Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/H88Wbra7xv32eRFY5rbLxGsxpwc.roa
File: H88Wbra7xv32eRFY5rbLxGsxpwc.roa (raw, json)
Hash identifier: Wx+m429FHoxs5kxhRDPIuVe9odC8JK0Sk9631CoLiqs=
Subject key identifier: 1F:CF:16:6E:B6:BB:C6:FD:F6:79:11:58:E6:B6:CB:C4:6B:31:A7:07
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 074A5004
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/H88Wbra7xv32eRFY5rbLxGsxpwc.roa
Signing time: Fri 25 Feb 2022 04:14:21 +0000
ROA not before: Fri 25 Feb 2022 04:14:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55933
IP address blocks: 80.245.104.0/23 maxlen: 23
80.245.104.0/22 maxlen: 24
80.245.106.0/23 maxlen: 23
185.245.40.0/22 maxlen: 24
93.90.72.0/22 maxlen: 24
93.90.74.0/23 maxlen: 24
109.206.244.0/22 maxlen: 24
185.249.63.0/24 maxlen: 24
193.178.58.0/23 maxlen: 23
193.178.56.0/23 maxlen: 23
193.178.56.0/22 maxlen: 22
185.243.240.0/22 maxlen: 24
84.252.102.0/23 maxlen: 24
85.8.180.0/23 maxlen: 24
185.242.232.0/22 maxlen: 24
185.242.232.0/23 maxlen: 23
185.242.234.0/23 maxlen: 23
185.247.182.0/23 maxlen: 23
185.247.180.0/22 maxlen: 22
185.247.180.0/23 maxlen: 23
185.239.84.0/23 maxlen: 23
185.239.84.0/22 maxlen: 24
185.239.86.0/23 maxlen: 23
91.132.48.0/22 maxlen: 24
93.177.76.0/22 maxlen: 24
2a0c:f480::/29 maxlen: 29
2a0d:2480::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122310660 (0x74a5004)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: Feb 25 04:14:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fcf166eb6bbc6fdf6791158e6b6cbc46b31a707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c0:89:21:df:95:a9:c5:56:40:0f:8c:12:a7:
59:86:4d:5d:a7:5d:2b:71:44:ab:d8:10:4b:70:dc:
e2:41:82:cd:da:42:59:4b:f7:04:b7:18:62:2c:ae:
19:de:b1:d5:ca:46:2e:43:b7:66:b5:f6:69:00:5a:
6e:1c:c2:11:32:b5:46:fa:3c:2f:53:dc:33:f8:a8:
4e:d6:59:3b:b7:22:ca:b2:11:65:4f:38:b7:74:3f:
11:6d:d3:2e:e5:a6:3f:b6:f1:2e:36:d0:0d:4c:0b:
6a:88:f5:38:51:69:24:a7:4a:9a:73:99:8a:aa:76:
06:d3:44:64:69:30:9b:82:3e:61:5e:56:2d:6d:9b:
cc:be:5a:b6:65:fe:f8:a6:31:91:ec:77:0f:ea:0f:
47:d0:bd:02:03:bb:87:b3:18:43:c6:b9:f1:e5:f5:
e4:a1:2c:d6:ca:89:80:3f:3c:b7:c7:19:f0:ca:fb:
c7:26:56:c4:d6:39:32:3f:44:21:b5:fa:e9:66:43:
ad:01:6b:5a:7a:ab:58:34:86:01:dd:71:3d:46:29:
f3:7c:75:48:37:42:36:23:72:1d:af:c7:95:e7:da:
81:20:39:8a:41:90:b7:bf:37:8e:74:f0:be:cc:fc:
13:76:46:34:af:8a:ee:87:df:31:a6:9f:64:93:0d:
79:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:CF:16:6E:B6:BB:C6:FD:F6:79:11:58:E6:B6:CB:C4:6B:31:A7:07
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/H88Wbra7xv32eRFY5rbLxGsxpwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.245.104.0/22
84.252.102.0/23
85.8.180.0/23
91.132.48.0/22
93.90.72.0/22
93.177.76.0/22
109.206.244.0/22
185.239.84.0/22
185.242.232.0/22
185.243.240.0/22
