Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/bTwfkcWOsmmTk8fvL8mwaOAxZ3I.roa
File: bTwfkcWOsmmTk8fvL8mwaOAxZ3I.roa (raw, json)
Hash identifier: WwOI5EJUJt38kkNLkUprhtaWc8JpExADoS3wrXTVXx8=
Subject key identifier: 6D:3C:1F:91:C5:8E:B2:69:93:93:C7:EF:2F:C9:B0:68:E0:31:67:72
Certificate issuer: /CN=4944680c20d1af01f169b18ac9c77d9877133cde
Certificate serial: 0306E38C
Authority key identifier: 49:44:68:0C:20:D1:AF:01:F1:69:B1:8A:C9:C7:7D:98:77:13:3C:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SURoDCDRrwHxabGKycd9mHcTPN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/bTwfkcWOsmmTk8fvL8mwaOAxZ3I.roa
Signing time: Fri 21 Jan 2022 13:16:01 +0000
ROA not before: Fri 21 Jan 2022 13:16:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 85.255.120.0/21 maxlen: 21
176.118.80.0/21 maxlen: 21
176.113.100.0/22 maxlen: 22
91.236.88.0/22 maxlen: 22
178.212.204.0/23 maxlen: 23
178.212.202.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50783116 (0x306e38c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4944680c20d1af01f169b18ac9c77d9877133cde
Validity
Not Before: Jan 21 13:16:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d3c1f91c58eb2699393c7ef2fc9b068e0316772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c5:b4:97:a4:1c:72:72:d4:e1:6a:bf:92:43:
53:40:b2:45:56:56:da:89:33:96:02:0e:04:cb:16:
ed:1e:8b:73:73:d5:91:bb:c9:bd:be:6b:04:2e:ed:
72:63:68:d1:53:ee:2e:8f:60:4c:cc:dd:60:e2:02:
8f:fa:71:58:90:b6:01:51:8e:c7:21:6a:6f:1c:b5:
c5:75:94:6a:f2:cb:43:fb:1a:f1:b9:ec:8b:68:8f:
9d:8c:ca:e1:75:83:13:1c:27:39:d1:72:25:ec:29:
62:5a:83:3f:67:3f:16:fd:50:ef:3e:93:e2:1c:c8:
8e:57:ac:d8:cb:87:ca:d3:67:4a:54:67:b0:d2:24:
14:23:e7:9d:5d:69:19:5a:ef:a0:af:8f:e6:d5:ef:
a9:d0:c9:d9:5f:a7:56:9c:58:3b:df:e6:c8:69:14:
1a:76:9c:66:62:c4:1d:09:be:04:ce:28:1a:0e:c2:
40:39:f1:aa:4d:1e:b3:bd:f2:b9:a1:63:e9:ff:36:
d2:23:fa:3e:78:1a:54:c6:27:b0:bc:08:f1:4b:ac:
36:f8:74:65:67:f9:2d:90:14:68:d7:b4:85:41:86:
c4:43:f0:12:a4:00:0f:4e:78:ca:1a:65:d4:7e:37:
60:0b:45:2f:37:c8:a9:bf:d3:be:91:b4:dc:e9:36:
1e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3C:1F:91:C5:8E:B2:69:93:93:C7:EF:2F:C9:B0:68:E0:31:67:72
X509v3 Authority Key Identifier:
keyid:49:44:68:0C:20:D1:AF:01:F1:69:B1:8A:C9:C7:7D:98:77:13:3C:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SURoDCDRrwHxabGKycd9mHcTPN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/bTwfkcWOsmmTk8fvL8mwaOAxZ3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/SURoDCDRrwHxabGKycd9mHcTPN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.255.120.0/21
91.236.88.0/22
176.113.100.0/22
176.118.80.0/21
178.212.202.0-178.212.205.255
Signature Algorithm: sha256WithRSAEncryption
5c:f7:69:f3:04:cd:fc:d8:16:46:78:5c:d9:61:3e:7d:62:ff:
a9:b5:29:6b:83:60:8e:8a:ee:ea:5b:81:a8:d7:af:5c:a4:8b:
19:8e:39:ae:8d:76:ff:68:71:de:59:87:73:ac:a2:5b:99:04:
98:e8:6b:1e:3c:d6:ff:a8:ff:52:ab:99:6c:8c:0d:1c:eb:55:
1c:bd:8c:b1:56:e5:a7:26:84:76:a8:79:22:b0:1a:0a:67:15:
83:c3:18:e2:7e:b6:a2:38:4f:3d:7f:0b:0b:56:dc:a8:35:db:
a4:4b:5b:d0:cf:39:b4:9f:4b:ec:99:cc:b5:60:6b:07:da:d7:
f4:5e:d2:97:3c:0a:59:53:0c:82:d6:cf:9e:d3:26:cf:b6:1a:
69:67:51:d9:f7:d3:51:8f:0a:bc:e9:23:97:9b:43:e9:37:c9:
c4:ec:77:29:01:02:33:c5:b3:09:29:47:de:e4:4a:39:f8:7a:
9b:26:62:a3:60:64:28:1b:2c:a6:87:e7:49:7c:df:c4:e8:8d:
3b:f3:2f:37:1c:e1:01:c8:b3:02:30:89:a6:58:9f:2c:ce:54:
61:db:e2:5e:af:c1:9c:29:33:54:12:81:8b:2e:50:15:98:8d:
9f:a5:3f:48:6a:82:7b:73:bb:68:d5:92:d6:24:f7:bc:69:66:
2a:67:23:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:52 2024 by rpki-client on console-fra.rpki-client.org