Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/2VX9WxYFlvNd_GSZP6YWozZCsVo.roa
File: 2VX9WxYFlvNd_GSZP6YWozZCsVo.roa (raw, json)
Hash identifier: ZGQavDK+NHFQPNwJwfhJZy7wy49OdECaQYhLtvo68Sc=
Subject key identifier: D9:55:FD:5B:16:05:96:F3:5D:FC:64:99:3F:A6:16:A3:36:42:B1:5A
Certificate issuer: /CN=6327607563493337687ad69ce1064e636265be3f
Certificate serial: 018CC348DD91B64792E9B5996FCFE444D06D
Authority key identifier: 63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/2VX9WxYFlvNd_GSZP6YWozZCsVo.roa
Signing time: Mon 01 Jan 2024 04:29:41 +0000
ROA not before: Mon 01 Jan 2024 04:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58065
IP address blocks: 23.92.115.0/24 maxlen: 24
192.40.94.0/24 maxlen: 24
151.237.188.0/24 maxlen: 24
37.72.186.0/24 maxlen: 24
107.150.64.0/24 maxlen: 24
130.185.153.0/24 maxlen: 24
107.150.71.0/24 maxlen: 24
107.150.65.0/24 maxlen: 24
107.150.67.0/24 maxlen: 24
107.150.70.0/24 maxlen: 24
5.157.11.0/24 maxlen: 24
107.150.75.0/24 maxlen: 24
5.157.6.0/24 maxlen: 24
104.160.16.0/24 maxlen: 24
104.160.17.0/24 maxlen: 24
107.150.91.0/24 maxlen: 24
5.157.19.0/24 maxlen: 24
5.157.21.0/24 maxlen: 24
5.157.23.0/24 maxlen: 24
5.157.24.0/24 maxlen: 24
107.150.88.0/24 maxlen: 24
162.212.168.0/24 maxlen: 24
162.212.170.0/24 maxlen: 24
162.212.172.0/24 maxlen: 24
162.212.171.0/24 maxlen: 24
162.212.169.0/24 maxlen: 24
107.150.89.0/24 maxlen: 24
107.150.90.0/24 maxlen: 24
162.212.173.0/24 maxlen: 24
162.212.174.0/24 maxlen: 24
162.212.175.0/24 maxlen: 24
5.157.26.0/24 maxlen: 24
5.157.29.0/24 maxlen: 24
107.150.93.0/24 maxlen: 24
5.157.32.0/24 maxlen: 24
5.157.33.0/24 maxlen: 24
5.157.34.0/24 maxlen: 24
5.157.37.0/24 maxlen: 24
5.157.43.0/24 maxlen: 24
5.157.51.0/24 maxlen: 24
5.157.53.0/24 maxlen: 24
5.157.55.0/24 maxlen: 24
2a02:5740:14::/48 maxlen: 48
2a02:5740:9::/48 maxlen: 48
2a02:5740:10::/48 maxlen: 48
2a02:5740:26::/48 maxlen: 48
2a02:5740:24::/48 maxlen: 48
2a02:5740:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:dd:91:b6:47:92:e9:b5:99:6f:cf:e4:44:d0:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6327607563493337687ad69ce1064e636265be3f
Validity
Not Before: Jan 1 04:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d955fd5b160596f35dfc64993fa616a33642b15a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:88:fc:85:de:02:6b:84:0b:cd:d8:10:56:2c:
