Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/2Q_puxEH2AIigxCt96E4OyVzvTc.roa
File: 2Q_puxEH2AIigxCt96E4OyVzvTc.roa (raw, json)
Hash identifier: vj1Fypx+wZ+oFqlOofYe3hRMIxrjUadYjkTewQHbr9I=
Subject key identifier: D9:0F:E9:BB:11:07:D8:02:22:83:10:AD:F7:A1:38:3B:25:73:BD:37
Certificate issuer: /CN=6d6b20045e1d0fe6cef28781eb300bde9825a4b5
Certificate serial: 01EA54FE
Authority key identifier: 6D:6B:20:04:5E:1D:0F:E6:CE:F2:87:81:EB:30:0B:DE:98:25:A4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWsgBF4dD-bO8oeB6zAL3pglpLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/2Q_puxEH2AIigxCt96E4OyVzvTc.roa
Signing time: Sat 01 Jan 2022 14:58:04 +0000
ROA not before: Sat 01 Jan 2022 14:58:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.43.254.0/24 maxlen: 24
185.43.255.0/24 maxlen: 24
212.104.187.0/24 maxlen: 24
212.104.191.0/24 maxlen: 24
212.104.190.0/24 maxlen: 24
212.104.189.0/24 maxlen: 24
185.43.253.0/24 maxlen: 24
185.43.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32134398 (0x1ea54fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6b20045e1d0fe6cef28781eb300bde9825a4b5
Validity
Not Before: Jan 1 14:58:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d90fe9bb1107d802228310adf7a1383b2573bd37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b2:37:77:ee:7f:0c:d2:0e:25:e6:7a:a5:58:
ef:c1:13:20:10:49:29:3a:1b:6f:19:c8:72:bc:97:
7d:7e:82:20:80:b6:00:ab:50:5d:d1:2d:59:a8:18:
8a:37:24:ec:7f:7c:4a:85:2d:61:54:8a:45:c0:60:
cd:93:78:4c:6d:7c:77:75:61:5b:32:6c:f2:a4:1a:
77:f8:0a:4c:cc:0e:dd:23:e8:89:1d:e5:26:de:db:
61:a6:97:eb:a8:7a:bc:9e:38:be:a1:bc:fa:d8:b5:
81:3b:bd:e2:14:a2:32:b1:d9:21:47:9f:c6:40:9e:
63:2a:73:c0:ef:f1:d2:0b:03:d9:76:fa:c1:f3:97:
5b:87:89:1c:56:56:34:61:ed:cd:8c:12:27:30:82:
8e:f5:f5:8a:99:56:da:d1:60:6e:04:85:d7:f8:12:
46:30:63:da:a5:df:63:4f:22:59:ac:79:a1:ce:50:
cb:5f:dc:b1:d5:25:0c:d2:bd:86:0e:f9:4b:90:fc:
ab:e3:34:a7:d6:a3:8c:dc:be:b6:24:7c:42:8c:4d:
70:0b:52:4b:23:1e:e2:e8:e3:5c:2f:b8:f8:22:6d:
5f:b7:ee:44:3f:98:6d:0f:9c:0a:c1:5a:14:ed:a7:
ec:79:e6:0b:c4:30:ee:54:20:32:10:3a:d2:2a:4d:
05:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:0F:E9:BB:11:07:D8:02:22:83:10:AD:F7:A1:38:3B:25:73:BD:37
X509v3 Authority Key Identifier:
keyid:6D:6B:20:04:5E:1D:0F:E6:CE:F2:87:81:EB:30:0B:DE:98:25:A4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWsgBF4dD-bO8oeB6zAL3pglpLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/2Q_puxEH2AIigxCt96E4OyVzvTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/bWsgBF4dD-bO8oeB6zAL3pglpLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.252.0/22
212.104.187.0/24
212.104.189.0-212.104.191.255
Signature Algorithm: sha256WithRSAEncryption
7b:1e:f1:f7:d8:78:0c:35:6f:02:28:a5:77:96:53:1f:dd:b2:
3e:99:a3:2d:a9:1d:71:af:05:49:45:f9:b4:7f:fa:f5:76:d6:
f8:df:44:d0:86:08:42:34:60:1a:68:a8:56:fd:46:fe:bb:8c:
3e:4e:c2:4c:c5:08:c4:fc:b1:54:7e:31:28:24:ef:0a:eb:a8:
61:ec:40:79:59:ba:f1:1f:2c:c3:e5:e8:da:dd:e6:8d:11:a2:
dc:49:7d:aa:18:79:61:57:df:4b:7a:7b:a6:c3:2f:2e:8d:b2:
40:10:fe:81:7f:6d:f9:14:14:36:cc:92:18:72:79:e3:36:0e:
d8:40:a3:e3:99:a0:a8:83:ef:2d:e2:f1:d4:4b:26:13:2b:e2:
66:b2:29:af:2f:98:73:e1:d0:69:14:a4:56:7e:de:2d:8c:a7:
ee:12:9f:d2:25:e1:53:f2:36:e9:ef:a4:39:48:aa:87:d9:10:
7e:d9:b7:03:19:18:c3:c0:59:e3:4d:57:c6:7a:b1:f0:56:36:
58:7b:ac:f2:59:80:2c:b6:f0:f3:4a:21:24:3d:06:30:d1:d1:
8a:10:16:96:65:44:1c:4d:a9:44:05:49:e2:da:19:96:65:b7:
0c:b4:f9:ec:67:93:be:b5:d3:33:43:df:91:f7:ba:8e:18:a8:
57:cf:7e:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:13 2024 by rpki-client on console-ams.rpki-client.org