Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/5v2-bD02N9SOdCZocgV9gCB7ba8.roa
File: 5v2-bD02N9SOdCZocgV9gCB7ba8.roa (raw, json)
Hash identifier: c3QN30HLp88ryyaSbtfcpRwEEEdcM1kJKB2NxwE6ihI=
Subject key identifier: E6:FD:BE:6C:3D:36:37:D4:8E:74:26:68:72:05:7D:80:20:7B:6D:AF
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 05F0C4BF
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/5v2-bD02N9SOdCZocgV9gCB7ba8.roa
Signing time: Mon 20 Jun 2022 04:07:45 +0000
ROA not before: Mon 20 Jun 2022 04:07:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 85.237.199.0/24 maxlen: 24
85.158.57.0/24 maxlen: 24
85.237.220.0/24 maxlen: 24
85.237.221.0/24 maxlen: 24
85.237.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99665087 (0x5f0c4bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jun 20 04:07:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6fdbe6c3d3637d48e74266872057d80207b6daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b6:27:5a:ae:83:bd:18:46:1d:32:f6:5e:9a:
be:76:fb:5e:d5:d7:15:aa:15:ea:46:7d:f9:bb:55:
25:98:2c:e9:9b:d7:07:45:b9:6e:a3:62:a6:8a:04:
be:e6:dd:9f:f4:a1:39:b2:9d:85:c4:e5:9f:03:22:
2c:95:db:30:b1:40:3d:f7:3e:1b:28:41:23:87:d5:
a1:d4:f1:ee:01:77:2e:10:53:93:80:0b:9b:9e:bb:
7f:85:c4:71:06:27:ba:b7:60:7c:59:87:75:a7:67:
e4:5a:18:93:bd:73:1b:66:cd:8c:2e:3f:34:14:f4:
e4:36:d0:22:ee:80:28:11:bc:ad:cb:d1:b9:d0:34:
67:a9:55:bb:8e:e6:90:71:7c:ea:10:e0:58:67:df:
7b:66:ed:5e:9f:69:56:b7:29:eb:54:27:94:43:3a:
50:c4:7d:18:0d:2b:64:27:4a:76:c0:4f:a0:80:37:
e9:96:07:04:a9:2b:2a:fe:5d:22:74:5c:59:7c:a6:
e0:92:0f:19:24:de:81:9f:14:7a:0d:06:be:b6:a8:
8d:4a:ed:63:90:3f:3d:95:a8:02:89:47:c1:ec:05:
ab:d4:ea:17:f0:45:ae:3b:ba:98:31:c7:aa:32:2a:
95:53:7f:86:78:2f:fa:69:53:45:a1:2c:3e:1a:34:
28:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:FD:BE:6C:3D:36:37:D4:8E:74:26:68:72:05:7D:80:20:7B:6D:AF
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/5v2-bD02N9SOdCZocgV9gCB7ba8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.57.0/24
85.237.199.0/24
85.237.220.0-85.237.222.255
Signature Algorithm: sha256WithRSAEncryption
82:02:ff:3a:da:a0:52:9b:e3:05:d3:de:4a:f8:ee:46:cd:2d:
c4:78:c2:c7:3b:2c:c3:a9:e4:64:34:2e:28:10:c8:b5:f1:d5:
4e:9c:7c:23:48:fd:05:ca:68:5a:8b:f5:45:5b:97:a0:8b:63:
ce:a6:22:08:c0:84:08:26:9d:ab:a7:10:86:30:1a:f3:59:ef:
9c:da:76:28:ba:f9:b7:f2:49:73:2f:38:c1:49:46:df:2b:b9:
5b:24:89:06:31:1b:7b:7d:90:41:08:4e:fb:b6:c9:10:f6:1c:
37:2f:ec:dc:ed:51:12:84:84:1e:83:53:3b:76:8f:a7:54:2d:
c0:e2:6e:36:84:d7:a5:ea:ab:10:56:67:92:2b:13:96:38:3b:
3d:e7:df:3b:ce:e1:87:81:77:fd:b1:a2:fe:6e:7a:f6:40:00:
57:e6:b8:ac:4b:2f:ed:c8:5a:9f:fc:56:51:c9:d3:ae:f3:5f:
3e:9d:a9:9e:52:a2:f3:f4:66:28:85:21:1b:e3:c9:22:41:e9:
66:ef:14:fd:ce:60:c4:a9:ef:08:d8:7a:d8:46:55:13:88:6a:
67:b9:8b:bf:eb:e4:53:97:de:ee:0a:ef:f1:bc:b1:3f:06:9c:
2f:be:68:0c:14:f4:bc:42:da:cd:fc:f2:9b:c2:55:ab:e9:f3:
1f:e2:36:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org