Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/l7pClaTYF4VxNJZ2sUjtDyZrXqs.roa
File: l7pClaTYF4VxNJZ2sUjtDyZrXqs.roa (raw, json)
Hash identifier: lAvrD/+HD6Uwh98lkc3RXJD4gvMzI/d3ZSFYkQx/FGg=
Subject key identifier: 97:BA:42:95:A4:D8:17:85:71:34:96:76:B1:48:ED:0F:26:6B:5E:AB
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 018401F4CFDE7709C871DBF8240C4AB25862
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/l7pClaTYF4VxNJZ2sUjtDyZrXqs.roa
Signing time: Sat 22 Oct 2022 23:08:51 +0000
ROA not before: Sat 22 Oct 2022 23:08:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 2.59.56.0/23 maxlen: 24
2.59.58.0/23 maxlen: 24
193.39.9.0/24 maxlen: 24
193.39.10.0/24 maxlen: 24
193.38.53.0/24 maxlen: 24
193.37.239.0/24 maxlen: 24
45.87.172.0/22 maxlen: 24
45.137.96.0/24 maxlen: 24
85.209.221.0/24 maxlen: 24
85.209.222.0/24 maxlen: 24
5.181.176.0/23 maxlen: 24
5.181.178.0/23 maxlen: 24
45.158.56.0/22 maxlen: 24
45.158.58.0/24 maxlen: 24
45.12.81.0/24 maxlen: 24
45.12.82.0/24 maxlen: 24
45.12.80.0/24 maxlen: 24
2.56.251.0/24 maxlen: 24
2.56.248.0/22 maxlen: 24
45.91.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:01:f4:cf:de:77:09:c8:71:db:f8:24:0c:4a:b2:58:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Oct 22 23:08:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97ba4295a4d8178571349676b148ed0f266b5eab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:9d:8e:7b:63:b8:80:b2:5e:f5:d2:23:9d:a6:
ef:17:22:02:a4:e9:e4:71:fc:fb:1c:70:2b:97:37:
5e:99:f6:10:20:e5:ab:13:a4:95:77:b0:1e:a7:3a:
14:66:e6:6a:78:6b:53:05:1e:aa:1d:a2:fa:40:cc:
fc:0e:7a:32:67:a3:d6:bc:2d:c0:e2:6c:da:6c:37:
a0:3c:c8:45:10:00:ff:f3:8a:82:34:57:88:e5:b3:
b1:b5:e6:d0:9a:c6:03:d9:13:28:60:19:00:36:4b:
01:ea:fa:4a:d2:90:ac:7a:f3:0b:da:13:4f:dc:31:
94:7e:87:3a:24:e9:90:a6:76:83:42:eb:c5:90:68:
01:b2:e6:bf:9c:77:c2:f5:22:1e:71:c3:3d:b6:ad:
0e:27:08:3c:3c:fb:2b:b6:c4:cf:3c:b0:6f:0a:19:
96:1c:86:bf:e0:4e:42:4b:a5:74:c6:a3:04:a0:7b:
f9:e2:e9:4c:d2:ac:e7:2c:93:db:b9:3b:1b:59:bf:
c9:e5:be:7d:1f:71:03:e3:51:da:8c:19:44:56:01:
74:2d:96:ed:87:81:9c:f1:4a:39:71:cc:88:a6:e3:
5b:2f:f5:e1:96:6b:80:7a:7d:42:17:44:36:a0:b1:
0d:dc:27:57:3b:44:7f:ef:8a:60:17:53:91:ae:3b:
f7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:BA:42:95:A4:D8:17:85:71:34:96:76:B1:48:ED:0F:26:6B:5E:AB
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/l7pClaTYF4VxNJZ2sUjtDyZrXqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.248.0/22
2.59.56.0/22
5.181.176.0/22
45.12.80.0-45.12.82.255
45.87.172.0/22
45.91.136.0/22
45.137.96.0/24
45.158.56.0/22
85.209.221.0-85.209.222.255
193.37.239.0/24
193.38.53.0/24
193.39.9.0-193.39.10.255
Signature Algorithm: sha256WithRSAEncryption
af:5c:ce:ae:de:da:8c:98:74:8e:7a:09:95:10:65:4f:04:56:
e7:32:5b:f5:66:e5:77:57:1e:ec:43:2f:77:79:7f:33:1a:6b:
ad:75:0a:6f:13:67:95:49:4c:37:27:ed:45:f4:dd:51:9b:cc:
b7:ac:e5:c8:f6:bd:7f:12:6a:b0:26:5b:88:1f:48:63:5b:51:
e6:1b:ae:50:1a:3f:e9:ce:4e:92:de:aa:5a:63:f4:6e:a5:92:
f6:c8:84:e9:db:fb:7c:e5:48:aa:27:78:3e:0c:fc:3c:4a:c2:
34:d0:95:fb:ce:1e:09:bc:5e:d5:03:01:35:f1:9c:e4:cb:4f:
4a:0a:83:a4:73:6a:b2:b1:99:db:91:04:42:c9:48:5e:42:f4:
92:3a:45:06:78:93:39:d3:dd:6f:c8:af:46:f2:cb:43:29:4e:
92:a6:d1:0f:4b:72:6d:76:21:5d:e7:28:9f:c5:27:1a:94:5a:
dd:c6:f2:84:e7:82:ac:a7:f3:80:64:36:4e:96:54:56:eb:50:
9a:5d:b9:ee:df:35:d4:25:d5:83:50:b2:2f:48:60:62:09:45:
69:8a:c8:53:9b:f9:2e:4e:79:33:82:7e:92:44:4e:d6:04:a6:
ac:1f:c8:2c:db:b7:aa:9c:23:b8:4e:ff:c0:11:51:7d:82:f6:
57:c9:4a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:31 2023 by rpki-client on console-fra.rpki-client.org