Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/uuhLgE6J5CT2xbO-7RKpJhH83ws.roa
File: uuhLgE6J5CT2xbO-7RKpJhH83ws.roa (raw, json)
Hash identifier: /LQneuUIh46SN1XFknT5WE96koyh6OrhnlniNQCW8F8=
Subject key identifier: BA:E8:4B:80:4E:89:E4:24:F6:C5:B3:BE:ED:12:A9:26:11:FC:DF:0B
Certificate issuer: /CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Certificate serial: 01837B95A5F881CE19D4C649E9086D0F0F9F
Authority key identifier: 8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/uuhLgE6J5CT2xbO-7RKpJhH83ws.roa
Signing time: Mon 26 Sep 2022 20:55:48 +0000
ROA not before: Mon 26 Sep 2022 20:55:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 88.218.80.0/24 maxlen: 24
193.160.68.0/24 maxlen: 24
176.118.191.0/24 maxlen: 24
176.118.189.0/24 maxlen: 24
176.118.188.0/24 maxlen: 24
95.214.83.0/24 maxlen: 24
185.177.77.0/24 maxlen: 24
185.177.76.0/24 maxlen: 24
84.252.64.0/22 maxlen: 24
77.83.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7b:95:a5:f8:81:ce:19:d4:c6:49:e9:08:6d:0f:0f:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Validity
Not Before: Sep 26 20:55:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bae84b804e89e424f6c5b3beed12a92611fcdf0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:38:ee:a9:80:30:ee:f6:3a:19:85:b5:a0:4f:
99:b7:83:1a:6c:56:ec:cd:b6:46:a8:b0:2d:83:ba:
bc:f7:d6:cd:a8:1d:3e:cd:82:41:bf:fb:b1:27:b9:
96:90:6e:58:eb:2a:91:47:c6:5f:2b:b8:f7:ea:24:
2c:34:78:82:d4:aa:9a:85:1a:7a:2d:df:2b:f7:73:
85:69:06:de:92:17:00:10:6a:63:c5:50:01:b5:5a:
3e:bb:e4:12:c0:11:fc:18:74:bb:67:e7:2d:d5:17:
34:e7:1f:60:5f:55:91:e1:84:76:fc:c4:dd:98:f0:
48:ea:5f:07:9c:2b:f4:70:b4:ba:36:b7:56:a7:41:
c6:11:78:1a:15:0e:4b:27:63:4b:fe:cb:9c:66:16:
14:aa:e5:bd:c9:1b:26:60:a0:21:9b:00:1a:81:a4:
7d:ee:e0:7f:29:29:86:3b:58:11:40:67:f6:eb:f2:
8b:e0:8a:35:f7:00:2f:a9:eb:3f:ea:ea:0c:78:3d:
4d:f6:db:ce:c8:14:9c:0b:fd:49:86:85:c3:b2:22:
5e:1d:00:8d:9a:cd:47:70:5e:76:de:dc:36:cc:67:
8c:80:26:f4:63:6f:bb:52:f6:d1:f8:5c:9b:99:ba:
81:7a:08:ae:e2:57:c5:0b:71:ee:17:c3:70:2a:30:
03:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E8:4B:80:4E:89:E4:24:F6:C5:B3:BE:ED:12:A9:26:11:FC:DF:0B
X509v3 Authority Key Identifier:
keyid:8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/uuhLgE6J5CT2xbO-7RKpJhH83ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jnR0gfLJj7tw3KjWXCPeT8o3WD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.20.0/22
84.252.64.0/22
88.218.80.0/24
95.214.83.0/24
176.118.188.0/23
176.118.191.0/24
185.177.76.0/23
193.160.68.0/24
Signature Algorithm: sha256WithRSAEncryption
68:ec:77:5f:cd:a6:7a:be:ac:c8:f4:fe:96:84:f4:5b:3f:51:
77:5e:e4:1f:e6:83:73:b9:14:22:34:f3:5d:7e:19:fa:ba:6e:
18:15:9e:c5:be:06:77:f8:6b:04:10:be:31:db:d8:00:cf:67:
6b:d0:ef:af:db:48:14:32:23:0b:a6:41:af:40:a6:8f:fc:24:
70:2a:22:ed:a7:1d:f5:7f:f7:5b:77:cf:e0:18:10:e7:02:7f:
55:e4:7a:f2:08:44:6c:e9:2a:b0:aa:3d:83:97:c5:a3:95:63:
5b:a7:64:d2:f1:82:5b:1a:c1:63:3f:d2:c4:0d:b7:42:b5:c1:
5f:10:77:4b:a2:1f:b2:c8:a1:d4:40:ab:ee:83:00:eb:86:13:
2d:91:19:b8:05:8d:25:19:bf:60:59:4b:1b:d9:02:4e:db:2e:
23:e4:b5:82:55:63:85:3c:20:c6:8e:8d:11:9b:05:8a:00:c8:
a4:84:97:fd:8b:cb:6a:9a:a3:d3:ec:26:91:9d:70:c7:de:7d:
a5:78:ff:c0:4a:ed:50:3c:44:90:75:34:e1:4b:87:83:24:13:
8d:8e:18:86:a6:16:05:69:92:28:af:c6:57:fb:8b:80:2b:fa:
23:d6:c7:34:5a:4d:ea:52:95:93:93:c1:8e:96:35:37:10:a7:
d2:4f:42:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:00 2024 by rpki-client on console-fra.rpki-client.org