Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/SFuKUNU2RQ3hH_w8RxTKZDOxR7Y.roa
File: SFuKUNU2RQ3hH_w8RxTKZDOxR7Y.roa (raw, json)
Hash identifier: GegYiY6rHA8X4clSJl9TowCYnoTISfvj5ohRzQVCY/o=
Subject key identifier: 48:5B:8A:50:D5:36:45:0D:E1:1F:FC:3C:47:14:CA:64:33:B1:47:B6
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 05CC28F7
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/SFuKUNU2RQ3hH_w8RxTKZDOxR7Y.roa
Signing time: Sun 03 Jul 2022 18:14:25 +0000
ROA not before: Sun 03 Jul 2022 18:14:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 85.209.228.0/24 maxlen: 24
85.209.230.0/24 maxlen: 24
2.59.60.0/24 maxlen: 24
194.31.196.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97265911 (0x5cc28f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jul 3 18:14:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=485b8a50d536450de11ffc3c4714ca6433b147b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ac:45:3d:1e:1c:8b:90:ae:a0:b3:60:7d:3a:
e2:ae:ea:cf:d9:a1:b4:36:c7:a1:a6:5e:0e:1f:bb:
94:5c:9e:7c:53:6f:76:e0:d9:b8:ab:2b:90:2e:ff:
d4:ee:97:f7:fd:9e:eb:6d:0f:6d:95:62:69:9e:6a:
98:97:bd:8c:9e:74:77:89:92:11:88:4a:23:ac:79:
e9:5a:fd:90:55:e2:a5:8c:e8:97:61:55:a9:5b:a0:
39:af:fe:24:8c:35:bd:3f:27:d0:0c:f4:3d:7e:61:
d3:2b:3c:dc:90:87:5d:50:ad:5f:4c:a7:5d:d6:48:
ee:9a:04:96:21:23:8e:5b:bf:3e:99:bb:21:e5:a7:
42:88:52:7b:b2:9b:f1:22:44:6a:96:9f:24:55:f9:
69:d9:52:1e:15:88:06:f5:e1:17:c1:3d:3c:68:37:
9c:4a:99:24:53:8b:c7:86:cc:ba:a5:98:8e:a6:c0:
80:85:43:c0:4c:2d:9f:2b:e4:fe:53:39:60:e7:a5:
85:d5:51:f9:89:17:ed:bb:a6:88:21:51:6c:02:9d:
48:fa:8e:cd:ce:f7:3a:c5:92:42:e5:27:c2:70:d4:
00:73:2c:93:96:32:cb:50:97:ee:ea:2c:18:57:bc:
87:78:81:30:19:a8:17:6a:0b:92:f5:6b:b5:0c:ed:
7c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:5B:8A:50:D5:36:45:0D:E1:1F:FC:3C:47:14:CA:64:33:B1:47:B6
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/SFuKUNU2RQ3hH_w8RxTKZDOxR7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.60.0/24
85.209.228.0/24
85.209.230.0/24
194.31.196.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:7a:2d:0e:87:6a:30:66:56:42:a3:09:75:ee:55:3a:42:c7:
34:9c:dc:f1:93:ee:92:f9:69:61:44:4b:d1:8f:6a:a8:ae:7e:
88:f7:44:f2:e1:47:9d:ba:6b:aa:8d:3d:2a:7a:33:31:53:82:
12:e5:62:2f:f8:0f:2a:2a:97:c6:7b:f5:b5:6c:c5:85:61:bf:
4d:aa:07:3f:f0:03:ab:f0:70:ef:8b:cb:9b:b9:5a:40:e4:91:
ca:71:79:13:0e:97:72:91:14:39:d7:d0:ef:90:0c:2f:26:c9:
91:29:e8:8c:7b:68:02:30:0e:57:39:a0:ce:12:5a:f4:be:af:
0c:b3:27:f6:57:e6:66:11:ff:23:cf:1f:3b:8a:05:b8:28:18:
4e:ce:0d:72:56:2a:24:0d:61:3c:b0:a1:b6:f2:d4:30:ad:8f:
55:81:d3:57:57:fb:f7:00:98:90:aa:9f:b3:16:db:7e:a7:d0:
f0:58:cd:ed:9a:15:06:df:d0:d0:5f:33:44:8e:f2:2a:eb:80:
4c:29:26:17:c1:69:d7:bd:f7:55:33:8c:ff:47:ef:48:d7:f2:
5a:54:e7:b4:5c:f5:58:3a:d7:28:85:45:27:31:89:b5:87:97:
3e:9b:0a:b7:6c:2c:0a:9c:8e:6c:46:9f:d5:56:5b:de:6a:3a:
e9:48:94:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:39 2025 by rpki-client