Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/AyTuR0M6AZKmQjt2jB-OlsLj5Gs.roa
File: AyTuR0M6AZKmQjt2jB-OlsLj5Gs.roa (raw, json)
Hash identifier: SShVmRMAYCsHIHg3sZrGGniHdXWMxPzDpKX9plvva1A=
Subject key identifier: 03:24:EE:47:43:3A:01:92:A6:42:3B:76:8C:1F:8E:96:C2:E3:E4:6B
Certificate issuer: /CN=6327607563493337687ad69ce1064e636265be3f
Certificate serial: 018E9594DE86824FF75CDCB6215C5C103245
Authority key identifier: 63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/AyTuR0M6AZKmQjt2jB-OlsLj5Gs.roa
Signing time: Sun 31 Mar 2024 17:35:45 +0000
ROA not before: Sun 31 Mar 2024 17:35:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58065
IP address blocks: 5.157.6.0/24 maxlen: 24
5.157.11.0/24 maxlen: 24
5.157.19.0/24 maxlen: 24
5.157.21.0/24 maxlen: 24
5.157.23.0/24 maxlen: 24
5.157.24.0/24 maxlen: 24
5.157.26.0/24 maxlen: 24
5.157.29.0/24 maxlen: 24
5.157.32.0/24 maxlen: 24
5.157.33.0/24 maxlen: 24
5.157.34.0/24 maxlen: 24
5.157.37.0/24 maxlen: 24
5.157.43.0/24 maxlen: 24
5.157.51.0/24 maxlen: 24
5.157.53.0/24 maxlen: 24
5.157.55.0/24 maxlen: 24
23.92.115.0/24 maxlen: 24
23.92.126.0/24 maxlen: 24
37.72.186.0/24 maxlen: 24
104.160.16.0/24 maxlen: 24
104.160.17.0/24 maxlen: 24
107.150.64.0/24 maxlen: 24
107.150.65.0/24 maxlen: 24
107.150.67.0/24 maxlen: 24
107.150.69.0/24 maxlen: 24
107.150.70.0/24 maxlen: 24
107.150.71.0/24 maxlen: 24
107.150.75.0/24 maxlen: 24
107.150.88.0/24 maxlen: 24
107.150.89.0/24 maxlen: 24
107.150.90.0/24 maxlen: 24
107.150.91.0/24 maxlen: 24
107.150.93.0/24 maxlen: 24
130.185.153.0/24 maxlen: 24
151.237.188.0/24 maxlen: 24
162.212.168.0/24 maxlen: 24
162.212.169.0/24 maxlen: 24
162.212.170.0/24 maxlen: 24
162.212.171.0/24 maxlen: 24
162.212.172.0/24 maxlen: 24
162.212.173.0/24 maxlen: 24
162.212.174.0/24 maxlen: 24
162.212.175.0/24 maxlen: 24
192.40.94.0/24 maxlen: 24
2a02:5740:4::/48 maxlen: 48
2a02:5740:9::/48 maxlen: 48
2a02:5740:10::/48 maxlen: 48
2a02:5740:14::/48 maxlen: 48
2a02:5740:24::/48 maxlen: 48
2a02:5740:26::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:95:94:de:86:82:4f:f7:5c:dc:b6:21:5c:5c:10:32:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6327607563493337687ad69ce1064e636265be3f
Validity
Not Before: Mar 31 17:35:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0324ee47433a0192a6423b768c1f8e96c2e3e46b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:37:14:25:e1:69:0a:d5:d6:1c:1e:61:47:e0:
5b:70:e3:20:30:0b:c9:97:fc:2e:bd:53:a4:3d:22:
6a:96:71:66:b7:a2:18:ed:86:f2:85:b2:b2:2b:34:
