Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/2ydKa6a7E__N1a-gWSIE1tX5nV8.roa
File: 2ydKa6a7E__N1a-gWSIE1tX5nV8.roa (raw, json)
Hash identifier: CeGRWmOI/Q3JcNjJ9PQrIwELEvm0gmo1giHhvbEPbfA=
Subject key identifier: DB:27:4A:6B:A6:BB:13:FF:CD:D5:AF:A0:59:22:04:D6:D5:F9:9D:5F
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 0184D797511177DDCC8BC3775479E9B28F18
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/2ydKa6a7E__N1a-gWSIE1tX5nV8.roa
Signing time: Sat 03 Dec 2022 10:45:28 +0000
ROA not before: Sat 03 Dec 2022 10:45:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 2.59.56.0/23 maxlen: 24
2.59.58.0/23 maxlen: 24
193.39.9.0/24 maxlen: 24
171.22.76.0/22 maxlen: 24
171.22.78.0/23 maxlen: 24
193.37.239.0/24 maxlen: 24
45.87.172.0/22 maxlen: 24
45.137.96.0/24 maxlen: 24
85.209.221.0/24 maxlen: 24
85.209.222.0/24 maxlen: 24
5.181.178.0/23 maxlen: 24
45.158.56.0/22 maxlen: 24
45.158.58.0/24 maxlen: 24
45.12.81.0/24 maxlen: 24
45.12.82.0/24 maxlen: 24
45.12.80.0/24 maxlen: 24
2.56.251.0/24 maxlen: 24
2.56.248.0/22 maxlen: 24
45.91.136.0/23 maxlen: 24
45.91.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d7:97:51:11:77:dd:cc:8b:c3:77:54:79:e9:b2:8f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Dec 3 10:45:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db274a6ba6bb13ffcdd5afa0592204d6d5f99d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:12:3c:b7:d4:af:85:db:59:27:ad:31:e0:19:
66:a6:ec:78:83:a8:59:86:d5:31:80:40:93:5c:20:
50:10:88:25:65:e4:2d:2b:92:f4:89:85:a4:31:1f:
98:bb:4a:67:d8:c0:de:1b:c6:dd:c2:24:17:27:91:
6b:77:13:95:29:0f:fb:af:11:84:28:72:9c:d6:c6:
a8:60:d5:30:e5:e0:9a:e2:64:f3:80:f7:5f:45:33:
2c:23:f6:f8:d0:3f:da:95:68:f9:30:9f:76:40:be:
57:30:f1:e8:ee:39:5b:4d:c7:52:77:42:ee:f8:69:
e0:7b:4b:07:b4:bb:89:10:cb:68:33:21:a7:c1:0a:
b7:4d:8c:72:e4:49:00:8f:c5:03:24:b5:04:9e:49:
8e:46:3e:f8:ac:4c:34:5d:1e:90:6f:9b:2d:a0:f8:
cc:d9:07:81:91:6e:65:55:52:0a:2d:34:b9:90:f8:
c9:02:1a:ae:22:7f:ea:ee:de:a8:bd:bd:0d:b8:68:
b3:7a:82:28:6f:ef:f4:e3:86:24:fe:39:41:86:58:
ab:21:9a:76:59:a6:79:2d:b0:a2:f6:7e:a8:25:c9:
7e:1a:b2:26:d4:5c:f6:0a:48:a2:d2:20:e6:c3:eb:
c5:e0:a5:0f:4d:70:c3:95:2c:b4:20:d9:42:df:77:
c9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:27:4A:6B:A6:BB:13:FF:CD:D5:AF:A0:59:22:04:D6:D5:F9:9D:5F
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/2ydKa6a7E__N1a-gWSIE1tX5nV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.248.0/22
2.59.56.0/22
5.181.178.0/23
45.12.80.0-45.12.82.255
45.87.172.0/22
45.91.136.0/22
45.137.96.0/24
45.158.56.0/22
85.209.221.0-85.209.222.255
171.22.76.0/22
193.37.239.0/24
193.39.9.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:f8:f6:71:19:b8:a9:b1:90:20:c2:d7:5d:d3:44:86:d6:32:
b5:75:4c:f6:e0:74:b9:b1:be:06:c3:a1:d0:28:70:24:a1:00:
23:0b:31:65:90:f4:da:39:7f:c6:45:aa:d8:d9:55:e7:fe:81:
76:ed:be:7a:ae:0c:76:1f:10:32:ff:0e:9d:cb:62:2e:48:32:
ed:c8:bf:84:12:34:c4:aa:f8:f5:7a:bd:64:86:00:ac:29:93:
df:ec:eb:60:40:6b:3d:69:9c:38:a5:cb:3d:99:f7:5d:f0:b6:
e3:59:e2:fe:7a:10:83:1a:30:83:d2:7e:e2:30:43:26:02:7c:
7e:de:ec:9a:d0:dc:96:6d:c8:33:be:53:be:a1:0f:b2:80:d4:
eb:f6:b1:0c:2a:6e:d9:e0:7d:50:6d:46:ee:0f:bd:47:45:88:
c5:3d:0f:b2:ed:ef:5c:d5:2d:8e:bd:8e:4d:76:c6:40:34:ed:
d3:04:f3:04:3c:b3:e1:90:c0:83:63:7d:07:82:be:90:90:5f:
c0:47:b2:8a:ba:ce:f0:29:fe:26:9b:de:d7:e0:34:9a:a4:fc:
17:10:2d:92:52:d7:24:33:31:66:0e:22:a8:09:b7:0c:88:0f:
5d:49:69:91:23:86:78:5d:51:e3:b1:45:27:d9:d5:19:71:ca:
4e:ed:3b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:31 2023 by rpki-client on console-fra.rpki-client.org