Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/126dc5-6b16-4ff7-a7eb-2e68f46e4765/1/KbXfPU7Wld2o0LHUOvpDpw2m2D8.roa
File: KbXfPU7Wld2o0LHUOvpDpw2m2D8.roa (raw, json)
Hash identifier: 5rQhoUugeR661AdumD4DllasvJVJ1tzeS+cqwk9Ted8=
Subject key identifier: 29:B5:DF:3D:4E:D6:95:DD:A8:D0:B1:D4:3A:FA:43:A7:0D:A6:D8:3F
Certificate issuer: /CN=f3c6211585ce05ea68c20c06c7c03b469b278294
Certificate serial: 06D0CC5E
Authority key identifier: F3:C6:21:15:85:CE:05:EA:68:C2:0C:06:C7:C0:3B:46:9B:27:82:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/88YhFYXOBepowgwGx8A7RpsngpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/126dc5-6b16-4ff7-a7eb-2e68f46e4765/1/KbXfPU7Wld2o0LHUOvpDpw2m2D8.roa
Signing time: Sat 01 Jan 2022 01:01:27 +0000
ROA not before: Sat 01 Jan 2022 01:01:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205199
IP address blocks: 194.35.182.0/24 maxlen: 24
194.35.78.0/24 maxlen: 24
194.35.95.0/24 maxlen: 24
194.35.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114347102 (0x6d0cc5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3c6211585ce05ea68c20c06c7c03b469b278294
Validity
Not Before: Jan 1 01:01:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29b5df3d4ed695dda8d0b1d43afa43a70da6d83f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d1:f2:5d:ea:27:0d:5d:35:e9:f8:13:04:cb:
47:99:ba:84:fe:49:ea:72:2d:d5:1f:ef:3c:80:4f:
e1:81:f2:de:cd:cd:29:f1:05:79:46:91:89:9b:8a:
70:99:8a:1a:2a:58:d4:7b:bc:2c:77:0b:34:29:34:
11:82:5c:ad:58:45:20:0d:27:cc:f4:e6:b3:08:67:
b3:00:79:27:01:79:1f:f2:c5:dd:b6:7d:90:2e:91:
fe:da:26:39:6b:41:45:91:b0:69:3f:7a:fa:41:f8:
df:32:d1:6a:61:3f:2a:bb:74:be:d9:b8:f7:2f:85:
63:ee:f4:d5:5b:9e:e1:58:4d:e5:26:07:47:1a:40:
08:30:5b:db:36:08:17:17:35:93:7a:df:e9:a0:fc:
01:73:a4:50:0b:5b:7d:dd:19:b6:7a:99:ef:63:ad:
2e:c7:67:3b:d5:d0:c4:0c:a0:4b:9e:90:09:57:6d:
68:10:14:66:3e:49:79:ca:eb:11:75:5f:b6:64:3e:
7d:45:75:68:43:44:91:4c:89:8f:4b:03:8e:cd:f3:
f9:b4:99:15:98:0c:21:c8:fc:24:d0:9f:51:4e:1b:
07:e7:a1:a1:cc:37:2a:0f:fc:ea:0d:e1:6e:ea:f8:
ec:3a:c2:90:66:2f:c8:87:6b:e1:5e:64:48:ab:13:
56:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:B5:DF:3D:4E:D6:95:DD:A8:D0:B1:D4:3A:FA:43:A7:0D:A6:D8:3F
X509v3 Authority Key Identifier:
keyid:F3:C6:21:15:85:CE:05:EA:68:C2:0C:06:C7:C0:3B:46:9B:27:82:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/88YhFYXOBepowgwGx8A7RpsngpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/126dc5-6b16-4ff7-a7eb-2e68f46e4765/1/KbXfPU7Wld2o0LHUOvpDpw2m2D8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/126dc5-6b16-4ff7-a7eb-2e68f46e4765/1/88YhFYXOBepowgwGx8A7RpsngpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.78.0/24
194.35.92.0/24
194.35.95.0/24
194.35.182.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:7e:d9:1e:6a:6a:50:c0:27:22:af:fc:b8:c3:f4:a8:ba:6a:
70:44:00:34:fa:df:54:32:e9:59:ed:f2:5b:96:99:b2:f0:ad:
7e:74:e5:5e:f6:0f:0a:95:98:12:5f:3d:c5:bb:60:9f:2f:23:
5b:33:ad:ca:b5:23:ba:96:3d:dd:53:93:db:9d:a9:03:6a:2c:
91:52:15:68:ca:1b:ab:28:6e:90:1d:88:68:cd:83:85:7a:b0:
67:1d:34:6a:54:a8:dc:b3:0b:9f:93:7d:f2:4b:1f:dc:9b:24:
28:67:0f:a2:79:80:bc:95:3a:0f:ca:5b:47:14:ea:3e:31:31:
4e:76:f1:39:eb:47:11:20:70:1d:19:ff:5e:d0:03:c0:ce:a3:
5c:1e:a7:b3:14:78:0f:ef:51:2d:07:ef:fe:64:ec:3d:f3:6a:
33:bf:ee:f2:e7:17:a9:fa:99:1d:5e:04:98:cd:6d:da:d8:fa:
12:76:4d:a3:d0:83:99:79:d3:1c:cc:d7:a9:a3:34:32:63:36:
9b:58:c7:41:a7:71:2a:ce:db:77:ee:6e:c1:0e:3d:c0:8a:00:
7e:4c:e9:66:a2:2f:6a:e5:1f:df:d4:f7:99:2a:34:c2:90:35:
2e:32:0a:8f:3b:e6:ec:55:39:25:fa:6a:39:b5:4e:72:aa:20:
45:0d:1a:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:19 2024 by rpki-client on console-fra.rpki-client.org