Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/LuNphHoLO1_kQGwJ5joRR5O9fNk.roa
File: LuNphHoLO1_kQGwJ5joRR5O9fNk.roa (raw, json)
Hash identifier: ULu/0ueV3XOR1k666Qz0Qq/mrGGXqnQy7B+ZWSENnA8=
Subject key identifier: 2E:E3:69:84:7A:0B:3B:5F:E4:40:6C:09:E6:3A:11:47:93:BD:7C:D9
Certificate issuer: /CN=cd9233f6a88d08f6559c2206b1bff2655b122231
Certificate serial: 01888BEEF105670DC429DE17E2133944686F
Authority key identifier: CD:92:33:F6:A8:8D:08:F6:55:9C:22:06:B1:BF:F2:65:5B:12:22:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZIz9qiNCPZVnCIGsb_yZVsSIjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/LuNphHoLO1_kQGwJ5joRR5O9fNk.roa
Signing time: Mon 05 Jun 2023 14:21:12 +0000
ROA not before: Mon 05 Jun 2023 14:21:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30968
IP address blocks: 109.120.160.0/23 maxlen: 23
109.120.164.0/23 maxlen: 23
109.120.166.0/24 maxlen: 24
109.120.168.0/22 maxlen: 22
109.120.173.0/24 maxlen: 24
109.120.177.0/24 maxlen: 24
109.120.179.0/24 maxlen: 24
109.120.184.0/22 maxlen: 22
77.221.128.0/23 maxlen: 23
77.221.131.0/24 maxlen: 24
77.221.132.0/22 maxlen: 22
77.221.136.0/21 maxlen: 21
109.120.128.0/21 maxlen: 21
77.221.144.0/20 maxlen: 20
109.120.139.0/24 maxlen: 24
109.120.136.0/23 maxlen: 23
109.120.142.0/23 maxlen: 23
109.120.141.0/24 maxlen: 24
109.120.148.0/22 maxlen: 22
109.120.152.0/24 maxlen: 24
109.120.156.0/22 maxlen: 22
109.120.155.0/24 maxlen: 24
92.243.64.0/22 maxlen: 22
92.243.69.0/24 maxlen: 24
92.243.72.0/21 maxlen: 21
92.243.83.0/24 maxlen: 24
2a02:440::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8b:ee:f1:05:67:0d:c4:29:de:17:e2:13:39:44:68:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd9233f6a88d08f6559c2206b1bff2655b122231
Validity
Not Before: Jun 5 14:21:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ee369847a0b3b5fe4406c09e63a114793bd7cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:8c:88:75:ee:56:f2:b5:ce:da:18:68:33:92:
3c:ab:25:38:35:59:62:31:36:6d:5b:ec:fd:a8:20:
31:cf:58:1d:55:ea:03:ca:8e:13:c6:a9:17:9a:a8:
34:85:c5:05:a3:e5:d8:8c:40:67:e3:2c:b1:73:00:
74:7e:84:11:4f:b0:23:d3:79:96:48:15:72:db:1f:
85:f5:03:ef:de:f9:78:2e:2f:68:32:74:33:15:7e:
70:83:eb:a3:0b:fc:4e:58:6e:5b:68:d7:5b:95:22:
a7:03:2d:09:7a:a4:f3:07:9a:b8:62:6b:0e:4b:b6:
30:f1:4f:cd:9c:f0:85:c2:94:36:60:50:97:10:a5:
b2:b4:d1:ef:b2:68:61:ec:e9:a0:06:5c:ac:f7:58:
43:4f:4f:ef:68:63:ae:a7:01:c9:fe:ef:d7:17:ee:
0d:41:67:ff:12:fd:86:e2:fc:d9:38:da:71:be:29:
dc:cb:b2:be:1a:ee:83:c3:cb:10:b6:6e:5e:45:b4:
6a:18:b8:ab:61:cc:79:09:df:5d:85:21:75:6d:01:
91:6f:29:57:74:72:0b:71:46:6c:3e:d5:d8:8e:e2:
0c:84:d5:43:8c:42:91:ad:ab:7b:64:d4:3b:05:1c:
55:d2:99:58:58:3c:96:92:7c:f9:b9:42:f0:03:15:
47:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E3:69:84:7A:0B:3B:5F:E4:40:6C:09:E6:3A:11:47:93:BD:7C:D9
X509v3 Authority Key Identifier:
keyid:CD:92:33:F6:A8:8D:08:F6:55:9C:22:06:B1:BF:F2:65:5B:12:22:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZIz9qiNCPZVnCIGsb_yZVsSIjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/LuNphHoLO1_kQGwJ5joRR5O9fNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/zZIz9qiNCPZVnCIGsb_yZVsSIjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.221.128.0/23
