Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/pVKF9CIXEAbHsxcwlNrgh8nOkbo.roa
File: pVKF9CIXEAbHsxcwlNrgh8nOkbo.roa (raw, json)
Hash identifier: vRBofn9HsEXASmTX5gYpWZAUOXaetY0Pq/pZfKlLMyE=
Subject key identifier: A5:52:85:F4:22:17:10:06:C7:B3:17:30:94:DA:E0:87:C9:CE:91:BA
Certificate issuer: /CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Certificate serial: 01856F82549F0E8CDD76237E5344D75CDBF2
Authority key identifier: 9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/pVKF9CIXEAbHsxcwlNrgh8nOkbo.roa
Signing time: Sun 01 Jan 2023 22:44:50 +0000
ROA not before: Sun 01 Jan 2023 22:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212865
IP address blocks: 80.238.134.0/24 maxlen: 24
80.238.136.0/24 maxlen: 24
80.238.139.0/24 maxlen: 24
80.238.140.0/22 maxlen: 22
80.238.144.0/20 maxlen: 20
80.238.160.0/20 maxlen: 20
80.238.176.0/20 maxlen: 20
80.238.129.0/24 maxlen: 24
80.238.130.0/24 maxlen: 24
62.65.141.0/24 maxlen: 24
62.65.144.0/21 maxlen: 21
62.65.142.0/24 maxlen: 24
62.65.143.0/24 maxlen: 24
62.65.153.0/24 maxlen: 24
62.65.154.0/23 maxlen: 23
62.65.156.0/23 maxlen: 23
62.65.158.0/24 maxlen: 24
80.238.192.0/21 maxlen: 21
80.238.200.0/22 maxlen: 22
80.238.208.0/21 maxlen: 21
80.238.216.0/22 maxlen: 22
80.238.225.0/24 maxlen: 24
80.238.223.0/24 maxlen: 24
94.78.2.0/24 maxlen: 24
94.78.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:82:54:9f:0e:8c:dd:76:23:7e:53:44:d7:5c:db:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Validity
Not Before: Jan 1 22:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a55285f422171006c7b3173094dae087c9ce91ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f3:d8:fa:d1:97:e5:4d:92:52:37:82:29:3a:
c1:e4:1f:e8:f5:3d:21:cd:55:c3:e8:e2:4c:32:41:
2d:bf:99:c6:e7:2c:de:54:b1:ec:5f:8c:e5:8b:63:
9f:60:e1:40:18:b9:89:00:02:ea:51:06:2a:40:e9:
a3:21:8c:b1:ac:eb:64:64:a9:cd:b3:92:a8:8a:01:
87:a5:81:03:22:27:c9:86:57:2f:67:99:5e:42:cf:
05:2f:01:e2:f5:11:ef:dd:85:07:c1:36:c5:52:09:
7c:de:82:0c:db:97:a3:9f:fc:bf:76:56:24:95:1a:
d0:65:6e:20:8d:fd:3c:64:18:41:89:27:31:ee:81:
c5:c9:a1:b1:cd:0f:4c:9a:e6:17:75:d1:bd:02:fa:
b4:89:8b:08:87:11:e8:07:c5:e9:ec:55:8f:51:a8:
f8:e7:52:cc:cc:4b:e8:93:8a:51:45:be:4d:26:c7:
49:1c:f0:8c:18:c4:3c:c9:30:e3:25:15:2e:98:bb:
e7:79:03:c0:65:43:ba:2a:a3:41:db:df:1f:02:8e:
2b:ab:c3:32:af:89:94:be:a3:77:ed:b0:98:89:03:
44:21:06:15:90:b8:5c:ec:ad:04:f0:06:bf:6b:4c:
27:d7:7e:27:9a:06:ca:d3:ae:21:d1:93:2f:a4:69:
2a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:52:85:F4:22:17:10:06:C7:B3:17:30:94:DA:E0:87:C9:CE:91:BA
X509v3 Authority Key Identifier:
keyid:9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/pVKF9CIXEAbHsxcwlNrgh8nOkbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/n2YrPPqLkFkGjCnUa5kmO6LeUME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.65.141.0-62.65.151.255
62.65.153.0-62.65.158.255
