Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/514d67-ba6c-415e-bebc-0f1f3cb08b75/1/vIQv9fYgjT7ZqiZN701b2igvomM.roa
File: vIQv9fYgjT7ZqiZN701b2igvomM.roa (raw, json)
Hash identifier: Qv7DchzjxXIvU70rDFFmkCkA1eqE/lqUwAfP+SbqQ/w=
Subject key identifier: BC:84:2F:F5:F6:20:8D:3E:D9:AA:26:4D:EF:4D:5B:DA:28:2F:A2:63
Certificate issuer: /CN=f71f9bddac4c34078d8d0fab9e14d176a416f963
Certificate serial: 0C4917B5
Authority key identifier: F7:1F:9B:DD:AC:4C:34:07:8D:8D:0F:AB:9E:14:D1:76:A4:16:F9:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x-b3axMNAeNjQ-rnhTRdqQW-WM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/514d67-ba6c-415e-bebc-0f1f3cb08b75/1/vIQv9fYgjT7ZqiZN701b2igvomM.roa
Signing time: Sat 01 Jan 2022 15:01:35 +0000
ROA not before: Sat 01 Jan 2022 15:01:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41937
IP address blocks: 109.122.113.0/24 maxlen: 24
87.250.32.0/19 maxlen: 24
185.112.20.0/22 maxlen: 24
62.240.24.0/23 maxlen: 24
62.240.24.0/21 maxlen: 24
109.198.0.0/19 maxlen: 24
185.179.136.0/22 maxlen: 24
109.122.64.0/18 maxlen: 24
178.79.10.0/23 maxlen: 24
178.250.136.0/21 maxlen: 24
46.235.96.0/21 maxlen: 24
5.134.104.0/21 maxlen: 24
109.72.48.0/20 maxlen: 24
92.244.128.0/19 maxlen: 24
178.237.208.0/20 maxlen: 24
178.237.216.0/21 maxlen: 24
91.185.96.0/19 maxlen: 24
185.103.136.0/22 maxlen: 24
91.204.52.0/22 maxlen: 24
185.10.140.0/22 maxlen: 24
185.10.142.0/23 maxlen: 24
176.67.215.0/24 maxlen: 24
109.94.228.0/22 maxlen: 24
2a06:63c0::/29 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a00:8720::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a06:5b00::/29 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a01:b800::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206116789 (0xc4917b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71f9bddac4c34078d8d0fab9e14d176a416f963
Validity
Not Before: Jan 1 15:01:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc842ff5f6208d3ed9aa264def4d5bda282fa263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8a:3b:71:de:e6:58:90:76:17:a3:74:a3:7d:
a0:2b:f7:e9:b4:d5:85:37:73:b6:ae:d0:a1:40:2b:
6d:19:0d:ea:10:6c:8d:20:3b:5d:4c:9b:b3:6e:7a:
3a:fc:4b:e0:43:7a:36:d9:5c:64:86:1f:7b:90:64:
f2:29:68:c9:66:c0:0c:fa:d6:ce:29:54:43:3f:70:
12:ba:13:e6:72:c3:00:9e:4b:e7:04:60:b4:91:63:
da:98:8e:53:f2:71:d0:b0:25:0e:c7:14:30:d5:ee:
3e:e7:e0:c1:75:cd:ec:f5:93:c0:01:a3:7c:82:14:
aa:1e:ce:d8:4b:a1:74:47:76:a4:c7:b6:f4:b5:24:
ff:cd:bd:a5:74:32:10:2a:4d:85:8c:f2:73:f8:85:
25:8a:8f:f0:7e:94:a4:cb:70:e6:46:2e:21:4c:28:
5b:0e:5d:b0:d9:7b:46:98:e4:8f:4f:8d:5a:a8:cb:
9e:e8:48:68:5f:f7:5e:11:21:0d:77:90:d7:3e:1f:
33:59:a7:46:c6:94:9d:99:b1:f1:a3:58:8a:61:ea:
87:0b:01:92:1c:26:79:bf:32:0b:32:6b:f5:6f:da:
e2:f0:25:47:47:7d:e7:9c:cf:b8:02:db:60:96:bd:
c4:40:7b:cc:a3:4c:99:b5:7c:b7:db:c7:5f:17:f5:
2a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:84:2F:F5:F6:20:8D:3E:D9:AA:26:4D:EF:4D:5B:DA:28:2F:A2:63
X509v3 Authority Key Identifier:
keyid:F7:1F:9B:DD:AC:4C:34:07:8D:8D:0F:AB:9E:14:D1:76:A4:16:F9:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x-b3axMNAeNjQ-rnhTRdqQW-WM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/514d67-ba6c-415e-bebc-0f1f3cb08b75/1/vIQv9fYgjT7ZqiZN701b2igvomM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/514d67-ba6c-415e-bebc-0f1f3cb08b75/1/9x-b3axMNAeNjQ-rnhTRdqQW-WM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
