Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/I4ZHD50jYgDLmkXIoyXJIoJ5hC4.roa
File: I4ZHD50jYgDLmkXIoyXJIoJ5hC4.roa (raw, json)
Hash identifier: +DL+Mc2KfctwLvYSGY3rMb0XSzXlwhqHUsoTNLpHNC0=
Subject key identifier: 23:86:47:0F:9D:23:62:00:CB:9A:45:C8:A3:25:C9:22:82:79:84:2E
Certificate issuer: /CN=cd9233f6a88d08f6559c2206b1bff2655b122231
Certificate serial: 38DBB8DC
Authority key identifier: CD:92:33:F6:A8:8D:08:F6:55:9C:22:06:B1:BF:F2:65:5B:12:22:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZIz9qiNCPZVnCIGsb_yZVsSIjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/I4ZHD50jYgDLmkXIoyXJIoJ5hC4.roa
Signing time: Fri 13 May 2022 09:17:02 +0000
ROA not before: Fri 13 May 2022 09:17:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30968
IP address blocks: 109.120.160.0/23 maxlen: 23
109.120.164.0/23 maxlen: 23
109.120.166.0/24 maxlen: 24
109.120.168.0/22 maxlen: 22
109.120.173.0/24 maxlen: 24
109.120.177.0/24 maxlen: 24
109.120.179.0/24 maxlen: 24
109.120.184.0/22 maxlen: 22
92.243.92.0/24 maxlen: 24
77.221.128.0/19 maxlen: 24
77.221.128.0/23 maxlen: 23
77.221.131.0/24 maxlen: 24
77.221.130.0/24 maxlen: 24
77.221.132.0/22 maxlen: 22
77.221.136.0/21 maxlen: 21
109.120.128.0/21 maxlen: 21
77.221.144.0/20 maxlen: 20
109.120.139.0/24 maxlen: 24
109.120.136.0/23 maxlen: 23
109.120.142.0/23 maxlen: 23
109.120.141.0/24 maxlen: 24
109.120.144.0/23 maxlen: 23
109.120.146.0/24 maxlen: 24
109.120.148.0/22 maxlen: 22
109.120.152.0/24 maxlen: 24
109.120.156.0/22 maxlen: 22
109.120.155.0/24 maxlen: 24
92.243.64.0/22 maxlen: 22
92.243.70.0/24 maxlen: 24
92.243.69.0/24 maxlen: 24
92.243.72.0/21 maxlen: 21
92.243.84.0/23 maxlen: 23
92.243.80.0/23 maxlen: 23
92.243.83.0/24 maxlen: 24
92.243.89.0/24 maxlen: 24
2a02:440::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 953923804 (0x38dbb8dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd9233f6a88d08f6559c2206b1bff2655b122231
Validity
Not Before: May 13 09:17:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2386470f9d236200cb9a45c8a325c9228279842e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f0:1c:28:ab:49:66:18:fc:83:68:bd:7c:9c:
d8:04:05:41:87:2b:47:01:8e:af:76:61:13:03:b7:
60:1f:cb:f9:39:97:64:58:0f:1c:18:ed:89:39:23:
43:ce:a6:ee:57:63:31:cd:e5:39:5b:d4:47:95:35:
12:35:2f:f4:2b:05:42:c9:ab:c9:d3:bb:69:93:25:
a2:e9:15:de:63:1c:36:cd:c0:04:27:18:20:97:64:
e4:7f:ce:25:34:8e:a5:23:ca:57:b9:4b:00:9d:c2:
bb:34:13:e4:b2:c0:f8:a5:a8:e5:3f:f6:cc:fd:be:
f8:d6:0d:24:33:6e:16:c7:67:2c:8a:66:56:39:4f:
94:92:59:c6:25:c0:5f:50:b4:a4:97:d2:b7:a8:91:
53:35:8b:75:db:fc:c2:90:82:2d:a9:22:91:9b:d3:
e0:e7:50:27:81:c9:90:b3:f0:78:d7:8b:c5:66:49:
f1:2c:89:97:92:e7:35:f2:e3:2e:58:a2:3d:5e:d6:
0a:d4:10:e3:4e:b1:f7:db:45:f7:39:f4:8c:53:cf:
7b:5a:e4:29:eb:36:69:a5:76:c8:0a:ef:8c:fa:89:
c0:48:c8:f7:f9:14:c6:cf:00:cf:a2:cf:b0:d3:0f:
a1:a3:96:b1:4d:63:d0:54:f4:cc:5e:d1:05:4b:8b:
bc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:86:47:0F:9D:23:62:00:CB:9A:45:C8:A3:25:C9:22:82:79:84:2E
X509v3 Authority Key Identifier:
keyid:CD:92:33:F6:A8:8D:08:F6:55:9C:22:06:B1:BF:F2:65:5B:12:22:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZIz9qiNCPZVnCIGsb_yZVsSIjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/I4ZHD50jYgDLmkXIoyXJIoJ5hC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/zZIz9qiNCPZVnCIGsb_yZVsSIjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.221.128.0/19
