sqrdHx76kL4fAtiyFMaj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1560f1-bcc2-411a-8565-ec4a8af5a98e/1/kScOvFvsHQ8vwhC7JUnq0ePunCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1560f1-bcc2-411a-8565-ec4a8af5a98e/1/appU39sqrdHx76kL4fAtiyFMaj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.224.0/21
185.16.228.0-185.16.230.255
195.177.72.0/22
IPv6:
2a00:6180::/32
Signature Algorithm: sha256WithRSAEncryption
7d:e5:27:84:4c:36:98:fa:36:b4:64:27:38:54:38:8a:1d:4e:
4b:1b:04:f4:f3:af:f8:66:ff:b1:41:33:91:ad:11:16:7a:09:
83:d5:02:2c:cc:5d:86:bb:0b:a8:9c:01:5a:95:ec:1b:e2:dc:
68:0f:ac:32:2a:65:c5:72:bc:54:9e:6a:c9:0d:fb:92:6e:69:
ce:0e:60:11:3d:59:e8:88:0c:d5:ed:b8:9e:42:28:9d:30:a2:
f8:c7:c3:97:04:28:09:3f:a7:28:3a:38:54:6b:55:cb:48:8f:
2b:8f:a3:2f:87:0d:65:ca:83:31:e2:fd:ec:82:82:dd:93:9e:
ef:5a:52:e9:ec:ae:ea:d6:4d:50:ba:25:25:7b:9c:6f:87:ba:
a5:73:1e:1f:08:f3:1b:0e:e9:be:e9:ae:67:34:c6:1d:fc:1f:
35:51:d6:59:7b:1f:58:4f:eb:95:0d:24:f4:23:2e:0e:43:30:
78:2c:a6:82:07:18:39:b5:e7:83:50:aa:87:88:25:d6:63:3c:
89:3f:a3:64:59:46:57:18:f1:b8:42:35:69:42:b5:07:64:0b:
43:62:74:93:d5:b3:62:d3:1c:3e:2f:a7:34:7e:60:f8:28:78:
dc:52:69:eb:5e:eb:fb:0e:f3:5f:ef:c6:6a:15:c0:94:9a:9e:
d7:6a:11:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:51 2024 by rpki-client on console-fra.rpki-client.org