Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/243855-5321-4ebe-8c77-65e31da1f38f/1/t1vR9drrLPSgv54kS0uX5SHiviQ.roa
File: t1vR9drrLPSgv54kS0uX5SHiviQ.roa (raw, json)
Hash identifier: UWO78UBVsadCxN//mAeOagpENATdgTWuZ3CYP6qXlgE=
Subject key identifier: B7:5B:D1:F5:DA:EB:2C:F4:A0:BF:9E:24:4B:4B:97:E5:21:E2:BE:24
Certificate issuer: /CN=9509cccc54a60081c0800f6dcc30a5e88bee6fda
Certificate serial: 018571832D925865007EBA59029602001711
Authority key identifier: 95:09:CC:CC:54:A6:00:81:C0:80:0F:6D:CC:30:A5:E8:8B:EE:6F:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQnMzFSmAIHAgA9tzDCl6Ivub9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/243855-5321-4ebe-8c77-65e31da1f38f/1/t1vR9drrLPSgv54kS0uX5SHiviQ.roa
Signing time: Mon 02 Jan 2023 08:05:00 +0000
ROA not before: Mon 02 Jan 2023 08:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207050
IP address blocks: 185.59.51.0/24 maxlen: 24
185.59.50.0/24 maxlen: 24
185.59.48.0/22 maxlen: 22
185.59.48.0/24 maxlen: 24
185.59.49.0/24 maxlen: 24
193.160.84.0/24 maxlen: 24
92.119.20.0/24 maxlen: 24
92.119.21.0/24 maxlen: 24
79.143.132.0/24 maxlen: 24
79.143.132.0/22 maxlen: 22
92.119.22.0/24 maxlen: 24
79.143.135.0/24 maxlen: 24
185.124.107.0/24 maxlen: 24
185.124.106.0/24 maxlen: 24
185.124.104.0/24 maxlen: 24
185.124.104.0/22 maxlen: 22
185.124.105.0/24 maxlen: 24
2a04:e2c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:2d:92:58:65:00:7e:ba:59:02:96:02:00:17:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9509cccc54a60081c0800f6dcc30a5e88bee6fda
Validity
Not Before: Jan 2 08:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b75bd1f5daeb2cf4a0bf9e244b4b97e521e2be24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:61:ea:84:c1:19:41:15:03:fe:3b:80:83:40:
33:a0:96:eb:4f:5b:33:23:6e:2e:75:0a:e2:4d:df:
f6:d8:56:49:28:38:6c:67:d5:1d:9d:a5:76:11:c9:
93:12:58:c7:95:0c:fe:56:0e:e3:14:57:8f:4a:bb:
83:d9:b0:b1:41:88:4d:0f:29:59:7c:46:1d:b0:4e:
34:fd:f2:ec:24:de:35:2e:4d:aa:03:a2:88:63:c1:
27:bc:bb:4c:3f:4e:ff:2a:e3:63:90:c1:ef:cb:12:
12:3b:9e:5e:05:39:85:2c:6f:c8:1b:8d:a1:ab:5a:
ad:97:7e:cf:de:f2:21:05:4b:41:86:bb:a7:61:a3:
f5:66:21:ad:cb:63:43:a9:1e:cc:a3:c3:17:1a:0b:
ce:1c:0e:16:97:f7:88:5f:b9:0e:95:66:ba:e2:c1:
44:65:65:85:9c:c8:12:2a:d0:98:aa:71:ba:ef:fd:
fa:fe:bd:1e:87:33:1c:9d:80:6d:3f:9d:27:ea:9c:
5f:e8:6e:21:10:9c:0c:01:57:e0:31:9f:51:0e:e6:
98:ad:01:fd:b2:40:51:66:cb:4b:7d:18:b7:d8:a2:
64:9c:ee:5d:c4:cc:ea:69:60:8e:94:60:34:d5:f9:
11:58:f3:68:8d:bd:8e:27:4d:af:0b:23:75:a8:75:
71:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5B:D1:F5:DA:EB:2C:F4:A0:BF:9E:24:4B:4B:97:E5:21:E2:BE:24
X509v3 Authority Key Identifier:
keyid:95:09:CC:CC:54:A6:00:81:C0:80:0F:6D:CC:30:A5:E8:8B:EE:6F:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQnMzFSmAIHAgA9tzDCl6Ivub9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/243855-5321-4ebe-8c77-65e31da1f38f/1/t1vR9drrLPSgv54kS0uX5SHiviQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/243855-5321-4ebe-8c77-65e31da1f38f/1/lQnMzFSmAIHAgA9tzDCl6Ivub9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.132.0/22
92.119.20.0-92.119.22.255
185.59.48.0/22
185.124.104.0/22
193.160.84.0/24
IPv6:
2a04:e2c0::/29
Signature Algorithm: sha256WithRSAEncryption
9f:0f:c1:a0:5c:68:ae:f4:9d:e0:2b:f3:ef:53:71:c1:bf:ca:
68:f0:1d:fe:97:47:f3:e3:08:37:a3:f3:a2:da:73:b8:a2:e8:
8e:ae:ff:64:b2:36:41:a2:86:d3:14:34:ae:94:d6:2b:6e:5c:
b8:62:81:97:2f:b4:4f:1e:11:fe:12:81:0c:94:00:43:32:be:
ae:83:8e:69:34:c6:71:8d:01:eb:ca:ca:53:69:77:c4:d6:04:
99:6f:d5:15:e6:45:11:b5:a1:32:5d:5d:09:2c:62:42:91:ed:
2e:5a:34:5a:91:af:e0:67:91:bb:31:64:c6:b5:c8:20:8f:58:
b3:62:3b:a5:c7:d3:70:b3:5d:0d:33:7f:1a:2f:58:66:43:4c:
ea:49:f3:eb:1c:5d:38:0a:5a:f6:08:17:67:4f:f2:52:bb:c0:
80:07:c6:16:53:47:a1:53:70:3d:8d:ca:c2:ba:2b:65:c8:1b:
6d:da:92:ee:6a:72:5c:3f:04:95:83:8a:06:05:12:61:99:5c:
35:18:b8:a6:b4:b7:a0:29:30:9a:22:a5:33:0b:99:eb:89:80:
56:7d:33:36:59:3c:4c:c0:10:03:48:0c:b8:0b:8a:f9:d0:fa:
ac:97:e0:5a:f0:30:1c:1a:0b:33:72:74:24:ab:b7:07:97:69:
b2:65:16:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:35 2023 by rpki-client on console-ams.rpki-client.org