Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/eBPDmgHWy1Xim5ym0KsJvaQobU8.roa
File: eBPDmgHWy1Xim5ym0KsJvaQobU8.roa (raw, json)
Hash identifier: E+jEbhyVF6u48rl3FiWjreOt79slM3uTCvMt18THRa0=
Subject key identifier: 78:13:C3:9A:01:D6:CB:55:E2:9B:9C:A6:D0:AB:09:BD:A4:28:6D:4F
Certificate issuer: /CN=bf174a5833bde6aa7824c34099762d00978857ff
Certificate serial: 35831A0B
Authority key identifier: BF:17:4A:58:33:BD:E6:AA:78:24:C3:40:99:76:2D:00:97:88:57:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxdKWDO95qp4JMNAmXYtAJeIV_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/eBPDmgHWy1Xim5ym0KsJvaQobU8.roa
Signing time: Sat 01 Jan 2022 11:56:08 +0000
ROA not before: Sat 01 Jan 2022 11:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25384
IP address blocks: 193.162.192.0/19 maxlen: 19
193.162.219.0/24 maxlen: 24
193.162.218.0/23 maxlen: 23
193.162.217.0/24 maxlen: 24
109.236.189.32/30 maxlen: 30
217.10.25.64/27 maxlen: 27
109.236.176.0/20 maxlen: 20
217.10.23.12/30 maxlen: 30
109.236.188.0/26 maxlen: 26
185.3.14.32/28 maxlen: 32
109.236.179.160/30 maxlen: 30
217.10.25.252/30 maxlen: 30
92.60.144.0/20 maxlen: 20
217.10.16.0/20 maxlen: 20
109.236.180.96/28 maxlen: 28
109.236.189.224/28 maxlen: 28
185.3.12.0/22 maxlen: 24
109.236.189.192/28 maxlen: 28
109.236.189.0/28 maxlen: 28
109.236.189.36/30 maxlen: 30
109.236.179.152/29 maxlen: 29
109.236.179.164/30 maxlen: 30
217.10.25.128/25 maxlen: 25
109.236.179.32/27 maxlen: 27
109.236.180.64/27 maxlen: 27
193.163.255.0/24 maxlen: 24
109.236.186.112/29 maxlen: 29
217.10.25.128/28 maxlen: 28
109.236.176.144/28 maxlen: 28
109.236.180.112/28 maxlen: 28
109.236.189.16/28 maxlen: 28
109.236.186.80/28 maxlen: 28
109.236.189.208/28 maxlen: 28
109.236.189.240/28 maxlen: 28
85.89.224.0/19 maxlen: 24
2001:15f8::/32 maxlen: 48
2001:15f8:c00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 897784331 (0x35831a0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf174a5833bde6aa7824c34099762d00978857ff
Validity
Not Before: Jan 1 11:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7813c39a01d6cb55e29b9ca6d0ab09bda4286d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:82:b5:78:3f:af:8a:63:d6:88:01:41:f2:d2:
15:b0:fe:b8:ab:8a:73:0a:a9:70:47:20:2e:ca:f0:
f8:53:16:0e:fb:14:70:8a:a6:55:21:39:94:69:09:
0d:97:1e:20:ef:91:fb:e3:e3:bd:e4:39:af:82:7d:
83:59:7a:1d:60:6a:39:ec:25:c1:7b:21:24:df:f2:
f2:96:97:8d:bc:fa:00:31:34:94:cf:88:07:7d:4f:
3d:00:9d:ae:43:26:d3:37:d7:53:21:a6:77:71:76:
ca:34:80:33:c1:7c:7b:29:11:bf:51:54:92:5c:fd:
ab:9e:9d:85:03:fd:a7:c7:90:d6:2f:b1:38:85:7a:
b4:21:80:56:5d:ff:41:ec:11:2e:1b:da:15:96:c4:
77:e7:5a:b9:36:89:95:a6:36:29:8a:8a:35:68:6d:
6d:97:e4:6f:c4:3d:85:58:9a:de:86:75:66:0b:f3:
98:63:bf:e5:32:e9:a9:51:6c:ba:51:a3:9b:31:4e:
ba:6d:eb:6e:15:7b:b1:6d:13:46:f3:89:09:72:b8:
91:a1:fa:90:43:f4:91:82:fc:19:d5:41:5b:fc:d6:
3f:7a:6c:eb:96:31:57:f1:21:b8:0d:3f:8c:c0:65:
02:cf:a3:86:f6:47:97:ff:aa:84:34:39:ac:2f:66:
df:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:13:C3:9A:01:D6:CB:55:E2:9B:9C:A6:D0:AB:09:BD:A4:28:6D:4F
X509v3 Authority Key Identifier:
keyid:BF:17:4A:58:33:BD:E6:AA:78:24:C3:40:99:76:2D:00:97:88:57:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxdKWDO95qp4JMNAmXYtAJeIV_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/eBPDmgHWy1Xim5ym0KsJvaQobU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/vxdKWDO95qp4JMNAmXYtAJeIV_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.89.224.0/19
92.60.144.0/20
109.236.176.0/20
185.3.12.0/22
193.162.192.0/19
193.163.255.0/24
217.10.16.0/20
IPv6:
2001:15f8::/32
Signature Algorithm: sha256WithRSAEncryption
56:6c:fe:88:26:91:4c:2b:a1:18:5e:d9:5b:fd:8e:ef:28:c5:
f3:a5:02:b7:a0:02:56:6e:5a:57:c0:d1:64:8a:73:9e:3b:3b:
29:40:5f:15:79:ae:61:99:be:b8:91:1d:d9:be:4d:d9:43:98:
02:09:4c:9d:39:89:a5:a1:65:12:83:40:54:89:dd:4e:44:49:
29:81:e2:a6:bc:c2:cf:8b:07:ca:04:ac:c4:3a:40:b7:fb:34:
1a:46:5c:a9:20:25:61:11:a4:f9:ab:38:c9:de:46:4a:67:ef:
81:87:8c:9c:06:57:6a:79:e3:66:8b:39:fc:79:c5:28:eb:d3:
70:98:70:5b:1a:0b:aa:ff:2b:cf:ff:eb:fa:38:b1:bd:b7:7d:
84:31:e1:fa:ab:eb:7b:90:f5:53:9c:d0:9d:7a:84:7e:99:eb:
1f:31:50:41:bb:4c:90:28:79:4b:cb:48:7d:98:5b:ad:5f:e2:
50:08:58:25:12:97:9e:4d:91:06:8b:2c:40:b0:a1:2a:fc:e9:
8a:21:ff:87:f1:8f:6a:90:e3:88:a6:e6:70:16:6d:f0:60:c9:
f5:ee:d7:42:e5:30:d1:5e:c0:d9:0a:b1:6b:f4:ae:c0:b3:0c:
cc:fa:9d:d7:e2:e7:63:24:ab:92:a2:9c:82:07:e2:24:cf:05:
f9:f9:28:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:33 2024 by rpki-client on console-fra.rpki-client.org