Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/JMj470LTLroLRtTAl8-24YAl-zg.roa
File: JMj470LTLroLRtTAl8-24YAl-zg.roa (raw, json)
Hash identifier: yOFDgYh0GPGtvd+tamP5p0LXmpQWpDxOPuhYsyXhPco=
Subject key identifier: 24:C8:F8:EF:42:D3:2E:BA:0B:46:D4:C0:97:CF:B6:E1:80:25:FB:38
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 0184C42E405362FDD8BF1E9CEB0CF35BC8E2
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/JMj470LTLroLRtTAl8-24YAl-zg.roa
Signing time: Tue 29 Nov 2022 16:17:56 +0000
ROA not before: Tue 29 Nov 2022 16:17:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 2.59.56.0/23 maxlen: 24
2.59.58.0/23 maxlen: 24
193.39.9.0/24 maxlen: 24
171.22.76.0/22 maxlen: 24
171.22.78.0/23 maxlen: 24
193.37.239.0/24 maxlen: 24
45.87.172.0/22 maxlen: 24
45.137.96.0/24 maxlen: 24
85.209.221.0/24 maxlen: 24
85.209.222.0/24 maxlen: 24
5.181.176.0/23 maxlen: 24
5.181.178.0/23 maxlen: 24
45.158.56.0/22 maxlen: 24
45.158.58.0/24 maxlen: 24
45.12.81.0/24 maxlen: 24
45.12.82.0/24 maxlen: 24
45.12.80.0/24 maxlen: 24
2.56.251.0/24 maxlen: 24
2.56.248.0/22 maxlen: 24
45.91.136.0/23 maxlen: 24
45.91.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c4:2e:40:53:62:fd:d8:bf:1e:9c:eb:0c:f3:5b:c8:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Nov 29 16:17:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24c8f8ef42d32eba0b46d4c097cfb6e18025fb38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f4:71:f5:bc:09:eb:f3:44:36:5e:a8:c2:b8:
0f:9d:f9:f5:c2:a2:66:5b:d6:f5:db:47:41:46:6c:
31:b9:19:59:3a:d6:e8:6f:d5:20:72:34:03:4a:7d:
08:51:cd:ea:d0:0b:4c:02:a2:ee:ac:4c:84:15:f9:
c5:52:dc:b4:2b:f3:c7:76:25:8f:78:33:54:2e:17:
14:17:10:98:31:a9:31:41:2a:ce:3f:f6:c9:da:d7:
56:da:da:24:e5:45:c0:d7:c9:3c:03:08:24:f7:18:
cd:65:d5:d5:5d:fc:89:59:40:1e:22:ce:ed:7b:d8:
e1:06:1e:38:3e:0c:2d:78:91:6b:69:3b:25:2e:ed:
37:f8:4d:44:50:ec:99:24:ae:23:91:dd:9e:a0:bb:
e1:eb:01:51:cb:aa:48:f0:43:15:86:5e:dd:8c:65:
b6:1b:6c:02:00:14:a6:b9:da:b6:9b:27:f3:60:63:
6e:0f:64:09:1a:d5:e5:30:6a:e3:bc:60:99:68:87:
dc:97:92:90:33:42:56:38:32:7e:65:c2:7c:b0:fc:
a3:c3:5d:07:ae:1a:eb:9a:75:9d:65:23:3d:1e:62:
81:60:07:1e:02:01:4d:93:93:8b:99:4e:b5:b6:f2:
ed:90:ef:76:05:46:35:45:eb:f1:4d:3a:da:51:82:
85:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C8:F8:EF:42:D3:2E:BA:0B:46:D4:C0:97:CF:B6:E1:80:25:FB:38
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/JMj470LTLroLRtTAl8-24YAl-zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.248.0/22
2.59.56.0/22
5.181.176.0/22
45.12.80.0-45.12.82.255
45.87.172.0/22
45.91.136.0/22
45.137.96.0/24
45.158.56.0/22
85.209.221.0-85.209.222.255
171.22.76.0/22
193.37.239.0/24
193.39.9.0/24
Signature Algorithm: sha256WithRSAEncryption
90:68:32:60:a9:b4:a3:be:4c:75:02:cb:18:70:89:f9:f5:f2:
3b:b5:b0:5e:02:03:5a:17:18:7c:00:d0:3f:51:af:c2:9a:32:
ab:b2:08:41:85:78:f8:32:b4:15:d6:2b:9f:42:51:10:73:61:
a5:d3:56:b7:aa:01:f7:b6:9c:40:3e:03:fa:3f:d1:ec:f8:5b:
bb:40:07:21:10:73:ff:31:09:77:3c:5a:7b:13:0f:97:99:86:
80:0e:89:56:d6:99:2a:51:9f:79:e5:f7:21:2b:7d:ef:66:c8:
87:40:01:d2:f1:a9:a6:40:e8:d8:cd:da:69:38:bf:3f:5e:55:
fe:04:5b:81:5b:14:a3:31:1f:3e:b1:b8:8f:b2:df:ab:10:45:
7e:73:e7:ae:90:f1:a0:d6:db:5c:bc:b0:cf:0f:3e:85:88:95:
8a:c7:5c:52:1d:4d:e3:99:a0:77:62:7b:78:b1:0b:e9:4b:01:
00:f8:f3:2e:8a:f1:8e:92:62:5e:10:ca:65:ba:10:7c:13:e8:
44:5e:9f:e5:5a:8b:91:1f:b1:1a:70:52:98:a2:a4:7f:fc:ae:
ae:6a:51:09:fd:b6:4a:b3:de:c1:a4:f6:38:2c:36:89:75:ff:
8c:64:72:f8:ec:76:74:90:95:b7:4e:4e:d9:c5:c2:4b:7e:ae:
ab:42:ec:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:31 2023 by rpki-client on console-fra.rpki-client.org