Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YGVNcqE8Bscz21462LZXBJ26oY4.roa
File: YGVNcqE8Bscz21462LZXBJ26oY4.roa (raw, json)
Hash identifier: VJWQGcxlUmzzxgAFZF0g5BXa/xTK2LbH53JLpwL2P3c=
Subject key identifier: 60:65:4D:72:A1:3C:06:C7:33:DB:5E:3A:D8:B6:57:04:9D:BA:A1:8E
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0181FCBDDC481128A56E6A4A09ADF8F6AAA1
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YGVNcqE8Bscz21462LZXBJ26oY4.roa
Signing time: Thu 14 Jul 2022 12:45:09 +0000
ROA not before: Thu 14 Jul 2022 12:45:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.176.54.0/24 maxlen: 24
193.176.55.0/24 maxlen: 24
193.111.116.0/24 maxlen: 24
193.111.117.0/24 maxlen: 24
91.199.168.0/24 maxlen: 24
147.78.122.0/23 maxlen: 24
147.78.120.0/23 maxlen: 24
195.20.98.0/24 maxlen: 24
194.104.156.0/24 maxlen: 24
194.104.158.0/24 maxlen: 24
195.20.105.0/24 maxlen: 24
195.20.99.0/24 maxlen: 24
194.105.21.0/24 maxlen: 24
152.89.248.0/23 maxlen: 24
152.89.250.0/23 maxlen: 24
193.29.96.0/23 maxlen: 24
193.29.98.0/23 maxlen: 24
45.153.4.0/23 maxlen: 23
195.206.230.0/24 maxlen: 24
195.206.231.0/24 maxlen: 24
195.206.234.0/24 maxlen: 24
195.206.235.0/24 maxlen: 24
45.153.6.0/23 maxlen: 24
193.142.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fc:bd:dc:48:11:28:a5:6e:6a:4a:09:ad:f8:f6:aa:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Jul 14 12:45:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60654d72a13c06c733db5e3ad8b657049dbaa18e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:dd:c4:76:e7:c7:b0:4b:d1:22:8b:42:6f:58:
e4:44:0c:24:f7:c0:1a:ea:31:87:b1:83:2f:f3:95:
9f:d0:4b:0f:f4:55:06:70:46:7d:66:5b:9a:7c:80:
7f:84:a3:05:52:e0:8a:69:d8:97:82:d8:79:88:45:
03:ef:89:14:b1:25:75:c6:10:f9:07:6b:90:51:d4:
de:88:8b:90:b7:8c:41:d4:14:ce:3f:48:a4:99:74:
ae:c0:d3:c5:f0:e5:74:f1:e5:b7:af:ad:f9:86:c3:
b8:44:66:91:c9:e1:c5:54:ff:a8:1b:4f:77:e3:bb:
4d:75:2c:10:03:9c:42:7e:91:be:ba:8f:5f:15:86:
db:53:6b:21:94:a9:00:63:22:02:b9:46:41:bb:1b:
aa:b7:58:78:d8:de:58:6c:5f:35:c6:52:ab:1d:bc:
4b:78:a0:a7:52:34:77:1e:e8:0a:72:f3:3c:44:fa:
ce:45:4b:0a:06:02:85:43:ba:fb:e2:bc:05:d2:12:
5f:52:45:8a:d1:ee:94:d5:d2:d9:bc:3f:90:99:b7:
aa:81:1d:d0:15:9d:2b:60:77:16:cc:8b:7b:63:0b:
3b:91:ce:4e:1f:7f:63:4d:d2:eb:b2:83:d9:0c:7d:
ec:02:73:86:83:98:dd:7b:ec:6b:0a:69:b1:72:20:
5b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:65:4D:72:A1:3C:06:C7:33:DB:5E:3A:D8:B6:57:04:9D:BA:A1:8E
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YGVNcqE8Bscz21462LZXBJ26oY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.4.0/22
91.199.168.0/24
147.78.120.0/22
152.89.248.0/22
193.29.96.0/22
193.111.116.0/23
193.142.22.0/24
193.176.54.0/23
194.104.156.0/24
194.104.158.0/24
