Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/rH_lnBzpFeMQa4bcwDiegJCG_wk.roa
File: rH_lnBzpFeMQa4bcwDiegJCG_wk.roa (raw, json)
Hash identifier: Wcn2+GWZQrBItycEfcTl23znyI407g/sJRjtsuHjJG8=
Subject key identifier: AC:7F:E5:9C:1C:E9:15:E3:10:6B:86:DC:C0:38:9E:80:90:86:FF:09
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 018BAD61A0038C7B5427B4676EBFB6412536
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/rH_lnBzpFeMQa4bcwDiegJCG_wk.roa
Signing time: Wed 08 Nov 2023 05:22:18 +0000
ROA not before: Wed 08 Nov 2023 05:22:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31363
IP address blocks: 195.91.254.0/24 maxlen: 24
195.91.255.0/24 maxlen: 24
195.91.204.0/24 maxlen: 24
195.91.208.0/24 maxlen: 24
195.91.209.0/24 maxlen: 24
195.91.210.0/24 maxlen: 24
195.91.211.0/24 maxlen: 24
195.91.213.0/24 maxlen: 24
195.91.215.0/24 maxlen: 24
195.91.217.0/24 maxlen: 24
195.91.218.0/24 maxlen: 24
195.91.219.0/24 maxlen: 24
195.91.222.0/24 maxlen: 24
195.91.223.0/24 maxlen: 24
195.91.224.0/24 maxlen: 24
195.91.220.0/24 maxlen: 24
195.91.221.0/24 maxlen: 24
195.91.225.0/24 maxlen: 24
195.91.226.0/24 maxlen: 24
195.91.232.0/24 maxlen: 24
195.91.233.0/24 maxlen: 24
195.91.229.0/24 maxlen: 24
195.91.230.0/24 maxlen: 24
195.91.231.0/24 maxlen: 24
195.91.227.0/24 maxlen: 24
195.91.228.0/24 maxlen: 24
195.91.236.0/24 maxlen: 24
195.91.237.0/24 maxlen: 24
195.91.238.0/24 maxlen: 24
195.91.234.0/24 maxlen: 24
195.91.235.0/24 maxlen: 24
195.91.239.0/24 maxlen: 24
195.91.240.0/24 maxlen: 24
195.91.246.0/24 maxlen: 24
195.91.243.0/24 maxlen: 24
195.91.244.0/24 maxlen: 24
195.91.245.0/24 maxlen: 24
195.91.241.0/24 maxlen: 24
195.91.242.0/24 maxlen: 24
195.91.252.0/24 maxlen: 24
195.91.247.0/24 maxlen: 24
195.91.149.0/24 maxlen: 24
195.91.150.0/24 maxlen: 24
195.91.151.0/24 maxlen: 24
195.91.146.0/24 maxlen: 24
195.91.147.0/24 maxlen: 24
195.91.148.0/24 maxlen: 24
195.91.153.0/24 maxlen: 24
195.91.156.0/24 maxlen: 24
195.91.160.0/24 maxlen: 24
195.91.166.0/24 maxlen: 24
195.91.165.0/24 maxlen: 24
195.91.168.0/24 maxlen: 24
195.91.169.0/24 maxlen: 24
195.91.170.0/24 maxlen: 24
195.91.171.0/24 maxlen: 24
195.91.172.0/24 maxlen: 24
195.91.178.0/24 maxlen: 24
195.91.179.0/24 maxlen: 24
195.91.173.0/24 maxlen: 24
195.91.174.0/24 maxlen: 24
195.91.175.0/24 maxlen: 24
195.91.180.0/24 maxlen: 24
195.91.181.0/24 maxlen: 24
195.91.182.0/24 maxlen: 24
195.91.184.0/24 maxlen: 24
195.91.191.0/24 maxlen: 24
195.91.187.0/24 maxlen: 24
195.91.188.0/24 maxlen: 24
195.91.195.0/24 maxlen: 24
195.91.196.0/24 maxlen: 24
195.91.197.0/24 maxlen: 24
195.91.138.0/24 maxlen: 24
195.91.133.0/24 maxlen: 24
195.91.145.0/24 maxlen: 24
195.91.144.0/24 maxlen: 24
86.62.79.0/24 maxlen: 24
86.62.84.0/24 maxlen: 24
86.62.94.0/24 maxlen: 24
86.62.96.0/24 maxlen: 24
86.62.92.0/24 maxlen: 24
86.62.98.0/24 maxlen: 24
86.62.102.0/24 maxlen: 24
86.62.103.0/24 maxlen: 24
86.62.99.0/24 maxlen: 24
86.62.110.0/24 maxlen: 24
86.62.112.0/24 maxlen: 24
86.62.118.0/24 maxlen: 24
86.62.114.0/24 maxlen: 24
86.62.115.0/24 maxlen: 24
