Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/f9bee6-ada6-4981-bdd2-0c1eccf04a5e/1/4zjovBCq7osHbkOS4mjH1aQTHL0.roa
File: 4zjovBCq7osHbkOS4mjH1aQTHL0.roa (raw, json)
Hash identifier: ItOGAU/vFrPqNZi3jPV8Q3fy+XPX+Qy5R4HqSATLYpU=
Subject key identifier: E3:38:E8:BC:10:AA:EE:8B:07:6E:43:92:E2:68:C7:D5:A4:13:1C:BD
Certificate issuer: /CN=42447a77d82f5ba3521653615c982084b6210694
Certificate serial: 35C54BF6
Authority key identifier: 42:44:7A:77:D8:2F:5B:A3:52:16:53:61:5C:98:20:84:B6:21:06:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkR6d9gvW6NSFlNhXJgghLYhBpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/f9bee6-ada6-4981-bdd2-0c1eccf04a5e/1/4zjovBCq7osHbkOS4mjH1aQTHL0.roa
Signing time: Tue 29 Mar 2022 15:07:36 +0000
ROA not before: Tue 29 Mar 2022 15:07:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 212.63.124.0/22 maxlen: 22
185.155.68.0/22 maxlen: 22
89.40.203.0/24 maxlen: 24
188.64.96.0/21 maxlen: 21
89.37.227.0/24 maxlen: 24
213.170.224.0/19 maxlen: 19
94.176.194.0/23 maxlen: 23
213.170.227.0/24 maxlen: 24
94.24.104.0/22 maxlen: 22
185.132.164.0/23 maxlen: 23
185.132.164.0/22 maxlen: 22
185.32.112.0/22 maxlen: 22
185.32.115.0/24 maxlen: 24
185.32.114.0/24 maxlen: 24
159.253.248.0/21 maxlen: 21
94.24.34.0/24 maxlen: 24
94.24.32.0/22 maxlen: 22
94.24.40.0/21 maxlen: 21
2a00:8a80::/29 maxlen: 29
2a00:8a84:a000::/44 maxlen: 44
2a00:8a84:e000::/44 maxlen: 44
2a00:8a84:1040::/44 maxlen: 44
2a00:8a84:27f0:e::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902122486 (0x35c54bf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42447a77d82f5ba3521653615c982084b6210694
Validity
Not Before: Mar 29 15:07:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e338e8bc10aaee8b076e4392e268c7d5a4131cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c7:4e:93:ce:fa:c4:cd:0e:ec:b3:58:c6:61:
68:b4:d1:0d:52:f8:de:7d:a8:0f:e3:90:38:dc:42:
8b:16:11:b5:92:c0:04:a3:87:23:1d:b0:25:1c:59:
0f:8d:b2:fd:8b:c3:63:12:1a:b5:85:20:99:92:6f:
c0:43:ec:24:5d:d1:cc:d3:70:c1:bd:02:a8:dd:9c:
47:c5:1a:c6:58:ce:61:6c:7f:d6:42:84:19:dd:55:
3e:99:89:a2:67:81:50:27:63:c6:a7:03:22:55:95:
ab:12:ca:f6:ba:53:4f:5f:4c:03:57:be:39:0c:63:
b6:07:ec:fd:e0:f4:e6:4d:8c:39:3f:ce:5b:95:ad:
df:ed:4c:c5:25:1d:90:04:17:60:fd:da:0c:e5:e2:
36:67:1e:27:61:6b:67:41:96:92:5b:3f:8e:7e:37:
92:91:45:80:73:71:24:84:13:11:fc:7a:bb:1d:49:
c2:c7:13:31:b4:c2:6a:40:0e:43:2d:cd:a6:38:31:
94:b9:ad:7c:2c:38:79:a7:51:75:dd:89:3a:55:5e:
17:6a:8d:69:54:d9:cf:79:07:07:d4:b3:23:b3:1a:
13:68:29:b0:88:18:08:2c:88:6c:d3:eb:f2:d0:fa:
0c:16:f5:08:60:da:d6:a2:a8:3a:f6:98:0e:e6:c6:
bb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:38:E8:BC:10:AA:EE:8B:07:6E:43:92:E2:68:C7:D5:A4:13:1C:BD
X509v3 Authority Key Identifier:
keyid:42:44:7A:77:D8:2F:5B:A3:52:16:53:61:5C:98:20:84:B6:21:06:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkR6d9gvW6NSFlNhXJgghLYhBpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/f9bee6-ada6-4981-bdd2-0c1eccf04a5e/1/4zjovBCq7osHbkOS4mjH1aQTHL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/f9bee6-ada6-4981-bdd2-0c1eccf04a5e/1/QkR6d9gvW6NSFlNhXJgghLYhBpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.227.0/24
89.40.203.0/24
94.24.32.0/22
94.24.40.0/21
94.24.104.0/22
94.176.194.0/23
159.253.248.0/21
185.32.112.0/22
185.132.164.0/22
185.155.68.0/22
188.64.96.0/21
212.63.124.0/22
213.170.224.0/19
IPv6:
2a00:8a80::/29
Signature Algorithm: sha256WithRSAEncryption
02:9e:b6:d1:55:c8:83:48:f8:7c:84:77:fa:36:3b:1f:d6:2b:
a1:78:97:d9:d9:87:3e:3e:d0:f9:6d:f0:e0:34:bb:64:03:8b:
3a:6a:b5:cb:2d:64:69:6c:92:d9:6b:79:11:77:12:bc:f5:c9:
53:09:09:3b:e1:37:8a:1a:db:b6:8e:65:cd:53:23:97:70:be:
90:15:55:eb:2a:46:31:0a:fa:b2:f9:a1:33:1b:d8:db:0a:44:
b0:61:73:d5:cf:19:34:37:76:68:12:24:32:3d:c3:52:7d:50:
88:34:6f:20:70:5f:1c:b5:84:57:0c:0e:07:51:79:b7:c3:b9:
7c:af:d4:17:17:6b:ec:c7:2b:c0:e9:d5:d8:30:1e:70:74:db:
34:37:69:7f:e3:f4:11:e4:a7:9a:cf:fc:ad:0b:04:1b:d4:97:
c4:2d:bc:c3:77:6e:f1:ea:f2:3f:22:56:49:16:11:15:4c:f6:
53:63:b3:0d:81:26:c0:0f:c2:9a:e4:1f:89:10:f8:08:ee:fc:
4d:56:b3:bf:fc:02:15:25:4c:6a:76:b9:3c:07:ae:f7:ff:01:
64:3a:61:c1:3a:7b:1d:d1:40:e5:8c:f7:69:dd:40:31:1b:68:
e8:9b:f5:ed:47:3b:bc:98:b4:a7:2a:dc:e4:71:b8:91:d0:d9:
18:0e:ba:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:07 2024 by rpki-client on console-fra.rpki-client.org