Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/UmO3pK25KiLsx_3M8Zm0NSfZB0Y.roa
File: UmO3pK25KiLsx_3M8Zm0NSfZB0Y.roa (raw, json)
Hash identifier: 1dSgZNBT2FkR0SixjvSn/tKVkQQZhaAkj/wYbR/PiSI=
Subject key identifier: 52:63:B7:A4:AD:B9:2A:22:EC:C7:FD:CC:F1:99:B4:35:27:D9:07:46
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01882BD36027F40ED6E44851C6ADD494C91C
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/UmO3pK25KiLsx_3M8Zm0NSfZB0Y.roa
Signing time: Wed 17 May 2023 22:27:32 +0000
ROA not before: Wed 17 May 2023 22:27:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8772
IP address blocks: 95.164.56.0/22 maxlen: 22
95.164.52.0/22 maxlen: 22
95.164.76.0/24 maxlen: 24
95.164.72.0/22 maxlen: 22
195.214.212.0/22 maxlen: 22
195.214.208.0/22 maxlen: 22
195.214.208.0/21 maxlen: 21
195.214.210.0/24 maxlen: 24
95.164.80.0/22 maxlen: 22
95.164.92.0/22 maxlen: 22
95.164.170.0/23 maxlen: 23
95.164.172.0/22 maxlen: 22
94.131.0.0/24 maxlen: 24
94.131.4.0/24 maxlen: 24
94.131.6.0/24 maxlen: 24
94.131.7.0/24 maxlen: 24
62.205.128.0/19 maxlen: 19
62.205.132.0/24 maxlen: 24
62.205.134.0/24 maxlen: 24
62.205.144.0/20 maxlen: 20
62.205.152.0/24 maxlen: 24
62.205.159.0/24 maxlen: 24
95.164.20.0/24 maxlen: 24
95.164.40.0/22 maxlen: 22
95.164.49.0/24 maxlen: 24
95.164.50.0/24 maxlen: 24
2a01:d0:8000::/33 maxlen: 33
2a01:d0::/32 maxlen: 32
2a01:d0:3b::/48 maxlen: 48
2a01:d0:ffff::/48 maxlen: 48
2a01:d0:7fff::/48 maxlen: 48
2a01:d0:317::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2b:d3:60:27:f4:0e:d6:e4:48:51:c6:ad:d4:94:c9:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: May 17 22:27:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5263b7a4adb92a22ecc7fdccf199b43527d90746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:78:9b:74:8d:37:89:ef:a5:c8:77:dc:bf:34:
3c:cc:6e:e4:f8:e8:19:af:68:cf:a9:7b:44:bd:5b:
40:dd:89:da:66:3e:57:2a:2d:41:b6:1f:25:67:b6:
1d:b1:14:11:2c:bc:71:95:2b:b4:77:53:9d:53:cc:
4f:8e:67:77:ea:55:7f:36:b2:72:6d:8f:4d:62:ab:
1d:e0:a6:cb:3b:8b:c6:63:a3:db:4a:53:64:17:a5:
e5:c5:89:83:44:96:95:55:28:f9:60:af:80:dc:e1:
5c:5b:9f:2f:a4:bf:f5:0c:da:93:fc:d7:3f:31:c8:
b8:20:b7:f3:37:1c:a8:9e:28:3b:ad:2f:30:ab:c5:
b0:3f:8b:46:74:06:69:6d:5b:c5:68:bc:e2:34:62:
49:75:99:5f:59:ac:89:ca:23:72:85:c5:d3:56:14:
4d:e2:76:6e:97:63:db:27:7e:83:28:7d:49:80:90:
37:9b:d5:4b:f4:43:57:af:c9:18:9a:42:b2:6f:26:
d5:83:fd:4a:0d:4d:ba:37:af:59:74:ed:4e:53:05:
6a:cf:52:26:b9:99:05:82:57:74:84:94:8a:be:f3:
96:94:27:70:73:b3:22:cb:6d:19:0a:c3:57:84:c3:
25:bf:98:ee:a1:08:9e:19:d5:70:e9:ca:f6:39:e9:
b3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:63:B7:A4:AD:B9:2A:22:EC:C7:FD:CC:F1:99:B4:35:27:D9:07:46
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/UmO3pK25KiLsx_3M8Zm0NSfZB0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.128.0/19
