Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/0d230e-a8bc-46c9-8209-55283faeda7c/1/k5_EZ1M9coMWjdVRytFwFmLjFyY.roa
File: k5_EZ1M9coMWjdVRytFwFmLjFyY.roa (raw, json)
Hash identifier: NeAoXrR9vV7jK2bhfAhS2sX7Q+5EYIXLRIjbQtg+tqM=
Subject key identifier: 93:9F:C4:67:53:3D:72:83:16:8D:D5:51:CA:D1:70:16:62:E3:17:26
Certificate issuer: /CN=64ea03470728afa20d51ec27290c5f3af38db804
Certificate serial: 018570303BAFBAB808A860977953297FC370
Authority key identifier: 64:EA:03:47:07:28:AF:A2:0D:51:EC:27:29:0C:5F:3A:F3:8D:B8:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZOoDRwcor6INUewnKQxfOvONuAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/0d230e-a8bc-46c9-8209-55283faeda7c/1/k5_EZ1M9coMWjdVRytFwFmLjFyY.roa
Signing time: Mon 02 Jan 2023 01:54:47 +0000
ROA not before: Mon 02 Jan 2023 01:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204823
IP address blocks: 185.231.54.0/24 maxlen: 24
185.231.53.0/24 maxlen: 24
185.231.52.0/24 maxlen: 24
185.231.55.0/24 maxlen: 24
2a0c:4105::/32 maxlen: 32
2a0c:4107::/32 maxlen: 32
2a0c:4101::/32 maxlen: 32
2a0c:4106::/32 maxlen: 32
2a0c:4104::/32 maxlen: 32
2a0c:4102::/32 maxlen: 32
2a0c:4100::/32 maxlen: 32
2a0c:4103::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:3b:af:ba:b8:08:a8:60:97:79:53:29:7f:c3:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64ea03470728afa20d51ec27290c5f3af38db804
Validity
Not Before: Jan 2 01:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=939fc467533d7283168dd551cad1701662e31726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:90:52:fe:c1:b8:6f:95:06:f3:16:e6:dc:39:
f2:00:ae:2b:77:dc:1e:ae:8a:7c:7b:37:78:36:3e:
5b:f2:84:98:ed:ea:e4:52:05:56:03:37:e1:56:ae:
69:9c:32:00:33:bd:14:ba:74:fe:12:79:26:1a:08:
72:e1:a2:80:6e:39:d4:08:41:59:6f:c0:11:8d:fa:
1e:af:25:54:98:a5:d9:b6:d5:04:41:08:15:a8:2f:
eb:72:31:d9:75:f6:fe:4b:a7:fa:df:ed:a0:c7:9d:
1b:aa:29:1f:4e:cc:4a:38:6a:10:5d:42:53:40:72:
8f:63:b7:18:8b:ca:a6:0c:c0:7f:cd:0e:e6:52:95:
c8:7b:92:39:37:3c:35:79:a2:e5:9a:e7:92:ce:4a:
af:92:ba:4d:0d:d6:fc:f1:f5:5a:e3:89:dc:ee:50:
d5:97:25:40:9f:5e:de:27:d1:0a:8a:15:f6:b0:e6:
fb:b4:ae:d4:7e:c1:5d:6a:4c:01:93:26:6f:f4:35:
dd:aa:9f:bb:eb:0a:65:dd:8c:b4:72:82:14:63:d9:
f5:54:4e:65:e7:b1:73:67:18:a8:8f:0d:8b:ff:73:
14:f3:2e:f1:bf:ba:34:21:b6:8f:8f:ff:04:b7:78:
03:be:24:e9:c5:bc:02:8d:9e:7f:91:65:4d:4f:48:
2c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:9F:C4:67:53:3D:72:83:16:8D:D5:51:CA:D1:70:16:62:E3:17:26
X509v3 Authority Key Identifier:
keyid:64:EA:03:47:07:28:AF:A2:0D:51:EC:27:29:0C:5F:3A:F3:8D:B8:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZOoDRwcor6INUewnKQxfOvONuAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/0d230e-a8bc-46c9-8209-55283faeda7c/1/k5_EZ1M9coMWjdVRytFwFmLjFyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/0d230e-a8bc-46c9-8209-55283faeda7c/1/ZOoDRwcor6INUewnKQxfOvONuAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.52.0/22
IPv6:
2a0c:4100::/29
Signature Algorithm: sha256WithRSAEncryption
65:08:92:2f:7c:15:50:8a:07:78:00:ff:ec:49:5a:39:87:34:
39:9b:8d:4c:76:c9:ca:05:b6:3b:1a:47:7c:b6:b4:a1:ad:91:
b4:81:86:f4:c0:06:76:73:2c:01:56:99:69:ca:4b:23:ab:24:
25:1f:4d:81:ed:c8:0a:54:dc:44:ca:73:ae:18:aa:86:a8:d0:
02:20:eb:ef:1d:87:b3:51:db:81:7e:58:d3:aa:e7:c1:b2:c8:
18:4b:f0:b3:cc:1d:58:8a:59:77:6d:78:37:3b:97:f1:8b:72:
79:86:82:86:70:f0:c7:0d:13:c6:5a:ad:c7:07:19:f8:80:5d:
38:a5:52:fc:a8:e4:a9:99:d2:1f:d5:47:59:68:33:bd:a8:78:
18:43:3f:a9:95:29:e4:6a:96:63:69:0c:d5:45:e6:2d:d1:ad:
db:a4:d7:cb:e9:0e:92:d0:5a:3f:98:41:8d:02:15:70:62:a3:
cf:b4:d0:43:7e:32:2d:7a:7f:5c:4c:f6:88:56:8e:7e:11:c3:
15:c2:b2:4a:6d:76:60:ce:cd:07:e7:58:65:64:6f:76:3f:96:
62:2a:bb:50:e1:4e:bf:91:20:b9:96:4c:f1:97:51:33:da:1f:
cc:d1:86:e5:45:75:e6:24:2f:6c:80:14:cc:e9:1f:e7:35:74:
26:98:27:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:16 2024 by rpki-client on console-fra.rpki-client.org