Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/sZ7eieF1niDwJPjpckU5SWW1akg.roa
File: sZ7eieF1niDwJPjpckU5SWW1akg.roa (raw, json)
Hash identifier: VdjPNICwc5Ey1RppKhR9ejuMReglTzxTFCEk+YxY+k4=
Subject key identifier: B1:9E:DE:89:E1:75:9E:20:F0:24:F8:E9:72:45:39:49:65:B5:6A:48
Certificate issuer: /CN=c518644ac461ddd2cf4bc5ad5c2b4262535c38c8
Certificate serial: 0187B78FB5458436F7466F74DAC3EBDD5599
Authority key identifier: C5:18:64:4A:C4:61:DD:D2:CF:4B:C5:AD:5C:2B:42:62:53:5C:38:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRhkSsRh3dLPS8WtXCtCYlNcOMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/sZ7eieF1niDwJPjpckU5SWW1akg.roa
Signing time: Tue 25 Apr 2023 08:37:41 +0000
ROA not before: Tue 25 Apr 2023 08:37:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39758
IP address blocks: 77.81.138.0/24 maxlen: 24
77.81.137.0/24 maxlen: 24
89.36.21.0/24 maxlen: 24
193.203.204.0/23 maxlen: 23
46.102.232.0/23 maxlen: 23
93.115.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b7:8f:b5:45:84:36:f7:46:6f:74:da:c3:eb:dd:55:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c518644ac461ddd2cf4bc5ad5c2b4262535c38c8
Validity
Not Before: Apr 25 08:37:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b19ede89e1759e20f024f8e97245394965b56a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:82:2b:eb:ec:a0:cc:9b:26:80:8e:7d:f9:f1:
26:ca:d8:79:bc:1d:39:71:65:db:76:94:85:7f:76:
98:90:4b:bc:eb:3c:9a:59:40:2d:14:4f:fb:d5:22:
65:94:99:9a:71:7f:0a:3c:f0:a6:88:1f:b9:2f:88:
73:dd:eb:07:0e:4a:fe:19:8e:ad:cd:83:66:73:0f:
86:77:07:d7:c2:0c:bd:64:a8:ef:5c:a9:08:6f:00:
32:f1:0e:c2:08:08:1b:97:b8:e1:b2:f2:55:76:45:
00:2c:9d:2a:fb:f4:ea:90:2b:89:d8:bd:d4:44:4a:
38:f5:ae:9c:b3:85:42:1f:e5:9e:26:57:eb:6b:9c:
a1:b8:85:44:8b:3f:8b:69:46:e7:71:52:e3:22:cb:
34:e5:ee:63:fc:06:4c:64:b9:3d:12:5f:3a:08:c1:
ec:e6:9b:23:2d:4c:f2:16:40:9e:a3:ac:71:e0:92:
28:33:ab:a5:42:78:cd:82:75:eb:be:cc:0a:08:db:
79:d5:81:20:b3:15:79:37:03:a4:1b:2f:25:02:3a:
40:6d:05:50:8f:57:36:7b:d0:7a:fb:72:56:c4:93:
09:69:c1:bc:93:50:20:71:ac:20:aa:7f:86:7d:12:
5c:47:b4:c4:27:38:be:65:27:15:32:28:7a:a4:9f:
9f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9E:DE:89:E1:75:9E:20:F0:24:F8:E9:72:45:39:49:65:B5:6A:48
X509v3 Authority Key Identifier:
keyid:C5:18:64:4A:C4:61:DD:D2:CF:4B:C5:AD:5C:2B:42:62:53:5C:38:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRhkSsRh3dLPS8WtXCtCYlNcOMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/sZ7eieF1niDwJPjpckU5SWW1akg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/xRhkSsRh3dLPS8WtXCtCYlNcOMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.232.0/23
77.81.137.0-77.81.138.255
89.36.21.0/24
93.115.248.0/22
193.203.204.0/23
Signature Algorithm: sha256WithRSAEncryption
57:a5:df:bf:a3:65:5f:87:cf:6c:7f:ef:6c:be:b8:38:bd:5f:
5a:53:4e:5a:83:ad:49:68:e0:a8:87:bb:cb:18:4b:5f:ef:47:
9e:a6:50:17:95:6b:af:b2:4d:44:3c:db:f8:28:9d:63:16:4e:
ae:cc:4d:7b:34:b2:57:ec:bb:c5:ce:f2:ff:1f:ea:c1:02:84:
bf:0c:1f:ed:70:c3:3e:8a:15:83:34:c3:48:9a:6b:94:e7:74:
7c:71:0b:a9:34:8b:87:d9:cc:e5:49:8b:2c:ec:da:5f:a0:b5:
23:ee:7c:7c:8a:a5:3e:04:b1:15:63:cc:63:14:c1:82:61:6b:
cb:05:c7:ea:9f:79:28:39:42:f4:f1:45:cc:30:4e:93:54:9f:
87:e7:45:48:8e:16:bb:28:cf:4c:da:45:37:eb:a3:27:df:cf:
7e:4b:85:15:10:fd:ea:bc:87:8d:5c:c9:27:00:2f:b2:0b:d6:
bc:38:e6:74:ad:67:9e:79:b8:2b:0c:3f:a3:cf:3e:8c:32:44:
b6:7b:0a:e1:a2:f2:b5:37:2a:7e:9a:ad:4b:6f:c9:b3:77:04:
77:92:30:d4:1e:f6:fe:83:51:e5:a3:e7:1e:90:e7:8e:f2:3b:
27:3f:06:c8:0c:50:61:1b:e8:f3:aa:9f:c7:c5:e2:3e:8c:b1:
b9:1e:7e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:02 2024 by rpki-client on console-ams.rpki-client.org