Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/GdOfq3VUS2MNNO5ZdlzIByuodSE.roa
File: GdOfq3VUS2MNNO5ZdlzIByuodSE.roa (raw, json)
Hash identifier: Teh4vJZF6l3JvdMl4JKbZkKqMh/Y71essMQHv7EgOwI=
Subject key identifier: 19:D3:9F:AB:75:54:4B:63:0D:34:EE:59:76:5C:C8:07:2B:A8:75:21
Certificate issuer: /CN=96a8d72552e5ba942ad9d94bdbf102895ea96ee4
Certificate serial: 37EE1353
Authority key identifier: 96:A8:D7:25:52:E5:BA:94:2A:D9:D9:4B:DB:F1:02:89:5E:A9:6E:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lqjXJVLlupQq2dlL2_ECiV6pbuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/GdOfq3VUS2MNNO5ZdlzIByuodSE.roa
Signing time: Sat 01 Jan 2022 13:07:34 +0000
ROA not before: Sat 01 Jan 2022 13:07:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21127
IP address blocks: 91.105.128.0/18 maxlen: 24
46.50.128.0/17 maxlen: 24
37.49.192.0/19 maxlen: 24
109.171.0.0/17 maxlen: 24
37.205.48.0/21 maxlen: 24
46.241.0.0/17 maxlen: 24
188.44.96.0/19 maxlen: 24
37.205.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938349395 (0x37ee1353)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96a8d72552e5ba942ad9d94bdbf102895ea96ee4
Validity
Not Before: Jan 1 13:07:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19d39fab75544b630d34ee59765cc8072ba87521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7f:de:fe:fd:fd:8f:d3:fe:19:19:28:a5:9d:
81:51:a5:da:90:20:e0:6c:51:3f:c9:16:67:42:5b:
a9:d0:3b:66:c8:ef:2a:fa:4a:e3:ec:e4:5f:e8:2e:
0b:96:ff:f3:73:1b:23:c8:2a:25:2a:ed:92:67:cb:
ce:a5:fc:83:c3:24:da:3e:b7:29:83:9a:87:15:58:
83:32:49:80:71:7c:ff:a9:32:0a:f9:e7:77:6d:1c:
46:6e:0d:58:ea:b7:38:b9:76:11:6d:75:35:a9:63:
75:c9:f2:68:25:ca:0e:45:b4:ea:6c:82:b2:5b:54:
c7:b6:c9:38:68:66:2c:7a:3b:4f:ff:66:40:5f:b4:
31:2c:00:cb:2a:85:8d:28:08:fa:74:61:1f:25:29:
11:72:89:1d:e0:dc:ea:f6:62:a2:b8:9c:63:38:da:
cb:0b:52:bd:90:f2:ac:9b:05:59:1d:19:f9:fa:8f:
2a:c9:57:ed:3f:d9:11:d0:14:fd:f7:30:61:0a:a4:
cf:c6:7c:9c:46:e5:a4:4d:02:ac:5c:d7:99:07:31:
0c:47:11:91:c4:fc:cc:52:83:5a:e2:90:85:a8:0a:
32:83:9a:c9:02:59:8c:06:ef:91:b3:e7:71:db:ba:
e5:6f:bc:5f:b9:8e:a6:92:75:ba:0b:12:4c:dd:25:
ee:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D3:9F:AB:75:54:4B:63:0D:34:EE:59:76:5C:C8:07:2B:A8:75:21
X509v3 Authority Key Identifier:
keyid:96:A8:D7:25:52:E5:BA:94:2A:D9:D9:4B:DB:F1:02:89:5E:A9:6E:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lqjXJVLlupQq2dlL2_ECiV6pbuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/GdOfq3VUS2MNNO5ZdlzIByuodSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/lqjXJVLlupQq2dlL2_ECiV6pbuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.192.0/19
37.205.48.0/21
37.205.64.0/19
46.50.128.0/17
46.241.0.0/17
91.105.128.0/18
109.171.0.0/17
188.44.96.0/19
Signature Algorithm: sha256WithRSAEncryption
7c:6e:ec:96:8a:eb:02:93:d5:c7:d3:3c:94:14:00:29:d2:ce:
e8:7a:33:80:d9:73:fc:41:ac:1a:ac:23:86:26:ca:87:a4:5d:
09:33:8a:f9:5b:7e:72:f7:e1:cd:ce:6f:de:0f:55:4a:e3:2c:
fb:7e:c4:c0:a2:10:14:5c:94:59:d3:c7:03:29:a4:0c:9c:a2:
a2:55:28:c2:50:3f:ff:17:bd:86:8e:92:02:2a:a0:6a:d4:44:
8d:44:53:2b:55:9a:39:a6:97:fe:11:fe:f7:6e:2c:88:de:32:
52:df:18:25:50:f3:37:e6:b2:d4:ab:7f:31:bd:c5:47:1e:fc:
0f:90:cf:35:07:ec:d6:4f:5c:2d:3b:00:e8:ca:6c:1a:c0:bc:
49:f6:df:7d:3a:94:41:78:a0:d8:4c:50:4b:e0:39:93:90:ed:
25:06:34:a8:b0:fb:c9:a8:1e:4e:bf:52:cc:49:a2:62:83:9b:
83:79:72:00:ae:16:8d:f5:3f:4b:25:56:6b:e5:16:98:e6:9d:
28:08:67:c8:16:9b:d0:d7:28:45:00:6d:bb:21:3e:c8:d7:6a:
7e:ac:94:87:cb:1b:98:e3:90:2b:3f:d8:4c:fb:67:09:13:3b:
c1:93:8a:62:85:0b:c1:d5:ce:9f:4b:bc:d4:21:ff:e8:54:c9:
4c:c4:0f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:34 2024 by rpki-client on console-ams.rpki-client.org