Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/7a936c-d6e2-4cc1-9e4b-d237a9e6ab14/1/nRjxSsDtcPGvOUuVm90yP_NBn7w.roa
File: nRjxSsDtcPGvOUuVm90yP_NBn7w.roa (raw, json)
Hash identifier: /QxbBOKfLNvJ3LLBIeurfjolKpjfTQnpMOmFNMcEKck=
Subject key identifier: 9D:18:F1:4A:C0:ED:70:F1:AF:39:4B:95:9B:DD:32:3F:F3:41:9F:BC
Certificate issuer: /CN=caf2488824b714a1f30c2c809fbdb68575652b4a
Certificate serial: 0133C713
Authority key identifier: CA:F2:48:88:24:B7:14:A1:F3:0C:2C:80:9F:BD:B6:85:75:65:2B:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yvJIiCS3FKHzDCyAn722hXVlK0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/7a936c-d6e2-4cc1-9e4b-d237a9e6ab14/1/nRjxSsDtcPGvOUuVm90yP_NBn7w.roa
Signing time: Wed 20 Apr 2022 08:06:22 +0000
ROA not before: Wed 20 Apr 2022 08:06:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60672
IP address blocks: 31.24.106.0/24 maxlen: 24
31.24.110.0/24 maxlen: 24
31.24.109.0/24 maxlen: 24
31.24.108.0/24 maxlen: 24
31.24.107.0/24 maxlen: 24
31.24.111.0/24 maxlen: 24
94.126.41.0/24 maxlen: 24
94.126.44.0/24 maxlen: 24
94.126.44.0/23 maxlen: 23
94.126.42.0/24 maxlen: 24
94.126.46.0/24 maxlen: 24
94.126.45.0/24 maxlen: 24
178.18.118.0/24 maxlen: 24
178.18.123.0/24 maxlen: 24
193.193.163.0/24 maxlen: 24
178.18.122.0/24 maxlen: 24
193.193.162.0/24 maxlen: 24
178.18.121.0/24 maxlen: 24
178.18.120.0/22 maxlen: 22
178.18.120.0/24 maxlen: 24
31.28.64.0/24 maxlen: 24
31.28.66.0/24 maxlen: 24
31.28.69.0/24 maxlen: 24
31.28.71.0/24 maxlen: 24
31.28.73.0/24 maxlen: 24
31.28.76.0/23 maxlen: 23
31.28.76.0/22 maxlen: 22
31.28.74.0/24 maxlen: 24
31.28.78.0/24 maxlen: 24
31.28.79.0/24 maxlen: 24
31.28.91.0/24 maxlen: 24
31.28.87.0/24 maxlen: 24
31.28.90.0/24 maxlen: 24
31.28.89.0/24 maxlen: 24
31.28.88.0/24 maxlen: 24
31.28.88.0/21 maxlen: 21
31.28.92.0/22 maxlen: 22
193.192.2.0/23 maxlen: 23
193.192.2.0/24 maxlen: 24
31.24.105.0/24 maxlen: 24
31.24.104.0/21 maxlen: 21
31.24.104.0/24 maxlen: 24
2a01:8000:4::/48 maxlen: 48
2a01:8000:1ffb::/48 maxlen: 48
2a01:8000:5::/48 maxlen: 48
2a10:6740::/32 maxlen: 32
2a01:8000::/32 maxlen: 32
2a01:8000::/48 maxlen: 48
2a01:8000:1ffd::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20170515 (0x133c713)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caf2488824b714a1f30c2c809fbdb68575652b4a
Validity
Not Before: Apr 20 08:06:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d18f14ac0ed70f1af394b959bdd323ff3419fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:de:35:03:27:c9:8e:85:cb:4e:39:9d:b0:da:
