Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/cB1PK57xkGa_1ofFivJncb1Kr5g.roa
File: cB1PK57xkGa_1ofFivJncb1Kr5g.roa (raw, json)
Hash identifier: Ihs10sXzgacvRpVki2k6vvpPv4k80nwK2kAaycik8R4=
Subject key identifier: 70:1D:4F:2B:9E:F1:90:66:BF:D6:87:C5:8A:F2:67:71:BD:4A:AF:98
Certificate issuer: /CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Certificate serial: 0185A188A3EB90F7EB9CE116734DD38CF635
Authority key identifier: 9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/cB1PK57xkGa_1ofFivJncb1Kr5g.roa
Signing time: Wed 11 Jan 2023 15:52:44 +0000
ROA not before: Wed 11 Jan 2023 15:52:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212865
IP address blocks: 80.238.134.0/24 maxlen: 24
80.238.136.0/24 maxlen: 24
80.238.139.0/24 maxlen: 24
80.238.140.0/22 maxlen: 22
80.238.144.0/20 maxlen: 20
80.238.160.0/20 maxlen: 20
80.238.176.0/20 maxlen: 20
80.238.129.0/24 maxlen: 24
80.238.130.0/24 maxlen: 24
62.65.141.0/24 maxlen: 24
62.65.144.0/21 maxlen: 21
62.65.142.0/24 maxlen: 24
62.65.143.0/24 maxlen: 24
62.65.153.0/24 maxlen: 24
62.65.154.0/23 maxlen: 23
62.65.156.0/23 maxlen: 23
62.65.158.0/24 maxlen: 24
80.238.192.0/21 maxlen: 21
80.238.200.0/22 maxlen: 22
80.238.208.0/21 maxlen: 21
80.238.216.0/22 maxlen: 22
80.238.225.0/24 maxlen: 24
80.238.223.0/24 maxlen: 24
94.78.2.0/24 maxlen: 24
94.78.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a1:88:a3:eb:90:f7:eb:9c:e1:16:73:4d:d3:8c:f6:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Validity
Not Before: Jan 11 15:52:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=701d4f2b9ef19066bfd687c58af26771bd4aaf98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:07:4e:37:29:b8:be:9d:3f:08:35:42:98:38:
a5:85:8a:85:4e:f3:89:e9:76:03:bb:a5:75:84:3d:
05:80:55:07:d5:de:37:4d:11:0a:73:4a:7b:88:34:
37:d7:d0:21:34:89:cd:e4:af:17:65:c9:63:21:f5:
ac:e2:c5:33:76:ff:a8:e7:a5:4c:72:5b:17:7d:54:
8f:f8:35:b6:68:b8:62:ad:96:fc:4d:d4:48:7d:03:
35:56:06:66:10:d8:ab:b0:da:95:53:15:46:ff:83:
5c:43:12:01:86:d3:d4:62:5f:a7:52:5d:09:99:fd:
2b:7f:bd:f3:20:07:a9:c2:3c:2f:e4:7d:ed:80:d1:
fe:31:09:1d:78:e5:64:81:72:4e:ff:0b:a6:17:f2:
26:95:ce:34:26:fb:37:a6:96:99:49:06:80:07:4a:
af:6e:2e:a0:f9:4b:6d:30:e7:21:d3:b0:1f:c2:95:
db:f2:bc:35:d5:8b:8c:47:86:14:5b:96:bd:f2:94:
d5:1d:04:bc:15:81:ed:d8:0b:d7:c5:58:b1:36:35:
bb:0c:63:64:9a:c7:c0:2a:17:ad:e7:49:89:41:2a:
dd:59:96:ca:48:27:ec:0d:fe:89:40:30:f4:0b:11:
c4:14:dd:6e:66:93:f3:04:c7:20:87:fb:cf:ad:36:
e2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1D:4F:2B:9E:F1:90:66:BF:D6:87:C5:8A:F2:67:71:BD:4A:AF:98
X509v3 Authority Key Identifier:
keyid:9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/cB1PK57xkGa_1ofFivJncb1Kr5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/n2YrPPqLkFkGjCnUa5kmO6LeUME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.65.141.0-62.65.151.255
62.65.153.0-62.65.158.255