b2:87:9a:94:96:6c:b3:01:46:d4:d4:90:79:09:c6:
05:3d:26:59:f6:c8:a7:6c:79:b4:63:a1:3b:17:8c:
54:fc:1c:7e:f4:94:b7:5b:48:51:b8:1d:77:2c:93:
a8:4c:12:15:67:d4:24:19:3d:ca:3d:9d:ff:30:ed:
5e:d7:90:8c:65:2e:a2:77:1c:ed:85:d8:8a:69:0f:
86:45:bd:89:ad:cf:49:1c:cd:24:f7:8f:74:b4:b4:
c7:d6:39:c5:8a:f3:88:6d:18:75:1e:55:5d:d9:eb:
27:0d:0b:13:19:a7:65:5d:ef:c9:c2:10:27:0c:56:
8e:55:70:61:d8:79:29:f3:ad:81:fc:e4:b0:15:3d:
e7:b4:b0:1d:00:3a:63:13:26:b7:bf:49:34:16:71:
2e:e6:a6:df:df:d6:84:d6:ee:43:fa:c7:1e:f5:27:
e7:16:5f:46:8f:4f:67:92:18:f8:03:42:71:f6:58:
64:6d:ea:10:0b:86:5b:7f:bc:d8:b4:0b:e2:19:d8:
db:60:59:6d:5a:fb:ba:5d:95:10:83:1a:f7:6a:41:
c8:fc:9c:b1:37:94:70:7f:06:9c:cd:9c:75:a3:3c:
99:9b:7d:90:1f:9f:e2:5c:53:fa:05:81:dd:43:34:
55:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:55:FD:5B:16:05:96:F3:5D:FC:64:99:3F:A6:16:A3:36:42:B1:5A
X509v3 Authority Key Identifier:
keyid:63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/2VX9WxYFlvNd_GSZP6YWozZCsVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/YydgdWNJMzdoetac4QZOY2Jlvj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.6.0/24
5.157.11.0/24
5.157.19.0/24
5.157.21.0/24
5.157.23.0-5.157.24.255
5.157.26.0/24
5.157.29.0/24
5.157.32.0-5.157.34.255
5.157.37.0/24
5.157.43.0/24
5.157.51.0/24
5.157.53.0/24
5.157.55.0/24
23.92.115.0/24
37.72.186.0/24
104.160.16.0/23
107.150.64.0/23
107.150.67.0/24
107.150.70.0/23
107.150.75.0/24
107.150.88.0/22
107.150.93.0/24
130.185.153.0/24
151.237.188.0/24
162.212.168.0/21
192.40.94.0/24
IPv6:
2a02:5740:4::/48
2a02:5740:9::/48
2a02:5740:10::/48
2a02:5740:14::/48
2a02:5740:24::/48
2a02:5740:26::/48
Signature Algorithm: sha256WithRSAEncryption
26:06:70:cc:0e:98:40:b5:d5:42:dc:34:6e:cb:b6:d7:5a:e0:
36:67:34:5f:5a:45:3c:de:e7:ca:f0:d9:86:42:2c:24:ea:c2:
7f:5b:8a:20:8d:35:6f:60:58:66:bd:b4:c3:0e:13:21:ce:19:
45:92:25:b4:6a:15:1c:38:d0:df:37:9b:5b:f9:39:6e:45:94:
2d:26:09:25:2f:a8:8a:46:b8:79:5d:9d:d2:8f:7c:94:b2:6f:
61:7b:d1:e7:f3:5a:fe:40:5d:ff:94:1b:b0:13:12:37:f3:b6:
93:59:2e:5a:1c:dc:4f:2d:3f:ed:68:75:09:aa:f4:8c:f7:f5:
cb:03:e8:fd:38:74:0f:2c:83:15:e4:5d:67:39:ae:44:6a:c1:
a5:de:29:9f:39:2b:06:e7:e3:29:a7:3b:8a:de:a0:e5:3d:a4:
22:1d:2c:b0:14:37:ee:8a:a3:cf:b7:48:d4:2d:d3:78:99:ec:
