Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/228efe-ff30-4328-a915-0f3b6f96990b/1/trfl0QrNf_q3b-82sXnmxK63EWQ.roa
File: trfl0QrNf_q3b-82sXnmxK63EWQ.roa (raw, json)
Hash identifier: TdwMpB/1uJKch2QQU34XexuZc670PQl77wONv4vjK9o=
Subject key identifier: B6:B7:E5:D1:0A:CD:7F:FA:B7:6F:EF:36:B1:79:E6:C4:AE:B7:11:64
Certificate issuer: /CN=e8159b68ce41368a99fe1079ec54c36c9bb1bf94
Certificate serial: 018CC5DC97E6BCAF563C984FEA19F170C2C6
Authority key identifier: E8:15:9B:68:CE:41:36:8A:99:FE:10:79:EC:54:C3:6C:9B:B1:BF:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6BWbaM5BNoqZ_hB57FTDbJuxv5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/228efe-ff30-4328-a915-0f3b6f96990b/1/trfl0QrNf_q3b-82sXnmxK63EWQ.roa
Signing time: Mon 01 Jan 2024 16:30:17 +0000
ROA not before: Mon 01 Jan 2024 16:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204366
IP address blocks: 185.250.64.0/22 maxlen: 22
185.250.64.0/24 maxlen: 24
185.250.65.0/24 maxlen: 24
185.250.67.0/24 maxlen: 24
185.250.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:97:e6:bc:af:56:3c:98:4f:ea:19:f1:70:c2:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8159b68ce41368a99fe1079ec54c36c9bb1bf94
Validity
Not Before: Jan 1 16:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b6b7e5d10acd7ffab76fef36b179e6c4aeb71164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e1:3f:01:c6:41:d2:b4:04:84:58:6e:fc:41:
bf:3e:de:4d:a6:f9:4a:df:3d:ed:33:af:0d:1d:d8:
f2:c4:7b:bb:ee:73:de:f4:a1:5d:c1:5b:01:07:2f:
40:d3:bc:a1:80:5d:29:38:73:b5:65:b1:63:54:15:
f1:15:05:70:c3:68:6d:ff:f9:ab:f2:00:cb:11:eb:
fc:69:2e:67:27:30:e8:69:77:1a:7f:df:1f:01:33:
3c:49:98:00:ea:b2:0a:c8:95:50:cb:c3:e2:55:3f:
b1:b8:68:78:56:6a:67:e8:8a:5b:02:df:00:74:da:
01:69:d0:bd:87:64:89:c5:0f:f3:21:20:19:80:06:
2c:b3:ec:bb:86:5a:8a:12:45:c3:6a:24:a0:0a:a8:
ee:92:77:3b:b6:80:f9:23:7d:9a:ad:a3:6e:52:41:
06:7b:15:88:2b:bf:47:03:43:2d:09:95:b0:c4:82:
9d:b1:c9:ad:88:03:cf:3d:54:48:dc:35:31:1b:1f:
b5:13:95:18:d5:de:5d:76:27:22:b0:7c:a0:b0:9d:
b5:1f:86:3c:25:8c:5e:aa:5f:56:88:d7:4a:d1:65:
6f:cb:c6:dd:15:77:b1:d9:0e:c6:99:96:1a:8f:1d:
75:ca:98:00:cb:62:20:99:31:1c:98:2c:aa:32:11:
60:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B7:E5:D1:0A:CD:7F:FA:B7:6F:EF:36:B1:79:E6:C4:AE:B7:11:64
X509v3 Authority Key Identifier:
keyid:E8:15:9B:68:CE:41:36:8A:99:FE:10:79:EC:54:C3:6C:9B:B1:BF:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6BWbaM5BNoqZ_hB57FTDbJuxv5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/228efe-ff30-4328-a915-0f3b6f96990b/1/trfl0QrNf_q3b-82sXnmxK63EWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/228efe-ff30-4328-a915-0f3b6f96990b/1/6BWbaM5BNoqZ_hB57FTDbJuxv5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.64.0/22
Signature Algorithm: sha256WithRSAEncryption
66:3f:2a:44:f4:29:29:27:04:f9:d1:ba:40:be:eb:5a:4a:0a:
e8:98:f4:48:05:af:3e:19:a0:8b:d5:47:bb:4c:b6:10:ba:2a:
dc:c2:c3:ce:27:e4:10:ab:0c:74:37:9e:51:ba:e0:e6:87:1c:
30:da:1c:ea:98:37:56:91:8d:e0:de:b6:43:2f:f3:f9:0d:d9:
95:0b:6f:24:09:2c:70:59:07:89:31:e8:ab:15:4f:c7:ba:61:
ce:08:a5:83:65:30:82:d4:a5:20:79:bf:0a:7d:19:c3:a6:63:
63:82:c5:c0:16:5d:8f:fe:e5:19:59:79:cd:cb:c9:f5:33:50:
3d:23:93:37:f8:df:38:6c:63:46:38:c1:77:e9:d4:02:e7:6e:
1c:df:a4:0d:ef:19:dc:67:81:6a:5a:d4:01:02:3e:4e:d4:35:
d7:73:c9:e7:fd:2c:d9:03:4b:d8:25:ed:06:5e:4c:1d:43:a0:
3b:4b:df:cd:87:db:c7:03:6a:41:82:b4:be:b1:56:09:39:85:
d4:7c:77:08:4d:d8:56:79:f2:9a:4f:44:46:93:f2:64:f8:5a:
3b:41:c5:ce:c1:85:3f:bf:9d:32:ac:3d:3c:bc:e8:6f:c6:1a:
33:be:e9:e6:c9:4e:35:ab:68:9a:1f:ed:c6:c8:10:d5:65:eb:
63:75:fd:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:31 2024 by rpki-client on console.sobornost.net