Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/514d67-ba6c-415e-bebc-0f1f3cb08b75/1/ocVBcvldnRjupsDgDXkUrW00g10.roa
File: ocVBcvldnRjupsDgDXkUrW00g10.roa (raw, json)
Hash identifier: 8cnPETG/sGkZ0GLrzJ1JwE5/LGQAtjyBqcPz5yCq1bE=
Subject key identifier: A1:C5:41:72:F9:5D:9D:18:EE:A6:C0:E0:0D:79:14:AD:6D:34:83:5D
Certificate issuer: /CN=f71f9bddac4c34078d8d0fab9e14d176a416f963
Certificate serial: 0CC54C9A
Authority key identifier: F7:1F:9B:DD:AC:4C:34:07:8D:8D:0F:AB:9E:14:D1:76:A4:16:F9:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x-b3axMNAeNjQ-rnhTRdqQW-WM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/514d67-ba6c-415e-bebc-0f1f3cb08b75/1/ocVBcvldnRjupsDgDXkUrW00g10.roa
Signing time: Tue 22 Feb 2022 11:25:40 +0000
ROA not before: Tue 22 Feb 2022 11:25:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41937
IP address blocks: 109.122.113.0/24 maxlen: 24
87.250.32.0/19 maxlen: 24
185.112.20.0/22 maxlen: 24
62.240.24.0/23 maxlen: 24
62.240.24.0/21 maxlen: 24
109.198.0.0/19 maxlen: 24
185.179.136.0/22 maxlen: 24
109.122.64.0/18 maxlen: 24
178.79.0.0/18 maxlen: 24
178.79.10.0/23 maxlen: 24
178.250.136.0/21 maxlen: 24
46.235.96.0/21 maxlen: 24
5.134.104.0/21 maxlen: 24
185.26.172.0/22 maxlen: 24
109.72.48.0/20 maxlen: 24
92.244.128.0/19 maxlen: 24
178.237.208.0/20 maxlen: 24
178.237.216.0/21 maxlen: 24
91.185.96.0/19 maxlen: 24
185.103.136.0/22 maxlen: 24
91.204.52.0/22 maxlen: 24
185.10.140.0/22 maxlen: 24
185.10.142.0/23 maxlen: 24
176.67.215.0/24 maxlen: 24
109.94.228.0/22 maxlen: 24
2a06:63c0::/29 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a00:8720::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a06:5b00::/29 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a01:b800::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214256794 (0xcc54c9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71f9bddac4c34078d8d0fab9e14d176a416f963
Validity
Not Before: Feb 22 11:25:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1c54172f95d9d18eea6c0e00d7914ad6d34835d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d7:8c:6f:e9:d5:b5:64:e9:ed:fb:e4:46:77:
0f:6d:52:46:34:95:92:d9:b2:d3:7e:2b:42:ee:b7:
8a:bc:90:dd:72:e2:c2:84:1f:de:66:61:a5:e9:23:
d3:77:c4:4c:4c:17:4a:21:cd:53:2e:9c:9e:de:72:
ef:b3:bc:ca:52:ec:dd:d9:76:8e:10:00:8b:7c:9d:
8d:73:08:cc:21:1c:e8:bf:0e:ea:2a:a5:3f:ec:5d:
24:48:6b:2c:9e:c8:2f:fb:fb:61:8c:aa:3c:8a:54:
60:bd:4f:5c:7c:20:76:20:8b:00:ab:0c:81:88:47:
6d:92:2e:e7:b0:bd:e2:13:3e:4e:89:7a:75:7d:1d:
6a:40:47:71:97:c1:f1:78:64:f0:16:93:ab:1b:1f:
1f:22:dd:06:29:da:0c:a6:b9:34:a4:4e:ce:26:e2:
16:5a:82:be:d6:e3:61:be:d8:8f:50:d2:b8:16:c1:
44:ce:0b:03:24:99:7d:cf:03:4e:40:8d:9c:59:39:
44:5e:b1:7d:a4:e4:ce:b5:23:cc:2d:61:2d:9e:0a:
eb:14:5a:2a:11:0e:7d:ef:cd:69:af:c8:79:ea:dc:
0a:5f:10:41:5c:fe:28:f0:8f:41:d0:53:9d:fd:50:
d6:5c:53:1d:51:30:b7:e8:2c:be:9c:ce:97:55:a1:
c7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C5:41:72:F9:5D:9D:18:EE:A6:C0:E0:0D:79:14:AD:6D:34:83:5D
X509v3 Authority Key Identifier:
keyid:F7:1F:9B:DD:AC:4C:34:07:8D:8D:0F:AB:9E:14:D1:76:A4:16:F9:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x-b3axMNAeNjQ-rnhTRdqQW-WM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/514d67-ba6c-415e-bebc-0f1f3cb08b75/1/ocVBcvldnRjupsDgDXkUrW00g10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/514d67-ba6c-415e-bebc-0f1f3cb08b75/1/9x-b3axMNAeNjQ-rnhTRdqQW-WM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
46.235.96.0/21
62.240.24.0/21
87.250.32.0/19
91.185.96.0/19
91.204.52.0/22
92.244.128.0/19
109.72.48.0/20
109.94.228.0/22
109.122.64.0/18
109.198.0.0/19
176.67.215.0/24
178.79.0.0/18
178.237.208.0/20
178.250.136.0/21
185.10.140.0/22
185.26.172.0/22
185.103.136.0/22
185.112.20.0/22
185.179.136.0/22
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:5b00::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
2c:a1:42:4b:57:93:b5:9e:5e:d8:f5:01:92:d4:04:f0:11:a9:
01:02:67:d5:7b:66:5a:72:9d:89:24:5c:c5:d5:d4:15:44:ab:
5f:d4:b0:ac:a4:cf:12:e8:01:e9:87:f1:ab:98:87:aa:af:28:
b8:87:ec:46:99:b0:36:02:7b:b6:9a:73:cf:25:76:f6:a8:c6:
ed:62:92:fa:3d:ed:b1:dd:d2:dc:8f:26:54:bd:64:c4:11:a8:
c9:40:02:d7:d8:b8:15:48:7c:36:fc:3b:99:e5:cb:42:d8:80:
03:f3:29:f0:10:2e:b9:e0:3b:f9:58:b7:b4:f1:00:23:d2:94:
21:53:01:ab:32:35:16:8b:97:d4:f0:11:07:d1:01:e4:7b:9c:
f2:e1:52:8b:fe:69:68:fc:37:a8:3a:15:63:4a:f9:81:8c:03:
2c:71:e1:da:bc:bc:b0:9a:2d:7e:2e:ad:b9:20:a9:30:e2:2f:
70:92:10:fd:df:f5:bd:40:d5:96:af:34:a1:b2:02:56:dc:b9:
9b:96:cf:b6:9a:cb:92:08:f6:b6:ac:f9:67:d8:72:14:05:3e:
fd:64:c5:10:f2:01:8d:87:76:77:a0:0b:69:4d:02:33:9a:58:
9f:b2:48:b8:6a:19:20:15:6d:b9:49:ab:dd:c8:9b:b4:58:77:
99:7e:86:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:07 2024 by rpki-client on console-fra.rpki-client.org