Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/d0a974-a48d-4520-ae1f-27197e46ca06/1/DUzi8Gjvv7O7gQEcXCT9fxsDxJc.roa
File: DUzi8Gjvv7O7gQEcXCT9fxsDxJc.roa (raw, json)
Hash identifier: Kqrl4qQALssZPlYDfjBFxroJf0wblDyN5/bchdDl8oI=
Subject key identifier: 0D:4C:E2:F0:68:EF:BF:B3:BB:81:01:1C:5C:24:FD:7F:1B:03:C4:97
Certificate issuer: /CN=63ba9e49199899f06082c8c263cfbb329e23f84a
Certificate serial: 01856BD358BD613C43810E79591AD773A9F4
Authority key identifier: 63:BA:9E:49:19:98:99:F0:60:82:C8:C2:63:CF:BB:32:9E:23:F8:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y7qeSRmYmfBggsjCY8-7Mp4j-Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/d0a974-a48d-4520-ae1f-27197e46ca06/1/DUzi8Gjvv7O7gQEcXCT9fxsDxJc.roa
Signing time: Sun 01 Jan 2023 05:34:50 +0000
ROA not before: Sun 01 Jan 2023 05:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3265
IP address blocks: 195.64.80.0/20 maxlen: 20
82.92.0.0/14 maxlen: 14
194.109.0.0/16 maxlen: 16
62.251.0.0/17 maxlen: 17
83.160.0.0/14 maxlen: 14
82.161.0.0/16 maxlen: 16
83.68.0.0/19 maxlen: 24
213.84.0.0/16 maxlen: 16
80.100.0.0/15 maxlen: 15
62.216.0.0/19 maxlen: 19
213.222.0.0/19 maxlen: 19
212.238.0.0/16 maxlen: 16
80.126.0.0/15 maxlen: 15
2001:888::/32 maxlen: 32
2001:888::/29 maxlen: 29
2001:888::/30 maxlen: 30
2001:980::/30 maxlen: 30
2001:980::/29 maxlen: 29
2001:980::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:58:bd:61:3c:43:81:0e:79:59:1a:d7:73:a9:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63ba9e49199899f06082c8c263cfbb329e23f84a
Validity
Not Before: Jan 1 05:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d4ce2f068efbfb3bb81011c5c24fd7f1b03c497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:dd:20:ec:37:e6:64:79:83:26:f3:e7:dc:2a:
37:35:b8:68:ec:af:56:59:19:dd:be:0f:84:20:a6:
4f:ae:5a:17:c3:10:75:6a:a4:7c:73:cd:fe:66:a0:
89:a7:ce:da:e3:47:17:a6:92:c2:71:85:7b:8b:d1:
cd:f1:39:20:a0:be:d1:3a:75:e6:f8:1f:d9:e3:f2:
b2:94:83:f9:d6:3c:17:c0:a4:9b:56:2e:65:c1:57:
50:a3:b8:4c:84:ab:41:1c:68:5f:c5:1a:ca:96:d8:
02:ff:19:4f:41:51:8a:5b:72:da:46:46:27:64:38:
b6:3e:ed:42:91:2a:dd:fb:09:54:56:34:38:4a:f8:
45:07:e9:69:d3:e9:c3:d1:5e:b7:d2:92:7a:38:75:
60:76:96:bd:ac:74:e1:3f:99:e4:ec:4c:08:af:74:
80:04:12:41:19:1b:23:72:ea:83:c0:af:7d:a7:d1:
73:5f:2e:5c:ae:81:bb:91:82:b6:ae:52:8a:e9:08:
7b:50:a5:1f:05:aa:23:6c:42:a4:20:02:f4:66:d9:
c2:ca:f2:b6:8f:04:1d:d0:04:72:08:49:29:53:bc:
f5:20:de:4e:6b:8f:64:d1:8d:c4:c9:aa:9c:86:4b:
d9:70:57:fb:3d:74:b0:0b:0e:77:fa:22:49:ad:53:
60:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:4C:E2:F0:68:EF:BF:B3:BB:81:01:1C:5C:24:FD:7F:1B:03:C4:97
X509v3 Authority Key Identifier:
keyid:63:BA:9E:49:19:98:99:F0:60:82:C8:C2:63:CF:BB:32:9E:23:F8:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y7qeSRmYmfBggsjCY8-7Mp4j-Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d0a974-a48d-4520-ae1f-27197e46ca06/1/DUzi8Gjvv7O7gQEcXCT9fxsDxJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d0a974-a48d-4520-ae1f-27197e46ca06/1/Y7qeSRmYmfBggsjCY8-7Mp4j-Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.216.0.0/19
62.251.0.0/17
80.100.0.0/15
80.126.0.0/15
82.92.0.0/14
82.161.0.0/16
83.68.0.0/19
83.160.0.0/14
194.109.0.0/16
195.64.80.0/20
212.238.0.0/16
213.84.0.0/16
213.222.0.0/19
IPv6:
2001:888::/29
2001:980::/29
Signature Algorithm: sha256WithRSAEncryption
4e:e9:44:6c:e2:e9:d2:a3:d6:5c:16:bb:92:f9:ae:c4:78:a9:
38:70:9e:ae:8d:dc:24:33:a3:f2:bc:dd:a6:43:a7:b5:ff:06:
4d:b9:f8:a9:27:b8:a2:18:bb:76:6a:8a:e9:5b:69:56:66:a5:
7e:64:0e:a2:2c:d6:8c:12:80:fb:9f:11:49:3a:6b:eb:1e:3d:
fa:62:99:97:50:5a:98:2f:e8:a4:27:13:95:11:be:05:fa:68:
1f:ef:ff:23:98:0e:25:d6:e8:45:e9:07:34:a3:9b:3f:b8:07:
d8:14:d8:dd:07:3e:29:6f:b5:14:f4:b8:59:9b:c5:fe:c8:dd:
eb:2c:cf:86:d0:b1:9b:12:1e:ca:17:b5:de:77:39:3a:88:8d:
ac:1c:f6:96:ad:54:98:f8:c5:7e:2d:02:92:f0:3e:8f:3b:d0:
5c:5c:29:49:87:47:4d:52:f4:84:9e:6c:36:29:21:af:5c:fa:
6d:94:4b:93:b4:f1:fc:5b:12:3c:44:69:dd:09:66:d4:bc:69:
41:cb:bd:e0:06:6f:7d:d0:1d:6b:8e:f8:a8:61:43:75:27:ed:
21:bf:39:37:25:a2:5b:b9:a2:2f:55:08:1c:d8:e7:f4:da:b9:
d4:2a:59:db:2b:8c:43:91:74:a3:4a:bc:52:fc:46:28:09:1d:
27:93:15:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:08 2024 by rpki-client on console-fra.rpki-client.org