Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/EMgoTodL5QJLf8RM9d-QePBf_Tk.roa
File: EMgoTodL5QJLf8RM9d-QePBf_Tk.roa (raw, json)
Hash identifier: hF+L8Cu7caITyfBdiZcHn/9Wa3DCZIZAAeg9LM6EPPQ=
Subject key identifier: 10:C8:28:4E:87:4B:E5:02:4B:7F:C4:4C:F5:DF:90:78:F0:5F:FD:39
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 146EC5A5
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/EMgoTodL5QJLf8RM9d-QePBf_Tk.roa
Signing time: Sat 01 Jan 2022 03:58:57 +0000
ROA not before: Sat 01 Jan 2022 03:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25525
IP address blocks: 83.98.192.0/19 maxlen: 24
83.98.201.0/24 maxlen: 24
89.30.169.0/24 maxlen: 24
213.189.0.0/19 maxlen: 24
89.30.174.0/23 maxlen: 24
213.247.32.0/19 maxlen: 24
213.247.37.0/24 maxlen: 24
89.18.160.0/19 maxlen: 24
89.30.128.0/17 maxlen: 24
85.92.128.0/19 maxlen: 24
83.98.128.0/18 maxlen: 24
89.30.193.0/24 maxlen: 24
93.175.176.0/20 maxlen: 24
195.234.173.0/24 maxlen: 24
2001:16f8::/32 maxlen: 32
2001:4198::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342803877 (0x146ec5a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 03:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10c8284e874be5024b7fc44cf5df9078f05ffd39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7e:f7:f8:88:12:b4:c2:63:99:02:aa:fb:df:
ea:96:eb:fc:8e:fb:dc:61:fd:55:19:ee:ed:0f:cc:
95:53:95:18:da:3a:d2:c7:83:f3:72:ce:dd:79:f5:
bb:80:11:b2:d6:15:1d:fd:cb:90:2b:80:65:16:0e:
af:80:54:b9:27:52:3b:90:8b:a6:19:8c:70:5b:95:
e6:6a:cb:d0:73:56:1a:73:f3:82:ab:03:5b:44:bd:
37:ae:e6:28:1d:99:84:38:81:21:27:80:dc:7b:9a:
d2:b5:a2:e8:92:3f:2b:08:37:a9:0f:92:00:b2:27:
15:a6:55:d3:9a:8b:7f:44:39:6d:32:cc:8c:77:c3:
59:45:c1:f8:1e:50:4f:25:eb:5a:a8:e6:36:b9:3b:
2c:49:07:c8:ce:5c:fc:14:bd:0d:10:a0:b5:85:88:
ff:3c:93:c9:87:e5:d0:5e:1a:13:89:57:00:49:89:
19:f9:00:24:ad:03:d5:e4:15:5a:8a:34:99:4e:dd:
40:00:0a:c5:a4:2d:a4:b7:fe:93:cd:63:6d:2f:70:
6c:7b:30:13:d7:7d:a3:5d:27:9d:af:e4:5b:04:c6:
94:a7:f4:12:4b:29:13:3f:fc:51:b7:7c:00:b4:d2:
29:9e:56:9a:b8:e0:2f:31:4a:be:41:1d:00:41:90:
84:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C8:28:4E:87:4B:E5:02:4B:7F:C4:4C:F5:DF:90:78:F0:5F:FD:39
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/EMgoTodL5QJLf8RM9d-QePBf_Tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.98.128.0-83.98.223.255
85.92.128.0/19
89.18.160.0/19
89.30.128.0/17
93.175.176.0/20
195.234.173.0/24
213.189.0.0/19
213.247.32.0/19
IPv6:
2001:16f8::/32
2001:4198::/32
Signature Algorithm: sha256WithRSAEncryption
3c:72:05:00:73:5d:46:66:1c:5e:3a:59:b4:56:3f:eb:ac:2f:
30:8d:dd:56:24:cc:b9:51:c1:1e:ac:6c:67:d4:4b:79:d4:ce:
e5:d1:7e:9d:3f:83:07:33:d8:44:03:3b:24:8b:2d:3d:81:05:
5e:8b:c1:ba:00:c8:99:db:71:35:5a:e4:6f:46:a3:c3:d2:6f:
b2:dd:40:0c:35:f6:04:cf:39:5e:8c:54:42:02:8f:9b:70:db:
33:c6:65:d2:d5:c9:5e:2e:da:04:e0:0c:b6:05:ec:1e:ea:86:
7a:b4:87:7c:59:30:d4:8c:0f:e7:ed:78:7e:b6:00:df:66:4d:
c9:71:d2:2b:06:45:0d:87:a7:46:ef:20:5a:da:bf:04:74:e6:
c6:87:f0:af:69:0f:23:ea:a9:09:56:91:4b:fd:03:ae:4e:e7:
80:ac:e1:6e:81:52:5b:71:97:49:56:6b:a2:e5:a0:11:a0:b2:
26:4b:a1:d3:d1:ab:e3:42:20:ea:93:ce:88:83:c7:88:59:83:
9e:38:b5:38:e5:f4:51:17:22:25:ad:5f:02:21:40:b5:2b:a1:
af:a3:c0:c1:a4:13:5f:c3:c6:5c:2b:6d:a5:81:50:86:0f:e3:
12:6b:63:b5:58:6c:7b:97:60:dc:56:c6:fa:e5:cc:9c:f0:04:
54:71:8d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:57 2024 by rpki-client on console-ams.rpki-client.org