Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/BirFqBwR5r2cxFhLejWrgCO2X5s.roa
File: BirFqBwR5r2cxFhLejWrgCO2X5s.roa (raw, json)
Hash identifier: Xo71N01rQjd04f54TqJLdcp+Dkh1XOWP80USfNO2rH4=
Subject key identifier: 06:2A:C5:A8:1C:11:E6:BD:9C:C4:58:4B:7A:35:AB:80:23:B6:5F:9B
Certificate issuer: /CN=96a8d72552e5ba942ad9d94bdbf102895ea96ee4
Certificate serial: 37ECD0B2
Authority key identifier: 96:A8:D7:25:52:E5:BA:94:2A:D9:D9:4B:DB:F1:02:89:5E:A9:6E:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lqjXJVLlupQq2dlL2_ECiV6pbuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/BirFqBwR5r2cxFhLejWrgCO2X5s.roa
Signing time: Sat 01 Jan 2022 13:07:33 +0000
ROA not before: Sat 01 Jan 2022 13:07:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15774
IP address blocks: 109.171.48.0/23 maxlen: 23
91.105.128.192/26 maxlen: 26
91.105.128.128/26 maxlen: 26
109.171.52.0/24 maxlen: 24
109.171.58.0/24 maxlen: 24
91.105.137.128/26 maxlen: 26
109.171.70.0/24 maxlen: 24
109.171.65.0/24 maxlen: 24
109.171.76.0/24 maxlen: 24
109.171.0.0/23 maxlen: 23
195.238.101.0/24 maxlen: 24
109.171.7.0/24 maxlen: 24
37.49.196.0/24 maxlen: 24
37.49.205.0/24 maxlen: 24
37.49.204.0/24 maxlen: 24
37.49.207.0/24 maxlen: 24
109.171.29.0/24 maxlen: 24
37.205.77.0/24 maxlen: 24
37.205.76.128/25 maxlen: 25
37.205.76.0/25 maxlen: 25
109.171.103.0/24 maxlen: 24
109.171.105.0/24 maxlen: 24
109.171.107.0/24 maxlen: 24
109.171.124.128/25 maxlen: 25
109.171.124.0/25 maxlen: 25
37.205.48.128/25 maxlen: 25
37.205.54.128/25 maxlen: 25
37.205.54.0/25 maxlen: 25
46.241.18.0/24 maxlen: 24
46.241.20.128/25 maxlen: 25
46.241.20.0/25 maxlen: 25
46.241.19.0/24 maxlen: 24
46.241.44.0/24 maxlen: 24
46.241.125.128/25 maxlen: 25
46.241.125.0/25 maxlen: 25
46.241.123.128/25 maxlen: 25
46.241.126.0/24 maxlen: 24
188.44.116.192/26 maxlen: 26
188.44.116.128/26 maxlen: 26
46.241.68.0/23 maxlen: 23
109.197.130.0/24 maxlen: 24
109.197.128.0/23 maxlen: 23
46.241.78.0/24 maxlen: 24
46.241.84.0/24 maxlen: 24
109.197.135.0/24 maxlen: 24
46.241.85.0/24 maxlen: 24
46.241.79.0/24 maxlen: 24
46.241.88.128/25 maxlen: 25
46.241.89.0/24 maxlen: 24
46.241.88.0/25 maxlen: 25
46.241.98.0/24 maxlen: 24
46.241.100.0/23 maxlen: 23
46.241.99.0/24 maxlen: 24
46.241.103.0/24 maxlen: 24
46.241.102.0/24 maxlen: 24
46.241.106.0/24 maxlen: 24
91.105.129.0/24 maxlen: 24
91.105.128.0/25 maxlen: 25
91.105.130.0/24 maxlen: 24
91.105.137.0/25 maxlen: 25
91.105.142.0/24 maxlen: 24
91.105.140.128/25 maxlen: 25
91.105.151.0/24 maxlen: 24
91.105.175.0/24 maxlen: 24
91.105.180.0/22 maxlen: 22
37.205.48.64/26 maxlen: 26
37.205.48.0/26 maxlen: 26
46.50.207.0/24 maxlen: 24
46.50.160.128/25 maxlen: 25
46.50.160.0/25 maxlen: 25
46.50.162.0/24 maxlen: 24
188.44.116.0/25 maxlen: 25
188.44.114.0/23 maxlen: 23
46.50.254.0/24 maxlen: 24
188.44.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938266802 (0x37ecd0b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96a8d72552e5ba942ad9d94bdbf102895ea96ee4
Validity