46.235.96.0/21
62.240.24.0/21
87.250.32.0/19
91.185.96.0/19
91.204.52.0/22
92.244.128.0/19
109.72.48.0/20
109.94.228.0/22
109.122.64.0/18
109.198.0.0/19
176.67.215.0/24
178.79.10.0/23
178.237.208.0/20
178.250.136.0/21
185.10.140.0/22
185.103.136.0/22
185.112.20.0/22
185.179.136.0/22
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:5b00::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
2f:93:8a:72:b1:f7:31:96:ed:04:7b:95:75:12:bb:c0:25:74:
cf:2e:61:2d:0b:bd:89:c4:8f:2c:e8:79:9c:42:15:de:1b:c9:
7f:63:44:f7:1d:e1:20:53:f5:66:55:68:bf:6a:f9:5f:b0:d5:
bb:97:46:4a:fa:d4:59:d7:78:01:36:20:a4:06:d9:d1:43:41:
6c:00:92:b3:7e:89:11:55:8c:18:f0:70:ff:f8:36:a9:4a:8b:
82:9a:b5:3a:03:b3:44:78:7f:ce:3a:4b:bc:6a:d5:1a:c5:90:
3c:e0:5b:dc:0d:cc:da:c4:a2:27:44:4f:a6:32:b1:49:0a:77:
90:75:63:8d:4a:2f:6d:0c:7d:58:d9:a2:74:0b:99:3e:fd:9b:
8d:dd:3c:1b:3e:cc:73:67:f7:d2:c2:04:f0:07:b7:bd:d6:69:
4b:52:fc:13:a0:39:45:49:61:e0:fc:3b:d5:76:4c:56:49:09:
5c:ac:19:5c:6b:df:83:be:11:1c:cc:d1:9a:60:75:ba:69:96:
8a:44:b2:f3:f9:a1:21:31:d5:4e:b7:06:21:f1:b4:29:f6:ad:
44:72:36:e4:4f:3c:bd:8b:94:bf:9f:ba:41:51:d6:b3:5c:52:
80:e1:e4:b2:8e:88:4c:95:8e:70:91:a0:6f:24:ad:e4:69:21:
4b:dd:30:6d
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIEDEkXtTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NzFmOWJkZGFjNGMzNDA3OGQ4ZDBmYWI5ZTE0ZDE3NmE0MTZmOTYzMB4XDTIyMDEw
MTE1MDEzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmM4NDJmZjVmNjIw
OGQzZWQ5YWEyNjRkZWY0ZDViZGEyODJmYTI2MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALmKO3He5liQdhejdKN9oCv36bTVhTdztq7QoUArbRkN6hBs
jSA7XUybs256OvxL4EN6NtlcZIYfe5Bk8iloyWbADPrWzilUQz9wEroT5nLDAJ5L
5wRgtJFj2piOU/Jx0LAlDscUMNXuPufgwXXN7PWTwAGjfIIUqh7O2EuhdEd2pMe2
9LUk/829pXQyECpNhYzyc/iFJYqP8H6UpMtw5kYuIUwoWw5dsNl7Rpjkj0+NWqjL
nuhIaF/3XhEhDXeQ1z4fM1mnRsaUnZmx8aNYimHqhwsBkhwmeb8yCzJr9W/a4vAl
R0d955zPuALbYJa9xEB7zKNMmbV8t9vHXxf1KgkCAwEAAaOCArgwggK0MB0GA1Ud
DgQWBBS8hC/19iCNPtmqJk3vTVvaKC+iYzAfBgNVHSMEGDAWgBT3H5vdrEw0B42N
D6ueFNF2pBb5YzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzl4LWIzYXhNTkFlTmpRLXJuaFRSZHFRVy1XTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2IvNTE0ZDY3LWJhNmMtNDE1ZS1iZWJjLTBmMWYzY2IwOGI3NS8x
L3ZJUXY5ZllnalQ3WnFpWk43MDFiMmlndm9tTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Iv
NTE0ZDY3LWJhNmMtNDE1ZS1iZWJjLTBmMWYzY2IwOGI3NS8xLzl4LWIzYXhNTkFl
TmpRLXJuaFRSZHFRVy1XTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
zQYIKwYBBQUHAQcBAf8Egb0wgboweAQCAAEwcgMEAwWGaAMEAy7rYAMEAz7wGAME
BVf6IAMEBVu5YAMEAlvMNAMEBVz0gAMEBG1IMAMEAm1e5AMEBm16QAMEBW3GAAME
ALBD1wMEAbJPCgMEBLLt0AMEA7L6iAMEArkKjAMEArlniAMEArlwFAMEArmziDA+
BAIAAjA4AwUAKgCHIAMFACoAzwADBQAqAbgAAwUAKgJhoAMFACoD/EADBQMqBB3A
AwUDKgZbAAMFAyoGY8AwDQYJKoZIhvcNAQELBQADggEBAC+TinKx9zGW7QR7lXUS
u8AldM8uYS0LvYnEjyzoeZxCFd4byX9jRPcd4SBT9WZVaL9q+V+w1buXRkr61FnX
eAE2IKQG2dFDQWwAkrN+iRFVjBjwcP/4NqlKi4KatToDs0R4f846S7xq1RrFkDzg
W9wNzNrEoidET6YysUkKd5B1Y41KL20MfVjZonQLmT79m43dPBs+zHNn99LCBPAH
t73WaUtS/BOgOUVJYeD8O9V2TFZJCVysGVxr34O+ERzM0ZpgdbpplopEsvP5oSEx
1U63BiHxtCn2rURyNuRPPL2LlL+fukFR1rNcUoDh5LKOiEyVjnCRoG8kreRpIUvd
MG0=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:33 2023 by rpki-client on console-ams.rpki-client.org