Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/1SGbgqfDXJQx81eNzc8gCrEywUg.roa
File: 1SGbgqfDXJQx81eNzc8gCrEywUg.roa (raw, json)
Hash identifier: fTmYHTOCNdzUOjqtYsN247DrVecxcSoZtQse9+YczCU=
Subject key identifier: D5:21:9B:82:A7:C3:5C:94:31:F3:57:8D:CD:CF:20:0A:B1:32:C1:48
Certificate issuer: /CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Certificate serial: 018D842F1B90A8A2CEFB71B7C96192D3CE40
Authority key identifier: 33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/1SGbgqfDXJQx81eNzc8gCrEywUg.roa
Signing time: Wed 07 Feb 2024 15:28:16 +0000
ROA not before: Wed 07 Feb 2024 15:28:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 80.91.212.0/24 maxlen: 24
94.124.77.0/24 maxlen: 24
146.19.96.0/24 maxlen: 24
212.52.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:2f:1b:90:a8:a2:ce:fb:71:b7:c9:61:92:d3:ce:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Validity
Not Before: Feb 7 15:28:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5219b82a7c35c9431f3578dcdcf200ab132c148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3d:dc:09:dc:93:69:f8:60:2d:16:d8:82:5d:
30:6c:c6:fd:c5:d9:bc:8d:8d:4f:dd:13:c2:01:7c:
78:71:86:7c:18:c6:a4:b6:15:4b:f5:38:35:bd:bd:
e7:6c:ad:b7:21:75:e5:cf:99:72:26:dd:82:5c:3a:
a0:9e:0f:0a:a9:73:4a:cb:2c:be:d6:fb:3f:33:82:
d2:3a:4f:fd:cc:01:46:d9:bb:dc:0f:d7:12:a6:96:
8b:38:ea:4c:ef:c1:33:2f:ad:95:1e:f8:3a:a2:4c:
9f:0d:f0:ec:45:33:4a:9d:6c:11:8f:cb:46:e9:62:
09:35:0e:e7:ab:9a:09:34:ce:a0:c5:09:1e:43:65:
b4:b4:2f:e0:14:a5:d0:09:d7:77:85:e6:0a:1e:58:
f0:36:6b:3d:f7:08:01:b8:f8:5a:0a:82:e0:fa:47:
91:91:f2:f7:5b:01:dc:00:f0:42:32:aa:4f:06:01:
2b:b8:f8:81:0f:fe:05:7b:97:9a:30:4f:af:c2:03:
5c:ba:f8:f9:e1:ee:c3:25:57:73:f0:45:3a:4e:f2:
02:06:9d:06:65:81:1f:77:93:4e:49:15:60:22:b8:
5e:39:52:81:a0:cf:13:0e:15:10:ce:c8:c0:c2:65:
5e:64:6e:82:35:81:02:47:11:8f:93:38:9c:b1:02:
2e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:21:9B:82:A7:C3:5C:94:31:F3:57:8D:CD:CF:20:0A:B1:32:C1:48
X509v3 Authority Key Identifier:
keyid:33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/1SGbgqfDXJQx81eNzc8gCrEywUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/M_XOH8N5J8taTmexdsemOzL_bok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.212.0/24
94.124.77.0/24
146.19.96.0/24
212.52.27.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:de:e7:c6:98:0c:34:5b:02:95:d7:56:dd:61:00:c7:08:c4:
00:c2:7d:dd:33:00:2a:b3:4d:35:81:57:07:b4:dd:7f:f2:c5:
ba:62:2e:d4:86:47:92:0b:49:c8:d4:70:c5:4c:8c:a5:88:50:
3f:1c:88:4a:cd:e0:fc:1f:9a:28:7e:63:25:c9:4b:c6:68:5f:
64:d9:17:8d:25:b5:24:12:61:31:27:48:d9:3a:1f:22:f2:13:
0e:17:49:10:f1:aa:aa:29:0e:88:c0:83:09:43:2b:64:cf:28:
d5:e9:07:f4:56:7c:f8:c7:3d:ab:7c:53:4b:e6:ec:72:fc:61:
0f:f4:46:aa:80:44:e5:5b:80:33:95:b1:68:66:67:c0:fd:f7:
f0:b1:0d:3a:5e:6b:e2:32:f7:38:c3:eb:cf:31:df:8c:53:a3:
1c:e6:9c:a8:fa:a1:46:11:2f:3c:48:31:5b:44:6f:36:96:f6:
04:e8:56:23:ee:9d:1c:99:71:df:fd:11:f1:0d:08:9d:ee:d6:
cf:0d:1c:c4:64:b5:91:cc:78:89:5b:12:29:ba:c7:61:fb:c9:
15:d4:9a:6a:66:13:42:33:fa:47:98:b9:9a:94:27:ee:45:b8:
54:11:67:b2:b9:25:82:cb:ff:f8:08:b9:71:f4:36:ac:0f:cd:
be:18:2a:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:09 2024 by rpki-client on console-ams.rpki-client.org