Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/lid6kkq_IwMnJfPFvoz3_A7qxgw.roa
File: lid6kkq_IwMnJfPFvoz3_A7qxgw.roa (raw, json)
Hash identifier: HkcdSfiIcq9qB8MdTylv0YFg34qdYLAjcJGSP8h1RgA=
Subject key identifier: 96:27:7A:92:4A:BF:23:03:27:25:F3:C5:BE:8C:F7:FC:0E:EA:C6:0C
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D8DCA0C
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/lid6kkq_IwMnJfPFvoz3_A7qxgw.roa
Signing time: Tue 07 Jun 2022 11:15:03 +0000
ROA not before: Tue 07 Jun 2022 11:15:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34549
IP address blocks: 195.180.132.0/22 maxlen: 22
195.180.140.0/22 maxlen: 22
212.224.0.0/22 maxlen: 24
194.195.108.0/22 maxlen: 22
212.224.20.0/22 maxlen: 22
195.179.44.0/22 maxlen: 22
194.233.20.0/22 maxlen: 22
194.64.172.0/22 maxlen: 22
194.163.72.0/22 maxlen: 22
194.163.76.0/22 maxlen: 22
195.179.80.0/22 maxlen: 22
217.119.60.0/22 maxlen: 22
195.179.32.0/21 maxlen: 24
194.64.156.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227396108 (0xd8dca0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jun 7 11:15:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96277a924abf23032725f3c5be8cf7fc0eeac60c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3f:c0:48:66:61:20:a2:d7:e0:ef:4c:20:c5:
4c:d8:cf:0f:a0:be:ec:28:f5:c8:68:8a:fe:27:78:
2c:c0:f9:0d:78:09:09:1b:cf:a2:8e:34:59:96:92:
39:33:a6:ae:9c:a8:bd:d9:ec:02:95:20:3c:a9:0a:
a3:70:ba:3d:75:57:51:b4:cb:13:8a:60:38:e9:ca:
8e:85:98:02:ea:20:fd:77:88:29:c8:bc:be:35:11:
7c:02:6d:09:d2:52:3a:60:c0:81:66:ed:8b:ae:b2:
b8:35:90:da:3d:38:65:5a:d0:ae:d2:ad:5d:35:cd:
ae:b2:5c:9e:4a:77:2a:31:0f:3f:a0:8e:aa:0b:19:
70:96:73:b8:c9:fc:d6:72:f6:31:0e:fb:b3:6b:1a:
1f:0d:6d:1e:b3:41:70:34:8b:43:03:3d:2b:46:59:
30:e0:0b:9b:59:71:92:ea:73:84:a0:73:70:02:9f:
ae:e0:ea:db:e9:1a:c7:64:ed:be:4f:2b:c2:31:7e:
15:e1:97:74:3f:4b:d0:6d:39:38:07:86:78:b9:7a:
34:f1:eb:70:2f:5b:08:c0:93:e1:4e:99:d4:da:4e:
7b:86:cc:98:60:eb:37:ae:2f:e6:12:53:f0:05:10:
3f:69:06:d8:0a:d9:d3:f1:f9:a8:8f:32:1c:b8:f5:
41:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:27:7A:92:4A:BF:23:03:27:25:F3:C5:BE:8C:F7:FC:0E:EA:C6:0C
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/lid6kkq_IwMnJfPFvoz3_A7qxgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.64.156.0/22
194.64.172.0/22
194.163.72.0/21
194.195.108.0/22
194.233.20.0/22
195.179.32.0/21
195.179.44.0/22
195.179.80.0/22
195.180.132.0/22
195.180.140.0/22
212.224.0.0/22
212.224.20.0/22
217.119.60.0/22
Signature Algorithm: sha256WithRSAEncryption
