Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/1560f1-bcc2-411a-8565-ec4a8af5a98e/1/0L5pX0eiiU09MbI2BoVtaxLkZ6Y.roa
File: 0L5pX0eiiU09MbI2BoVtaxLkZ6Y.roa (raw, json)
Hash identifier: K5g4tOKS2vZ4LINsrs7bMw43M+85Zwy4VKm/iek+xg0=
Subject key identifier: D0:BE:69:5F:47:A2:89:4D:3D:31:B2:36:06:85:6D:6B:12:E4:67:A6
Certificate issuer: /CN=6a9a54dfdb2aadd1f1efa90be1f02d8b214c6a3e
Certificate serial: 018A9337EB9EC2D917E44300352C45DACE7C
Authority key identifier: 6A:9A:54:DF:DB:2A:AD:D1:F1:EF:A9:0B:E1:F0:2D:8B:21:4C:6A:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/appU39sqrdHx76kL4fAtiyFMaj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/1560f1-bcc2-411a-8565-ec4a8af5a98e/1/0L5pX0eiiU09MbI2BoVtaxLkZ6Y.roa
Signing time: Thu 14 Sep 2023 10:23:50 +0000
ROA not before: Thu 14 Sep 2023 10:23:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29062
IP address blocks: 185.16.230.0/24 maxlen: 24
185.16.228.0/23 maxlen: 23
31.223.225.0/24 maxlen: 24
31.223.224.0/21 maxlen: 24
31.223.224.0/23 maxlen: 23
31.223.224.0/24 maxlen: 24
31.223.226.0/24 maxlen: 24
31.223.228.0/24 maxlen: 24
31.223.227.0/24 maxlen: 24
31.223.230.0/24 maxlen: 24
31.223.229.0/24 maxlen: 24
31.223.231.0/24 maxlen: 24
195.177.72.0/22 maxlen: 24
195.177.72.0/23 maxlen: 24
195.177.74.0/23 maxlen: 23
195.177.75.0/24 maxlen: 24
2a00:6180:8000::/33 maxlen: 33
2a00:6180::/33 maxlen: 33
2a00:6180::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:93:37:eb:9e:c2:d9:17:e4:43:00:35:2c:45:da:ce:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a9a54dfdb2aadd1f1efa90be1f02d8b214c6a3e
Validity
Not Before: Sep 14 10:23:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0be695f47a2894d3d31b23606856d6b12e467a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3f:26:5e:d4:a5:ee:af:de:69:93:ac:71:76:
a9:ef:0b:2a:e0:bc:d0:61:d8:41:0d:74:de:8c:34:
88:ee:db:a6:04:b6:a4:9a:26:f0:c2:51:0a:c6:d6:
fa:cf:87:26:83:fa:05:6d:71:ef:41:ef:29:9c:59:
37:29:b3:94:97:e2:e7:4e:c3:4b:d7:05:06:a0:ab:
a3:36:67:cd:cf:14:ad:55:35:3e:8a:27:00:cf:33:
8b:6e:9f:2a:b3:13:95:08:de:53:9d:b4:68:ba:bd:
92:42:0e:bc:ca:2b:ac:d0:48:ce:c0:f5:44:ca:3a:
35:5a:0b:c9:47:c3:60:a4:9a:64:cb:77:81:04:82:
0d:0d:ff:b1:a3:da:e0:f7:9f:fc:ed:67:25:d1:b2:
c9:7a:df:5e:ce:14:6a:57:cc:4c:76:dc:11:2a:57:
85:a4:d8:1c:23:a3:74:4f:b6:74:2d:0d:ec:97:c9:
9a:2c:1d:26:ba:3d:53:77:51:5e:d0:ce:c1:2b:3f:
22:51:76:7f:17:78:8f:be:35:8e:c2:2a:6c:23:d4:
6d:8b:0f:85:be:46:52:48:98:19:5d:71:b4:7d:d4:
0b:6a:3c:4c:05:25:e8:4e:84:27:38:bb:61:20:d0:
15:4e:de:1a:32:67:92:e0:77:e4:5e:24:80:64:f5:
da:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:BE:69:5F:47:A2:89:4D:3D:31:B2:36:06:85:6D:6B:12:E4:67:A6
X509v3 Authority Key Identifier:
