Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/5e1167-cced-4846-a2c9-75bd1cc5ef3d/1/TNyIMcz0UyJhlQ7f4sUMcR8nFYs.roa
File: TNyIMcz0UyJhlQ7f4sUMcR8nFYs.roa (raw, json)
Hash identifier: JBHPuT/kBtmp52oixo1HKv16myvnDBOiXBhI0ObdMT4=
Subject key identifier: 4C:DC:88:31:CC:F4:53:22:61:95:0E:DF:E2:C5:0C:71:1F:27:15:8B
Certificate issuer: /CN=41e9a4d7f9fefd732ec040fb361261587487c07e
Certificate serial: 01E7D773
Authority key identifier: 41:E9:A4:D7:F9:FE:FD:73:2E:C0:40:FB:36:12:61:58:74:87:C0:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qemk1_n-_XMuwED7NhJhWHSHwH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/5e1167-cced-4846-a2c9-75bd1cc5ef3d/1/TNyIMcz0UyJhlQ7f4sUMcR8nFYs.roa
Signing time: Sat 01 Jan 2022 01:54:38 +0000
ROA not before: Sat 01 Jan 2022 01:54:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201502
IP address blocks: 185.25.139.0/24 maxlen: 24
185.25.138.0/24 maxlen: 24
185.25.137.0/24 maxlen: 24
185.25.136.0/24 maxlen: 24
188.208.19.0/24 maxlen: 24
185.203.172.0/24 maxlen: 24
185.203.175.0/24 maxlen: 24
185.203.174.0/24 maxlen: 24
185.203.173.0/24 maxlen: 24
46.255.240.0/24 maxlen: 24
46.255.246.0/24 maxlen: 24
46.255.245.0/24 maxlen: 24
46.255.244.0/24 maxlen: 24
46.255.243.0/24 maxlen: 24
46.255.242.0/24 maxlen: 24
46.255.241.0/24 maxlen: 24
46.255.247.0/24 maxlen: 24
188.214.82.0/24 maxlen: 24
188.214.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31971187 (0x1e7d773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41e9a4d7f9fefd732ec040fb361261587487c07e
Validity
Not Before: Jan 1 01:54:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cdc8831ccf4532261950edfe2c50c711f27158b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e7:92:7b:ea:4a:d1:dc:ff:32:75:b4:66:55:
63:49:49:4f:f8:3a:e5:fa:81:54:af:62:bc:b5:03:
c5:6b:9e:d7:1d:85:3e:77:4a:00:e4:b4:af:c4:e8:
22:ff:ec:77:80:08:94:ad:43:67:39:85:7c:e5:bd:
de:b2:46:72:eb:63:ff:02:1c:23:94:30:2a:08:91:
d8:75:5e:62:f2:ec:c9:29:b9:1d:30:55:f6:0c:30:
36:2b:df:42:b5:23:32:b4:80:f3:ac:3a:6e:f1:96:
0a:f5:c6:0d:97:12:3d:ad:2a:9d:46:f9:d7:10:10:
38:bb:41:96:22:d5:18:0f:17:89:97:6e:75:6e:f2:
13:8b:15:1c:e0:cc:e4:e7:11:c2:70:0d:d9:eb:82:
10:7c:d9:49:61:90:b7:61:83:27:df:2b:ca:c5:30:
72:65:04:19:a1:c9:6f:97:28:18:46:dd:90:a1:ff:
80:bd:d6:96:51:e7:a9:cb:9c:0d:8c:1d:8c:3c:dc:
8e:7d:2f:99:b1:26:02:1a:d8:63:9e:02:28:65:d0:
5a:0a:16:1b:67:90:a4:d9:4e:58:79:1f:3b:00:5f:
9a:c6:54:ab:b5:14:35:2d:e3:81:b3:3e:81:83:60:
3c:8c:6e:5e:58:e2:b8:5c:af:df:1e:55:90:43:d6:
47:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:DC:88:31:CC:F4:53:22:61:95:0E:DF:E2:C5:0C:71:1F:27:15:8B
X509v3 Authority Key Identifier:
keyid:41:E9:A4:D7:F9:FE:FD:73:2E:C0:40:FB:36:12:61:58:74:87:C0:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qemk1_n-_XMuwED7NhJhWHSHwH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/5e1167-cced-4846-a2c9-75bd1cc5ef3d/1/TNyIMcz0UyJhlQ7f4sUMcR8nFYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/5e1167-cced-4846-a2c9-75bd1cc5ef3d/1/Qemk1_n-_XMuwED7NhJhWHSHwH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.255.240.0/21
185.25.136.0/22
185.203.172.0/22
188.208.19.0/24
188.214.82.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:e1:e8:3a:02:77:30:35:fb:3a:a7:d6:d9:00:bf:68:0e:fb:
1e:b0:fb:6a:3e:3c:f1:7e:92:8e:78:38:95:5c:6e:b9:d2:91:
8c:fa:db:10:13:96:b7:8f:95:cf:5c:02:58:1b:e7:e1:78:f1:
dc:45:24:a8:d6:77:c6:af:1e:db:96:e8:f0:2d:0e:25:1e:4e:
3c:87:6f:c3:89:70:97:2c:df:b0:13:2c:aa:fa:74:67:6f:d9:
6c:bc:d1:8a:11:2a:8a:79:e5:06:44:4b:93:c4:d9:28:52:07:
7d:70:36:9c:e6:82:73:57:be:4c:b7:ce:9a:c0:b8:9f:57:c4:
96:c6:8c:20:79:92:e4:1c:37:68:85:5e:31:bf:28:bb:a5:d3:
ae:70:21:b2:eb:1c:39:7d:ad:a9:c2:68:1a:91:f4:07:7a:1e:
c6:fd:6a:66:31:79:10:7b:c1:57:54:b1:6e:85:82:ab:ae:b0:
53:05:58:94:cd:a1:73:5b:f1:80:55:ec:a6:da:6c:76:39:a0:
1f:e4:77:0f:24:5b:4d:d6:32:08:b0:dd:8d:0e:81:29:99:8c:
dc:d4:c9:6f:d2:9e:6a:9e:bb:f6:24:9d:7a:4a:5f:a6:91:32:
5d:78:3a:43:99:be:96:7f:f0:fc:14:a6:a5:33:f1:6b:01:d2:
19:9f:4f:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:16 2024 by rpki-client on console-fra.rpki-client.org