93:7d:37:9b:0a:c1:a3:9f:71:61:7c:2d:2b:d4:0f:16:ed:c7:
be:32:20:be:16:70:7b:eb:7c:13:ea:2e:e9:5a:f9:1d:af:82:
4c:58:ea:fb:83:67:03:c4:bc:67:f7:e4:fd:ef:5e:8c:10:6f:
0d:29:18:a8:8b:54:0e:2d:72:7b:e6:f3:33:b7:ae:3e:95:38:
5c:2e:63:ea:91:e4:83:67:25:fc:07:57:52:95:df:34:40:49:
c9:7f:6e:ff:59:e7:3c:b9:18:a7:fe:f8:a4:03:db:f3:08:59:
8b:51:d3:41:ad:8f:40:20:38:c5:3f:02:16:1a:7e:2b:7e:3d:
2d:09:4f:00:58:42:e5:18:32:ae:b8:46:a9:39:6a:a2:f1:a2:
46:00:1f:d3:00:85:58:2d:fa:92:de:07:f3:0c:fc:e6:c4:0a:
ff:f1:58:6f:9d:33:d6:97:34:2a:1d:82:3f:6b:4a:d1:34:d3:
ee:92:35:6f:ef:60:df:a4:ae:eb:1a:33:4b:15:da:0c:f5:34:
59:a3:4e:d0:d6:4e:87:82:1e:ad:46:eb:fd:13:9a:7b:59:35:
95:0f:bc:62:ed:c4:37:c4:0d:ab:76:8b:7f:1b:3c:c9:c3:0b:
06:52:ab:d8:cd:72:1b:59:ac:67:50:e6:9d:5f:35:33:ae:59:
9b:23:04:b9
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIEDY3KDDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3MDE3NTY0YzcxMWJjYmQ1NzY4MGEwZGZkMDBmMmE1ZDA5OWRiMB4XDTIyMDYw
NzExMTUwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTYyNzdhOTI0YWJm
MjMwMzI3MjVmM2M1YmU4Y2Y3ZmMwZWVhYzYwYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOg/wEhmYSCi1+DvTCDFTNjPD6C+7Cj1yGiK/id4LMD5DXgJ
CRvPoo40WZaSOTOmrpyovdnsApUgPKkKo3C6PXVXUbTLE4pgOOnKjoWYAuog/XeI
Kci8vjURfAJtCdJSOmDAgWbti66yuDWQ2j04ZVrQrtKtXTXNrrJcnkp3KjEPP6CO
qgsZcJZzuMn81nL2MQ77s2saHw1tHrNBcDSLQwM9K0ZZMOALm1lxkupzhKBzcAKf
ruDq2+kax2Ttvk8rwjF+FeGXdD9L0G05OAeGeLl6NPHrcC9bCMCT4U6Z1NpOe4bM
mGDrN64v5hJT8AUQP2kG2ArZ0/H5qI8yHLj1QYsCAwEAAaOCAlEwggJNMB0GA1Ud
DgQWBBSWJ3qSSr8jAycl88W+jPf8DurGDDAfBgNVHSMEGDAWgBTXRwF1ZMcRvL1X
aAoN/QDypdCZ2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwY0JkV1RIRWJ5OVYyZ0tEZjBBOHFYUW1kcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8x
L2xpZDZra3FfSXdNbkpmUEZ2b3ozX0E3cXhndy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8xLzEwY0JkV1RIRWJ5
OVYyZ0tEZjBBOHFYUW1kcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBn
BggrBgEFBQcBBwEB/wRYMFYwVAQCAAEwTgMEAsJAnAMEAsJArAMEA8KjSAMEAsLD
bAMEAsLpFAMEA8OzIAMEAsOzLAMEAsOzUAMEAsO0hAMEAsO0jAMEAtTgAAMEAtTg
FAMEAtl3PDANBgkqhkiG9w0BAQsFAAOCAQEAk303mwrBo59xYXwtK9QPFu3HvjIg
vhZwe+t8E+ou6Vr5Ha+CTFjq+4NnA8S8Z/fk/e9ejBBvDSkYqItUDi1ye+bzM7eu
PpU4XC5j6pHkg2cl/AdXUpXfNEBJyX9u/1nnPLkYp/74pAPb8whZi1HTQa2PQCA4
xT8CFhp+K349LQlPAFhC5RgyrrhGqTlqovGiRgAf0wCFWC36kt4H8wz85sQK//FY
b50z1pc0Kh2CP2tK0TTT7pI1b+9g36Su6xozSxXaDPU0WaNO0NZOh4IerUbr/ROa
e1k1lQ+8Yu3EN8QNq3aLfxs8ycMLBlKr2M1yG1msZ1DmnV81M65ZmyMEuQ==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:26 2025 by rpki-client