keyid:6A:9A:54:DF:DB:2A:AD:D1:F1:EF:A9:0B:E1:F0:2D:8B:21:4C:6A:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/appU39sqrdHx76kL4fAtiyFMaj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1560f1-bcc2-411a-8565-ec4a8af5a98e/1/0L5pX0eiiU09MbI2BoVtaxLkZ6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1560f1-bcc2-411a-8565-ec4a8af5a98e/1/appU39sqrdHx76kL4fAtiyFMaj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.224.0/21
185.16.228.0-185.16.230.255
195.177.72.0/22
IPv6:
2a00:6180::/32
Signature Algorithm: sha256WithRSAEncryption
31:2f:c9:24:ac:78:bc:0e:5c:8b:05:7f:cb:dc:85:96:bd:df:
64:f1:a7:e8:51:70:dd:66:2b:4c:15:ab:ca:32:72:ca:28:77:
03:80:26:cd:95:46:76:e2:25:a6:4d:26:e1:d2:40:70:76:3e:
58:68:d5:82:de:7f:c6:32:86:59:81:fb:cb:79:42:a1:82:ea:
f4:b6:97:5a:07:b4:dc:0c:ba:78:75:11:d6:54:92:bc:6f:1c:
0f:ec:c2:fb:e2:b2:dd:55:5e:ae:8b:ad:b5:61:4d:bb:a2:78:
6b:92:56:43:3d:05:8f:87:57:e3:eb:66:ed:2a:83:12:c4:eb:
c7:53:b2:84:5f:86:da:67:02:ac:1e:e1:89:b1:d4:db:87:bf:
94:3b:68:c6:51:de:41:e3:68:3b:58:ba:16:47:3d:e6:2a:34:
3f:ca:62:9c:61:92:d7:d1:eb:d7:10:84:06:3b:1f:2a:bd:b3:
b5:ff:b3:d3:b2:ca:41:da:5f:c5:58:fd:c6:77:3b:b3:69:f5:
96:6e:b4:36:90:3d:71:a1:d5:64:88:4b:66:c5:4f:a4:b0:0e:
ac:19:bf:5c:02:4f:ba:c1:37:3b:90:75:19:29:1f:ee:9d:c7:
44:1c:86:81:d0:2f:e7:8d:fa:91:4d:62:6e:02:7a:7d:8c:56:
7e:8e:c0:4d
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgISAYqTN+uewtkX5EMANSxF2s58MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhOWE1NGRmZGIyYWFkZDFmMWVmYTkwYmUxZjAyZDhiMjE0
YzZhM2UwHhcNMjMwOTE0MTAyMzUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGJlNjk1ZjQ3YTI4OTRkM2QzMWIyMzYwNjg1NmQ2YjEyZTQ2N2E2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhT8mXtSl7q/eaZOscXap7wsq4LzQ
YdhBDXTejDSI7tumBLakmibwwlEKxtb6z4cmg/oFbXHvQe8pnFk3KbOUl+LnTsNL
1wUGoKujNmfNzxStVTU+iicAzzOLbp8qsxOVCN5TnbRour2SQg68yius0EjOwPVE
yjo1WgvJR8NgpJpky3eBBIINDf+xo9rg95/87Wcl0bLJet9ezhRqV8xMdtwRKleF
pNgcI6N0T7Z0LQ3sl8maLB0muj1Td1Fe0M7BKz8iUXZ/F3iPvjWOwipsI9Rtiw+F
vkZSSJgZXXG0fdQLajxMBSXoToQnOLthINAVTt4aMmeS4HfkXiSAZPXaZQIDAQAB
o4ICLDCCAigwHQYDVR0OBBYEFNC+aV9HoolNPTGyNgaFbWsS5GemMB8GA1UdIwQY
MBaAFGqaVN/bKq3R8e+pC+HwLYshTGo+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXBwVTM5c3FyZEh4NzZrTDRmQXRpeUZNYWo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8xNTYwZjEtYmNjMi00MTFhLTg1NjUt
ZWM0YThhZjVhOThlLzEvMEw1cFgwZWlpVTA5TWJJMkJvVnRheExrWjZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8xNTYwZjEtYmNjMi00MTFhLTg1NjUtZWM0YThhZjVhOThl
LzEvYXBwVTM5c3FyZEh4NzZrTDRmQXRpeUZNYWo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAgBAIAATAaAwQDH9/gMAwD
BAK5EOQDBAC5EOYDBALDsUgwDQQCAAIwBwMFACoAYYAwDQYJKoZIhvcNAQELBQAD
ggEBADEvySSseLwOXIsFf8vchZa932Txp+hRcN1mK0wVq8oycsoodwOAJs2VRnbi
JaZNJuHSQHB2Plho1YLef8YyhlmB+8t5QqGC6vS2l1oHtNwMunh1EdZUkrxvHA/s
wvvist1VXq6LrbVhTbuieGuSVkM9BY+HV+PrZu0qgxLE68dTsoRfhtpnAqwe4Ymx
1NuHv5Q7aMZR3kHjaDtYuhZHPeYqND/KYpxhktfR69cQhAY7Hyq9s7X/s9OyykHa
X8VY/cZ3O7Np9ZZutDaQPXGh1WSIS2bFT6SwDqwZv1wCT7rBNzuQdRkpH+6dx0Qc
hoHQL+eN+pFNYm4Cen2MVn6OwE0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:42 2024 by rpki-client on console-ams.rpki-client.org