Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/V2a47mhUh8nZd6KODpJx23mZKBU.roa
File: V2a47mhUh8nZd6KODpJx23mZKBU.roa (raw, json)
Hash identifier: UvKSnz7Ye/73v2CqPzS/eNNGpSRbmhaFrP5zz8MZYYQ=
Subject key identifier: 57:66:B8:EE:68:54:87:C9:D9:77:A2:8E:0E:92:71:DB:79:99:28:15
Certificate issuer: /CN=537b37656cd14d488a70512921875717a0d910b6
Certificate serial: 06877108
Authority key identifier: 53:7B:37:65:6C:D1:4D:48:8A:70:51:29:21:87:57:17:A0:D9:10:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3s3ZWzRTUiKcFEpIYdXF6DZELY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/V2a47mhUh8nZd6KODpJx23mZKBU.roa
Signing time: Thu 03 Mar 2022 16:31:16 +0000
ROA not before: Thu 03 Mar 2022 16:31:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12345
IP address blocks: 194.156.112.0/22 maxlen: 24
91.240.163.0/24 maxlen: 24
91.240.89.0/24 maxlen: 24
178.239.22.0/23 maxlen: 23
95.214.84.0/22 maxlen: 22
88.218.144.0/22 maxlen: 24
91.240.128.0/24 maxlen: 24
195.158.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109539592 (0x6877108)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=537b37656cd14d488a70512921875717a0d910b6
Validity
Not Before: Mar 3 16:31:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5766b8ee685487c9d977a28e0e9271db79992815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:94:3b:66:d1:52:30:e8:36:8a:05:4a:8d:17:
7f:44:4b:62:f6:87:c5:ec:03:3e:92:3c:c3:e2:f0:
5a:15:61:30:3b:8d:a3:af:4d:51:87:c4:0f:36:a9:
55:93:fb:0f:6f:e3:8c:65:84:98:89:ee:36:a5:c7:
58:e6:d9:50:65:fa:27:64:51:a7:f7:3a:56:e0:7c:
ed:1c:09:6e:c4:07:88:26:25:99:3e:f5:40:4e:45:
8c:1a:2b:04:d4:95:df:4f:86:ce:bb:d8:fa:87:9e:
33:6e:8b:37:b0:4c:5f:5a:db:21:df:32:46:af:4d:
66:47:24:d3:ad:46:85:10:5a:2e:51:38:76:e2:43:
9e:2b:2f:04:97:db:c8:4e:3a:17:5d:55:74:91:31:
a0:36:1d:99:99:cb:1f:d3:bf:9f:0d:76:60:28:6c:
70:23:2d:8e:f5:19:6e:b6:09:f5:6b:fb:84:ac:be:
e2:9d:90:e1:06:7a:ac:1d:1c:70:d7:86:0b:a3:f3:
fe:56:21:cf:76:c7:30:75:8e:8e:51:dd:1b:c7:87:
9b:87:30:79:ef:11:f7:85:e2:4b:91:2d:ea:0e:3a:
df:ad:c0:ee:27:12:58:92:93:87:4e:d6:03:54:0d:
6a:8b:65:c9:99:33:ae:7c:e8:b7:d6:d7:bb:1d:cc:
5b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:66:B8:EE:68:54:87:C9:D9:77:A2:8E:0E:92:71:DB:79:99:28:15
X509v3 Authority Key Identifier:
keyid:53:7B:37:65:6C:D1:4D:48:8A:70:51:29:21:87:57:17:A0:D9:10:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3s3ZWzRTUiKcFEpIYdXF6DZELY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/V2a47mhUh8nZd6KODpJx23mZKBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/U3s3ZWzRTUiKcFEpIYdXF6DZELY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.144.0/22
91.240.89.0/24
91.240.128.0/24
91.240.163.0/24
95.214.84.0/22
178.239.22.0/23
194.156.112.0/22
195.158.208.0/22
Signature Algorithm: sha256WithRSAEncryption
36:6c:98:18:72:06:1e:d1:f2:58:76:aa:7b:f4:6f:70:d3:cd:
c1:83:56:fc:9c:04:dd:cd:b2:26:ae:27:00:fc:b8:f2:9f:bb:
61:52:83:6a:60:1d:98:cb:79:f6:69:49:ae:92:b6:7c:21:a0:
bc:db:da:9e:74:72:13:6c:cd:7c:00:28:c4:81:ea:f0:87:f0:
7a:6b:a6:27:91:5c:54:d0:ed:4e:c5:c8:72:34:cb:90:b2:15:
01:96:82:b6:9d:9e:34:b7:e5:bd:a1:32:5b:bc:ea:69:ee:77:
4a:b2:19:5c:57:13:5b:43:9b:08:b7:f3:dd:09:b3:8e:bf:61:
e2:cf:72:b4:84:71:4e:2a:c7:d0:35:b7:ba:25:a0:ad:b8:1d:
c6:56:2b:9d:41:df:6a:1e:32:2c:4c:48:e9:29:d2:6d:0b:e0:
3c:b5:b1:e5:c0:08:89:2c:0a:46:2b:68:9f:77:36:3a:71:6b:
ee:2d:ac:d0:34:41:81:aa:4d:4c:5e:b8:4d:ac:ff:94:48:ab:
5d:6e:26:59:d5:58:0d:e5:72:0d:c6:dd:a1:ed:47:0e:70:a2:
c2:59:fe:6d:a6:28:c5:f0:8b:e4:95:bf:7f:42:97:c6:47:a2:
15:7b:ba:0a:6e:da:11:81:5c:87:e7:e4:fb:ed:5c:e3:96:3b:
ba:0d:ed:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org