Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/umDpUFID2ZjAAleYE_N0tRmxMHU.roa
File: umDpUFID2ZjAAleYE_N0tRmxMHU.roa (raw, json)
Hash identifier: 6Yjxr6uE47cmBUeWNYJNpFZ52hDUNN9QKkiOOVGIhnw=
Subject key identifier: BA:60:E9:50:52:03:D9:98:C0:02:57:98:13:F3:74:B5:19:B1:30:75
Certificate issuer: /CN=67cfd7fae20d1d34b779dab669b8f0f07c9c34f8
Certificate serial: 01852BDC280334943C4C6DD46DCB60074A3B
Authority key identifier: 67:CF:D7:FA:E2:0D:1D:34:B7:79:DA:B6:69:B8:F0:F0:7C:9C:34:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8_X-uINHTS3edq2abjw8HycNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/umDpUFID2ZjAAleYE_N0tRmxMHU.roa
Signing time: Mon 19 Dec 2022 19:28:46 +0000
ROA not before: Mon 19 Dec 2022 19:28:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207709
IP address blocks: 195.85.207.0/24 maxlen: 24
195.85.216.0/24 maxlen: 24
185.242.162.0/24 maxlen: 24
185.242.161.0/24 maxlen: 24
185.242.160.0/24 maxlen: 24
185.242.163.0/24 maxlen: 24
2.56.152.0/24 maxlen: 24
2.56.155.0/24 maxlen: 24
2.56.154.0/24 maxlen: 24
2.56.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:dc:28:03:34:94:3c:4c:6d:d4:6d:cb:60:07:4a:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67cfd7fae20d1d34b779dab669b8f0f07c9c34f8
Validity
Not Before: Dec 19 19:28:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba60e9505203d998c002579813f374b519b13075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7c:6b:06:f4:e9:c9:16:9c:db:ce:16:e8:75:
65:42:cc:3d:e6:fa:e5:96:29:98:9c:5b:04:58:cd:
f9:88:d6:51:02:ab:4e:19:b9:54:f6:ec:47:08:5d:
56:34:d3:ef:e3:a4:82:40:e9:e4:3d:38:9b:74:bb:
4e:12:e6:6f:8a:e4:a5:b0:c2:8c:98:24:0d:9c:02:
1b:31:7a:e3:3d:b4:1a:52:2d:ca:b9:03:d8:5f:ee:
7d:e5:5f:b3:22:a7:b4:ee:b0:0d:d7:5f:6f:3b:ab:
14:74:fd:b9:07:c3:54:21:0e:49:d1:e2:02:17:83:
fd:a3:cc:6e:44:21:10:53:b1:31:31:9b:7d:18:4f:
43:6e:3e:1d:77:ca:43:ac:3c:24:dd:69:6d:7c:cd:
0a:20:23:58:12:f0:e1:14:fe:e0:3a:16:ab:26:05:
95:2e:3d:84:bc:8d:41:7c:ee:2b:a8:7c:f4:2c:75:
09:4c:01:36:d7:f4:c1:ab:18:3d:05:5f:44:7c:b9:
3f:31:40:26:99:b0:9a:96:e7:8a:a8:f9:34:26:66:
ed:58:97:46:53:14:b9:b2:ab:32:5e:13:af:06:8d:
22:04:52:dc:28:ac:d7:57:90:61:36:e4:36:02:60:
a4:e0:d1:a6:b2:d0:7a:86:2c:cc:a9:bf:ae:3f:86:
41:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:60:E9:50:52:03:D9:98:C0:02:57:98:13:F3:74:B5:19:B1:30:75
X509v3 Authority Key Identifier:
keyid:67:CF:D7:FA:E2:0D:1D:34:B7:79:DA:B6:69:B8:F0:F0:7C:9C:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8_X-uINHTS3edq2abjw8HycNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/umDpUFID2ZjAAleYE_N0tRmxMHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/Z8_X-uINHTS3edq2abjw8HycNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.152.0/22
185.242.160.0/22
195.85.207.0/24
195.85.216.0/24
Signature Algorithm: sha256WithRSAEncryption
45:d4:12:91:72:12:e3:96:b0:34:2b:19:46:8d:b1:ef:d8:d9:
bd:4a:b6:cb:f3:d2:36:06:cb:a6:15:44:16:a0:ee:77:b2:0f:
86:0b:fa:c4:48:64:bf:e2:b9:d6:57:df:e1:50:4e:52:26:e5:
cb:0b:fb:b8:f4:a0:c9:48:bb:c7:32:88:db:bf:fb:70:0b:b9:
e5:9f:17:5e:63:b5:d3:ae:99:f5:c7:dd:a4:f3:2e:6e:5b:b4:
f9:5e:72:c8:11:b6:f0:d5:ca:f9:11:fd:a9:2e:45:41:d6:76:
fd:df:28:97:7c:34:83:b8:65:c6:7d:f4:5d:bd:a9:14:62:33:
dd:fd:43:c5:5d:7b:54:f6:8b:81:a4:9d:e1:92:77:66:d3:0f:
4d:60:6d:49:a9:99:82:d0:2b:04:d6:d9:2e:f6:53:f4:a1:f1:
2b:00:f8:4c:13:e0:76:df:d2:43:b1:69:e8:b4:92:bc:ea:c5:
10:b0:c4:50:61:b3:c1:c7:32:20:39:7b:fb:c5:c2:19:72:7a:
9b:43:ad:0e:e2:8c:92:d2:b0:36:bb:25:53:7e:7c:50:f2:d1:
ea:23:a8:4d:7c:b0:e5:4e:60:fd:56:91:68:d7:00:cb:d2:79:
72:fb:91:3f:e5:59:f7:1a:92:76:a1:97:05:c7:d2:f6:79:d2:
32:55:94:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:19 2024 by rpki-client on console-fra.rpki-client.org