Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/JQ7DzKelQJmNEKH7ovUicpAUd-c.roa
File: JQ7DzKelQJmNEKH7ovUicpAUd-c.roa (raw, json)
Hash identifier: bsv8Ii+qfQ/IR0+gCZxNa1ABmNmc2czHx+29LlC9IW4=
Subject key identifier: 25:0E:C3:CC:A7:A5:40:99:8D:10:A1:FB:A2:F5:22:72:90:14:77:E7
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 1476DE8E
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/JQ7DzKelQJmNEKH7ovUicpAUd-c.roa
Signing time: Sat 01 Jan 2022 03:59:01 +0000
ROA not before: Sat 01 Jan 2022 03:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48635
IP address blocks: 83.98.147.0/24 maxlen: 24
83.98.177.0/24 maxlen: 24
85.92.132.0/24 maxlen: 24
85.92.131.0/24 maxlen: 24
85.92.128.0/23 maxlen: 23
85.92.139.0/24 maxlen: 24
85.92.137.0/24 maxlen: 24
85.92.145.0/24 maxlen: 24
85.92.147.0/24 maxlen: 24
89.18.189.0/24 maxlen: 24
89.18.190.0/24 maxlen: 24
89.30.144.0/23 maxlen: 23
89.30.160.0/22 maxlen: 22
213.189.2.0/23 maxlen: 23
213.189.9.0/24 maxlen: 24
89.18.161.0/24 maxlen: 24
89.18.164.0/22 maxlen: 22
89.18.172.0/23 maxlen: 23
89.18.168.0/24 maxlen: 24
89.18.171.0/24 maxlen: 24
89.18.169.0/24 maxlen: 24
89.18.174.0/24 maxlen: 24
89.18.181.0/24 maxlen: 24
213.189.17.0/24 maxlen: 24
213.189.23.0/24 maxlen: 24
213.189.29.0/24 maxlen: 24
213.189.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343334542 (0x1476de8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 03:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=250ec3cca7a540998d10a1fba2f52272901477e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:29:75:d6:94:5b:cb:38:64:49:12:fc:ff:f0:
32:86:55:ed:a9:c4:37:7f:02:35:49:7c:26:e1:c3:
9f:6d:f9:65:bc:87:d2:f3:1d:07:6a:06:cb:3b:5d:
2d:b1:a9:69:9b:ad:00:6b:66:76:66:21:a0:1e:4c:
c7:71:f9:cc:45:6b:65:62:d5:f4:76:20:b5:44:0c:
39:cb:9a:60:1a:19:aa:1f:1c:1e:66:23:a1:31:60:
81:53:c8:ed:a7:3e:85:18:e2:52:4e:d8:64:a8:74:
5d:30:23:e5:97:96:b8:9a:f0:a6:7d:f1:47:e6:b6:
1a:3f:fe:13:8d:6a:69:82:1a:31:f2:b7:43:33:0f:
2a:c3:fa:fc:d7:32:79:fa:dc:f4:e4:79:5f:94:ff:
cc:74:ee:f4:75:57:73:02:ba:80:3f:4b:67:c1:e7:
dd:39:ca:c6:0a:84:22:6f:4a:e7:7e:82:66:c6:5c:
9e:14:f2:89:bd:f0:8f:18:c0:25:e2:e2:d6:34:f9:
bc:c3:ac:97:98:ed:e6:77:2a:c6:f1:f0:0e:ec:74:
e3:a6:d0:15:9c:87:4e:42:2d:64:9e:b3:6a:54:9b:
7f:89:bb:d2:d5:e1:b6:09:af:77:12:e8:4d:8c:01:
e2:34:92:73:46:ee:32:1f:e9:38:a1:96:8b:30:f0:
3e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:0E:C3:CC:A7:A5:40:99:8D:10:A1:FB:A2:F5:22:72:90:14:77:E7
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/JQ7DzKelQJmNEKH7ovUicpAUd-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.98.147.0/24
83.98.177.0/24
85.92.128.0/23
85.92.131.0-85.92.132.255
85.92.137.0/24
85.92.139.0/24
85.92.145.0/24
85.92.147.0/24
89.18.161.0/24
89.18.164.0-89.18.169.255
89.18.171.0-89.18.174.255
89.18.181.0/24
89.18.189.0-89.18.190.255
89.30.144.0/23
89.30.160.0/22
213.189.2.0/23
213.189.9.0/24
213.189.17.0/24
213.189.23.0/24
213.189.27.0/24
213.189.29.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f4:71:24:91:91:ad:f4:0c:86:8f:21:b1:44:a9:5c:9d:e7:
ee:c0:df:7c:8d:92:6e:c9:15:d4:83:46:c0:4b:f8:e9:7d:39:
25:1f:5d:ea:f4:12:7b:88:80:9d:31:1b:17:43:78:59:0a:07:
fd:83:4f:e9:a5:d3:35:a6:1f:d9:8f:35:42:40:66:8f:22:90:
44:88:32:34:5a:a5:07:30:a5:e7:50:d8:4a:d7:f8:18:bb:d7:
3f:1d:31:f6:97:0d:44:45:0f:6b:43:0f:c4:cc:f5:99:89:90:
74:20:d3:0a:e8:6b:22:a7:5d:5f:9e:69:59:25:bf:3a:d9:ca:
b3:42:72:9e:6c:8c:88:ff:5a:7f:ea:0e:ab:7c:80:8e:56:d6:
20:32:e8:ad:1d:13:85:17:5e:cb:3b:fa:40:db:19:a4:76:bd:
f8:20:18:f9:d3:78:31:73:c2:4a:65:e1:66:25:9b:6c:ae:b4:
2b:bf:c3:39:bd:d9:7a:ae:13:61:1a:49:11:dc:55:b9:95:9b:
d4:99:a2:30:6f:c8:c9:f1:74:10:a2:03:8d:b5:eb:67:d7:e5:
61:e7:c5:dc:cc:d4:2e:6b:98:83:88:37:21:a5:f5:d7:19:59:
5f:c2:ba:c7:91:69:74:e4:29:7f:ee:a4:aa:23:94:10:8f:3c:
a6:a3:36:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org