Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/BRLtv2bHAQdJF73V9LxnZAZP9o0.roa
File: BRLtv2bHAQdJF73V9LxnZAZP9o0.roa (raw, json)
Hash identifier: FEZB5yiTls5J8J0E28yNVUAEk3M8uLVxsZkmJP7/NZg=
Subject key identifier: 05:12:ED:BF:66:C7:01:07:49:17:BD:D5:F4:BC:67:64:06:4F:F6:8D
Certificate issuer: /CN=eedde41f362e98ae37d1efc7caf3e7d3c1653ee2
Certificate serial: 018FCAA563DC8006BAF82FAAD11BD37B6790
Authority key identifier: EE:DD:E4:1F:36:2E:98:AE:37:D1:EF:C7:CA:F3:E7:D3:C1:65:3E:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7t3kHzYumK430e_HyvPn08FlPuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/BRLtv2bHAQdJF73V9LxnZAZP9o0.roa
Signing time: Thu 30 May 2024 17:56:27 +0000
ROA not before: Thu 30 May 2024 17:56:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31103
IP address blocks: 62.141.48.0/20 maxlen: 24
84.19.160.0/19 maxlen: 24
84.19.167.0/24 maxlen: 24
84.19.188.0/24 maxlen: 24
87.118.64.0/18 maxlen: 24
87.118.67.0/24 maxlen: 24
87.118.83.0/24 maxlen: 24
87.118.86.0/24 maxlen: 24
87.118.92.0/24 maxlen: 24
87.118.120.0/24 maxlen: 24
95.169.160.0/24 maxlen: 24
95.169.161.0/24 maxlen: 24
95.169.169.0/24 maxlen: 24
95.169.181.0/24 maxlen: 24
95.169.182.0/24 maxlen: 24
95.169.183.0/24 maxlen: 24
95.169.184.0/22 maxlen: 24
95.169.186.0/24 maxlen: 24
95.169.187.0/24 maxlen: 24
95.169.188.0/24 maxlen: 24
95.169.189.0/24 maxlen: 24
95.169.190.0/23 maxlen: 24
217.114.208.0/20 maxlen: 24
2001:1b60::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ca:a5:63:dc:80:06:ba:f8:2f:aa:d1:1b:d3:7b:67:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eedde41f362e98ae37d1efc7caf3e7d3c1653ee2
Validity
Not Before: May 30 17:56:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0512edbf66c701074917bdd5f4bc6764064ff68d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:72:a1:3c:6e:3d:cb:d8:37:1a:12:eb:d0:5c:
e3:1a:67:14:52:21:d1:c2:ff:04:70:c2:a5:15:33:
01:57:ef:85:bf:fb:ae:8e:eb:e9:36:4e:ab:92:dc:
21:e7:cc:a3:3b:19:3b:1f:df:04:c3:a6:d1:2b:06:
7d:e2:87:46:bb:d9:b2:b0:96:75:59:73:19:15:7f:
5a:62:f4:81:fe:04:83:15:b0:61:b0:62:35:4d:94:
23:e7:d7:9e:91:28:e5:c8:aa:f5:14:5b:db:a8:30:
94:a7:b0:a1:04:8f:32:eb:4c:a4:c4:08:49:40:53:
9b:43:fb:3b:87:ee:57:71:61:55:ea:f9:fe:b7:15:
d8:cf:72:76:41:c7:8b:e3:d2:78:57:54:2a:b6:20:
51:e0:64:00:af:27:b1:9e:b5:18:e3:91:e7:ea:60:
1c:34:51:2e:2a:21:0b:e6:3c:7d:9c:cf:95:24:b7:
4e:d8:44:94:ed:77:17:e0:8e:cd:31:a7:ae:89:fa:
a9:61:bf:bc:d1:b3:12:cc:81:6e:b1:df:fd:a0:57:
f7:d9:3b:e1:53:85:a6:cf:84:c2:1d:45:24:48:e6:
4c:6c:c6:08:a1:ee:9a:ed:6f:3a:6d:8c:81:d0:b6:
a2:6c:6e:56:d8:bb:07:60:e9:22:98:1e:dd:66:4a:
f0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:12:ED:BF:66:C7:01:07:49:17:BD:D5:F4:BC:67:64:06:4F:F6:8D
X509v3 Authority Key Identifier:
keyid:EE:DD:E4:1F:36:2E:98:AE:37:D1:EF:C7:CA:F3:E7:D3:C1:65:3E:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7t3kHzYumK430e_HyvPn08FlPuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/BRLtv2bHAQdJF73V9LxnZAZP9o0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/7t3kHzYumK430e_HyvPn08FlPuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.141.48.0/20
