Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/2VUjbtuDok1he0LHRuh_U-_jRrg.roa
File: 2VUjbtuDok1he0LHRuh_U-_jRrg.roa (raw, json)
Hash identifier: XwD9h6zLtXG6ht/07TIfLHQwVnkxr4+2cUB0JOxgNZo=
Subject key identifier: D9:55:23:6E:DB:83:A2:4D:61:7B:42:C7:46:E8:7F:53:EF:E3:46:B8
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 0189C4DC47782C6547A1A11B428D18A514A9
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/2VUjbtuDok1he0LHRuh_U-_jRrg.roa
Signing time: Sat 05 Aug 2023 08:41:57 +0000
ROA not before: Sat 05 Aug 2023 08:41:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31363
IP address blocks: 86.62.79.0/24 maxlen: 24
86.62.84.0/24 maxlen: 24
86.62.94.0/24 maxlen: 24
86.62.96.0/24 maxlen: 24
86.62.92.0/24 maxlen: 24
86.62.102.0/24 maxlen: 24
86.62.99.0/24 maxlen: 24
86.62.110.0/24 maxlen: 24
86.62.112.0/24 maxlen: 24
86.62.118.0/24 maxlen: 24
86.62.114.0/24 maxlen: 24
86.62.115.0/24 maxlen: 24
86.62.116.0/24 maxlen: 24
86.62.117.0/24 maxlen: 24
86.62.113.0/24 maxlen: 24
86.62.119.0/24 maxlen: 24
86.62.125.0/24 maxlen: 24
195.91.254.0/24 maxlen: 24
195.91.255.0/24 maxlen: 24
195.91.204.0/24 maxlen: 24
195.91.208.0/24 maxlen: 24
195.91.209.0/24 maxlen: 24
195.91.210.0/24 maxlen: 24
195.91.211.0/24 maxlen: 24
195.91.213.0/24 maxlen: 24
195.91.215.0/24 maxlen: 24
195.91.217.0/24 maxlen: 24
195.91.218.0/24 maxlen: 24
195.91.219.0/24 maxlen: 24
195.54.210.0/24 maxlen: 24
195.91.222.0/24 maxlen: 24
195.91.223.0/24 maxlen: 24
195.91.224.0/24 maxlen: 24
195.91.220.0/24 maxlen: 24
195.91.221.0/24 maxlen: 24
195.91.225.0/24 maxlen: 24
195.91.226.0/24 maxlen: 24
195.91.232.0/24 maxlen: 24
195.91.233.0/24 maxlen: 24
195.91.229.0/24 maxlen: 24
195.91.230.0/24 maxlen: 24
195.91.231.0/24 maxlen: 24
195.91.227.0/24 maxlen: 24
195.91.228.0/24 maxlen: 24
195.91.236.0/24 maxlen: 24
195.91.237.0/24 maxlen: 24
195.91.238.0/24 maxlen: 24
195.91.234.0/24 maxlen: 24
195.91.235.0/24 maxlen: 24
195.91.239.0/24 maxlen: 24
195.91.240.0/24 maxlen: 24
195.91.246.0/24 maxlen: 24
195.91.243.0/24 maxlen: 24
195.91.244.0/24 maxlen: 24
195.91.245.0/24 maxlen: 24
195.91.241.0/24 maxlen: 24
195.91.242.0/24 maxlen: 24
195.91.252.0/24 maxlen: 24
195.91.247.0/24 maxlen: 24
86.62.75.0/24 maxlen: 24
195.91.149.0/24 maxlen: 24
195.91.150.0/24 maxlen: 24
195.91.151.0/24 maxlen: 24
195.91.146.0/24 maxlen: 24
195.91.147.0/24 maxlen: 24
195.91.148.0/24 maxlen: 24
195.91.156.0/24 maxlen: 24
195.91.160.0/24 maxlen: 24
195.91.166.0/24 maxlen: 24
195.91.168.0/24 maxlen: 24
195.91.169.0/24 maxlen: 24
195.91.170.0/24 maxlen: 24
195.91.171.0/24 maxlen: 24
195.91.172.0/24 maxlen: 24
195.91.178.0/24 maxlen: 24
195.91.179.0/24 maxlen: 24
195.91.173.0/24 maxlen: 24
195.91.174.0/24 maxlen: 24
195.91.175.0/24 maxlen: 24
195.91.180.0/24 maxlen: 24
195.91.181.0/24 maxlen: 24
195.91.184.0/24 maxlen: 24
195.91.191.0/24 maxlen: 24
195.91.187.0/24 maxlen: 24
195.91.188.0/24 maxlen: 24
195.91.197.0/24 maxlen: 24
