Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/vl9ayiFp0gF_g54INnHtGwEvF3I.roa
File: vl9ayiFp0gF_g54INnHtGwEvF3I.roa (raw, json)
Hash identifier: XrdzLZu0Fe3ctZok6D8cOzIIiyhWH1zHkIrqrqcaGYQ=
Subject key identifier: BE:5F:5A:CA:21:69:D2:01:7F:83:9E:08:36:71:ED:1B:01:2F:17:72
Certificate issuer: /CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Certificate serial: 0185F2309424F30E5D6652A4DD3772530A80
Authority key identifier: 9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/vl9ayiFp0gF_g54INnHtGwEvF3I.roa
Signing time: Fri 27 Jan 2023 07:45:47 +0000
ROA not before: Fri 27 Jan 2023 07:45:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15517
IP address blocks: 80.238.136.0/24 maxlen: 24
80.238.134.0/24 maxlen: 24
80.238.139.0/24 maxlen: 24
80.238.144.0/20 maxlen: 20
80.238.140.0/22 maxlen: 22
80.238.160.0/20 maxlen: 20
80.238.176.0/20 maxlen: 20
80.238.129.0/24 maxlen: 24
80.238.128.0/17 maxlen: 17
80.238.130.0/24 maxlen: 24
62.65.128.0/19 maxlen: 19
62.65.137.0/24 maxlen: 24
62.65.144.0/21 maxlen: 21
62.65.143.0/24 maxlen: 24
62.65.142.0/24 maxlen: 24
62.65.141.0/24 maxlen: 24
62.65.158.0/24 maxlen: 24
62.65.153.0/24 maxlen: 24
62.65.154.0/23 maxlen: 23
62.65.156.0/23 maxlen: 23
80.238.192.0/21 maxlen: 21
80.238.200.0/22 maxlen: 22
80.238.208.0/21 maxlen: 21
80.238.216.0/22 maxlen: 22
80.238.225.0/24 maxlen: 24
80.238.223.0/24 maxlen: 24
94.78.3.0/24 maxlen: 24
94.78.0.0/18 maxlen: 18
94.78.2.0/24 maxlen: 24
2a01:330::/32 maxlen: 32
2a01:330::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f2:30:94:24:f3:0e:5d:66:52:a4:dd:37:72:53:0a:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Validity
Not Before: Jan 27 07:45:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be5f5aca2169d2017f839e083671ed1b012f1772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e6:c7:a1:a5:b9:bf:76:87:8c:dc:84:90:92:
72:b7:12:09:b3:08:0c:75:5f:c9:24:04:23:d0:d6:
e3:de:97:1f:88:29:b8:c2:a3:6f:cc:ab:f6:b1:4e:
aa:8e:20:f5:fd:7b:18:79:a5:e8:9b:fc:8e:a3:53:
9c:d9:42:26:a3:7e:fc:af:27:bd:fb:84:cd:a7:f4:
70:5a:95:f6:54:3e:4e:bf:1c:f7:3f:57:4a:d4:26:
d9:ea:d1:8f:78:90:da:7b:df:f4:d0:6a:38:fb:da:
8f:35:f7:6a:9d:a3:d6:16:03:46:43:9c:6c:b6:77:
61:d5:04:fa:ff:ec:7d:e9:40:20:d7:b4:94:49:5b:
85:8e:c8:65:a6:af:7c:5a:0d:d2:78:2a:aa:5e:62:
2b:46:12:88:71:bb:1c:46:76:90:3b:78:c6:df:35:
98:1a:a6:0a:57:22:a1:14:52:38:e1:01:ad:86:32:
d3:12:0b:d5:ae:3b:55:fa:a0:55:20:5a:4d:78:8c:
86:10:52:f7:38:29:40:91:35:94:ad:9c:a3:75:9d:
5d:43:c0:32:49:26:08:8f:fe:cb:10:49:ee:e2:78:
db:bc:01:c7:95:9d:24:ad:b9:31:11:b5:6e:c1:d2:
17:82:8d:23:57:90:5c:ca:63:27:e7:57:16:08:72:
a0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5F:5A:CA:21:69:D2:01:7F:83:9E:08:36:71:ED:1B:01:2F:17:72
X509v3 Authority Key Identifier:
keyid:9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/vl9ayiFp0gF_g54INnHtGwEvF3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/n2YrPPqLkFkGjCnUa5kmO6LeUME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.65.128.0/19
80.238.128.0/17
94.78.0.0/18
IPv6:
2a01:330::/29
Signature Algorithm: sha256WithRSAEncryption
41:ee:11:de:d7:b0:c8:17:da:b7:17:3b:75:29:b7:4f:83:08:
ec:58:9c:87:57:b2:75:ad:dd:d9:e7:37:de:f0:99:e4:8e:44:
8d:32:bb:b7:16:be:c2:58:89:24:59:ab:9f:f1:77:78:a4:7a:
45:53:81:64:97:e1:af:b0:56:6a:90:3e:c8:3f:c7:39:2b:e6:
46:61:9c:55:9a:1c:b9:f8:91:75:9c:5b:9e:c0:67:4f:43:b3:
64:6e:ce:bf:df:84:cd:15:7c:1c:0a:a7:da:b4:9e:c2:a8:b6:
78:85:18:39:c5:e3:3a:62:b0:8a:23:24:35:e9:30:17:2f:52:
77:bb:36:ec:5c:44:e9:96:aa:21:8b:13:85:af:37:a7:ba:8c:
71:7a:34:1e:49:ec:ef:6e:c2:78:0e:1a:23:84:bf:37:20:5f:
34:18:24:bb:d9:d1:a0:1b:b7:54:3d:0c:e9:96:b0:98:94:9d:
91:94:b2:be:f3:f6:f1:59:e9:3d:0f:7d:dd:8f:3b:ca:46:09:
8e:d2:c0:01:e6:67:d8:77:86:49:d7:3a:15:e1:13:6c:46:eb:
96:48:a8:10:fe:d7:f0:0e:85:f4:b0:98:8d:28:e0:15:43:d9:
a6:36:90:b1:e4:8c:ec:67:76:1b:03:62:a8:f9:e1:42:6c:c6:
ea:a0:5e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:16 2023 by rpki-client on console-fra.rpki-client.org