Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/DZAoSBT0F6YfxMGQdkCmFTO-oGw.roa
File: DZAoSBT0F6YfxMGQdkCmFTO-oGw.roa (raw, json)
Hash identifier: noNysJYPHknOESkdTikTLUMMM7Ypkxs5pkhs4MInuSw=
Subject key identifier: 0D:90:28:48:14:F4:17:A6:1F:C4:C1:90:76:40:A6:15:33:BE:A0:6C
Certificate issuer: /CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Certificate serial: 1852E88E
Authority key identifier: 70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/DZAoSBT0F6YfxMGQdkCmFTO-oGw.roa
Signing time: Wed 22 Jun 2022 13:40:32 +0000
ROA not before: Wed 22 Jun 2022 13:40:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34655
IP address blocks: 109.71.163.0/24 maxlen: 24
109.71.162.0/24 maxlen: 24
109.71.166.0/24 maxlen: 24
109.71.165.0/24 maxlen: 24
109.71.164.0/24 maxlen: 24
109.71.160.0/24 maxlen: 24
109.71.167.0/24 maxlen: 24
5.159.216.0/24 maxlen: 24
5.159.219.0/24 maxlen: 24
5.159.218.0/24 maxlen: 24
5.159.217.0/24 maxlen: 24
185.13.88.0/24 maxlen: 24
185.13.91.0/24 maxlen: 24
185.13.90.0/24 maxlen: 24
185.13.89.0/24 maxlen: 24
95.128.120.0/24 maxlen: 24
95.128.123.0/24 maxlen: 24
95.128.122.0/24 maxlen: 24
95.128.121.0/24 maxlen: 24
95.128.125.0/24 maxlen: 24
95.128.124.0/24 maxlen: 24
95.128.126.0/24 maxlen: 24
95.128.127.0/24 maxlen: 24
93.93.51.0/24 maxlen: 24
93.93.50.0/24 maxlen: 24
93.93.53.0/24 maxlen: 24
93.93.54.0/24 maxlen: 24
2a03:9c40:800::/48 maxlen: 48
2a03:9c40:600::/48 maxlen: 48
2a03:9c40:400::/48 maxlen: 48
2a03:9c40:200::/48 maxlen: 48
2a03:9c40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408086670 (0x1852e88e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Validity
Not Before: Jun 22 13:40:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d90284814f417a61fc4c1907640a61533bea06c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fb:b1:70:ea:0b:9d:0d:cd:7c:0a:da:af:a9:
08:db:8b:64:50:6d:ba:ba:21:db:c2:09:94:86:77:
04:69:01:aa:9b:18:13:7d:29:ab:70:25:6a:77:33:
76:b2:de:ac:47:07:55:42:81:37:b5:10:7b:95:33:
8e:b7:a1:e7:b0:0c:76:24:d0:35:1d:f9:09:0a:04:
2b:fe:17:43:a0:0d:f5:3f:37:8b:03:79:76:44:35:
55:31:e0:7c:76:42:79:a7:b2:0b:ee:1f:9b:b2:b2:
d7:ef:45:79:af:f7:26:64:cc:89:f9:ea:16:01:64:
b1:fb:64:cc:25:fa:06:8c:15:ad:66:e5:ea:5c:ec:
54:0c:a3:d4:41:26:05:73:ac:4b:d4:91:b4:a3:73:
4d:4f:71:48:38:52:ec:08:cf:96:73:6c:18:c7:36:
77:94:7c:30:be:e5:1f:71:65:04:8b:17:ff:49:91:
a0:5d:5a:51:c8:b6:2c:86:26:26:50:61:44:00:57:
7b:ff:6a:8a:cb:13:24:ac:07:f9:d8:9a:73:77:29:
e6:e7:69:9c:ff:96:cb:4a:92:b0:b8:28:4f:49:77:
7f:68:e2:d7:4c:b3:9a:91:07:10:cd:0d:d7:20:3e:
bf:94:77:88:f4:fe:6a:09:3d:74:4e:dd:87:6e:8f:
58:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:90:28:48:14:F4:17:A6:1F:C4:C1:90:76:40:A6:15:33:BE:A0:6C
X509v3 Authority Key Identifier:
keyid:70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/DZAoSBT0F6YfxMGQdkCmFTO-oGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/cE6wMksWcpndYGTbvzQNL5nEAsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.216.0/22
93.93.50.0/23
93.93.53.0-93.93.54.255
95.128.120.0/21
109.71.160.0/24
109.71.162.0-109.71.167.255
185.13.88.0/22
IPv6:
2a03:9c40::/48
2a03:9c40:200::/48
2a03:9c40:400::/48
2a03:9c40:600::/48
2a03:9c40:800::/48
Signature Algorithm: sha256WithRSAEncryption
9d:95:25:4c:92:64:b2:40:d0:08:4a:bf:22:46:11:2d:8c:c5:
fd:7f:06:9e:05:2f:db:74:68:7c:50:39:25:f4:e7:f2:00:18:
2d:52:80:ae:b5:36:b2:08:2e:07:20:59:24:59:08:cc:57:cd:
6c:5a:11:6c:63:73:3f:cd:0e:c6:8c:1f:cf:92:1a:d9:d9:d1:
1d:dc:6b:0e:00:42:20:f4:b6:fc:de:1c:52:d0:c7:c6:33:2a:
37:b7:a6:c3:30:74:3b:67:14:ec:55:8c:91:c0:2b:1e:00:b4:
fa:3d:f5:ed:d8:3b:97:c4:b7:99:f0:a9:11:aa:16:c7:26:d4:
1c:f2:96:a9:77:45:e2:b3:bf:c2:b0:8f:fa:d8:df:12:02:84:
f4:13:de:46:a1:a8:97:64:4f:4c:26:3d:af:53:15:fa:4d:f0:
0a:6e:5d:a2:8f:e2:28:91:d4:c7:be:cd:00:8f:c8:cf:1c:03:
a3:41:9d:9e:fc:b8:05:f9:ad:dd:fa:67:6f:56:f2:d7:4c:3a:
7a:a1:90:57:1c:5b:14:82:2b:f2:cc:9c:ff:90:91:41:95:9a:
09:03:da:53:00:b2:ea:fe:a0:5e:f7:0c:e4:78:b8:32:53:c0:
c3:0a:9b:c6:cd:a9:45:8a:0f:bf:22:35:9a:97:34:3d:51:8b:
28:b8:bd:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:27 2024 by rpki-client on console-ams.rpki-client.org