74:c0:1c:17:39:91:9f:b0:d7:07:d3:a4:80:69:b9:
68:ee:55:37:c7:eb:11:1e:29:80:de:a7:00:0a:65:
d0:6a:20:8e:c6:ea:45:ab:6e:e7:ff:e8:1f:b5:01:
9d:45:b0:91:54:c6:23:d9:36:35:5e:92:1c:c5:cd:
60:33:e7:b7:74:9d:75:90:c1:07:1d:43:77:0b:86:
cf:e1:46:6f:1c:87:73:5a:06:6c:aa:b2:c2:1f:d2:
b7:e5:66:8f:f4:25:dd:46:aa:a2:f8:c4:d4:71:f5:
f7:a0:1d:55:3a:a2:d2:be:74:77:5e:3c:27:cb:10:
9a:d7:ea:18:17:fd:8b:b6:f2:73:ea:df:15:6c:33:
40:bb:39:d4:fe:8b:a8:65:54:22:38:28:52:b3:02:
7a:36:ea:b1:98:21:17:be:ca:d1:a7:40:39:7b:68:
d4:93:f7:5f:6d:41:0e:76:8e:97:0e:4d:ab:9d:c4:
bd:a8:77:96:95:23:16:97:b7:ea:7a:3f:2f:7c:b4:
a1:f0:21:4e:c4:01:72:d6:10:3e:54:c3:71:e6:67:
6d:7d:6e:35:07:90:95:52:03:72:f8:c0:91:cb:05:
84:87:d4:35:01:47:a3:02:4a:ad:9c:39:5d:e3:28:
6f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:18:F1:4A:C0:ED:70:F1:AF:39:4B:95:9B:DD:32:3F:F3:41:9F:BC
X509v3 Authority Key Identifier:
keyid:CA:F2:48:88:24:B7:14:A1:F3:0C:2C:80:9F:BD:B6:85:75:65:2B:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yvJIiCS3FKHzDCyAn722hXVlK0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a936c-d6e2-4cc1-9e4b-d237a9e6ab14/1/nRjxSsDtcPGvOUuVm90yP_NBn7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a936c-d6e2-4cc1-9e4b-d237a9e6ab14/1/yvJIiCS3FKHzDCyAn722hXVlK0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.104.0/21
31.28.64.0/24
31.28.66.0/24
31.28.69.0/24
31.28.71.0/24
31.28.73.0-31.28.74.255
31.28.76.0/22
31.28.87.0-31.28.95.255
94.126.41.0-94.126.42.255
94.126.44.0-94.126.46.255
178.18.118.0/24
178.18.120.0/22
193.192.2.0/23
193.193.162.0/23
IPv6:
2a01:8000::/32
2a10:6740::/32
Signature Algorithm: sha256WithRSAEncryption
5b:ef:1d:9b:76:94:74:90:e7:27:34:a6:28:16:03:ae:e5:63:
fc:3a:20:04:16:45:d2:f8:10:82:b6:0d:41:e5:6e:f0:93:80:
9d:0f:41:5d:a2:48:f9:bb:c7:6b:3c:48:fa:3c:0b:d7:53:7f:
6d:78:fa:0d:61:92:d2:35:3e:f2:ac:69:3e:13:36:b1:41:f0:
8b:26:92:0e:f4:b5:02:9d:c3:8f:7d:11:3c:eb:f1:73:fe:45:
9a:52:28:f0:70:ff:8e:9a:95:cd:70:2f:9d:71:64:15:89:80:
df:7b:f8:bc:9b:0a:28:90:38:f0:e7:c0:a7:cc:c9:da:53:8e:
90:df:7a:b9:1d:0d:44:ee:f2:10:04:15:96:c8:be:96:94:d7:
a1:0d:bb:d6:0a:bf:7f:31:9a:91:a2:af:2a:de:73:08:33:e8:
8c:d0:f5:70:da:56:87:7f:bb:f9:df:90:3c:36:b9:d6:a1:fc:
c6:76:84:e5:72:b1:5d:06:44:a4:a5:0c:1c:bd:9a:7d:c1:6f:
e2:93:d0:f9:f3:48:f6:dc:6c:bc:05:cc:69:f9:e3:8c:49:b1:
58:56:80:c5:88:24:ea:61:8a:fe:98:2b:dd:2f:14:b7:6e:f3:
be:21:34:ae:48:37:94:c3:37:d3:59:26:68:15:35:b2:61:68:
7e:56:ea:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:49 2024 by rpki-client on console-fra.rpki-client.org