Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/d7L1ywD7hRGBIBOeFw1_dSbKbBw.roa
File: d7L1ywD7hRGBIBOeFw1_dSbKbBw.roa (raw, json)
Hash identifier: znmQIVY/a4afxneJX/0dAiQ29tUGZOjyM/+u3dBuB0g=
Subject key identifier: 77:B2:F5:CB:00:FB:85:11:81:20:13:9E:17:0D:7F:75:26:CA:6C:1C
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 018571309C65FE9158F11A0BE02BE12FB830
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/d7L1ywD7hRGBIBOeFw1_dSbKbBw.roa
Signing time: Mon 02 Jan 2023 06:34:49 +0000
ROA not before: Mon 02 Jan 2023 06:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47536
IP address blocks: 23.92.115.0/24 maxlen: 24
23.92.127.0/24 maxlen: 24
192.40.94.0/24 maxlen: 24
151.237.188.0/24 maxlen: 24
37.72.186.0/24 maxlen: 24
130.185.153.0/24 maxlen: 24
107.150.64.0/24 maxlen: 24
107.150.67.0/24 maxlen: 24
107.150.65.0/24 maxlen: 24
107.150.71.0/24 maxlen: 24
107.150.70.0/24 maxlen: 24
5.157.6.0/24 maxlen: 24
5.157.11.0/24 maxlen: 24
104.160.16.0/24 maxlen: 24
104.160.17.0/24 maxlen: 24
104.160.18.0/24 maxlen: 24
104.160.19.0/24 maxlen: 24
5.157.14.0/24 maxlen: 24
5.157.13.0/24 maxlen: 24
162.212.171.0/24 maxlen: 24
162.212.169.0/24 maxlen: 24
5.157.24.0/24 maxlen: 24
107.150.89.0/24 maxlen: 24
162.212.172.0/24 maxlen: 24
162.212.170.0/24 maxlen: 24
162.212.168.0/24 maxlen: 24
5.157.23.0/24 maxlen: 24
162.212.175.0/24 maxlen: 24
162.212.173.0/24 maxlen: 24
107.150.93.0/24 maxlen: 24
162.212.174.0/24 maxlen: 24
5.157.29.0/24 maxlen: 24
5.157.32.0/24 maxlen: 24
5.157.37.0/24 maxlen: 24
5.157.33.0/24 maxlen: 24
5.157.43.0/24 maxlen: 24
5.157.55.0/24 maxlen: 24
5.157.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:30:9c:65:fe:91:58:f1:1a:0b:e0:2b:e1:2f:b8:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: Jan 2 06:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77b2f5cb00fb85118120139e170d7f7526ca6c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7f:40:68:21:94:d4:89:43:7e:29:6b:0a:fd:
a8:8b:cb:9d:91:a3:18:e1:d3:d3:0c:03:17:9d:66:
72:2a:04:ed:8b:18:07:89:03:8a:5b:b5:b8:a6:6b:
da:dd:f6:b1:f7:09:5b:0c:56:1d:0f:b3:e9:ef:87:
01:6e:ac:ef:4a:af:5f:49:37:a1:e1:51:1a:e2:b5:
68:bb:39:03:e4:ed:d9:4d:36:ec:87:50:46:d2:43:
f6:ab:6b:dc:9b:71:72:5a:ca:d0:1d:40:64:e0:be:
94:3e:5d:65:5a:bc:e0:8f:f8:ca:58:6d:71:33:e3:
8a:03:34:06:1c:e4:f0:c5:fc:83:8d:8d:5a:d4:6b:
0f:6d:c2:b2:50:c9:b1:e6:45:02:49:a4:de:82:e1:
a2:fd:d9:86:d1:a4:30:35:1e:48:bf:7b:c9:df:73:
e4:23:ce:e1:55:1c:a7:8b:0a:80:4f:15:b3:0d:bd:
52:37:20:3e:f1:9b:6e:ab:a5:4a:c4:65:9a:6f:ca:
14:2d:f3:bd:47:76:39:54:0a:6e:a9:23:79:7c:19:
f4:5b:5e:f3:c9:28:39:26:46:57:71:df:8a:dc:1c:
57:53:31:48:90:44:b6:0e:f3:fd:f9:91:0d:0b:74:
46:b8:95:07:33:bf:f7:4b:df:69:41:69:51:09:30:
3b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B2:F5:CB:00:FB:85:11:81:20:13:9E:17:0D:7F:75:26:CA:6C:1C
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/d7L1ywD7hRGBIBOeFw1_dSbKbBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.6.0/24
5.157.11.0/24
5.157.13.0-5.157.14.255
5.157.23.0-5.157.24.255
5.157.29.0/24
5.157.32.0/23
5.157.37.0/24
5.157.43.0/24
5.157.53.0/24
5.157.55.0/24
23.92.115.0/24
23.92.127.0/24
37.72.186.0/24
104.160.16.0/22
107.150.64.0/23
107.150.67.0/24
107.150.70.0/23
107.150.89.0/24
107.150.93.0/24
130.185.153.0/24
151.237.188.0/24
162.212.168.0/21
192.40.94.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:13:fc:99:69:5b:db:7f:fc:40:30:06:94:55:63:45:01:87:
0d:38:bc:e6:ad:00:d3:33:5d:31:0c:c2:5d:60:d7:ce:c1:33:
7e:de:a2:02:e2:36:d4:c5:72:f3:17:47:26:3e:61:03:62:a7:
a9:2c:8f:50:69:57:cc:11:1b:c4:fe:fa:ed:98:02:bd:8f:b4:
86:83:90:42:55:dd:fb:d8:47:df:11:4b:76:fb:79:54:11:6a:
55:5c:db:e6:8d:09:1e:f3:c4:de:02:6c:17:97:e4:61:d8:22:
72:3f:bf:eb:79:bf:81:6c:7b:c7:67:53:6f:c0:16:b1:94:57:
49:ae:32:d6:ac:dc:ef:cf:e2:d3:83:79:ee:1a:78:f1:bb:59:
2d:00:b5:c8:d1:fa:88:f1:da:98:d7:8e:b7:fc:4c:13:1b:40:
ce:49:1c:83:1e:87:00:54:f3:d4:fb:c1:bf:68:f9:9c:4d:96:
97:b4:bb:7e:20:f4:01:e4:c0:9b:2a:42:d4:1c:be:b9:ca:21:
01:33:f8:ed:fc:21:a8:8a:25:ab:8b:bc:ac:6f:2a:91:66:34:
8b:80:73:13:80:ab:9d:16:43:45:b5:b0:ee:7b:8a:6f:e8:c2:
da:4c:5d:45:6d:d2:cf:30:ef:f6:e5:0d:33:57:f6:d7:68:d1:
5a:07:2b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 8 13:11:03 2023 by rpki-client on console-fra.rpki-client.org