80.238.129.0-80.238.130.255
80.238.134.0/24
80.238.136.0/24
80.238.139.0-80.238.203.255
80.238.208.0-80.238.219.255
80.238.223.0/24
80.238.225.0/24
94.78.2.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:cf:6b:06:18:ff:e6:84:c7:0a:10:7c:41:18:2a:29:b2:a5:
ea:f9:eb:97:d1:5a:00:a4:41:2f:1e:10:b9:08:79:6f:ff:39:
3f:e8:76:e5:c0:cc:c0:a6:c9:2e:fc:ba:d6:3f:72:db:5a:00:
7a:eb:8a:5f:f6:04:9d:eb:c4:43:fe:87:82:1b:0a:06:43:d5:
06:4a:8d:35:6b:6d:d8:bc:7d:4a:9d:6d:c4:2f:6b:7b:52:24:
71:96:b8:5c:f5:39:aa:33:de:b1:6d:e3:bc:b7:a1:a0:b3:93:
a2:65:f0:3a:02:49:9f:15:26:45:08:97:5a:20:45:e2:5e:8e:
ed:9a:8e:5f:a3:e7:ec:5b:48:ad:fa:44:a0:0a:e0:dd:ce:68:
43:7e:5e:78:5e:6e:17:44:9c:e4:48:ad:b8:45:2b:ba:3a:da:
79:85:56:6b:ab:cf:72:d7:55:1d:8d:86:59:13:28:a0:d4:c8:
5e:cf:32:97:12:d0:66:3c:bf:52:48:db:5e:6b:a7:93:cc:92:
92:54:16:b4:55:58:66:1c:91:8f:7e:75:f5:55:39:41:22:dc:
19:77:05:77:1c:fc:21:9e:c7:1e:42:83:c6:d2:52:89:84:eb:
04:7b:47:b6:79:d7:8f:a8:b5:63:4e:29:af:fb:d2:c8:a8:e7:
c4:0a:3c:3e
-----BEGIN CERTIFICATE-----
MIIFWzCCBEOgAwIBAgISAYWhiKPrkPfrnOEWc03TjPY1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmNjYyYjNjZmE4YjkwNTkwNjhjMjlkNDZiOTkyNjNiYTJk
ZTUwYzEwHhcNMjMwMTExMTU1MjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MDFkNGYyYjllZjE5MDY2YmZkNjg3YzU4YWYyNjc3MWJkNGFhZjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6AdONym4vp0/CDVCmDilhYqFTvOJ
6XYDu6V1hD0FgFUH1d43TREKc0p7iDQ319AhNInN5K8XZcljIfWs4sUzdv+o56VM
clsXfVSP+DW2aLhirZb8TdRIfQM1VgZmENirsNqVUxVG/4NcQxIBhtPUYl+nUl0J
mf0rf73zIAepwjwv5H3tgNH+MQkdeOVkgXJO/wumF/Imlc40Jvs3ppaZSQaAB0qv
bi6g+UttMOch07AfwpXb8rw11YuMR4YUW5a98pTVHQS8FYHt2AvXxVixNjW7DGNk
msfAKhet50mJQSrdWZbKSCfsDf6JQDD0CxHEFN1uZpPzBMcgh/vPrTbiowIDAQAB
o4ICZzCCAmMwHQYDVR0OBBYEFHAdTyue8ZBmv9aHxYryZ3G9Sq+YMB8GA1UdIwQY
MBaAFJ9mKzz6i5BZBowp1GuZJjui3lDBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbjJZclBQcUxrRmtHakNuVWE1a21PNkxlVU1FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8yNTEyYzUtMjUyYi00OTY3LTg5YTct
NmExZjk3ZmY4ZDM0LzEvY0IxUEs1N3hrR2FfMW9mRml2Sm5jYjFLcjVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS8yNTEyYzUtMjUyYi00OTY3LTg5YTctNmExZjk3ZmY4ZDM0
LzEvbjJZclBQcUxrRmtHakNuVWE1a21PNkxlVU1FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH0GCCsGAQUFBwEHAQH/BG4wbDBqBAIAATBkMAwDBAA+QY0D
BAM+QZAwDAMEAD5BmQMEAD5BnjAMAwQAUO6BAwQAUO6CAwQAUO6GAwQAUO6IMAwD
BABQ7osDBAJQ7sgwDAMEBFDu0AMEAlDu2AMEAFDu3wMEAFDu4QMEAV5OAjANBgkq
hkiG9w0BAQsFAAOCAQEALc9rBhj/5oTHChB8QRgqKbKl6vnrl9FaAKRBLx4QuQh5
b/85P+h25cDMwKbJLvy61j9y21oAeuuKX/YEnevEQ/6HghsKBkPVBkqNNWtt2Lx9
Sp1txC9re1IkcZa4XPU5qjPesW3jvLehoLOTomXwOgJJnxUmRQiXWiBF4l6O7ZqO
X6Pn7FtIrfpEoArg3c5oQ35eeF5uF0Sc5EituEUrujraeYVWa6vPctdVHY2GWRMo
oNTIXs8ylxLQZjy/UkjbXmunk8ySklQWtFVYZhyRj3519VU5QSLcGXcFdxz8IZ7H
HkKDxtJSiYTrBHtHtnnXj6i1Y04pr/vSyKjnxAo8Pg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:55 2024 by rpki-client on console-ams.rpki-client.org