Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/BnZpRtiBleuZ1a5QMxqlbi8QWtI.roa
File: BnZpRtiBleuZ1a5QMxqlbi8QWtI.roa (raw, json)
Hash identifier: 3rRAbiasRYJpAr3G7jlvDqWPD566QRHx8imNOSC2v6Q=
Subject key identifier: 06:76:69:46:D8:81:95:EB:99:D5:AE:50:33:1A:A5:6E:2F:10:5A:D2
Certificate issuer: /CN=6d6b20045e1d0fe6cef28781eb300bde9825a4b5
Certificate serial: 024F3230
Authority key identifier: 6D:6B:20:04:5E:1D:0F:E6:CE:F2:87:81:EB:30:0B:DE:98:25:A4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWsgBF4dD-bO8oeB6zAL3pglpLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/BnZpRtiBleuZ1a5QMxqlbi8QWtI.roa
Signing time: Thu 17 Feb 2022 08:36:42 +0000
ROA not before: Thu 17 Feb 2022 08:36:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.43.254.0/24 maxlen: 24
185.43.255.0/24 maxlen: 24
212.104.188.0/24 maxlen: 24
212.104.187.0/24 maxlen: 24
212.104.191.0/24 maxlen: 24
212.104.190.0/24 maxlen: 24
212.104.189.0/24 maxlen: 24
193.91.10.0/24 maxlen: 24
185.43.253.0/24 maxlen: 24
185.43.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38744624 (0x24f3230)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6b20045e1d0fe6cef28781eb300bde9825a4b5
Validity
Not Before: Feb 17 08:36:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06766946d88195eb99d5ae50331aa56e2f105ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0d:3f:90:bb:8c:a2:e1:69:1d:77:6c:d0:fb:
12:39:6b:ca:d4:92:b8:1f:ea:2e:c0:92:9f:4c:67:
ce:a2:f9:3d:ee:9e:08:98:df:24:b6:a4:14:b3:52:
a9:ab:b6:38:9b:e5:07:54:50:dc:a5:ba:1f:db:82:
df:f7:66:d1:ae:6d:f3:f5:57:8f:dc:35:ce:95:53:
ae:5c:c4:09:b5:0f:b5:4d:55:af:b9:fa:97:c2:f0:
6b:ad:54:ed:83:d4:67:ae:90:25:eb:db:d9:87:ec:
d2:03:67:4e:70:44:28:13:7f:47:82:23:e7:5b:0e:
5f:71:ca:cd:df:fa:10:12:f9:db:e9:bd:d1:9b:62:
19:92:41:82:0a:01:c7:59:82:20:40:47:7c:76:60:
66:05:de:c8:cc:a8:aa:17:7f:38:43:ba:4b:75:bb:
6a:0c:ed:8a:90:37:25:ed:0b:59:49:1f:15:d5:66:
34:9f:b3:27:74:08:d9:12:8d:3f:93:13:6e:3a:f2:
1a:5c:cb:ce:52:0c:86:54:27:11:6f:98:9e:1d:02:
5c:71:70:75:66:e8:42:9a:17:b3:8d:d4:95:9a:f1:
15:09:e3:14:70:24:2e:d6:f4:84:ef:30:d0:61:3c:
a0:24:0a:8c:47:1f:81:8b:3b:2d:e5:b8:f2:dd:d7:
ba:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:76:69:46:D8:81:95:EB:99:D5:AE:50:33:1A:A5:6E:2F:10:5A:D2
X509v3 Authority Key Identifier:
keyid:6D:6B:20:04:5E:1D:0F:E6:CE:F2:87:81:EB:30:0B:DE:98:25:A4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWsgBF4dD-bO8oeB6zAL3pglpLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/BnZpRtiBleuZ1a5QMxqlbi8QWtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/bWsgBF4dD-bO8oeB6zAL3pglpLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.252.0/22
193.91.10.0/24
212.104.187.0-212.104.191.255
Signature Algorithm: sha256WithRSAEncryption
65:75:e7:9a:5e:fa:88:6f:7b:c0:92:1d:22:e3:5a:0e:3b:df:
bc:e6:8e:6d:12:b6:26:e6:0d:5d:dd:64:80:cf:bc:b9:99:d0:
d2:ba:78:fc:e8:33:99:e8:8a:85:8c:26:38:a7:a4:e6:db:1d:
b4:3b:eb:3a:79:17:c0:64:c5:0a:e7:53:8e:29:5b:47:dc:27:
ed:48:d1:c0:6c:0d:b6:49:8c:b0:c9:ef:c6:ab:1f:6c:af:74:
b5:ee:d3:42:7d:cc:03:01:7f:51:d7:1d:47:35:cc:9c:a9:02:
a0:37:15:e1:fb:4e:d9:cb:3e:38:41:84:ea:34:7b:b0:f4:6e:
8b:02:49:cd:61:7e:a4:e8:88:5d:35:33:2f:e3:f1:e9:63:63:
25:af:bf:16:81:74:c8:98:53:4a:13:4a:6c:01:ca:ed:a0:af:
60:05:17:84:ab:16:56:59:e7:55:c6:6f:77:be:78:50:32:4d:
c2:bb:5b:0b:74:b7:3e:53:e0:91:56:c4:fb:7f:54:a4:b5:95:
a8:ec:4a:51:cd:cb:8b:f9:ff:53:c3:ca:37:a6:78:ff:de:bd:
2d:66:1d:0b:fd:fe:c7:f4:74:1e:ab:87:1b:b1:f6:ea:77:05:
e6:41:63:1e:7d:10:69:d7:bb:ac:8d:34:f9:d9:cc:f9:1a:6a:
45:ad:89:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:13 2024 by rpki-client on console-ams.rpki-client.org