Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d2f2c0-51ab-4ada-a26e-25b5bc8dd63c/1/_Nt75htOg8Hm0_oLUixjt3Vxivo.roa
File: _Nt75htOg8Hm0_oLUixjt3Vxivo.roa (raw, json)
Hash identifier: ApbtL5dIZC6eTi09yU6o4xPWHrtoUKwt1Rl5yzDbalk=
Subject key identifier: FC:DB:7B:E6:1B:4E:83:C1:E6:D3:FA:0B:52:2C:63:B7:75:71:8A:FA
Certificate issuer: /CN=b30bf5d9085fe5afe5e201d7c236cef9be9235af
Certificate serial: 0183CD999BCF2B95BCBF180E6AEA5CD7A9B8
Authority key identifier: B3:0B:F5:D9:08:5F:E5:AF:E5:E2:01:D7:C2:36:CE:F9:BE:92:35:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swv12Qhf5a_l4gHXwjbO-b6SNa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d2f2c0-51ab-4ada-a26e-25b5bc8dd63c/1/_Nt75htOg8Hm0_oLUixjt3Vxivo.roa
Signing time: Wed 12 Oct 2022 19:08:59 +0000
ROA not before: Wed 12 Oct 2022 19:08:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42237
IP address blocks: 193.105.134.0/24 maxlen: 24
91.236.116.0/24 maxlen: 24
185.217.2.0/24 maxlen: 24
185.217.1.0/24 maxlen: 24
185.217.0.0/24 maxlen: 24
185.246.130.0/24 maxlen: 24
185.246.129.0/24 maxlen: 24
185.246.128.0/24 maxlen: 24
2a0d:8986::/32 maxlen: 32
2a0d:8985::/32 maxlen: 32
2a0d:8982::/32 maxlen: 32
2a0d:8981::/32 maxlen: 32
2a0b:c040::/32 maxlen: 32
2a0d:8987::/32 maxlen: 32
2a0d:8984::/32 maxlen: 32
2a0d:8980::/32 maxlen: 32
2a0b:c041::/32 maxlen: 32
2a0d:8983::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:99:9b:cf:2b:95:bc:bf:18:0e:6a:ea:5c:d7:a9:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b30bf5d9085fe5afe5e201d7c236cef9be9235af
Validity
Not Before: Oct 12 19:08:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcdb7be61b4e83c1e6d3fa0b522c63b775718afa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:61:48:04:68:03:30:56:53:cd:1d:b9:bc:9b:
e4:ea:f6:34:55:41:e4:c4:7e:e0:a1:b8:fe:e1:07:
b7:2f:87:7c:4d:8e:85:81:7e:49:69:0c:f8:fc:2c:
2a:24:5c:83:4c:e9:c4:e2:14:cc:ad:45:8e:ae:a2:
ac:c1:4c:e1:93:1b:bd:0f:05:9e:35:d7:4a:3e:cc:
dc:66:81:0e:29:73:68:cb:58:52:fa:35:48:92:9a:
51:aa:68:45:15:19:28:33:e4:5b:67:b7:3c:96:8f:
ab:56:88:2f:c2:78:33:c6:1b:34:74:2f:cb:05:f5:
31:19:0e:42:b8:7b:f0:98:55:f2:db:af:fc:ce:23:
9d:13:4c:b3:81:f0:de:0b:13:d6:ab:2b:b1:78:c4:
70:bb:31:54:29:e7:20:5d:97:d4:8f:b0:ba:8a:c0:
9f:e7:36:94:31:00:87:dc:fb:03:77:ea:8c:11:e0:
d1:dc:fa:5a:34:ea:f6:f5:6c:2a:cf:93:e4:1c:d8:
ae:a3:fc:1a:b0:b6:ec:fc:f5:77:34:be:f8:75:bd:
c9:31:31:8f:d1:82:94:ed:d8:5f:67:5f:b2:42:37:
5d:cf:40:7b:f4:9e:05:bb:d8:78:73:61:05:b2:bb:
85:3a:28:9d:19:06:5d:d5:be:b2:79:1e:85:df:14:
35:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:DB:7B:E6:1B:4E:83:C1:E6:D3:FA:0B:52:2C:63:B7:75:71:8A:FA
X509v3 Authority Key Identifier:
keyid:B3:0B:F5:D9:08:5F:E5:AF:E5:E2:01:D7:C2:36:CE:F9:BE:92:35:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swv12Qhf5a_l4gHXwjbO-b6SNa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d2f2c0-51ab-4ada-a26e-25b5bc8dd63c/1/_Nt75htOg8Hm0_oLUixjt3Vxivo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d2f2c0-51ab-4ada-a26e-25b5bc8dd63c/1/swv12Qhf5a_l4gHXwjbO-b6SNa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.116.0/24
185.217.0.0-185.217.2.255
185.246.128.0-185.246.130.255
193.105.134.0/24
IPv6:
2a0b:c040::/31
2a0d:8980::/29
Signature Algorithm: sha256WithRSAEncryption
62:ef:51:a6:82:12:a7:0b:ba:38:d0:33:a4:cc:c5:56:f0:f6:
a2:f0:b5:cd:79:21:4b:99:85:1e:32:6b:20:18:4a:96:64:a8:
f6:86:3c:4c:ba:e5:d9:45:4c:9f:29:69:fa:15:e0:50:f2:da:
2a:fe:fb:bb:b5:51:28:d5:33:b3:af:7f:80:96:ad:ca:51:c4:
cb:aa:ec:ce:12:7d:5c:bd:4c:21:42:42:ec:c4:fc:25:95:c2:
a8:fc:c9:a7:b9:ad:5b:20:d5:14:a4:cc:fc:5e:2f:73:95:ca:
de:8c:74:8b:50:2b:a8:5f:13:c1:c8:5e:d3:04:18:b3:f6:68:
3a:58:bc:ca:72:73:92:5d:d8:8b:0a:5b:51:c8:af:4c:bc:dc:
ef:60:c9:ae:79:85:3a:14:1a:66:9d:6b:1b:29:8c:e2:79:12:
67:c5:05:12:66:ae:1e:08:f8:63:9e:d6:3a:69:d1:e1:38:95:
12:e7:dc:01:f6:fd:0e:d9:34:45:c7:c7:f1:b4:0a:dd:6a:83:
b0:75:c4:17:7b:fb:b6:c6:ca:3b:08:a6:78:f3:32:b7:be:91:
28:cd:9b:95:3f:de:a9:05:22:1d:c8:c4:a6:ad:de:dd:39:be:
d9:9b:47:b3:02:fa:1a:ab:80:e9:7f:4e:ad:a0:c7:62:17:b0:
a7:5f:8d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:44 2024 by rpki-client on console-ams.rpki-client.org