194.105.21.0/24
195.20.98.0/23
195.20.105.0/24
195.206.230.0/23
195.206.234.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:32:ac:64:70:7e:e9:b6:2f:a3:e8:1a:3c:43:0c:4e:1b:9c:
9b:31:19:56:95:fc:b4:80:7e:d5:cd:2a:c1:d8:41:e7:29:dc:
6c:a7:16:3d:0a:5c:97:ff:8d:6c:1f:90:24:a8:04:69:ff:00:
54:27:05:61:55:93:52:ce:ac:8b:56:ed:eb:ec:0c:66:26:0e:
38:1e:ca:28:2c:aa:97:1f:d5:2c:b9:ee:ab:da:67:4f:53:76:
fb:ba:fc:2c:4b:4e:46:be:b7:5d:01:7e:31:1c:0a:5d:45:00:
ca:53:2e:2f:de:f3:e3:f1:79:92:75:5a:1f:2d:74:2d:99:ca:
06:fa:34:d1:eb:13:70:b6:f1:95:ce:c4:fb:5d:87:1f:34:44:
9d:ef:4e:54:da:9b:e5:2f:3a:02:8e:99:b5:57:97:4b:e0:eb:
7c:ff:ca:71:2c:6a:4a:d8:8a:a8:d8:34:ea:68:d8:3a:02:af:
b6:47:0e:8c:7e:0b:55:6f:ca:df:49:e2:0d:63:b6:b3:55:56:
fa:91:29:d9:2c:b6:70:23:87:60:ab:7f:7c:da:a8:55:e8:a3:
b1:9e:71:d0:f2:3d:c6:3b:52:8b:22:b3:70:b8:92:85:f7:de:
39:f6:a9:7d:d1:48:88:c2:83:97:ef:39:9b:83:4c:5b:9a:c2:
ca:08:3c:3c
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAYH8vdxIESilbmpKCa349qqhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyZWQ0YTJmYjE4MGRmNWY5OWQ0YmY4Yzc3Y2M5YTA2ZWYy
NjA1OGMwHhcNMjIwNzE0MTI0NTA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MDY1NGQ3MmExM2MwNmM3MzNkYjVlM2FkOGI2NTcwNDlkYmFhMThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkd3EdufHsEvRIotCb1jkRAwk98Aa
6jGHsYMv85Wf0EsP9FUGcEZ9ZluafIB/hKMFUuCKadiXgth5iEUD74kUsSV1xhD5
B2uQUdTeiIuQt4xB1BTOP0ikmXSuwNPF8OV08eW3r635hsO4RGaRyeHFVP+oG093
47tNdSwQA5xCfpG+uo9fFYbbU2shlKkAYyICuUZBuxuqt1h42N5YbF81xlKrHbxL
eKCnUjR3HugKcvM8RPrORUsKBgKFQ7r74rwF0hJfUkWK0e6U1dLZvD+QmbeqgR3Q
FZ0rYHcWzIt7Yws7kc5OH39jTdLrsoPZDH3sAnOGg5jde+xrCmmxciBbDwIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFGBlTXKhPAbHM9teOti2VwSduqGOMB8GA1UdIwQY
MBaAFILtSi+xgN9fmdS/jHfMmgbvJgWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3UxS0w3R0EzMS1aMUwtTWQ4eWFCdThtQll3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8wMzAxYmMtYzdmZS00NmU5LWI3YTAt
NDUyNmY2MjYzYmNlLzEvWUdWTmNxRThCc2N6MjE0NjJMWlhCSjI2b1k0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS8wMzAxYmMtYzdmZS00NmU5LWI3YTAtNDUyNmY2MjYzYmNl
LzEvZ3UxS0w3R0EzMS1aMUwtTWQ4eWFCdThtQll3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQCLZkEAwQA
W8eoAwQCk054AwQCmFn4AwQCwR1gAwQBwW90AwQAwY4WAwQBwbA2AwQAwmicAwQA
wmieAwQAwmkVAwQBwxRiAwQAwxRpAwQBw87mAwQBw87qMA0GCSqGSIb3DQEBCwUA
A4IBAQAOMqxkcH7pti+j6Bo8QwxOG5ybMRlWlfy0gH7VzSrB2EHnKdxspxY9ClyX
/41sH5AkqARp/wBUJwVhVZNSzqyLVu3r7AxmJg44HsooLKqXH9Usue6r2mdPU3b7
uvwsS05GvrddAX4xHApdRQDKUy4v3vPj8XmSdVofLXQtmcoG+jTR6xNwtvGVzsT7
XYcfNESd705U2pvlLzoCjpm1V5dL4Ot8/8pxLGpK2Iqo2DTqaNg6Aq+2Rw6MfgtV
b8rfSeINY7azVVb6kSnZLLZwI4dgq3982qhV6KOxnnHQ8j3GO1KLIrNwuJKF9945
9ql90UiIwoOX7zmbg0xbmsLKCDw8
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org