Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/8e739f-2079-401f-9e8d-0f4b717ab073/1/RYqDaC7wtVzjHgfE_qNuXBWpe5c.roa
File: RYqDaC7wtVzjHgfE_qNuXBWpe5c.roa (raw, json)
Hash identifier: qmhbBIjOVB6kjV6QWf8qr62O5t8FE3uLNvX/f/6as0s=
Subject key identifier: 45:8A:83:68:2E:F0:B5:5C:E3:1E:07:C4:FE:A3:6E:5C:15:A9:7B:97
Certificate issuer: /CN=43931de6e91b40f4b2bb201253e57a86741105a5
Certificate serial: 02D35543
Authority key identifier: 43:93:1D:E6:E9:1B:40:F4:B2:BB:20:12:53:E5:7A:86:74:11:05:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5Md5ukbQPSyuyASU-V6hnQRBaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/8e739f-2079-401f-9e8d-0f4b717ab073/1/RYqDaC7wtVzjHgfE_qNuXBWpe5c.roa
Signing time: Sat 01 Jan 2022 15:06:39 +0000
ROA not before: Sat 01 Jan 2022 15:06:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.240.164.0/24 maxlen: 24
185.240.166.0/24 maxlen: 24
185.240.165.0/24 maxlen: 24
185.240.167.0/24 maxlen: 24
194.31.1.0/24 maxlen: 24
194.30.165.0/24 maxlen: 24
194.30.161.0/24 maxlen: 24
185.240.91.0/24 maxlen: 24
185.240.90.0/24 maxlen: 24
185.240.88.0/24 maxlen: 24
185.240.88.0/22 maxlen: 24
194.30.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47404355 (0x2d35543)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43931de6e91b40f4b2bb201253e57a86741105a5
Validity
Not Before: Jan 1 15:06:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=458a83682ef0b55ce31e07c4fea36e5c15a97b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ad:3c:7f:fa:f9:e9:5b:e4:f4:ea:2c:74:8f:
17:c1:92:67:fe:06:d7:d3:54:7c:fd:b4:35:c8:30:
0b:bf:5b:ae:3e:91:26:48:13:28:6e:3d:66:57:48:
ab:b7:1c:7a:34:96:12:4b:7c:fa:d2:72:5e:92:a3:
f6:c6:ba:04:61:b6:9a:77:51:79:16:a2:0b:5b:b9:
51:44:7c:a4:00:89:58:2b:5a:6c:49:80:02:e1:41:
ec:2c:21:0f:16:ed:f1:37:c7:5a:cf:8e:b2:77:25:
82:3a:b1:fb:1f:b6:88:b7:04:76:ba:d7:06:92:13:
f8:f7:a2:13:f0:eb:1b:95:4f:31:47:65:64:4b:4c:
27:8f:34:f1:c9:39:5b:ed:97:12:fb:b5:7b:f8:d1:
ee:22:62:65:c5:b1:b6:b2:71:91:41:24:75:06:70:
da:51:15:14:95:be:3e:c8:fe:45:4e:69:1c:34:3b:
0f:05:70:0e:c3:f2:95:4c:be:97:e9:f9:07:a4:fd:
81:e2:80:85:d6:33:21:88:f8:78:be:df:6a:9b:b6:
83:b6:1c:7d:60:3c:61:ca:7f:90:97:6d:61:8f:c6:
b5:1f:7d:94:31:54:27:b6:bc:23:01:41:78:9d:32:
37:94:9a:cd:4c:cc:47:94:58:88:3f:83:d0:fa:5c:
9d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:8A:83:68:2E:F0:B5:5C:E3:1E:07:C4:FE:A3:6E:5C:15:A9:7B:97
X509v3 Authority Key Identifier:
keyid:43:93:1D:E6:E9:1B:40:F4:B2:BB:20:12:53:E5:7A:86:74:11:05:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5Md5ukbQPSyuyASU-V6hnQRBaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/8e739f-2079-401f-9e8d-0f4b717ab073/1/RYqDaC7wtVzjHgfE_qNuXBWpe5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/8e739f-2079-401f-9e8d-0f4b717ab073/1/Q5Md5ukbQPSyuyASU-V6hnQRBaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.88.0/22
185.240.164.0/22
194.30.161.0/24
194.30.165.0/24
194.30.183.0/24
194.31.1.0/24
Signature Algorithm: sha256WithRSAEncryption
75:24:62:38:d9:a1:d3:03:c9:31:49:18:3c:27:80:b7:d8:66:
b0:1d:49:e8:06:1c:07:45:41:1d:6c:f5:69:61:d3:ac:7c:8f:
a3:e6:68:ef:82:25:5a:fe:c8:0d:7d:3d:c5:f2:6e:f8:ed:bd:
57:b1:9d:23:2f:33:67:48:42:e2:38:ae:f3:66:83:5f:63:48:
d4:df:69:15:ad:90:13:5f:e6:f5:22:38:cd:c3:bf:12:7d:eb:
0a:a7:00:a4:79:23:a7:dc:4d:68:aa:d2:8b:75:ca:42:b2:f1:
8f:91:3f:c2:c6:e5:a9:c8:77:eb:7d:61:47:47:aa:0e:3d:7b:
25:c1:87:b6:54:01:02:ba:e7:29:6e:1d:f9:c0:8e:d6:10:82:
6f:51:73:cb:f2:6a:fd:2e:bb:4c:d0:29:ac:cd:a4:95:bf:ea:
13:4d:4f:6b:8a:6b:24:3c:11:c3:1e:75:bc:13:56:77:09:9a:
99:86:7d:33:b5:10:f4:f9:7d:15:ee:f9:9d:51:b9:61:85:03:
db:8f:56:45:de:ff:73:95:56:ac:11:c2:1b:6c:6d:51:86:5a:
5a:e8:59:26:9f:8e:db:db:15:fe:97:53:e7:81:ba:bd:0b:23:
3b:de:5f:f5:e2:5e:30:f2:84:94:f0:e6:79:4f:3e:66:2f:c5:
3f:9a:3c:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:15 2024 by rpki-client on console-fra.rpki-client.org