Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/JrE7uGXF_gre1Kir3o6IRrIbgSE.roa
File: JrE7uGXF_gre1Kir3o6IRrIbgSE.roa (raw, json)
Hash identifier: 7Onnd/gFJKqAzEM6vNBPng2foEyqcppKilpPKHGEeZQ=
Subject key identifier: 26:B1:3B:B8:65:C5:FE:0A:DE:D4:A8:AB:DE:8E:88:46:B2:1B:81:21
Certificate issuer: /CN=64347465bc925c8e756ddfaa609eda02cc52d031
Certificate serial: 373FF42D
Authority key identifier: 64:34:74:65:BC:92:5C:8E:75:6D:DF:AA:60:9E:DA:02:CC:52:D0:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/JrE7uGXF_gre1Kir3o6IRrIbgSE.roa
Signing time: Sat 01 Jan 2022 03:57:28 +0000
ROA not before: Sat 01 Jan 2022 03:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42314
IP address blocks: 185.97.64.0/24 maxlen: 24
85.114.97.0/24 maxlen: 24
85.114.98.0/24 maxlen: 24
85.114.96.0/24 maxlen: 24
85.114.96.0/19 maxlen: 19
85.114.100.0/24 maxlen: 24
85.114.101.0/24 maxlen: 24
85.114.99.0/24 maxlen: 24
85.114.104.0/24 maxlen: 24
85.114.105.0/24 maxlen: 24
85.114.102.0/24 maxlen: 24
85.114.103.0/24 maxlen: 24
85.114.111.0/24 maxlen: 24
85.114.112.0/24 maxlen: 24
85.114.109.0/24 maxlen: 24
85.114.110.0/24 maxlen: 24
85.114.107.0/24 maxlen: 24
85.114.108.0/24 maxlen: 24
85.114.106.0/24 maxlen: 24
85.114.114.0/24 maxlen: 24
85.114.115.0/24 maxlen: 24
85.114.113.0/24 maxlen: 24
85.114.118.0/24 maxlen: 24
85.114.116.0/24 maxlen: 24
85.114.117.0/24 maxlen: 24
85.114.125.0/24 maxlen: 24
85.114.123.0/24 maxlen: 24
85.114.124.0/24 maxlen: 24
85.114.121.0/24 maxlen: 24
85.114.122.0/24 maxlen: 24
85.114.120.0/24 maxlen: 24
85.114.119.0/24 maxlen: 24
85.114.127.0/24 maxlen: 24
85.114.126.0/24 maxlen: 24
185.97.66.0/24 maxlen: 24
185.97.67.0/24 maxlen: 24
185.97.65.0/24 maxlen: 24
2a01:8b20::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 926938157 (0x373ff42d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64347465bc925c8e756ddfaa609eda02cc52d031
Validity
Not Before: Jan 1 03:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26b13bb865c5fe0aded4a8abde8e8846b21b8121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e7:51:f4:cf:80:06:9d:f7:09:bd:8c:20:e5:
85:db:da:88:57:e8:80:fa:85:94:85:63:39:e7:2a:
ab:66:43:8d:3b:d1:88:55:ef:04:a8:48:b9:55:64:
e1:27:d5:75:0d:66:ad:65:70:0a:0b:96:82:d8:6f:
0a:d4:71:79:c0:8a:2b:ec:34:a1:61:90:9f:ed:2a:
f5:b9:75:3b:1f:38:d7:6e:24:a9:46:1c:cd:29:a1:
7e:89:fa:db:cd:93:d1:49:7b:04:87:1c:48:23:ee:
88:ff:d5:10:7f:81:74:3f:30:96:0d:10:ed:20:d8:
95:c4:99:07:1e:6b:8d:e6:ab:69:0d:09:66:9f:8e:
34:f5:3f:47:1b:3a:c6:a7:d9:4a:49:a5:cc:02:d1:
ce:75:d1:8d:df:87:88:9f:70:3e:d8:e0:a0:26:e2:
0a:2d:77:56:fb:1b:3b:7e:53:d5:a9:42:f4:54:f8:
6f:a7:ed:25:47:5f:90:6c:05:5e:1a:3f:42:7e:32:
8b:d0:0b:9c:d9:99:92:6e:cd:08:7b:ae:79:23:a4:
ea:8f:83:92:1a:8b:97:94:bd:8e:34:0f:80:b5:bb:
30:42:b9:b8:47:14:9c:98:63:73:00:16:de:6f:6d:
91:0d:b7:3e:1e:6e:f2:33:18:17:60:68:38:55:8a:
89:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B1:3B:B8:65:C5:FE:0A:DE:D4:A8:AB:DE:8E:88:46:B2:1B:81:21
X509v3 Authority Key Identifier:
keyid:64:34:74:65:BC:92:5C:8E:75:6D:DF:AA:60:9E:DA:02:CC:52:D0:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/JrE7uGXF_gre1Kir3o6IRrIbgSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.114.96.0/19
185.97.64.0/22
IPv6:
2a01:8b20::/32
Signature Algorithm: sha256WithRSAEncryption
73:8a:54:09:27:3c:fa:96:5c:4c:f7:1d:77:ca:f5:a8:81:49:
b2:67:25:a4:06:a1:53:43:a1:f8:85:6d:d4:78:32:5e:b1:14:
32:83:f9:da:eb:58:0e:14:b1:d5:4a:a0:92:12:63:85:1f:c8:
52:8a:8f:7c:38:d9:56:b7:b6:17:c8:44:15:2e:6d:c9:f9:bd:
1f:8e:d2:04:e5:fe:fd:53:45:8e:a1:20:eb:71:6c:38:82:5a:
f6:0a:b4:ca:cc:65:ab:1b:29:40:44:44:1e:f2:d0:75:01:2b:
fd:59:d0:bb:a0:a3:dd:83:fc:04:74:f3:10:cd:57:7f:1f:1d:
2b:f6:15:89:19:6c:4b:96:d0:34:06:e7:eb:87:d2:fb:03:0f:
8c:b7:00:f7:41:79:70:e4:65:59:67:74:eb:a4:c7:cf:84:b4:
65:43:94:f0:9b:8d:10:2f:2e:c2:6e:eb:2a:b2:7b:d8:9f:46:
b0:6e:e5:e5:af:06:4d:07:b7:7d:0f:a9:68:9d:0b:1d:6e:de:
73:04:2b:a8:be:b1:7b:cc:ab:18:fa:94:df:0b:7a:cf:bb:d3:
59:f8:b6:22:78:1b:a1:3c:2d:90:a0:1c:ee:c9:d8:3f:f9:85:
93:47:67:62:c9:d0:90:2f:79:c5:b8:ab:bf:f1:d4:e5:89:44:
84:26:ae:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:02 2024 by rpki-client on console-ams.rpki-client.org