Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/uZ2XELrxwYgc7fVA9Zl72OsuqaE.roa
File: uZ2XELrxwYgc7fVA9Zl72OsuqaE.roa (raw, json)
Hash identifier: YKBRaBFzsEyjEXFCECZOh2rIf2CBzFdFckdL4gLh7O8=
Subject key identifier: B9:9D:97:10:BA:F1:C1:88:1C:ED:F5:40:F5:99:7B:D8:EB:2E:A9:A1
Certificate issuer: /CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Certificate serial: 186B2F25
Authority key identifier: 70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/uZ2XELrxwYgc7fVA9Zl72OsuqaE.roa
Signing time: Fri 01 Jul 2022 07:20:00 +0000
ROA not before: Fri 01 Jul 2022 07:20:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34655
IP address blocks: 109.71.163.0/24 maxlen: 24
109.71.162.0/24 maxlen: 24
109.71.161.0/24 maxlen: 24
109.71.166.0/24 maxlen: 24
109.71.165.0/24 maxlen: 24
109.71.164.0/24 maxlen: 24
109.71.160.0/24 maxlen: 24
109.71.167.0/24 maxlen: 24
5.159.216.0/24 maxlen: 24
5.159.219.0/24 maxlen: 24
5.159.218.0/24 maxlen: 24
5.159.217.0/24 maxlen: 24
185.13.88.0/24 maxlen: 24
185.13.91.0/24 maxlen: 24
185.13.90.0/24 maxlen: 24
185.13.89.0/24 maxlen: 24
95.128.120.0/24 maxlen: 24
95.128.123.0/24 maxlen: 24
95.128.122.0/24 maxlen: 24
95.128.121.0/24 maxlen: 24
95.128.125.0/24 maxlen: 24
95.128.124.0/24 maxlen: 24
95.128.126.0/24 maxlen: 24
95.128.127.0/24 maxlen: 24
93.93.51.0/24 maxlen: 24
93.93.50.0/24 maxlen: 24
93.93.53.0/24 maxlen: 24
93.93.54.0/24 maxlen: 24
2a03:9c40::/48 maxlen: 48
2a03:9c40:200::/48 maxlen: 48
2a03:9c40:400::/48 maxlen: 48
2a03:9c40:600::/48 maxlen: 48
2a03:9c40:800::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 409677605 (0x186b2f25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Validity
Not Before: Jul 1 07:20:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b99d9710baf1c1881cedf540f5997bd8eb2ea9a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a1:91:0e:3c:14:c7:e4:7f:7d:b7:a6:9e:8f:
12:f7:ba:36:22:c4:0e:a2:2b:76:25:53:60:af:11:
66:94:7f:86:e2:38:8f:56:9f:2d:0a:69:a9:48:ba:
5e:f2:34:48:fe:20:bd:2f:48:74:34:b4:8a:d9:19:
87:0f:6b:fe:44:31:00:19:4f:40:d7:d1:7f:b3:45:
de:d2:ed:d0:b2:62:ef:ba:9a:e9:63:a8:1b:f2:74:
0f:20:b2:6b:18:a1:b0:c4:15:0f:e6:68:d2:bf:77:
d6:69:73:e1:69:19:16:c0:d8:b1:02:aa:90:71:83:
e7:54:14:24:24:f6:2d:96:d0:97:f6:22:f5:7e:a6:
0e:6d:71:cf:9e:1d:31:78:e4:14:b9:f5:e1:16:2c:
20:80:71:13:e4:1c:e7:90:7f:2b:c4:e8:d2:4a:e8:
5b:c1:41:26:a4:00:88:3c:6c:1b:0d:a0:5e:b3:f5:
5c:62:b5:28:04:d4:4f:3d:43:6b:7a:38:93:19:78:
90:80:b4:27:66:e3:2f:24:34:3e:a3:bd:71:ac:1b:
37:43:d2:c9:24:0f:a7:40:ae:ac:70:4c:bb:05:0c:
4f:59:d1:ce:1a:ce:70:95:b5:c2:21:a1:5d:42:4f:
77:c3:a8:9d:38:b2:16:1c:33:66:0f:ca:d2:f8:07:
ae:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:9D:97:10:BA:F1:C1:88:1C:ED:F5:40:F5:99:7B:D8:EB:2E:A9:A1
X509v3 Authority Key Identifier:
keyid:70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/uZ2XELrxwYgc7fVA9Zl72OsuqaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/cE6wMksWcpndYGTbvzQNL5nEAsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.216.0/22
93.93.50.0/23
93.93.53.0-93.93.54.255
95.128.120.0/21
109.71.160.0/21
185.13.88.0/22
IPv6:
2a03:9c40::/48
2a03:9c40:200::/48
2a03:9c40:400::/48
2a03:9c40:600::/48
2a03:9c40:800::/48
Signature Algorithm: sha256WithRSAEncryption
51:6e:5f:7f:90:7f:4e:60:35:c9:ff:f7:49:5e:a7:16:32:57:
07:3a:e0:27:5a:06:f0:3c:e6:fc:de:6f:ce:de:0c:87:57:a8:
71:66:13:6f:3a:93:9a:72:d4:3a:29:5b:a7:f3:3e:88:4c:db:
92:74:44:8d:28:f3:73:c7:51:0e:aa:d4:0c:fa:20:1c:59:91:
26:34:f8:38:e0:4b:bc:8d:da:3e:fa:bb:08:7b:80:84:a8:e4:
e8:eb:94:95:90:0a:2c:1e:b8:e7:9e:8c:5d:b2:e7:da:90:73:
9f:1e:49:72:ab:4f:43:59:71:3f:05:85:ac:82:b1:6a:c6:50:
55:71:a2:bc:e7:92:1d:ad:e4:e7:c6:09:da:53:5f:22:20:9b:
30:0f:5f:9c:fe:a4:e2:39:31:14:5b:37:a6:2f:97:60:12:e2:
4e:a5:4d:04:70:64:c3:56:38:35:45:f1:32:27:4f:67:90:a1:
cc:dd:3b:97:bd:a5:fb:fa:de:64:45:96:77:69:30:d5:3f:5a:
cb:b2:6e:15:b8:33:71:83:2c:97:d8:f3:ac:d8:c6:76:38:0c:
d9:b7:56:ad:52:fa:28:cb:2f:da:8e:8f:a9:3d:c4:d0:75:4d:
a4:0d:b1:61:6a:f3:5f:81:28:1a:ab:55:ac:93:d3:8a:a0:84:
bd:02:84:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:27 2024 by rpki-client on console-ams.rpki-client.org