84.19.160.0/19
87.118.64.0/18
95.169.160.0/23
95.169.169.0/24
95.169.181.0-95.169.191.255
217.114.208.0/20
IPv6:
2001:1b60::/29
Signature Algorithm: sha256WithRSAEncryption
b5:26:b7:88:bd:ad:96:f0:c3:ed:69:94:6a:25:e6:31:b2:38:
4f:f5:d0:72:8d:38:09:4c:44:9b:cb:e3:60:da:f4:d2:fd:91:
a0:02:09:51:00:95:59:04:53:27:76:aa:fd:6f:d0:44:98:a3:
b7:81:ec:67:c0:91:1e:91:3c:7a:27:11:88:ea:88:d8:8d:23:
45:9d:0f:97:ec:99:5f:df:83:2e:60:d5:cf:ab:07:0f:c2:30:
69:28:ce:2e:b1:2e:c9:09:c6:f4:15:a6:7c:19:9b:cd:90:52:
b4:9d:a3:9b:0a:49:11:0e:34:3c:f2:f3:69:3a:c0:b9:05:24:
9f:4d:4d:1c:5b:f4:54:2f:90:cd:47:e5:b0:03:f1:a1:5c:5f:
8c:d8:58:7e:f1:7c:33:03:88:1f:28:6a:44:7e:c0:a2:6b:7c:
f8:b0:b5:6f:88:64:13:97:49:83:a9:66:4e:6b:a2:0f:de:9e:
74:7a:59:74:64:3f:b0:b2:d5:dc:ac:82:66:6b:8a:ac:92:21:
84:ad:13:7e:14:be:8e:b2:89:61:65:f7:48:a4:76:ec:95:ec:
8a:f6:04:0a:51:3b:24:6e:62:43:f9:2f:e1:65:7e:c3:d1:df:
b5:98:6a:58:8f:f6:da:27:88:8e:ed:f7:4f:3d:b5:db:56:be:
5d:80:f4:ba
-----BEGIN CERTIFICATE-----
MIIFODCCBCCgAwIBAgISAY/KpWPcgAa6+C+q0RvTe2eQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlZGRlNDFmMzYyZTk4YWUzN2QxZWZjN2NhZjNlN2QzYzE2
NTNlZTIwHhcNMjQwNTMwMTc1NjI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTEyZWRiZjY2YzcwMTA3NDkxN2JkZDVmNGJjNjc2NDA2NGZmNjhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3KhPG49y9g3GhLr0FzjGmcUUiHR
wv8EcMKlFTMBV++Fv/uujuvpNk6rktwh58yjOxk7H98Ew6bRKwZ94odGu9mysJZ1
WXMZFX9aYvSB/gSDFbBhsGI1TZQj59eekSjlyKr1FFvbqDCUp7ChBI8y60ykxAhJ
QFObQ/s7h+5XcWFV6vn+txXYz3J2QceL49J4V1QqtiBR4GQAryexnrUY45Hn6mAc
NFEuKiEL5jx9nM+VJLdO2ESU7XcX4I7NMaeuifqpYb+80bMSzIFusd/9oFf32Tvh
U4Wmz4TCHUUkSOZMbMYIoe6a7W86bYyB0LaibG5W2LsHYOkimB7dZkrwvwIDAQAB
o4ICRDCCAkAwHQYDVR0OBBYEFAUS7b9mxwEHSRe91fS8Z2QGT/aNMB8GA1UdIwQY
MBaAFO7d5B82LpiuN9Hvx8rz59PBZT7iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3Qza0h6WXVtSzQzMGVfSHl2UG4wOEZsUHVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My82MjZmYTYtNmVjYS00NzZlLWE1YWYt
YWZlNjMzNzZjODhmLzEvQlJMdHYyYkhBUWRKRjczVjlMeG5aQVpQOW8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My82MjZmYTYtNmVjYS00NzZlLWE1YWYtYWZlNjMzNzZjODhm
LzEvN3Qza0h6WXVtSzQzMGVfSHl2UG4wOEZsUHVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFoGCCsGAQUFBwEHAQH/BEswSTA4BAIAATAyAwQEPo0wAwQF
VBOgAwQGV3ZAAwQBX6mgAwQAX6mpMAwDBABfqbUDBAZfqYADBATZctAwDQQCAAIw
BwMFAyABG2AwDQYJKoZIhvcNAQELBQADggEBALUmt4i9rZbww+1plGol5jGyOE/1
0HKNOAlMRJvL42Da9NL9kaACCVEAlVkEUyd2qv1v0ESYo7eB7GfAkR6RPHonEYjq
iNiNI0WdD5fsmV/fgy5g1c+rBw/CMGkozi6xLskJxvQVpnwZm82QUrSdo5sKSREO
NDzy82k6wLkFJJ9NTRxb9FQvkM1H5bAD8aFcX4zYWH7xfDMDiB8oakR+wKJrfPiw
tW+IZBOXSYOpZk5rog/ennR6WXRkP7Cy1dysgmZriqySIYStE34Uvo6yiWFl90ik
duyV7Ir2BApROyRuYkP5L+FlfsPR37WYaliP9toniI7t9089tdtWvl2A9Lo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:34 2024 by rpki-client on console-ams.rpki-client.org