92.243.64.0/22
92.243.69.0-92.243.70.255
92.243.72.0-92.243.81.255
92.243.83.0-92.243.85.255
92.243.89.0/24
92.243.92.0/24
109.120.128.0-109.120.137.255
109.120.139.0/24
109.120.141.0-109.120.146.255
109.120.148.0-109.120.152.255
109.120.155.0-109.120.161.255
109.120.164.0-109.120.166.255
109.120.168.0/22
109.120.173.0/24
109.120.177.0/24
109.120.179.0/24
109.120.184.0/22
IPv6:
2a02:440::/32
Signature Algorithm: sha256WithRSAEncryption
3e:3a:a7:3b:c1:a5:d8:b7:27:f9:32:93:43:82:4d:2f:48:9e:
6f:aa:f3:b5:5c:ab:da:36:4e:3b:25:16:0f:df:14:f4:83:e9:
27:11:30:f2:ea:c9:64:d3:52:df:2f:ff:a0:75:db:37:4c:80:
f6:ce:70:ae:0a:dc:33:6c:07:e9:d1:a7:e7:29:c2:6c:e2:8f:
82:1c:13:e2:c9:ff:04:93:4a:90:96:e1:85:d4:d9:20:bb:9d:
ed:6f:17:d2:68:fa:59:67:b1:86:c3:79:2a:ae:6e:ff:2a:ad:
99:26:de:50:25:13:63:44:0b:84:a7:af:b1:e1:b6:c2:9e:be:
a7:73:11:78:1b:4e:cf:b2:ae:57:7e:4f:f9:19:cc:4b:f0:21:
e3:09:e1:27:29:be:4b:06:4f:ef:b7:e6:42:ef:c9:f9:b0:50:
ed:d8:70:92:ee:27:f0:1d:34:6e:95:f3:ee:09:44:ec:51:69:
e1:dd:3e:0e:0a:3c:cc:cf:1f:1e:7b:8b:a6:2c:c4:6a:7b:04:
1d:b7:b7:46:22:fb:f6:49:78:03:e2:a4:89:ae:c6:5f:90:57:
2d:27:b7:30:89:1e:46:d5:9c:ad:7b:61:b1:5f:82:45:c7:08:
88:7b:71:dd:35:94:64:f6:fc:36:a3:b0:88:23:15:0e:92:fd:
e5:a6:4f:8e
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgIEONu43DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZDkyMzNmNmE4OGQwOGY2NTU5YzIyMDZiMWJmZjI2NTViMTIyMjMxMB4XDTIyMDUx
MzA5MTcwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjM4NjQ3MGY5ZDIz
NjIwMGNiOWE0NWM4YTMyNWM5MjI4Mjc5ODQyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKnwHCirSWYY/INovXyc2AQFQYcrRwGOr3ZhEwO3YB/L+TmX
ZFgPHBjtiTkjQ86m7ldjMc3lOVvUR5U1EjUv9CsFQsmrydO7aZMloukV3mMcNs3A
BCcYIJdk5H/OJTSOpSPKV7lLAJ3CuzQT5LLA+KWo5T/2zP2++NYNJDNuFsdnLIpm
VjlPlJJZxiXAX1C0pJfSt6iRUzWLddv8wpCCLakikZvT4OdQJ4HJkLPweNeLxWZJ
8SyJl5LnNfLjLliiPV7WCtQQ406x99tF9zn0jFPPe1rkKes2aaV2yArvjPqJwEjI
9/kUxs8Az6LPsNMPoaOWsU1j0FT0zF7RBUuLvIUCAwEAAaOCAsMwggK/MB0GA1Ud
DgQWBBQjhkcPnSNiAMuaRcijJckignmELjAfBgNVHSMEGDAWgBTNkjP2qI0I9lWc
Igaxv/JlWxIiMTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3paSXo5cWlOQ1BaVm5DSUdzYl95WlZzU0lqRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmEvMGExMTZmLTVhMGItNDU2Ni05ZjQ0LWI4MzdiZjlkNGM1Zi8x
L0k0WkhENTBqWWdETG1rWElveVhKSW9KNWhDNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmEv
MGExMTZmLTVhMGItNDU2Ni05ZjQ0LWI4MzdiZjlkNGM1Zi8xL3paSXo5cWlOQ1Ba
Vm5DSUdzYl95WlZzU0lqRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
2AYIKwYBBQUHAQcBAf8EgcgwgcUwgbMEAgABMIGsAwQFTd2AAwQCXPNAMAwDBABc
80UDBABc80YwDAMEA1zzSAMEAVzzUDAMAwQAXPNTAwQBXPNUAwQAXPNZAwQAXPNc
MAwDBAdteIADBAFteIgDBABteIswDAMEAG14jQMEAG14kjAMAwQCbXiUAwQAbXiY
MAwDBABteJsDBAFteKAwDAMEAm14pAMEAG14pgMEAm14qAMEAG14rQMEAG14sQME
AG14swMEAm14uDANBAIAAjAHAwUAKgIEQDANBgkqhkiG9w0BAQsFAAOCAQEAPjqn
O8Gl2Lcn+TKTQ4JNL0ieb6rztVyr2jZOOyUWD98U9IPpJxEw8urJZNNS3y//oHXb
N0yA9s5wrgrcM2wH6dGn5ynCbOKPghwT4sn/BJNKkJbhhdTZILud7W8X0mj6WWex
hsN5Kq5u/yqtmSbeUCUTY0QLhKevseG2wp6+p3MReBtOz7KuV35P+RnMS/Ah4wnh
Jym+SwZP77fmQu/J+bBQ7dhwku4n8B00bpXz7glE7FFp4d0+Dgo8zM8fHnuLpizE
ansEHbe3RiL79kl4A+Kkia7GX5BXLSe3MIkeRtWcrXthsV+CRccIiHtx3TWUZPb8
NqOwiCMVDpL95aZPjg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:30 2024 by rpki-client on console-fra.rpki-client.org