77.221.131.0-77.221.159.255
92.243.64.0/22
92.243.69.0/24
92.243.72.0/21
92.243.83.0/24
109.120.128.0-109.120.137.255
109.120.139.0/24
109.120.141.0-109.120.143.255
109.120.148.0-109.120.152.255
109.120.155.0-109.120.161.255
109.120.164.0-109.120.166.255
109.120.168.0/22
109.120.173.0/24
109.120.177.0/24
109.120.179.0/24
109.120.184.0/22
IPv6:
2a02:440::/32
Signature Algorithm: sha256WithRSAEncryption
1a:d7:9f:5c:75:b5:e5:e8:8d:60:ed:e3:eb:12:ca:a5:49:2a:
8f:e6:2a:ae:d0:4e:0d:04:12:12:d1:ac:13:be:34:4a:56:ad:
da:e2:9d:b0:c9:75:2c:52:41:ba:37:61:13:4e:59:ea:33:8f:
81:3c:69:c8:26:6c:8a:6b:90:f6:43:54:da:5f:e8:41:d5:6e:
2d:79:a3:4a:6b:4e:f0:5a:91:ed:a1:85:b5:be:a7:42:a9:35:
d3:d7:8b:85:48:cb:81:92:39:0f:b9:17:f3:61:64:29:cc:25:
c5:7a:96:85:f0:f0:64:8c:87:65:2a:7e:9e:d5:16:b1:8f:0d:
b7:b4:fa:df:66:6c:87:12:af:22:7e:e7:88:64:4e:86:05:8d:
2a:82:e6:ae:7e:15:f3:79:e1:7d:12:d3:6b:f8:bc:5d:f2:cf:
93:07:c6:5e:8f:86:08:b4:39:c1:79:bf:7e:c1:5f:68:fe:e0:
41:6e:85:00:53:fb:22:5e:c0:d3:a9:af:86:b7:6d:73:e1:e7:
45:71:18:5d:37:60:70:e6:3d:e0:71:16:9d:33:39:23:f2:39:
41:90:2c:c9:08:3e:65:06:c9:5e:c3:37:a1:e8:44:6c:f1:b5:
05:86:4d:c7:5a:0a:c8:73:af:16:d1:c9:c1:7e:35:25:c5:e5:
a5:21:6b:9d
-----BEGIN CERTIFICATE-----
MIIFoTCCBImgAwIBAgISAYiL7vEFZw3EKd4X4hM5RGhvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkOTIzM2Y2YTg4ZDA4ZjY1NTljMjIwNmIxYmZmMjY1NWIx
MjIyMzEwHhcNMjMwNjA1MTQyMTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZWUzNjk4NDdhMGIzYjVmZTQ0MDZjMDllNjNhMTE0NzkzYmQ3Y2Q5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAioyIde5W8rXO2hhoM5I8qyU4NVli
MTZtW+z9qCAxz1gdVeoDyo4TxqkXmqg0hcUFo+XYjEBn4yyxcwB0foQRT7Aj03mW
SBVy2x+F9QPv3vl4Li9oMnQzFX5wg+ujC/xOWG5baNdblSKnAy0JeqTzB5q4YmsO
S7Yw8U/NnPCFwpQ2YFCXEKWytNHvsmhh7OmgBlys91hDT0/vaGOupwHJ/u/XF+4N
QWf/Ev2G4vzZONpxvincy7K+Gu6Dw8sQtm5eRbRqGLirYcx5Cd9dhSF1bQGRbylX
dHILcUZsPtXYjuIMhNVDjEKRrat7ZNQ7BRxV0plYWDyWknz5uULwAxVH0wIDAQAB
o4ICrTCCAqkwHQYDVR0OBBYEFC7jaYR6Cztf5EBsCeY6EUeTvXzZMB8GA1UdIwQY
MBaAFM2SM/aojQj2VZwiBrG/8mVbEiIxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelpJejlxaU5DUFpWbkNJR3NiX3laVnNTSWpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8wYTExNmYtNWEwYi00NTY2LTlmNDQt
YjgzN2JmOWQ0YzVmLzEvTHVOcGhIb0xPMV9rUUd3SjVqb1JSNU85Zk5rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8wYTExNmYtNWEwYi00NTY2LTlmNDQtYjgzN2JmOWQ0YzVm
LzEvelpJejlxaU5DUFpWbkNJR3NiX3laVnNTSWpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHCBggrBgEFBQcBBwEB/wSBsjCBrzCBnQQCAAEwgZYDBAFN
3YAwDAMEAE3dgwMEBU3dgAMEAlzzQAMEAFzzRQMEA1zzSAMEAFzzUzAMAwQHbXiA
AwQBbXiIAwQAbXiLMAwDBABteI0DBARteIAwDAMEAm14lAMEAG14mDAMAwQAbXib
AwQBbXigMAwDBAJteKQDBABteKYDBAJteKgDBABteK0DBABteLEDBABteLMDBAJt
eLgwDQQCAAIwBwMFACoCBEAwDQYJKoZIhvcNAQELBQADggEBABrXn1x1teXojWDt
4+sSyqVJKo/mKq7QTg0EEhLRrBO+NEpWrdrinbDJdSxSQbo3YRNOWeozj4E8acgm
bIprkPZDVNpf6EHVbi15o0prTvBake2hhbW+p0KpNdPXi4VIy4GSOQ+5F/NhZCnM
JcV6loXw8GSMh2Uqfp7VFrGPDbe0+t9mbIcSryJ+54hkToYFjSqC5q5+FfN54X0S
02v4vF3yz5MHxl6Phgi0OcF5v37BX2j+4EFuhQBT+yJewNOpr4a3bXPh50VxGF03
YHDmPeBxFp0zOSPyOUGQLMkIPmUGyV7DN6HoRGzxtQWGTcdaCshzrxbRycF+NSXF
5aUha50=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:30 2024 by rpki-client on console-fra.rpki-client.org