Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/277c8a-d704-446f-ba87-1b98d491cd3c/1/WmKfEjhhT2VCHmc7dDrNmevb9YY.roa
File: WmKfEjhhT2VCHmc7dDrNmevb9YY.roa (raw, json)
Hash identifier: LRF7WZQQRFHvk51KLCsRcO8sClTu1OsHT6vwpw+Ql4Q=
Subject key identifier: 5A:62:9F:12:38:61:4F:65:42:1E:67:3B:74:3A:CD:99:EB:DB:F5:86
Certificate issuer: /CN=d4ec0ed237dc07c25167867355454116eece927e
Certificate serial: 01857015095E44E838BCC55E3BFC0371A350
Authority key identifier: D4:EC:0E:D2:37:DC:07:C2:51:67:86:73:55:45:41:16:EE:CE:92:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OwO0jfcB8JRZ4ZzVUVBFu7Okn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/277c8a-d704-446f-ba87-1b98d491cd3c/1/WmKfEjhhT2VCHmc7dDrNmevb9YY.roa
Signing time: Mon 02 Jan 2023 01:25:04 +0000
ROA not before: Mon 02 Jan 2023 01:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199736
IP address blocks: 5.183.220.0/22 maxlen: 22
195.211.168.0/22 maxlen: 22
185.87.188.0/22 maxlen: 22
185.219.136.0/22 maxlen: 22
185.38.128.0/22 maxlen: 22
2a00:fde0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:09:5e:44:e8:38:bc:c5:5e:3b:fc:03:71:a3:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ec0ed237dc07c25167867355454116eece927e
Validity
Not Before: Jan 2 01:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a629f1238614f65421e673b743acd99ebdbf586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:22:8e:7b:de:a6:17:fc:3b:6e:bf:df:1d:a9:
f2:e3:aa:1d:49:59:52:a1:ea:7e:4d:68:24:75:93:
13:af:37:24:36:3b:e8:f3:40:f9:62:67:87:38:34:
97:2a:9a:21:72:4e:74:b4:bf:09:91:63:04:4a:42:
e2:dc:34:a1:58:d8:72:34:c4:f8:b4:82:29:40:3d:
29:dc:25:93:0d:92:6f:f9:3b:d8:be:9e:ea:09:b6:
f6:ce:42:f5:95:cb:6a:8f:dd:3f:35:f6:90:1a:18:
4d:20:25:39:cb:0e:4d:d8:b8:02:4b:29:46:e6:51:
cc:95:bd:e0:6e:29:0a:ab:59:ac:a6:c8:9a:f8:c4:
f0:bf:67:fb:88:53:61:48:20:2a:87:5e:a2:a3:87:
b1:27:43:95:81:d3:9f:a6:0e:81:18:9f:00:74:70:
67:93:35:05:b9:67:89:c9:0c:87:0c:5a:41:18:70:
c5:a5:83:ca:90:43:18:41:1e:12:e8:c4:47:25:6f:
5d:d2:ab:29:b2:85:07:18:f5:09:14:a3:73:68:d7:
a2:8c:4a:d0:a8:93:30:31:28:e7:d7:2e:6f:28:83:
d2:89:b1:7b:c5:70:b7:9a:c9:57:2a:95:2f:c0:6e:
2e:88:1d:03:a8:34:29:f9:b2:c2:5c:08:65:f7:c3:
21:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:62:9F:12:38:61:4F:65:42:1E:67:3B:74:3A:CD:99:EB:DB:F5:86
X509v3 Authority Key Identifier:
keyid:D4:EC:0E:D2:37:DC:07:C2:51:67:86:73:55:45:41:16:EE:CE:92:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OwO0jfcB8JRZ4ZzVUVBFu7Okn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/277c8a-d704-446f-ba87-1b98d491cd3c/1/WmKfEjhhT2VCHmc7dDrNmevb9YY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/277c8a-d704-446f-ba87-1b98d491cd3c/1/1OwO0jfcB8JRZ4ZzVUVBFu7Okn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.220.0/22
185.38.128.0/22
185.87.188.0/22
185.219.136.0/22
195.211.168.0/22
IPv6:
2a00:fde0::/32
Signature Algorithm: sha256WithRSAEncryption
70:74:fa:99:5f:08:26:3e:68:c2:60:0e:72:1d:4e:1c:da:29:
4c:b1:dd:d7:b5:37:6f:3e:15:b5:ec:70:64:19:38:3a:97:c5:
b1:45:94:e3:74:9f:e1:be:97:c2:96:09:9c:84:ba:5e:45:3b:
05:bf:c5:45:0f:b1:ba:d5:73:16:3f:73:ef:57:b2:17:57:1f:
61:71:41:47:6b:52:87:9b:e0:43:3a:6a:3f:72:3a:af:17:b3:
cf:89:63:f8:11:f8:74:1a:bc:20:ff:ca:4a:72:a3:79:3f:3a:
56:a5:11:29:7f:c2:ab:44:01:c6:0c:5e:79:68:ab:8a:5d:16:
84:ce:a3:d5:b0:ee:7a:73:f7:06:2f:68:8b:a8:ad:7d:5b:2b:
aa:88:bf:3f:c1:62:da:9a:39:0e:e2:20:f8:48:cf:6f:41:52:
dd:c1:6b:de:19:88:b9:3b:04:d5:fa:79:ba:f6:f2:da:47:1d:
23:bb:ca:01:be:3a:97:b3:fd:b3:8f:94:a6:a4:8d:ab:0e:48:
b1:23:54:a5:2e:d7:4b:d0:30:57:be:45:57:49:f9:81:69:8a:
99:b0:fb:f9:06:cc:2e:aa:3f:7a:8b:45:49:49:6a:e2:f3:86:
82:4e:fc:74:e5:cd:04:9b:26:64:75:36:1c:d9:20:27:5f:17:
a2:4b:ef:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:43 2024 by rpki-client on console-fra.rpki-client.org