Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/lulRw0fBveXe-Uk3Pn_mqiGqE0I.roa
File: lulRw0fBveXe-Uk3Pn_mqiGqE0I.roa (raw, json)
Hash identifier: CRF+8eSDwYMsNAe6Jn3YRt/OuIkXeS3DnLinPA/KgU8=
Subject key identifier: 96:E9:51:C3:47:C1:BD:E5:DE:F9:49:37:3E:7F:E6:AA:21:AA:13:42
Certificate issuer: /CN=0212a07ce793a5f0416027bf4aab8bd1ceaf0fce
Certificate serial: 018CC3489D169F9AB306C607427D3FC9A29E
Authority key identifier: 02:12:A0:7C:E7:93:A5:F0:41:60:27:BF:4A:AB:8B:D1:CE:AF:0F:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhKgfOeTpfBBYCe_SquL0c6vD84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/lulRw0fBveXe-Uk3Pn_mqiGqE0I.roa
Signing time: Mon 01 Jan 2024 04:29:25 +0000
ROA not before: Mon 01 Jan 2024 04:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40065
IP address blocks: 185.194.148.0/24 maxlen: 24
185.201.227.0/24 maxlen: 24
2.59.151.0/24 maxlen: 24
185.238.250.0/24 maxlen: 24
185.238.248.0/24 maxlen: 24
193.22.152.0/24 maxlen: 24
193.9.44.0/24 maxlen: 24
193.9.46.0/24 maxlen: 24
5.181.219.0/24 maxlen: 24
31.40.214.0/24 maxlen: 24
185.186.146.0/23 maxlen: 23
45.67.223.0/24 maxlen: 24
212.103.62.0/24 maxlen: 24
45.12.88.0/24 maxlen: 24
45.12.90.0/24 maxlen: 24
2.56.255.0/24 maxlen: 24
185.183.84.0/24 maxlen: 24
185.201.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:9d:16:9f:9a:b3:06:c6:07:42:7d:3f:c9:a2:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0212a07ce793a5f0416027bf4aab8bd1ceaf0fce
Validity
Not Before: Jan 1 04:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96e951c347c1bde5def949373e7fe6aa21aa1342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9b:f1:69:f5:6f:61:6a:7f:24:cc:3c:e4:77:
9b:50:de:4c:50:9e:c3:f0:31:e9:be:ea:82:72:f7:
63:28:a4:e4:01:22:35:97:7d:f7:0d:95:24:0c:14:
23:72:0d:09:6c:15:02:1e:1a:bb:08:9c:2b:34:6a:
3b:4f:11:33:e6:87:6b:3e:cc:2a:cd:b3:3b:b5:50:
5f:c8:0f:0a:e8:7e:f3:8c:53:41:cb:b5:6e:df:dc:
86:ce:b0:1d:f3:97:3e:8f:b4:75:ab:69:11:e8:a2:
08:6e:25:6f:f1:fe:1c:a7:7b:63:46:31:e1:f7:6e:
1b:19:cf:4c:1d:69:8f:b8:e0:69:dd:73:03:95:75:
fe:08:99:3d:d5:d2:d8:84:e2:6a:55:f2:21:a3:eb:
6f:06:47:68:e6:b4:54:8b:cc:8d:79:b7:82:73:68:
3a:38:5e:fe:a0:95:9a:08:4f:f4:bc:13:9f:ff:94:
37:f6:4a:15:fb:05:d1:a6:2e:89:27:ca:d5:d8:50:
43:bc:0a:74:4c:1d:bf:cb:4c:40:3f:ed:4a:ef:31:
f8:cd:62:cf:bc:50:85:64:e0:05:12:2c:c9:a3:86:
df:3c:86:6d:c7:d2:19:d1:c9:b2:90:00:f6:34:a4:
1e:92:80:3c:f2:71:5e:65:5f:73:34:ff:20:9f:45:
12:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E9:51:C3:47:C1:BD:E5:DE:F9:49:37:3E:7F:E6:AA:21:AA:13:42
X509v3 Authority Key Identifier:
keyid:02:12:A0:7C:E7:93:A5:F0:41:60:27:BF:4A:AB:8B:D1:CE:AF:0F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhKgfOeTpfBBYCe_SquL0c6vD84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/lulRw0fBveXe-Uk3Pn_mqiGqE0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/AhKgfOeTpfBBYCe_SquL0c6vD84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.255.0/24
2.59.151.0/24
5.181.219.0/24
31.40.214.0/24
45.12.88.0/24
45.12.90.0/24
45.67.223.0/24
185.183.84.0/24
185.186.146.0/23
185.194.148.0/24
185.201.226.0/23
185.238.248.0/24
185.238.250.0/24
193.9.44.0/24
193.9.46.0/24
193.22.152.0/24
212.103.62.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:bf:34:c3:b9:e1:6c:aa:21:e8:4c:3d:35:80:a6:a5:31:5c:
6e:4b:fd:60:f6:bf:25:f2:6d:a9:dc:08:bb:17:b0:45:bd:b8:
f0:e3:fa:48:3a:23:6d:f8:5e:5b:65:c7:d3:08:cb:08:f8:33:
31:08:d9:f7:eb:d5:8b:8c:0b:15:34:6f:05:5c:85:e1:a4:3e:
14:49:c9:50:66:5a:8f:14:fe:4d:ba:c9:9e:02:c8:54:f0:f4:
f5:ee:22:d8:2e:6f:e8:db:eb:85:ce:6e:50:9f:13:dc:44:65:
af:47:a7:09:3e:d4:e7:ef:54:80:b6:b6:9e:e3:0c:1f:84:cd:
c0:c5:a9:09:53:25:aa:76:2a:9d:a3:09:6d:a1:f3:01:a3:f3:
31:0a:1a:d8:c3:f9:51:44:4e:13:b2:ab:3c:b3:cf:9f:97:50:
61:c6:fb:2e:24:83:ab:fe:da:5f:10:c3:c6:ac:7f:6a:1b:23:
85:b8:3c:33:cd:8e:2f:f6:b5:73:08:ea:0f:de:44:30:2b:21:
80:f3:e8:be:68:ff:46:f9:fa:72:89:8a:d7:83:fe:ad:5a:77:
f7:2b:3d:e8:2f:ca:f6:ba:0c:41:9f:f1:d3:d8:fd:b5:42:2c:
05:64:f9:12:95:8b:ee:f4:2c:8f:c5:d0:d2:46:17:c7:2a:d7:
f7:40:01:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:34 2024 by rpki-client on console-fra.rpki-client.org