Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/Bl6v353_yYBSjoZ30HFWFigg6fY.roa
File: Bl6v353_yYBSjoZ30HFWFigg6fY.roa (raw, json)
Hash identifier: cenoNokIZEWjuaKgJ+VyQiF2ndLw92Mw7LHijEutxl8=
Subject key identifier: 06:5E:AF:DF:9D:FF:C9:80:52:8E:86:77:D0:71:56:16:28:20:E9:F6
Certificate issuer: /CN=7f65bff64d8a87977e334d89c4e38c0d1095af63
Certificate serial: 018E36F0599FF8E69F200AA0518E525425C3
Authority key identifier: 7F:65:BF:F6:4D:8A:87:97:7E:33:4D:89:C4:E3:8C:0D:10:95:AF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f2W_9k2Kh5d-M02JxOOMDRCVr2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/Bl6v353_yYBSjoZ30HFWFigg6fY.roa
Signing time: Wed 13 Mar 2024 08:31:45 +0000
ROA not before: Wed 13 Mar 2024 08:31:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201730
IP address blocks: 37.221.88.0/22 maxlen: 24
185.65.92.0/22 maxlen: 22
185.65.92.0/24 maxlen: 24
185.65.93.0/24 maxlen: 24
185.65.94.0/24 maxlen: 24
185.65.95.0/24 maxlen: 24
185.78.100.0/22 maxlen: 22
185.78.100.0/24 maxlen: 24
185.78.101.0/24 maxlen: 24
185.78.102.0/24 maxlen: 24
185.78.103.0/24 maxlen: 24
185.138.244.0/22 maxlen: 22
185.138.244.0/24 maxlen: 24
185.138.245.0/24 maxlen: 24
185.138.246.0/24 maxlen: 24
185.138.247.0/24 maxlen: 24
185.146.148.0/22 maxlen: 22
185.146.148.0/24 maxlen: 24
185.146.149.0/24 maxlen: 24
185.146.150.0/24 maxlen: 24
185.146.151.0/24 maxlen: 24
194.169.252.0/24 maxlen: 24
2a03:1aa0::/32 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:36:f0:59:9f:f8:e6:9f:20:0a:a0:51:8e:52:54:25:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f65bff64d8a87977e334d89c4e38c0d1095af63
Validity
Not Before: Mar 13 08:31:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=065eafdf9dffc980528e8677d07156162820e9f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9e:b1:6c:85:91:d5:9b:fa:10:e4:a8:93:aa:
d1:c8:b6:03:04:ce:55:24:c6:f9:32:a2:5c:84:ba:
7b:c9:0a:98:6e:6a:6f:42:69:89:02:6e:8f:f1:ba:
65:9f:68:e0:09:11:3e:13:2a:59:c8:61:98:f4:27:
e6:6b:db:d5:ab:37:ee:ee:28:0f:9a:4d:df:c3:e0:
60:06:a8:39:c6:11:03:03:bf:17:08:c6:d7:d5:02:
2b:00:f1:d7:b2:75:1f:5b:d5:1c:15:cb:3f:35:7b:
3a:0c:0b:8a:d0:bd:d3:93:f2:87:67:0a:bd:6f:98:
00:3d:6a:8d:4d:4b:3d:e5:ad:6e:1a:57:85:a0:cb:
39:c5:e8:fc:fc:ff:a4:28:5d:1f:16:0d:f2:15:d7:
83:a6:8f:67:97:78:65:ad:ba:25:16:09:34:e2:3a:
49:50:5f:3b:f5:a2:d6:70:db:53:63:68:1d:81:ee:
26:9a:ff:b6:55:ec:87:ea:33:20:15:0d:02:fd:93:
1e:da:16:b9:40:ed:64:06:d8:15:73:4e:18:36:52:
99:86:51:00:ae:45:c0:b3:bf:ac:3e:ad:fc:a0:c4:
98:8c:74:4a:ca:97:d7:5f:0b:3d:18:99:a0:78:35:
ec:e0:11:ca:46:06:82:6a:27:e4:c4:0f:5e:48:a0:
8c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:5E:AF:DF:9D:FF:C9:80:52:8E:86:77:D0:71:56:16:28:20:E9:F6
X509v3 Authority Key Identifier:
keyid:7F:65:BF:F6:4D:8A:87:97:7E:33:4D:89:C4:E3:8C:0D:10:95:AF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2W_9k2Kh5d-M02JxOOMDRCVr2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/Bl6v353_yYBSjoZ30HFWFigg6fY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/f2W_9k2Kh5d-M02JxOOMDRCVr2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.88.0/22
185.65.92.0/22
185.78.100.0/22
185.138.244.0/22
185.146.148.0/22
194.169.252.0/24
IPv6:
2a03:1aa0::/32
Signature Algorithm: sha256WithRSAEncryption
2b:e6:a7:c0:7e:06:8f:5a:b9:39:6a:c8:84:29:ab:98:a8:05:
ea:02:59:4e:ba:e8:ff:c8:71:63:cd:fa:4e:0f:8b:b6:53:13:
25:a6:6b:00:07:f2:89:7b:c7:9d:84:6b:a3:6e:44:c2:4a:d1:
a7:3b:b0:09:88:c1:13:9f:c2:ca:ab:80:3e:d5:44:84:da:67:
38:6b:3a:ac:7c:98:63:12:77:83:0e:43:d7:10:91:a5:7d:3f:
36:0a:c8:b9:8c:b8:ff:78:ea:21:95:0e:8f:64:9e:0f:df:2a:
40:1b:b4:e1:bd:74:b7:ae:e1:11:fd:fc:56:ab:2b:1d:69:32:
2f:98:0f:b2:89:bd:c7:d9:e3:92:72:14:e0:99:cd:7e:82:21:
2a:a8:d6:79:84:5c:49:3c:6d:43:ed:a7:a5:5f:20:3a:41:e4:
e0:01:06:52:36:9e:28:3d:de:61:46:b3:8e:b3:a4:e0:27:0b:
f0:74:42:1d:12:dd:1f:90:3a:e2:fd:3c:58:ab:f4:45:a8:d3:
07:4a:19:1e:95:6e:d7:dc:0b:a6:d6:87:74:7b:df:b2:5b:c3:
ad:3c:dc:09:43:b6:f8:c7:2b:6e:fd:25:49:44:de:22:24:4f:
d7:97:49:03:f1:de:96:f2:d3:e9:a8:3b:49:6c:ad:77:40:4c:
35:ed:9d:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:21 2024 by rpki-client on console-ams.rpki-client.org