8a:cf:d7:ef:24:8a:90:3e:89:6d:47:2c:fd:88:f6:8c:1e:b4:
f8:4e:10:43:a0:fe:6b:4f:73:be:88:af:06:74:9d:64:01:45:
bf:af:08:ba:d1:bc:fc:42:64:b6:91:f7:c8:a4:0c:b7:18:03:
33:8d:63:be:61:b9:84:f2:10:16:2c:12:ec:aa:4d:c1:07:b0:
d8:85:53:b9
-----BEGIN CERTIFICATE-----
MIIF5zCCBM+gAwIBAgISAYzDSN2RtkeS6bWZb8/kRNBtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzMjc2MDc1NjM0OTMzMzc2ODdhZDY5Y2UxMDY0ZTYzNjI2
NWJlM2YwHhcNMjQwMTAxMDQyOTQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTU1ZmQ1YjE2MDU5NmYzNWRmYzY0OTkzZmE2MTZhMzM2NDJiMTVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoj8hd4Ca4QLzdgQViyyh5qUlmyz
AUbU1JB5CcYFPSZZ9sinbHm0Y6E7F4xU/Bx+9JS3W0hRuB13LJOoTBIVZ9QkGT3K
PZ3/MO1e15CMZS6idxzthdiKaQ+GRb2Jrc9JHM0k9490tLTH1jnFivOIbRh1HlVd
2esnDQsTGadlXe/JwhAnDFaOVXBh2Hkp862B/OSwFT3ntLAdADpjEya3v0k0FnEu
5qbf39aE1u5D+sce9SfnFl9Gj09nkhj4A0Jx9lhkbeoQC4Zbf7zYtAviGdjbYFlt
Wvu6XZUQgxr3akHI/JyxN5RwfwaczZx1ozyZm32QH5/iXFP6BYHdQzRVeQIDAQAB
o4IC8zCCAu8wHQYDVR0OBBYEFNlV/VsWBZbzXfxkmT+mFqM2QrFaMB8GA1UdIwQY
MBaAFGMnYHVjSTM3aHrWnOEGTmNiZb4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXlkZ2RXTkpNemRvZXRhYzRRWk9ZMkpsdmo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC83MmE2N2ItMWQxYy00MjM1LWE0ODct
ZmM5MDkzZmVkYjFiLzEvMlZYOVd4WUZsdk5kX0dTWlA2WVdvelpDc1ZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC83MmE2N2ItMWQxYy00MjM1LWE0ODctZmM5MDkzZmVkYjFi
LzEvWXlkZ2RXTkpNemRvZXRhYzRRWk9ZMkpsdmo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBBwYIKwYBBQUHAQcBAf8EgfcwgfQwgbMEAgABMIGsAwQA
BZ0GAwQABZ0LAwQABZ0TAwQABZ0VMAwDBAAFnRcDBAAFnRgDBAAFnRoDBAAFnR0w
DAMEBQWdIAMEAAWdIgMEAAWdJQMEAAWdKwMEAAWdMwMEAAWdNQMEAAWdNwMEABdc
cwMEACVIugMEAWigEAMEAWuWQAMEAGuWQwMEAWuWRgMEAGuWSwMEAmuWWAMEAGuW
XQMEAIK5mQMEAJftvAMEA6LUqAMEAMAoXjA8BAIAAjA2AwcAKgJXQAAEAwcAKgJX
QAAJAwcAKgJXQAAQAwcAKgJXQAAUAwcAKgJXQAAkAwcAKgJXQAAmMA0GCSqGSIb3
DQEBCwUAA4IBAQAmBnDMDphAtdVC3DRuy7bXWuA2ZzRfWkU83ufK8NmGQiwk6sJ/
W4ogjTVvYFhmvbTDDhMhzhlFkiW0ahUcONDfN5tb+TluRZQtJgklL6iKRrh5XZ3S
j3yUsm9he9Hn81r+QF3/lBuwExI387aTWS5aHNxPLT/taHUJqvSM9/XLA+j9OHQP
LIMV5F1nOa5EasGl3imfOSsG5+MppzuK3qDlPaQiHSywFDfuiqPPt0jULdN4meyK
z9fvJIqQPoltRyz9iPaMHrT4ThBDoP5rT3O+iK8GdJ1kAUW/rwi60bz8QmS2kffI
pAy3GAMzjWO+YbmE8hAWLBLsqk3BB7DYhVO5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:24 2024 by rpki-client on console-fra.rpki-client.org