80.238.129.0-80.238.130.255
80.238.134.0/24
80.238.136.0/24
80.238.139.0-80.238.203.255
80.238.208.0-80.238.219.255
80.238.223.0/24
80.238.225.0/24
94.78.2.0/23
Signature Algorithm: sha256WithRSAEncryption
78:29:ba:c6:1d:8f:e2:de:82:38:70:e2:09:29:5b:db:ce:9d:
69:07:64:97:5d:53:68:43:cf:33:1d:a2:31:0f:df:d0:39:59:
39:20:3e:1f:2c:20:e5:d3:29:73:0f:65:1b:ee:4d:c8:db:ab:
e5:ef:3a:64:31:f9:3c:8b:62:42:0c:ab:70:ec:e6:7f:67:82:
f3:31:46:ea:4b:73:8d:d2:34:ec:f6:a7:48:da:39:d1:25:2c:
bf:67:70:eb:25:02:b7:c0:ba:96:c2:cc:3b:d9:5d:a7:66:bb:
0b:13:34:7b:b6:f7:56:c4:c1:f9:03:c4:1d:08:f8:b8:1a:8f:
76:7e:d3:fe:18:ed:71:16:b7:84:55:1c:c2:50:6a:9b:c2:7d:
ca:1c:50:29:33:dd:49:2e:6a:24:69:47:45:88:e3:79:19:b6:
1e:67:47:38:50:45:81:8c:08:7b:7d:3b:b6:f6:30:09:17:e1:
ac:2c:b8:3a:e6:f1:cf:3b:27:19:c1:f4:d2:98:bb:8a:e0:75:
bc:2a:a1:b3:f3:a5:0b:4a:29:20:3a:88:0f:4a:b1:2e:53:bb:
0c:f2:65:35:59:af:de:e3:0f:65:61:81:a9:ec:ce:80:b8:78:
0f:f3:90:02:85:51:11:5d:d1:5b:e8:d0:36:bf:f1:b2:2e:ae:
4a:80:03:0c
-----BEGIN CERTIFICATE-----
MIIFWzCCBEOgAwIBAgISAYVvglSfDozddiN+U0TXXNvyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmNjYyYjNjZmE4YjkwNTkwNjhjMjlkNDZiOTkyNjNiYTJk
ZTUwYzEwHhcNMjMwMTAxMjI0NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTUyODVmNDIyMTcxMDA2YzdiMzE3MzA5NGRhZTA4N2M5Y2U5MWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/PY+tGX5U2SUjeCKTrB5B/o9T0h
zVXD6OJMMkEtv5nG5yzeVLHsX4zli2OfYOFAGLmJAALqUQYqQOmjIYyxrOtkZKnN
s5KoigGHpYEDIifJhlcvZ5leQs8FLwHi9RHv3YUHwTbFUgl83oIM25ejn/y/dlYk
lRrQZW4gjf08ZBhBiScx7oHFyaGxzQ9MmuYXddG9Avq0iYsIhxHoB8Xp7FWPUaj4
51LMzEvok4pRRb5NJsdJHPCMGMQ8yTDjJRUumLvneQPAZUO6KqNB298fAo4rq8My
r4mUvqN37bCYiQNEIQYVkLhc7K0E8Aa/a0wn134nmgbK064h0ZMvpGkqEQIDAQAB
o4ICZzCCAmMwHQYDVR0OBBYEFKVShfQiFxAGx7MXMJTa4IfJzpG6MB8GA1UdIwQY
MBaAFJ9mKzz6i5BZBowp1GuZJjui3lDBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbjJZclBQcUxrRmtHakNuVWE1a21PNkxlVU1FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8yNTEyYzUtMjUyYi00OTY3LTg5YTct
NmExZjk3ZmY4ZDM0LzEvcFZLRjlDSVhFQWJIc3hjd2xOcmdoOG5Pa2JvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS8yNTEyYzUtMjUyYi00OTY3LTg5YTctNmExZjk3ZmY4ZDM0
LzEvbjJZclBQcUxrRmtHakNuVWE1a21PNkxlVU1FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH0GCCsGAQUFBwEHAQH/BG4wbDBqBAIAATBkMAwDBAA+QY0D
BAM+QZAwDAMEAD5BmQMEAD5BnjAMAwQAUO6BAwQAUO6CAwQAUO6GAwQAUO6IMAwD
BABQ7osDBAJQ7sgwDAMEBFDu0AMEAlDu2AMEAFDu3wMEAFDu4QMEAV5OAjANBgkq
hkiG9w0BAQsFAAOCAQEAeCm6xh2P4t6COHDiCSlb286daQdkl11TaEPPMx2iMQ/f
0DlZOSA+Hywg5dMpcw9lG+5NyNur5e86ZDH5PItiQgyrcOzmf2eC8zFG6ktzjdI0
7PanSNo50SUsv2dw6yUCt8C6lsLMO9ldp2a7CxM0e7b3VsTB+QPEHQj4uBqPdn7T
/hjtcRa3hFUcwlBqm8J9yhxQKTPdSS5qJGlHRYjjeRm2HmdHOFBFgYwIe307tvYw
CRfhrCy4OubxzzsnGcH00pi7iuB1vCqhs/OlC0opIDqID0qxLlO7DPJlNVmv3uMP
ZWGBqezOgLh4D/OQAoVREV3RW+jQNr/xsi6uSoADDA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:55 2024 by rpki-client on console-ams.rpki-client.org