Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/2a965c-3347-443e-88c7-5b4d52dc2de2/1/Rwd91rs9PVEAmGe2vfPrWiGSoxs.roa
File: Rwd91rs9PVEAmGe2vfPrWiGSoxs.roa (raw, json)
Hash identifier: yR1L5WDYDbhuAZO2DOUF31/aLwoV1kUBTUi8Mvt8uwk=
Subject key identifier: 47:07:7D:D6:BB:3D:3D:51:00:98:67:B6:BD:F3:EB:5A:21:92:A3:1B
Certificate issuer: /CN=ad12daa384888b5247df712965803f0d3fa8989d
Certificate serial: 018CC9BCC3836A2277C9654F74F3D3768779
Authority key identifier: AD:12:DA:A3:84:88:8B:52:47:DF:71:29:65:80:3F:0D:3F:A8:98:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRLao4SIi1JH33EpZYA_DT-omJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/2a965c-3347-443e-88c7-5b4d52dc2de2/1/Rwd91rs9PVEAmGe2vfPrWiGSoxs.roa
Signing time: Tue 02 Jan 2024 10:34:00 +0000
ROA not before: Tue 02 Jan 2024 10:34:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42263
IP address blocks: 185.182.32.0/22 maxlen: 22
5.253.192.0/22 maxlen: 22
185.32.80.0/22 maxlen: 22
192.70.192.0/22 maxlen: 22
185.145.196.0/22 maxlen: 22
45.94.108.0/22 maxlen: 22
45.140.116.0/22 maxlen: 22
185.115.48.0/22 maxlen: 22
185.116.244.0/24 maxlen: 24
185.116.244.0/22 maxlen: 22
45.136.96.0/22 maxlen: 22
185.173.240.0/22 maxlen: 22
2a00:c320::/32 maxlen: 32
2a00:c320::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:c3:83:6a:22:77:c9:65:4f:74:f3:d3:76:87:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad12daa384888b5247df712965803f0d3fa8989d
Validity
Not Before: Jan 2 10:34:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47077dd6bb3d3d51009867b6bdf3eb5a2192a31b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:4c:78:2b:de:f7:9f:79:57:2e:8f:c8:34:b8:
16:23:68:fc:76:c8:c0:2c:12:11:79:0f:c7:82:ca:
c3:0c:2b:d1:e0:fb:ac:6e:5a:fc:92:8e:b4:b9:d9:
5b:59:a1:af:cc:9f:97:bf:7b:c4:c6:12:27:23:98:
aa:e1:b6:2c:21:56:19:eb:0f:f8:f7:7b:26:6f:e7:
90:7e:72:d4:92:59:2a:38:77:98:49:ad:e0:0d:cc:
d7:b5:6c:56:b7:b5:53:60:03:2d:c9:05:46:1d:93:
e7:97:3f:18:f2:06:28:62:c1:a0:c2:ec:d9:1c:84:
bb:11:1d:d8:cf:f6:92:4b:2f:ca:79:a0:d7:f9:67:
69:ee:6f:a2:80:74:96:b4:a6:00:74:23:da:37:b5:
c1:c2:48:38:29:9c:ec:9c:db:fe:60:52:63:61:39:
3d:1b:76:ca:23:dc:af:f4:3f:12:3b:f7:3f:8c:79:
cb:0f:ff:64:15:39:c3:d1:3d:1c:79:2d:84:33:1a:
61:1f:94:1c:40:c4:28:43:b3:23:fd:06:65:a3:93:
27:b9:cb:60:ae:1e:74:f5:91:ed:9c:72:b3:54:e0:
c9:b1:a4:ac:f8:84:7d:01:15:c2:1a:fc:de:74:04:
d6:d2:b1:c2:1c:bc:36:fe:9d:94:eb:79:ff:f2:12:
68:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:07:7D:D6:BB:3D:3D:51:00:98:67:B6:BD:F3:EB:5A:21:92:A3:1B
X509v3 Authority Key Identifier:
keyid:AD:12:DA:A3:84:88:8B:52:47:DF:71:29:65:80:3F:0D:3F:A8:98:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRLao4SIi1JH33EpZYA_DT-omJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/2a965c-3347-443e-88c7-5b4d52dc2de2/1/Rwd91rs9PVEAmGe2vfPrWiGSoxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/2a965c-3347-443e-88c7-5b4d52dc2de2/1/rRLao4SIi1JH33EpZYA_DT-omJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.192.0/22
45.94.108.0/22
45.136.96.0/22
45.140.116.0/22
185.32.80.0/22
185.115.48.0/22
185.116.244.0/22
185.145.196.0/22
185.173.240.0/22
185.182.32.0/22
192.70.192.0/22
IPv6:
2a00:c320::/29
Signature Algorithm: sha256WithRSAEncryption
7b:41:50:2b:44:8f:6a:02:51:41:9d:f9:23:eb:b6:6e:5f:55:
c4:e9:77:f7:30:8f:ee:01:7f:97:cb:13:34:56:d1:c8:71:76:
5e:b7:1d:63:5c:28:39:f8:0c:22:57:26:ed:c2:b9:28:7e:62:
9c:37:c6:54:a2:b3:df:15:b3:92:8d:26:ac:50:21:3a:c0:29:
da:7a:8b:cd:6d:90:e0:a5:37:de:25:46:3f:66:c2:fb:b8:7d:
aa:3c:21:7e:b1:26:cf:90:a8:2b:8d:3f:40:42:68:b6:64:23:
c5:ac:5d:dd:00:af:75:5c:c0:9d:47:2b:ab:a1:8d:79:31:9d:
bf:9a:87:d3:10:0b:aa:78:58:e8:63:80:e3:db:93:8d:73:91:
4b:33:22:8b:5b:e7:87:cd:9f:da:d2:c9:68:ad:42:2d:c4:42:
8c:2b:a3:a4:62:6d:ea:d7:9e:2e:10:2a:76:4a:28:b8:2e:7c:
c5:2c:fd:1b:6c:80:06:96:7c:8e:b1:c5:ae:6f:f4:39:61:94:
41:d0:0c:3e:24:67:99:c1:96:b2:b4:3f:8c:95:48:82:51:95:
a9:a4:0d:22:7e:cb:da:75:45:be:a3:a4:b3:6b:85:e1:82:cb:
b1:07:e5:a7:7e:7b:b3:1b:1c:45:50:9d:c6:d7:8b:7f:aa:59:
3b:3f:47:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:27 2024 by rpki-client on console-fra.rpki-client.org