Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/15d239-7c03-45d3-83e7-b52cdea5bbb5/1/EkLS0aolBU-6NaYgc6Fbq1MFUCY.roa
File: EkLS0aolBU-6NaYgc6Fbq1MFUCY.roa (raw, json)
Hash identifier: aLdm/c4rvtGcdRrBFP99BiBRUoZ6xr+vilCSJbQ5YlE=
Subject key identifier: 12:42:D2:D1:AA:25:05:4F:BA:35:A6:20:73:A1:5B:AB:53:05:50:26
Certificate issuer: /CN=b2f11d8361b052118d851d4a7807bcd24784cff5
Certificate serial: 0185BFE515B7594A9EE720AE2C3A43CC55D0
Authority key identifier: B2:F1:1D:83:61:B0:52:11:8D:85:1D:4A:78:07:BC:D2:47:84:CF:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/svEdg2GwUhGNhR1KeAe80keEz_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/15d239-7c03-45d3-83e7-b52cdea5bbb5/1/EkLS0aolBU-6NaYgc6Fbq1MFUCY.roa
Signing time: Tue 17 Jan 2023 13:22:19 +0000
ROA not before: Tue 17 Jan 2023 13:22:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58345
IP address blocks: 5.134.37.0/24 maxlen: 24
5.134.38.0/24 maxlen: 24
5.134.35.0/24 maxlen: 24
5.134.36.0/24 maxlen: 24
5.134.32.0/20 maxlen: 20
5.134.34.0/24 maxlen: 24
5.134.32.0/24 maxlen: 24
5.134.33.0/24 maxlen: 24
5.134.42.0/24 maxlen: 24
5.134.41.0/24 maxlen: 24
193.108.230.0/24 maxlen: 24
5.134.39.0/24 maxlen: 24
193.108.230.0/23 maxlen: 23
5.134.40.0/24 maxlen: 24
5.134.44.0/24 maxlen: 24
193.108.231.0/24 maxlen: 24
5.134.43.0/24 maxlen: 24
5.134.46.0/24 maxlen: 24
5.134.47.0/24 maxlen: 24
5.134.45.0/24 maxlen: 24
185.103.150.0/24 maxlen: 24
185.103.148.0/22 maxlen: 22
185.103.151.0/24 maxlen: 24
185.103.148.0/24 maxlen: 24
185.103.149.0/24 maxlen: 24
193.108.206.0/24 maxlen: 24
193.108.206.0/23 maxlen: 23
193.108.207.0/24 maxlen: 24
185.102.206.0/24 maxlen: 24
185.102.204.0/24 maxlen: 24
185.102.205.0/24 maxlen: 24
185.102.204.0/22 maxlen: 22
185.102.207.0/24 maxlen: 24
2a03:e080::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bf:e5:15:b7:59:4a:9e:e7:20:ae:2c:3a:43:cc:55:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2f11d8361b052118d851d4a7807bcd24784cff5
Validity
Not Before: Jan 17 13:22:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1242d2d1aa25054fba35a62073a15bab53055026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:02:c9:b5:5b:aa:ae:7d:c2:e2:20:89:30:6f:
9e:b4:3d:c6:03:b5:b1:9a:63:19:53:2f:8c:1a:56:
a0:05:2a:c2:da:fa:e2:97:ed:30:7b:a5:b6:01:63:
06:5b:33:9f:dc:7b:4e:80:e1:03:fd:28:b4:38:51:
3d:e0:91:02:a8:23:c8:e2:96:19:7b:57:84:6c:c5:
a9:62:d1:1c:13:96:f0:d9:b4:d1:aa:fd:16:c4:7a:
e7:23:47:b0:ac:c1:cb:89:83:ce:05:1b:cb:79:70:
c7:04:ad:7c:df:8b:c7:67:64:40:f3:7e:1d:95:b3:
1e:0a:98:4c:fa:d7:e1:24:a4:2f:cf:60:03:e2:67:
42:9f:49:9f:53:4c:d1:27:10:5a:78:e4:12:aa:3b:
03:08:1a:98:d7:9c:2e:2a:a2:bc:a0:dd:fd:1a:12:
1e:91:c0:e2:f0:09:48:99:b9:32:16:0a:b2:e8:1f:
f0:fd:38:0f:a0:ff:61:3e:fb:b7:59:53:5e:d7:3a:
d7:77:be:49:dd:73:e0:4d:85:ce:c3:76:6b:f9:1e:
35:5d:57:0d:31:27:b4:b4:e1:04:4b:19:e5:29:a7:
94:ac:54:b0:03:05:0b:50:4b:57:69:86:f8:55:f8:
f7:ac:c7:14:df:a2:9b:9d:0e:fd:4b:aa:e5:40:79:
5f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:42:D2:D1:AA:25:05:4F:BA:35:A6:20:73:A1:5B:AB:53:05:50:26
X509v3 Authority Key Identifier:
keyid:B2:F1:1D:83:61:B0:52:11:8D:85:1D:4A:78:07:BC:D2:47:84:CF:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/svEdg2GwUhGNhR1KeAe80keEz_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/15d239-7c03-45d3-83e7-b52cdea5bbb5/1/EkLS0aolBU-6NaYgc6Fbq1MFUCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/15d239-7c03-45d3-83e7-b52cdea5bbb5/1/svEdg2GwUhGNhR1KeAe80keEz_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.32.0/20
185.102.204.0/22
185.103.148.0/22
193.108.206.0/23
193.108.230.0/23
IPv6:
2a03:e080::/32
Signature Algorithm: sha256WithRSAEncryption
58:90:29:13:ee:ff:36:13:2b:2e:4b:c6:79:8a:3c:22:93:ab:
cf:63:50:15:09:1d:60:61:51:d6:88:92:f3:d5:cc:79:cf:d2:
ae:36:59:0a:43:94:22:fc:a0:d5:bd:c9:48:7b:6d:52:eb:e8:
f9:5f:f8:be:4f:62:5f:5d:c1:ae:ad:f6:57:6b:eb:35:07:80:
d3:13:53:93:99:0b:ce:a4:46:dd:51:55:28:42:e8:c9:21:0b:
0b:00:9a:9c:43:b9:ce:52:b6:43:64:a6:06:83:a9:e8:8b:1b:
f8:84:20:6d:fe:a1:77:96:bb:94:0b:b1:56:e8:95:56:12:fa:
40:ab:14:c4:bf:4a:7c:c7:38:84:46:14:3c:98:35:fa:70:4f:
97:5c:49:e0:6d:d1:64:40:e4:ab:d0:3d:56:78:95:be:9d:be:
19:de:c8:9f:4a:7b:f5:91:05:09:4e:62:9f:be:b6:3b:38:fd:
1d:7c:02:1d:25:83:65:44:97:9e:f3:ba:81:f2:83:22:99:ad:
64:dd:12:92:d2:b1:e1:bb:89:a8:56:27:3f:0e:14:15:91:c9:
2d:06:53:65:bc:de:50:d2:75:39:ff:95:59:af:c9:2f:af:59:
7c:c6:99:2c:e9:2a:dd:c5:c3:9d:69:66:0d:f4:d3:63:d4:bf:
86:89:3f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:45 2024 by rpki-client on console-ams.rpki-client.org