Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/WkKzLobMna0qx0W6s3qt7D9Umqk.roa
File: WkKzLobMna0qx0W6s3qt7D9Umqk.roa (raw, json)
Hash identifier: x4u3T0Xbdg0e4upwcIRVrqRU5RQWPbwnJoL/mIdTbFU=
Subject key identifier: 5A:42:B3:2E:86:CC:9D:AD:2A:C7:45:BA:B3:7A:AD:EC:3F:54:9A:A9
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 0184814D193440B009E2495976B6AC27F402
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/WkKzLobMna0qx0W6s3qt7D9Umqk.roa
Signing time: Wed 16 Nov 2022 16:37:04 +0000
ROA not before: Wed 16 Nov 2022 16:37:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 2.59.56.0/23 maxlen: 24
2.59.58.0/23 maxlen: 24
193.39.9.0/24 maxlen: 24
193.39.10.0/24 maxlen: 24
193.38.53.0/24 maxlen: 24
171.22.76.0/22 maxlen: 24
171.22.78.0/23 maxlen: 24
193.37.239.0/24 maxlen: 24
45.87.172.0/22 maxlen: 24
45.137.96.0/24 maxlen: 24
85.209.221.0/24 maxlen: 24
85.209.222.0/24 maxlen: 24
5.181.176.0/23 maxlen: 24
5.181.178.0/23 maxlen: 24
45.158.56.0/22 maxlen: 24
45.158.58.0/24 maxlen: 24
45.12.81.0/24 maxlen: 24
45.12.82.0/24 maxlen: 24
45.12.80.0/24 maxlen: 24
2.56.251.0/24 maxlen: 24
2.56.248.0/22 maxlen: 24
45.91.136.0/23 maxlen: 24
45.91.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:81:4d:19:34:40:b0:09:e2:49:59:76:b6:ac:27:f4:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Nov 16 16:37:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a42b32e86cc9dad2ac745bab37aadec3f549aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b2:7e:9b:d0:b3:0e:a6:10:a1:b6:7e:21:a0:
2e:ba:5c:b8:77:65:8a:e7:e6:55:d5:4c:7b:87:a1:
21:e2:51:bb:3f:b1:ec:8a:ae:d0:9e:ef:01:59:35:
cc:a9:42:e0:13:bc:52:08:fb:f7:de:0c:35:86:8d:
84:32:24:10:a8:34:ef:d7:bd:1d:5c:35:8c:d4:77:
82:00:27:ed:e9:ef:eb:7a:e7:cd:c6:cc:cb:30:2e:
16:97:ed:68:9e:fd:79:38:2e:20:43:da:a3:84:d8:
30:7f:ea:e1:70:71:a7:09:ff:d7:6c:73:62:60:c8:
92:71:ea:dd:e2:80:6d:e1:d6:6b:81:16:e5:55:31:
ac:63:21:13:ec:6e:95:44:30:0d:ad:ec:ec:67:31:
2a:a1:ab:4c:ff:90:37:30:03:b4:8a:e1:06:c8:f2:
a5:b8:c7:dc:66:42:fc:0d:66:37:c8:57:f5:56:04:
60:bb:c6:6d:db:21:f4:14:6f:e5:fb:c5:47:58:e7:
4d:69:aa:af:6b:76:eb:8a:cc:62:92:c6:eb:a4:86:
ff:40:38:21:51:03:3e:47:8f:06:e0:d3:be:b6:96:
a9:60:60:11:ed:6c:f3:0e:0f:b0:53:a6:fd:2a:0d:
6c:ce:86:56:09:b6:c1:f5:f7:17:b7:0d:ff:ae:3d:
28:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:42:B3:2E:86:CC:9D:AD:2A:C7:45:BA:B3:7A:AD:EC:3F:54:9A:A9
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/WkKzLobMna0qx0W6s3qt7D9Umqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.248.0/22
2.59.56.0/22
5.181.176.0/22
45.12.80.0-45.12.82.255
45.87.172.0/22
45.91.136.0/22
45.137.96.0/24
45.158.56.0/22
85.209.221.0-85.209.222.255
171.22.76.0/22
193.37.239.0/24
193.38.53.0/24
193.39.9.0-193.39.10.255
Signature Algorithm: sha256WithRSAEncryption
6f:d6:9d:b9:33:ed:da:0f:da:92:36:7b:9e:d2:00:55:61:a4:
5d:47:53:07:ee:d6:b0:5e:ea:43:7d:f3:be:82:9f:71:b3:93:
49:d4:17:58:ea:01:99:98:20:c7:cb:aa:a7:28:e3:57:23:e6:
7a:62:c0:eb:ab:9f:ef:27:bb:b3:72:a4:63:4f:bb:d4:e2:62:
06:c4:66:eb:59:c5:4f:43:b4:fd:28:18:73:8f:28:ac:55:49:
e1:75:0e:a0:45:6a:7d:be:08:30:33:9c:f6:3c:0f:54:4b:1a:
62:87:43:3e:ef:3e:f3:3e:e7:e2:72:88:9a:f4:8c:cd:97:66:
17:5f:c9:a1:01:b5:70:62:b0:08:ad:da:7c:8d:41:92:21:d4:
fc:77:15:61:f3:b6:62:41:56:c8:aa:9a:3c:c1:be:5d:19:a1:
d5:7a:5b:4a:e5:ed:31:af:25:19:7f:3b:cc:9c:94:18:f9:9e:
a1:ea:2f:3f:1e:aa:8d:10:61:81:5c:f1:5d:fc:bf:08:a0:bf:
48:ae:bb:c8:cf:60:58:ad:b1:b4:0f:85:8c:64:8e:59:fa:b9:
76:6f:c1:39:8b:6d:31:d9:79:8e:72:d5:e8:60:30:0c:1e:b9:
ac:13:53:e0:a6:4d:9f:0b:eb:c6:b4:e8:e9:40:4a:e6:04:df:
3f:0c:3e:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:04 2024 by rpki-client on console-fra.rpki-client.org