94.131.0.0/24
94.131.4.0/24
94.131.6.0/23
95.164.20.0/24
95.164.40.0/22
95.164.49.0-95.164.50.255
95.164.52.0-95.164.59.255
95.164.72.0-95.164.76.255
95.164.80.0/22
95.164.92.0/22
95.164.170.0-95.164.175.255
195.214.208.0/21
IPv6:
2a01:d0::/32
Signature Algorithm: sha256WithRSAEncryption
12:14:41:81:2d:47:ed:0e:83:56:27:88:f7:ac:f5:2c:7c:dd:
a1:13:45:17:3a:ec:62:58:21:91:47:c6:2a:c2:50:2f:38:49:
19:a1:49:9a:ab:3c:39:64:1c:27:86:f5:cb:a9:19:77:3d:eb:
b2:25:c5:b7:38:c3:af:4e:e9:45:63:ff:c7:0e:b6:62:8c:4a:
99:ed:bc:9a:cf:d5:57:fa:4d:63:24:d1:c8:90:b2:8f:ab:a0:
6f:6e:77:c6:87:95:20:a6:d1:bf:03:ac:e7:9e:73:87:e1:5a:
c9:de:df:97:b7:f4:30:1b:bd:7b:5e:38:2c:ce:66:69:83:9d:
cc:9d:f4:66:89:8d:57:b6:53:47:81:6d:ee:26:b5:b7:41:c6:
90:2f:6a:c7:64:52:97:c6:6b:37:73:6f:8c:cb:30:96:17:e6:
5c:48:6c:c4:c3:de:4d:c1:2e:99:c9:f6:a6:7b:6a:f1:9a:74:
7b:a2:70:1f:0c:ff:2c:17:a4:3b:31:10:b7:38:a6:f8:8d:c5:
c1:45:6e:32:ba:1a:e8:4f:60:6d:21:f0:e4:6a:e5:27:64:84:
90:ad:21:22:51:d8:b1:8b:bc:4d:63:77:49:a3:44:1f:2f:e8:
e3:91:fd:31:8c:a6:30:0f:d0:58:fd:54:8a:b0:d5:a6:84:50:
f2:45:95:88
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAYgr02An9A7W5EhRxq3UlMkcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNzQzZWQ2M2U4NjhlZjUwZjZkODRjMDAwM2E4MzQ4M2Zj
NjJhMDMwHhcNMjMwNTE3MjIyNzMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjYzYjdhNGFkYjkyYTIyZWNjN2ZkY2NmMTk5YjQzNTI3ZDkwNzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmHibdI03ie+lyHfcvzQ8zG7k+OgZ
r2jPqXtEvVtA3YnaZj5XKi1Bth8lZ7YdsRQRLLxxlSu0d1OdU8xPjmd36lV/NrJy
bY9NYqsd4KbLO4vGY6PbSlNkF6XlxYmDRJaVVSj5YK+A3OFcW58vpL/1DNqT/Nc/
Mci4ILfzNxyonig7rS8wq8WwP4tGdAZpbVvFaLziNGJJdZlfWayJyiNyhcXTVhRN
4nZul2PbJ36DKH1JgJA3m9VL9ENXr8kYmkKybybVg/1KDU26N69ZdO1OUwVqz1Im
uZkFgld0hJSKvvOWlCdwc7Miy20ZCsNXhMMlv5juoQieGdVw6cr2OemzswIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFFJjt6StuSoi7Mf9zPGZtDUn2QdGMB8GA1UdIwQY
MBaAFG10PtY+ho71D22EwAA6g0g/xioDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQt
ZTk3MjRhN2E2YmM4LzEvVW1PM3BLMjVLaUxzeF8zTThabTBOU2ZaQjBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQtZTk3MjRhN2E2YmM4
LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTB0BAIAATBuAwQFPs2A
AwQAXoMAAwQAXoMEAwQBXoMGAwQAX6QUAwQCX6QoMAwDBABfpDEDBABfpDIwDAME
Al+kNAMEAl+kODAMAwQDX6RIAwQAX6RMAwQCX6RQAwQCX6RcMAwDBAFfpKoDBARf
pKADBAPD1tAwDQQCAAIwBwMFACoBANAwDQYJKoZIhvcNAQELBQADggEBABIUQYEt
R+0Og1YniPes9Sx83aETRRc67GJYIZFHxirCUC84SRmhSZqrPDlkHCeG9cupGXc9
67Ilxbc4w69O6UVj/8cOtmKMSpntvJrP1Vf6TWMk0ciQso+roG9ud8aHlSCm0b8D
rOeec4fhWsne35e39DAbvXteOCzOZmmDncyd9GaJjVe2U0eBbe4mtbdBxpAvasdk
UpfGazdzb4zLMJYX5lxIbMTD3k3BLpnJ9qZ7avGadHuicB8M/ywXpDsxELc4pviN
xcFFbjK6GuhPYG0h8ORq5SdkhJCtISJR2LGLvE1jd0mjRB8v6OOR/TGMpjAP0Fj9
VIqw1aaEUPJFlYg=
-----END CERTIFICATE-----
Generated at Sun Apr 6 03:21:34 2025 by rpki-client