Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/Sf_GSjagu1rXZE-lQUvEibJgGUA.roa
File: Sf_GSjagu1rXZE-lQUvEibJgGUA.roa (raw, json)
Hash identifier: 1D6j7NUW7i3KuEi/yJ5JGdxWRKRwcYRxDx4StkUOmco=
Subject key identifier: 49:FF:C6:4A:36:A0:BB:5A:D7:64:4F:A5:41:4B:C4:89:B2:60:19:40
Certificate issuer: /CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Certificate serial: 184D7A7F
Authority key identifier: 70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/Sf_GSjagu1rXZE-lQUvEibJgGUA.roa
Signing time: Mon 20 Jun 2022 07:24:55 +0000
ROA not before: Mon 20 Jun 2022 07:24:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34655
IP address blocks: 109.71.163.0/24 maxlen: 24
109.71.162.0/24 maxlen: 24
109.71.166.0/24 maxlen: 24
109.71.165.0/24 maxlen: 24
109.71.164.0/24 maxlen: 24
109.71.160.0/24 maxlen: 24
109.71.167.0/24 maxlen: 24
5.159.216.0/24 maxlen: 24
5.159.219.0/24 maxlen: 24
5.159.218.0/24 maxlen: 24
5.159.217.0/24 maxlen: 24
185.13.88.0/24 maxlen: 24
185.13.91.0/24 maxlen: 24
185.13.90.0/24 maxlen: 24
95.128.120.0/24 maxlen: 24
95.128.123.0/24 maxlen: 24
95.128.122.0/24 maxlen: 24
95.128.121.0/24 maxlen: 24
95.128.125.0/24 maxlen: 24
95.128.124.0/24 maxlen: 24
95.128.126.0/24 maxlen: 24
95.128.127.0/24 maxlen: 24
93.93.51.0/24 maxlen: 24
93.93.50.0/24 maxlen: 24
93.93.53.0/24 maxlen: 24
93.93.54.0/24 maxlen: 24
2a03:9c40:800::/48 maxlen: 48
2a03:9c40:600::/48 maxlen: 48
2a03:9c40:400::/48 maxlen: 48
2a03:9c40:200::/48 maxlen: 48
2a03:9c40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407730815 (0x184d7a7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Validity
Not Before: Jun 20 07:24:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49ffc64a36a0bb5ad7644fa5414bc489b2601940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c9:aa:fb:3f:84:a6:c9:e4:b7:f1:11:6a:85:
6a:8a:1c:7c:27:b1:ab:10:d8:da:74:00:0a:2a:6b:
10:ff:7f:e2:3b:60:12:17:16:e4:6e:bb:e5:0f:c5:
e4:23:f0:ef:03:44:c3:47:4e:b1:07:b9:67:87:fd:
bf:08:b4:22:d6:0b:f5:bd:55:49:ba:2f:05:be:ad:
61:d1:59:b6:e3:e9:e0:36:e0:f0:f8:c3:7e:b2:cf:
af:40:16:aa:ff:aa:1a:8e:c7:6c:2e:0c:58:47:24:
4a:de:ad:4f:02:55:06:4a:53:03:02:42:1c:73:34:
fe:8b:04:a9:5a:fb:6d:47:09:5e:7d:62:d7:b5:91:
b3:59:58:a2:69:91:4d:dc:78:f9:62:24:75:49:d2:
77:6f:d4:22:10:5d:67:af:d8:e1:00:45:cf:9c:22:
ab:2e:28:3c:89:13:49:8c:c2:b0:29:d2:aa:90:69:
9d:c4:37:0c:b0:50:3b:f0:ad:1b:ee:91:76:8e:bd:
0f:50:53:e6:62:6e:15:7a:21:aa:18:41:f7:9d:58:
4b:5f:28:4d:97:a9:c8:02:bc:d8:c9:20:af:c7:66:
f4:41:51:7b:2f:76:ec:ff:0e:ca:88:a3:59:43:da:
d9:c2:46:d8:ed:b3:7e:ed:2f:8a:cd:84:13:88:02:
28:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:FF:C6:4A:36:A0:BB:5A:D7:64:4F:A5:41:4B:C4:89:B2:60:19:40
X509v3 Authority Key Identifier:
keyid:70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/Sf_GSjagu1rXZE-lQUvEibJgGUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/cE6wMksWcpndYGTbvzQNL5nEAsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.216.0/22
93.93.50.0/23
93.93.53.0-93.93.54.255
95.128.120.0/21
109.71.160.0/24
109.71.162.0-109.71.167.255
185.13.88.0/24
185.13.90.0/23
IPv6:
2a03:9c40::/48
2a03:9c40:200::/48
2a03:9c40:400::/48
2a03:9c40:600::/48
2a03:9c40:800::/48
Signature Algorithm: sha256WithRSAEncryption
7c:26:e3:35:12:a0:0d:09:dd:ea:10:05:85:41:dd:83:6d:8c:
e5:a2:9b:22:79:0e:2b:84:9f:da:88:14:e2:1b:c0:f3:9f:46:
fb:6e:7f:6a:3a:cc:0e:dc:a2:f6:38:80:54:f4:3a:ff:95:6f:
12:93:cb:44:f1:eb:b4:bc:9a:a0:3e:89:c5:ed:10:ce:ae:52:
17:15:f1:6b:79:3c:e1:58:d5:ff:37:22:0e:fb:11:d8:e9:19:
e8:c0:01:cd:64:11:81:67:99:37:7b:91:b1:42:02:d5:6a:e1:
6c:11:1d:0a:e8:55:33:6c:67:1b:41:a4:5e:46:32:47:b7:e2:
e1:e1:02:19:fc:80:db:aa:49:77:2e:d8:74:df:a8:60:a5:cb:
a2:09:34:54:53:e4:df:44:be:b5:8d:aa:23:85:05:ff:7a:36:
ae:05:19:7a:0a:07:bb:c5:48:34:d9:28:89:cf:57:a7:21:2e:
40:9b:26:97:f5:f6:80:e1:e7:25:55:2c:61:01:b1:10:b4:46:
55:45:1a:de:ad:27:64:c9:5f:1a:b6:d0:87:10:bb:05:da:32:
92:ff:55:ce:5c:52:1c:cb:34:51:c6:35:7e:ea:ba:47:75:73:
5b:09:72:1d:5d:99:3c:d4:24:c1:89:a1:00:8a:57:8d:ad:10:
c6:4e:6a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:27 2024 by rpki-client on console-ams.rpki-client.org