185.245.40.0/22
185.247.180.0/22
185.249.63.0/24
193.178.56.0/22
IPv6:
2a0c:f480::/29
2a0d:2480::/29
Signature Algorithm: sha256WithRSAEncryption
72:a2:67:ec:77:ad:be:25:09:c2:b7:3e:6c:f9:17:50:f3:2b:
49:32:d5:38:f7:41:97:37:77:59:21:dd:25:99:54:94:43:61:
e6:51:73:0a:30:7a:7d:01:6c:77:43:c8:e2:4c:75:1e:ad:14:
03:6f:e0:d1:f4:31:d7:e0:5d:50:e5:f8:96:01:1d:69:24:05:
f6:65:31:7e:78:06:53:1b:0d:2b:4e:77:3e:b8:02:db:1b:d5:
16:4e:de:5a:30:73:d1:62:44:f6:74:19:18:49:82:d7:e6:55:
50:eb:bd:d3:7b:58:fe:27:56:89:04:ed:d9:17:17:5e:c0:24:
f2:b0:09:02:a1:4e:c9:49:ba:e8:01:33:20:31:64:0e:6d:29:
df:1a:ce:76:aa:08:27:82:81:e5:d2:51:39:ef:b1:1b:bf:ef:
d4:a4:c9:cf:26:07:5d:a1:9b:ca:73:8d:c1:0c:c2:c1:43:aa:
96:dd:a9:ab:50:00:b6:77:e7:0f:12:40:e8:0f:c4:eb:87:b9:
56:73:f0:ee:a7:1f:da:54:09:21:2a:cb:09:6b:be:d4:47:e5:
80:74:46:4a:5b:3f:be:c0:a6:6f:b9:e1:2b:f8:8d:d3:f3:67:
d3:0e:07:b4:ff:6f:ae:96:ad:b7:df:f9:94:9c:a7:16:e4:d1:
90:0a:b4:c5
-----BEGIN CERTIFICATE-----
MIIFVDCCBDygAwIBAgIEB0pQBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MDg5NDIzYWYxYmUwMzAyNzE5NmQxZjgxZGYyMjk5Mjk3OGNkYTZlMB4XDTIyMDIy
NTA0MTQyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWZjZjE2NmViNmJi
YzZmZGY2NzkxMTU4ZTZiNmNiYzQ2YjMxYTcwNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKzAiSHflanFVkAPjBKnWYZNXaddK3FEq9gQS3Dc4kGCzdpC
WUv3BLcYYiyuGd6x1cpGLkO3ZrX2aQBabhzCETK1Rvo8L1PcM/ioTtZZO7ciyrIR
ZU84t3Q/EW3TLuWmP7bxLjbQDUwLaoj1OFFpJKdKmnOZiqp2BtNEZGkwm4I+YV5W
LW2bzL5atmX++KYxkex3D+oPR9C9AgO7h7MYQ8a58eX15KEs1sqJgD88t8cZ8Mr7
xyZWxNY5Mj9EIbX66WZDrQFrWnqrWDSGAd1xPUYp83x1SDdCNiNyHa/HlefagSA5
ikGQt783jnTwvsz8E3ZGNK+K7offMaafZJMNeScCAwEAAaOCAm4wggJqMB0GA1Ud
DgQWBBQfzxZutrvG/fZ5EVjmtsvEazGnBzAfBgNVHSMEGDAWgBTAiUI68b4DAnGW
0fgd8imSl4zabjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dJbENPdkctQXdKeGx0SDRIZklwa3BlTTJtNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvZGMyOTEyLWM3YjAtNGRmNC05YWE4LTY1MzMyYjQ3ZjVlYi8x
L0g4OFdicmE3eHYzMmVSRlk1cmJMeEdzeHB3Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
ZGMyOTEyLWM3YjAtNGRmNC05YWE4LTY1MzMyYjQ3ZjVlYi8xL3dJbENPdkctQXdK
eGx0SDRIZklwa3BlTTJtNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
gwYIKwYBBQUHAQcBAf8EdDByMFoEAgABMFQDBAJQ9WgDBAFU/GYDBAFVCLQDBAJb
hDADBAJdWkgDBAJdsUwDBAJtzvQDBAK571QDBAK58ugDBAK58/ADBAK59SgDBAK5
97QDBAC5+T8DBALBsjgwFAQCAAIwDgMFAyoM9IADBQMqDSSAMA0GCSqGSIb3DQEB
CwUAA4IBAQByomfsd62+JQnCtz5s+RdQ8ytJMtU490GXN3dZId0lmVSUQ2HmUXMK
MHp9AWx3Q8jiTHUerRQDb+DR9DHX4F1Q5fiWAR1pJAX2ZTF+eAZTGw0rTnc+uALb
G9UWTt5aMHPRYkT2dBkYSYLX5lVQ673Te1j+J1aJBO3ZFxdewCTysAkCoU7JSbro
ATMgMWQObSnfGs52qggngoHl0lE577Ebv+/UpMnPJgddoZvKc43BDMLBQ6qW3amr
UAC2d+cPEkDoD8Trh7lWc/Dupx/aVAkhKssJa77UR+WAdEZKWz++wKZvueEr+I3T
82fTDge0/2+ulq233/mUnKcW5NGQCrTF
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:22 2025 by rpki-client