86.62.116.0/24 maxlen: 24
86.62.117.0/24 maxlen: 24
86.62.113.0/24 maxlen: 24
86.62.119.0/24 maxlen: 24
86.62.125.0/24 maxlen: 24
195.54.210.0/24 maxlen: 24
86.62.75.0/24 maxlen: 24
2a02:2698:9800::/38 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ad:61:a0:03:8c:7b:54:27:b4:67:6e:bf:b6:41:25:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Nov 8 05:22:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac7fe59c1ce915e3106b86dcc0389e809086ff09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:12:88:82:07:c6:79:d4:11:74:f6:e7:20:0d:
2c:be:d1:aa:8e:8f:a9:1a:54:50:2e:43:b7:0e:bc:
9e:db:5b:ff:f0:1e:d2:21:be:da:6b:8f:f7:73:96:
b6:53:52:2d:10:64:cc:a0:b7:81:e8:34:1f:d1:f1:
ac:fb:81:06:41:09:de:4d:98:1d:68:14:da:53:29:
51:85:ed:07:78:30:3a:1a:7a:c4:41:fe:07:c6:89:
f1:84:6e:6d:87:33:2b:a0:39:bc:f9:c6:79:1f:ec:
62:47:3e:09:26:0f:3c:c4:0c:50:57:4c:8b:75:5f:
c5:2e:cc:60:6c:9c:ae:d8:97:e7:72:dd:b0:81:f8:
90:10:60:78:9f:1d:2c:4f:59:50:34:e6:87:9b:97:
40:4d:18:79:f0:de:2b:6b:2f:e0:14:73:51:4f:1c:
46:b0:12:6b:3c:a6:07:88:3a:2a:90:0b:0f:ab:60:
08:77:62:7f:04:dd:0f:c9:2a:f3:9a:66:bb:7b:61:
9d:e0:e7:b7:10:12:7b:f7:21:14:d9:17:a5:6b:c8:
c1:4d:31:88:0a:6d:7f:ec:58:ed:1b:74:74:d7:ef:
74:9a:3b:f9:ca:46:41:2a:0e:76:97:e5:30:dd:98:
93:d5:c5:bd:2c:bb:9e:af:f6:30:1a:dc:8a:a7:b8:
15:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7F:E5:9C:1C:E9:15:E3:10:6B:86:DC:C0:38:9E:80:90:86:FF:09
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/rH_lnBzpFeMQa4bcwDiegJCG_wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.75.0/24
86.62.79.0/24
86.62.84.0/24
86.62.92.0/24
86.62.94.0/24
86.62.96.0/24
86.62.98.0/23
86.62.102.0/23
86.62.110.0/24
86.62.112.0/21
86.62.125.0/24
195.54.210.0/24
195.91.133.0/24
195.91.138.0/24
195.91.144.0/21
195.91.153.0/24
195.91.156.0/24
195.91.160.0/24
195.91.165.0-195.91.166.255
195.91.168.0/21
195.91.178.0-195.91.182.255
195.91.184.0/24
195.91.187.0-195.91.188.255
195.91.191.0/24
195.91.195.0-195.91.197.255
195.91.204.0/24
195.91.208.0/22
195.91.213.0/24
195.91.215.0/24
195.91.217.0-195.91.247.255
195.91.252.0/24
195.91.254.0/23
IPv6:
2a02:2698:9800::/38
Signature Algorithm: sha256WithRSAEncryption
60:6e:e4:2f:de:95:6d:b6:8d:99:da:bf:46:84:98:51:11:04:
b3:2f:f7:8c:7b:9b:a5:aa:db:ea:6c:df:a4:4b:f7:44:a7:fc:
57:f3:e1:b5:46:02:ea:7d:f5:83:42:14:69:3d:ab:3b:31:81:
74:2f:03:01:f3:a1:ae:56:db:62:43:06:a5:b5:f5:dd:92:fb:
04:e4:27:09:02:be:f8:59:9c:ca:64:79:01:86:c3:76:80:8f:
8c:5d:4e:7f:cc:1b:26:de:24:6f:ba:31:44:6d:58:7b:9b:7e:
8f:2a:aa:1c:f5:ec:c9:aa:dc:85:48:d1:55:19:c7:2d:5a:ec:
cb:c1:b7:a0:82:d4:5b:1d:a3:b0:f0:e1:58:0b:2b:5d:8a:ec:
82:76:ff:65:78:1a:c6:7b:f7:d0:e8:4e:55:2e:56:86:f8:b9:
45:83:80:a2:c4:f7:e3:97:17:35:0b:40:a5:6b:96:88:3a:79:
46:d9:b7:8e:e5:5d:1b:97:46:0d:cc:b5:1e:89:80:94:c2:c3:
bd:17:a9:26:3c:e0:12:b1:ad:7f:9b:1f:a9:7f:48:21:3f:da:
b2:39:c4:81:2e:a0:62:c9:85:29:86:e0:15:26:c2:38:ec:0c:
68:b4:ee:19:45:1c:d0:bc:26:6c:10:42:47:3b:e8:fb:70:5d:
dc:77:81:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:38 2025 by rpki-client