195.91.138.0/24 maxlen: 24
195.91.133.0/24 maxlen: 24
195.91.145.0/24 maxlen: 24
195.91.144.0/24 maxlen: 24
2a02:2698:9800::/38 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c4:dc:47:78:2c:65:47:a1:a1:1b:42:8d:18:a5:14:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Aug 5 08:41:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d955236edb83a24d617b42c746e87f53efe346b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:69:b9:de:3d:0e:96:26:25:64:bb:5e:bf:3a:
83:39:10:c3:d0:9b:73:66:36:06:c6:b6:51:f8:e4:
10:aa:80:d7:51:52:4d:f1:7b:00:33:d0:d7:56:3c:
f4:1d:ce:c6:67:e2:69:e8:96:0c:ac:7d:d1:58:b9:
60:1d:3e:d3:8b:ea:81:06:58:66:03:4c:8f:f4:56:
48:8d:75:db:aa:b2:e5:63:53:f8:56:4b:48:65:9a:
d6:ea:99:a3:60:0f:1a:e4:f8:34:13:db:fb:3e:9d:
f2:27:ab:84:64:8d:d6:ac:37:c1:60:87:ca:e8:c7:
89:74:a5:fe:d7:38:ce:d6:5c:e9:ce:58:48:c6:a2:
91:f7:4a:1d:cb:eb:cd:91:7d:8f:b5:6f:71:8e:6f:
fb:71:34:4b:61:2a:55:08:05:e5:28:2e:ac:55:00:
88:df:3f:31:3b:de:80:5f:a6:b4:86:a1:56:8a:cc:
af:4b:64:ae:22:25:c3:e1:e4:c6:bc:f7:1f:4e:ba:
6c:c3:ec:aa:e5:93:ba:81:5e:eb:8a:6e:d8:2e:ec:
66:d4:4e:41:a1:7b:39:d7:fb:e4:6a:bd:05:65:27:
4d:95:c3:b8:00:2c:de:6e:52:04:3e:28:f9:dc:d7:
18:59:4e:02:c7:12:e8:9c:1f:46:4e:b5:bb:eb:98:
e6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:55:23:6E:DB:83:A2:4D:61:7B:42:C7:46:E8:7F:53:EF:E3:46:B8
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/2VUjbtuDok1he0LHRuh_U-_jRrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.75.0/24
86.62.79.0/24
86.62.84.0/24
86.62.92.0/24
86.62.94.0/24
86.62.96.0/24
86.62.99.0/24
86.62.102.0/24
86.62.110.0/24
86.62.112.0/21
86.62.125.0/24
195.54.210.0/24
195.91.133.0/24
195.91.138.0/24
195.91.144.0/21
195.91.156.0/24
195.91.160.0/24
195.91.166.0/24
195.91.168.0/21
195.91.178.0-195.91.181.255
195.91.184.0/24
195.91.187.0-195.91.188.255
195.91.191.0/24
195.91.197.0/24
195.91.204.0/24
195.91.208.0/22
195.91.213.0/24
195.91.215.0/24
195.91.217.0-195.91.247.255
195.91.252.0/24
195.91.254.0/23
IPv6:
2a02:2698:9800::/38
Signature Algorithm: sha256WithRSAEncryption
b5:1c:02:55:1d:ec:89:6b:12:4f:4d:a3:78:f6:db:eb:92:d0:
96:ac:1f:d2:b5:2d:18:8f:07:ae:57:b5:26:11:c0:57:ea:70:
9f:3b:fb:5c:7c:8e:3c:3b:1e:35:eb:c2:ed:a2:aa:cc:99:91:
f4:71:23:75:58:33:26:a4:a3:76:54:66:e7:a8:ba:a9:60:d9:
6f:48:7b:60:af:62:3c:26:d2:4f:1b:c6:9d:e4:ed:ad:6e:68:
d6:37:08:eb:59:83:5a:a2:42:0f:ec:8d:e1:85:b7:b6:9a:38:
68:ea:58:87:95:ec:51:45:7b:15:08:a9:35:78:45:40:4b:10:
11:ca:52:60:2a:c0:6b:65:aa:db:b2:31:15:36:c6:82:68:35:
4a:4f:29:06:06:63:db:0b:de:f7:ed:ea:16:8f:d9:35:e5:92:
55:50:45:90:d1:3b:8a:d2:8a:bc:d4:ba:64:f1:59:0b:b1:e8:
c5:23:87:f0:0c:68:d8:9c:1b:0c:fd:2a:3c:e3:f7:c9:46:51:
19:bf:b4:c1:1c:b1:cb:f9:85:4b:6f:5b:bd:8e:78:d9:0b:8a:
be:6a:70:15:68:2b:7b:56:6e:f5:a6:ad:85:52:b1:3d:93:d3:
9c:88:21:26:5c:7f:9d:ba:74:7c:e5:9d:d7:7a:3f:a1:7a:9e:
94:42:6b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:37 2025 by rpki-client