Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/adcd18-eb22-4031-be5d-4287346c7f18/1/xMZzvtBYqhf2QhqEKjA4V5AW3xM.roa
File: xMZzvtBYqhf2QhqEKjA4V5AW3xM.roa (raw, json)
Hash identifier: H+i+W8h/wAOC4qfAER27SjANvqMmKQRX2CKo6/GjRas=
Subject key identifier: C4:C6:73:BE:D0:58:AA:17:F6:42:1A:84:2A:30:38:57:90:16:DF:13
Certificate issuer: /CN=0eae204b66eb4ecfeac2d2e180f2ee686b9aa7d7
Certificate serial: 01856C0A4F220639603E4897FC78CE4CE261
Authority key identifier: 0E:AE:20:4B:66:EB:4E:CF:EA:C2:D2:E1:80:F2:EE:68:6B:9A:A7:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dq4gS2brTs_qwtLhgPLuaGuap9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/adcd18-eb22-4031-be5d-4287346c7f18/1/xMZzvtBYqhf2QhqEKjA4V5AW3xM.roa
Signing time: Sun 01 Jan 2023 06:34:53 +0000
ROA not before: Sun 01 Jan 2023 06:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205460
IP address blocks: 185.218.10.0/24 maxlen: 24
185.218.11.0/24 maxlen: 24
185.218.8.0/22 maxlen: 22
185.218.8.0/24 maxlen: 24
185.218.9.0/24 maxlen: 24
194.55.142.0/24 maxlen: 24
194.55.140.0/24 maxlen: 24
194.55.143.0/24 maxlen: 24
194.55.140.0/22 maxlen: 22
194.55.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:4f:22:06:39:60:3e:48:97:fc:78:ce:4c:e2:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eae204b66eb4ecfeac2d2e180f2ee686b9aa7d7
Validity
Not Before: Jan 1 06:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4c673bed058aa17f6421a842a3038579016df13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:99:3a:fb:a8:f6:df:f6:ff:0b:61:2f:0d:10:
a1:60:47:f1:c9:1b:2b:2d:0f:90:b8:77:f5:cd:fd:
61:7c:1a:bc:9e:19:72:f7:61:73:f1:77:50:fc:33:
01:81:9d:bc:db:f9:aa:97:47:b4:66:42:f3:0f:be:
3c:20:e5:e7:c7:87:6e:38:6e:30:17:25:f2:a6:18:
02:0a:b5:f7:9f:0c:aa:cf:71:b8:83:bf:35:f6:c6:
cb:37:f0:92:38:79:df:f9:53:f9:33:3a:c9:08:c7:
10:24:52:0f:20:c2:23:a8:ac:0f:5b:af:c2:f0:a3:
53:de:d6:54:c0:6a:d6:a6:d5:d3:e4:1c:2d:d1:d6:
93:af:5c:28:06:8c:25:46:18:53:69:dd:e5:53:4a:
80:4a:71:bf:18:e8:6b:30:f4:09:07:67:43:2e:00:
66:67:d6:ae:9a:0f:7a:b5:aa:ec:4d:42:a5:7b:bb:
24:36:de:01:89:0b:4b:6e:07:53:cc:28:48:68:34:
7a:cc:db:6e:d4:18:00:fa:38:d1:dc:c1:84:de:bd:
17:57:a1:ab:5b:20:72:4b:78:cd:af:03:b6:a9:a8:
ac:19:27:e2:0b:d3:cf:8e:76:90:66:e0:d8:16:5b:
e9:b0:41:20:fc:06:ca:28:fa:1a:84:c2:cc:56:36:
7d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C6:73:BE:D0:58:AA:17:F6:42:1A:84:2A:30:38:57:90:16:DF:13
X509v3 Authority Key Identifier:
keyid:0E:AE:20:4B:66:EB:4E:CF:EA:C2:D2:E1:80:F2:EE:68:6B:9A:A7:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dq4gS2brTs_qwtLhgPLuaGuap9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/adcd18-eb22-4031-be5d-4287346c7f18/1/xMZzvtBYqhf2QhqEKjA4V5AW3xM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/adcd18-eb22-4031-be5d-4287346c7f18/1/Dq4gS2brTs_qwtLhgPLuaGuap9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.8.0/22
194.55.140.0/22
Signature Algorithm: sha256WithRSAEncryption
ca:c8:40:25:d2:5b:84:9c:6c:74:27:b4:ed:2f:ce:86:95:e8:
18:72:4f:44:c3:b5:7f:3a:84:01:c0:36:8a:35:f6:ad:d5:2c:
87:e2:57:09:70:c8:81:df:d2:a1:1c:cf:1f:47:d1:95:21:c3:
92:9a:a3:12:96:ce:cf:e8:ec:7c:9f:1c:d3:b7:03:db:39:91:
ec:e2:01:2f:69:42:8c:9e:e3:02:e2:ad:4c:f3:33:cb:04:33:
ef:ac:d5:75:68:ed:cc:8d:12:3e:ad:1a:8b:71:d4:41:ef:7e:
97:c8:8a:f6:b6:f1:5f:94:b6:93:4c:74:84:0d:1e:05:3b:5d:
16:20:d3:6f:98:bb:75:af:a7:76:8c:c1:16:b0:54:75:63:1f:
1a:4b:1d:0f:fa:d6:cd:35:b3:d8:3b:42:50:27:a4:56:5d:f6:
ed:ca:e6:2a:8b:0d:75:fb:be:25:88:8d:d3:bb:48:6e:72:01:
37:60:d4:b8:6b:3b:a6:af:ad:b1:14:de:9d:35:d4:af:c3:20:
04:1e:f0:7c:df:57:0c:c3:f7:49:81:73:a1:ad:bd:38:ee:19:
18:8c:f6:8e:e2:b1:0e:29:e9:f7:18:06:87:59:06:dc:a5:bb:
af:b1:e5:e0:5d:9f:c4:9d:28:79:5a:2a:e5:1e:52:ee:6b:a2:
2d:49:3b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:03 2024 by rpki-client on console-ams.rpki-client.org