Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/c5c016-4f1c-4f33-acf0-27498f874d4f/1/Blo4Qopm6OyKoLgiZuhM-Xzw7UM.roa
File: Blo4Qopm6OyKoLgiZuhM-Xzw7UM.roa (raw, json)
Hash identifier: aqgcQ8R9FH9gRBqlYLx56cr/HMx6PScL3dzlvL4wu74=
Subject key identifier: 06:5A:38:42:8A:66:E8:EC:8A:A0:B8:22:66:E8:4C:F9:7C:F0:ED:43
Certificate issuer: /CN=4354d70a988e257ec57c3408159dc8b504f5723a
Certificate serial: 081EA38E
Authority key identifier: 43:54:D7:0A:98:8E:25:7E:C5:7C:34:08:15:9D:C8:B5:04:F5:72:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1TXCpiOJX7FfDQIFZ3ItQT1cjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/c5c016-4f1c-4f33-acf0-27498f874d4f/1/Blo4Qopm6OyKoLgiZuhM-Xzw7UM.roa
Signing time: Sat 01 Jan 2022 15:58:36 +0000
ROA not before: Sat 01 Jan 2022 15:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200740
IP address blocks: 185.232.170.0/24 maxlen: 24
185.232.170.0/23 maxlen: 23
185.232.171.0/24 maxlen: 24
185.252.144.0/24 maxlen: 24
185.233.80.0/23 maxlen: 23
185.233.82.0/24 maxlen: 24
185.233.202.0/23 maxlen: 23
185.233.202.0/24 maxlen: 24
185.233.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136225678 (0x81ea38e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4354d70a988e257ec57c3408159dc8b504f5723a
Validity
Not Before: Jan 1 15:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=065a38428a66e8ec8aa0b82266e84cf97cf0ed43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2d:68:20:5c:0d:5f:b3:8e:7f:64:bb:38:18:
00:61:0f:cc:06:4b:79:ef:cf:3f:1f:d5:71:4d:ef:
1c:bd:0d:f0:7f:3b:87:26:56:5e:fe:04:2e:be:f2:
01:24:21:7e:39:e5:ff:53:4d:90:96:eb:e2:02:97:
3a:39:c4:6d:22:83:17:97:da:4d:57:da:70:69:d1:
33:34:7f:dd:8c:64:6d:9a:8a:77:aa:a8:22:a7:8a:
2b:39:e0:fa:5a:8c:a6:3f:3b:b7:e0:e4:27:fd:9d:
6b:20:de:d8:c3:d6:21:c9:3d:ad:37:b0:1f:87:96:
cb:79:10:0b:35:c1:b5:2c:23:d4:18:be:63:83:bc:
a6:fa:a5:b7:03:fe:6a:f5:77:de:ae:80:61:6b:22:
3e:13:2c:84:92:d9:b8:bd:51:0f:d2:82:9b:6f:4b:
2f:3f:9d:ce:b4:60:9d:ae:7e:0f:a3:14:81:30:8b:
cb:e8:b7:8a:3e:ac:cc:9a:58:3a:d3:21:f8:90:49:
39:8d:22:31:cf:f2:eb:6f:23:51:a8:3b:78:98:52:
1a:b6:6f:c6:c8:1d:84:da:18:aa:d5:ae:9b:61:cb:
f0:5c:86:f3:30:57:59:08:35:b5:a0:54:e1:c1:35:
1e:6e:9d:e6:0c:9d:0b:0c:11:ba:eb:41:0c:13:90:
67:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:5A:38:42:8A:66:E8:EC:8A:A0:B8:22:66:E8:4C:F9:7C:F0:ED:43
X509v3 Authority Key Identifier:
keyid:43:54:D7:0A:98:8E:25:7E:C5:7C:34:08:15:9D:C8:B5:04:F5:72:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1TXCpiOJX7FfDQIFZ3ItQT1cjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/c5c016-4f1c-4f33-acf0-27498f874d4f/1/Blo4Qopm6OyKoLgiZuhM-Xzw7UM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/c5c016-4f1c-4f33-acf0-27498f874d4f/1/Q1TXCpiOJX7FfDQIFZ3ItQT1cjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.170.0/23
185.233.80.0-185.233.82.255
185.233.202.0/23
185.252.144.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:79:a8:96:4f:c2:63:8b:93:45:6e:5a:30:45:4a:73:86:12:
bb:b3:4e:be:e6:91:ea:56:48:ae:68:66:44:07:23:f5:97:4c:
c0:f7:17:5f:30:06:58:f6:06:c6:70:68:c2:f0:9e:11:37:ad:
a8:f7:bf:65:8f:d4:23:04:c8:42:89:4f:b7:62:f1:7a:c2:9e:
03:c8:3b:c2:21:48:05:4c:2d:2c:c1:b2:28:47:e3:1c:38:ed:
c6:51:30:ce:bb:39:98:14:7c:8b:58:1f:61:95:44:12:7d:79:
93:2c:bf:56:5e:38:e8:ed:0a:ff:15:23:95:cb:98:9d:10:67:
e1:c6:e7:bf:4a:1d:c5:95:48:ee:62:ef:17:24:21:65:52:a2:
6e:bd:e0:b9:be:ea:73:dd:11:a7:e5:c0:5f:7a:24:07:f6:08:
3c:fc:6d:fc:41:91:74:45:ac:80:63:00:62:fa:09:bf:9e:3c:
01:af:51:f4:2a:c4:25:16:07:95:c3:41:ee:ff:64:7b:41:1f:
c2:35:22:b5:51:f2:4b:58:4e:4e:7d:5e:43:b3:f6:65:09:3a:
7e:81:57:cf:ac:cd:b7:dc:4a:b1:6c:1f:ee:c2:a4:c8:82:aa:
b7:27:e5:45:09:34:5d:4c:6c:72:2b:a7:84:70:2c:b8:a2:49:
90:64:3d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:21 2024 by rpki-client on console-ams.rpki-client.org