Not Before: Jan 1 13:07:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=062ac5a81c11e6bd9cc4584b7a35ab8023b65f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ae:c7:17:74:3a:e5:e7:eb:73:ca:7d:4c:cc:
20:f4:e4:32:08:54:eb:e9:b1:cc:cf:91:44:bd:34:
36:ba:45:9a:bb:0f:82:b4:b3:01:6a:81:1b:a1:a8:
cd:22:9a:91:88:9f:9d:46:69:b9:11:91:64:2a:6c:
46:2f:9c:f3:c6:e1:12:4b:c2:c7:93:7f:b5:ce:42:
dd:e9:44:b6:41:ec:c9:9e:4f:40:f2:8c:d6:fa:e8:
ba:25:8f:2f:2a:9f:76:3e:32:a9:e5:ea:34:ca:32:
ad:73:59:45:a5:60:19:26:8f:4d:dd:47:31:db:73:
a9:d4:ee:c4:ef:04:46:e2:ed:09:9c:e2:fd:e0:2d:
f0:29:08:c7:21:ce:86:53:57:cf:75:ef:2d:b4:c7:
1d:8d:ad:09:83:a5:bb:c6:71:46:96:bb:be:d3:32:
20:a0:24:6f:83:2f:f6:2a:29:f2:ca:d8:14:4e:21:
d4:3e:5a:60:cf:15:3d:dd:e7:6c:e3:e2:eb:a9:cb:
cf:57:79:06:47:ee:c2:8a:b0:8c:58:ee:30:d1:7b:
99:5a:4d:2e:30:97:71:13:2f:ce:32:26:08:06:89:
f7:55:ac:f3:4e:ea:53:56:84:69:af:4b:62:db:73:
6c:c3:b8:ec:95:37:a7:3d:ff:88:80:f9:2c:00:46:
ce:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:2A:C5:A8:1C:11:E6:BD:9C:C4:58:4B:7A:35:AB:80:23:B6:5F:9B
X509v3 Authority Key Identifier:
keyid:96:A8:D7:25:52:E5:BA:94:2A:D9:D9:4B:DB:F1:02:89:5E:A9:6E:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lqjXJVLlupQq2dlL2_ECiV6pbuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/BirFqBwR5r2cxFhLejWrgCO2X5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/lqjXJVLlupQq2dlL2_ECiV6pbuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.196.0/24
37.49.204.0/23
37.49.207.0/24
37.205.48.0/24
37.205.54.0/24
37.205.76.0/23
46.50.160.0/24
46.50.162.0/24
46.50.207.0/24
46.50.254.0/24
46.241.18.0-46.241.20.255
46.241.44.0/24
46.241.68.0/23
46.241.78.0/23
46.241.84.0/23
46.241.88.0/23
46.241.98.0-46.241.103.255
46.241.106.0/24
46.241.123.128/25
46.241.125.0-46.241.126.255
91.105.128.0-91.105.130.255
91.105.137.0-91.105.137.191
91.105.140.128/25
91.105.142.0/24
91.105.151.0/24
91.105.175.0/24
91.105.180.0/22
109.171.0.0/23
109.171.7.0/24
109.171.29.0/24
109.171.48.0/23
109.171.52.0/24
109.171.58.0/24
109.171.65.0/24
109.171.70.0/24
109.171.76.0/24
109.171.103.0/24
109.171.105.0/24
109.171.107.0/24
109.171.124.0/24
109.197.128.0-109.197.130.255
109.197.135.0/24
188.44.99.0/24
188.44.114.0-188.44.116.255
195.238.101.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:52:1a:93:9d:1f:c6:91:25:eb:45:48:e5:e0:f3:35:47:ae:
e1:79:04:d1:a2:2c:31:db:32:52:1b:d0:8c:8f:5c:55:f4:1a:
f7:bb:90:bc:cb:7c:62:7c:12:fd:a3:63:af:64:d4:b9:d6:62:
98:8a:80:90:31:26:70:ee:73:55:03:b2:13:6e:f2:b2:01:e8:
fe:ec:14:b7:cf:fc:0e:78:3c:89:6a:c9:02:25:c1:2e:a8:61:
00:7a:a5:05:ce:44:56:db:8c:90:da:06:63:2a:f8:c3:bd:40:
e1:b8:c5:7b:4e:77:8b:5b:27:d4:ef:06:80:8d:92:a4:ac:78:
f9:ef:00:07:42:53:8e:8b:ef:be:5f:96:bd:52:8e:14:02:a7:
62:7a:1c:33:78:6c:01:2a:7b:8c:84:48:ff:9a:7b:77:48:2b:
eb:a5:fc:c0:39:10:e0:eb:01:cc:13:9b:62:76:17:46:55:aa:
cb:be:be:46:fe:1d:b5:aa:d1:8c:26:cb:d8:50:7a:44:ef:a6:
23:94:6b:38:37:55:ad:84:a4:df:7c:b6:56:37:04:aa:62:83:
91:2f:45:69:a7:44:84:73:ea:ae:db:4b:3b:43:62:8e:6c:aa:
5c:e6:5e:67:dc:f1:8f:b0:a5:eb:27:e8:fb:c8:46:03:e6:0b:
b8:67:94:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:34 2024 by rpki-client on console-ams.rpki-client.org