Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/kI_2RTrr2B1CdSt23XVEVzy9Z5Q.roa
File: kI_2RTrr2B1CdSt23XVEVzy9Z5Q.roa (raw, json)
Hash identifier: icS8A8OH1Le6i64H5taz05+Kmdo7VB/FDkb9ywreELE=
Subject key identifier: 90:8F:F6:45:3A:EB:D8:1D:42:75:2B:76:DD:75:44:57:3C:BD:67:94
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 049BA15B
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/kI_2RTrr2B1CdSt23XVEVzy9Z5Q.roa
Signing time: Wed 02 Mar 2022 23:27:49 +0000
ROA not before: Wed 02 Mar 2022 23:27:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 85.209.228.0/24 maxlen: 24
85.209.230.0/24 maxlen: 24
45.95.212.0/22 maxlen: 24
2.59.60.0/22 maxlen: 24
194.31.195.0/24 maxlen: 24
194.31.194.0/23 maxlen: 23
194.31.196.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77308251 (0x49ba15b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Mar 2 23:27:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=908ff6453aebd81d42752b76dd7544573cbd6794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6a:67:b0:4f:26:98:62:7a:4e:3b:e5:8a:d5:
51:82:0a:c2:99:6c:1e:c5:e4:6d:2b:37:5b:e1:79:
c9:fb:83:e0:48:00:1c:0a:3b:c9:4c:ad:f6:a1:7e:
19:b3:a5:6e:35:7a:ff:e6:36:de:78:5f:c0:c2:77:
af:bb:b7:8f:29:c3:1b:10:c7:36:46:c5:55:e8:ae:
b2:d1:09:b0:06:e8:96:0b:b7:94:9f:49:a9:01:ad:
35:c7:d2:83:0b:70:dc:89:e2:d1:f2:b4:81:94:87:
8e:fd:0d:8f:e8:f3:fe:06:bb:c3:e6:76:34:0d:20:
31:75:c9:c0:c1:a4:13:f4:99:6a:25:5f:76:c7:99:
62:43:6d:af:df:56:fe:8c:8e:7e:74:b5:ba:bd:6d:
a2:9c:17:73:7a:ea:95:29:76:0b:21:2e:b0:3d:06:
d5:42:14:84:0e:ef:74:f5:89:47:2e:27:11:65:75:
06:a5:ea:37:99:46:01:2f:8a:fc:39:0a:a2:bb:a0:
e7:b9:4e:e9:6b:b7:a9:82:92:a2:06:6d:ed:72:e5:
1c:45:e7:a3:11:34:3e:f3:03:be:ab:d4:20:ce:37:
72:4b:aa:84:5e:67:ee:3c:f9:ec:e5:85:30:c5:9b:
d5:28:7b:57:10:9c:97:af:ba:82:f9:9b:30:ff:a3:
e9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:8F:F6:45:3A:EB:D8:1D:42:75:2B:76:DD:75:44:57:3C:BD:67:94
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/kI_2RTrr2B1CdSt23XVEVzy9Z5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.60.0/22
45.95.212.0/22
85.209.228.0/24
85.209.230.0/24
194.31.194.0-194.31.197.255
Signature Algorithm: sha256WithRSAEncryption
3e:85:3a:2d:ab:89:81:42:a6:1d:88:46:f2:86:77:8f:db:0f:
4e:63:84:a0:b6:5c:c3:d5:39:7e:42:5d:d5:51:1f:09:15:90:
5e:17:b1:39:8b:8c:5e:9e:d8:22:92:e9:db:90:bb:57:02:1a:
5e:e5:a6:ce:11:95:2f:28:af:01:c4:68:5e:39:f1:42:4e:eb:
1e:a6:9c:88:a6:b1:7e:fc:f8:19:bf:ff:d4:cc:cd:07:de:f0:
cd:7c:e7:fc:42:a3:ba:f0:8d:a5:e5:84:ce:f3:a9:8f:06:8a:
18:02:dc:b9:38:3c:73:04:67:53:c1:10:e0:83:d1:8e:b8:ea:
18:33:58:b9:1a:d5:98:e5:80:63:83:4a:8e:1e:eb:ae:69:33:
60:43:1c:92:be:e2:34:a0:a6:0e:65:38:3c:05:ee:bd:8e:f7:
a3:07:8a:ae:01:7a:d6:48:b0:c0:35:65:48:91:73:34:4f:2c:
cc:e8:aa:d2:96:7b:48:a4:85:71:5e:f2:b7:29:15:f3:66:5f:
b3:31:b0:a6:2c:3d:ff:4a:c2:07:67:a2:37:e3:6a:4f:62:b6:
71:1a:95:00:ed:be:17:5c:da:f6:22:4c:24:52:27:3f:13:2b:
66:bc:d3:42:3b:83:a6:77:6a:c5:01:13:77:e2:da:b4:b9:28:
83:d4:98:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:55 2024 by rpki-client on console-ams.rpki-client.org