f1:bb:79:7c:ce:c0:f5:a0:5a:16:ed:02:4a:9b:2c:
c3:3e:5f:a2:82:03:43:c5:9d:f7:b6:00:7b:39:00:
d4:6e:a1:25:b9:56:88:e4:b3:8d:78:55:08:0d:44:
17:ce:d2:aa:a7:6d:91:10:77:6b:24:f7:0d:7e:8d:
00:67:7b:de:d6:56:53:11:9e:06:23:e2:6f:a8:f2:
d4:a5:3d:1c:9c:15:c8:82:51:44:b5:fe:fc:67:8c:
1d:c4:2e:64:c3:40:b7:97:27:ff:4d:36:64:43:8b:
28:a6:61:6a:56:97:4e:67:c9:79:24:1b:2a:ed:27:
9b:61:85:00:6e:5e:f4:10:e0:05:a1:de:c4:33:f0:
b2:b0:61:51:48:b1:15:d3:93:14:65:d4:85:be:e5:
44:bf:59:a8:7e:b1:8b:51:47:a1:ee:80:b2:3e:8b:
9d:e0:89:34:0e:bf:87:5d:a5:bc:6e:03:ce:70:0a:
5a:10:c6:54:64:d1:6c:66:92:77:71:08:51:8e:f4:
5a:4e:eb:27:55:9e:d8:bb:95:d9:13:fa:9f:74:4b:
a9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:24:EE:47:43:3A:01:92:A6:42:3B:76:8C:1F:8E:96:C2:E3:E4:6B
X509v3 Authority Key Identifier:
keyid:63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/AyTuR0M6AZKmQjt2jB-OlsLj5Gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/YydgdWNJMzdoetac4QZOY2Jlvj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.6.0/24
5.157.11.0/24
5.157.19.0/24
5.157.21.0/24
5.157.23.0-5.157.24.255
5.157.26.0/24
5.157.29.0/24
5.157.32.0-5.157.34.255
5.157.37.0/24
5.157.43.0/24
5.157.51.0/24
5.157.53.0/24
5.157.55.0/24
23.92.115.0/24
23.92.126.0/24
37.72.186.0/24
104.160.16.0/23
107.150.64.0/23
107.150.67.0/24
107.150.69.0-107.150.71.255
107.150.75.0/24
107.150.88.0/22
107.150.93.0/24
130.185.153.0/24
151.237.188.0/24
162.212.168.0/21
192.40.94.0/24
IPv6:
2a02:5740:4::/48
2a02:5740:9::/48
2a02:5740:10::/48
2a02:5740:14::/48
2a02:5740:24::/48
2a02:5740:26::/48
Signature Algorithm: sha256WithRSAEncryption
3a:e3:92:1b:bb:b3:2f:9f:a0:9c:95:e5:9a:9b:f4:f3:5e:0b:
c5:be:ba:89:4b:24:a0:6a:fe:12:cc:b0:6f:c6:49:43:f0:ea:
33:f5:2d:81:0c:29:cf:73:70:23:ad:96:72:6c:d5:c3:d1:56:
69:dd:ea:e3:16:5b:0b:95:b2:7a:81:57:24:4a:5d:ed:28:7c:
70:b0:22:a3:0d:f6:52:e0:e5:b2:08:29:3d:5d:5e:56:2b:0a:
0f:3b:34:4e:bc:5d:c8:10:68:a6:1d:a8:b9:4a:96:ba:ca:6d:
d6:0e:a9:d2:a7:63:01:8b:cb:3e:84:ea:12:92:25:27:31:00:
b7:b0:9e:81:9c:f9:c3:cf:ca:a7:33:15:20:67:e4:9a:da:c6:
5d:37:fb:74:0d:d9:fe:55:c3:6f:54:88:1d:e0:0b:2f:b4:64:
03:9a:04:4e:c6:19:42:b4:29:ba:33:8c:36:f5:dd:5e:21:c9:
2b:04:36:8e:7f:9a:bf:34:a3:b6:86:7d:e5:8c:20:e3:d9:a3:
7d:48:e6:20:4e:6e:09:64:38:c3:04:25:52:9f:a9:c6:9d:b5:
5a:85:29:c1:86:4b:1b:c4:1d:9f:e3:89:00:56:5b:8e:ce:ad:
0b:8b:06:31:2a:d9:6f:7c:ae:5a:40:d1:9c:23:0a:be:d4:47:
19:01:56:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:22 2024 by rpki-client on console-ams.rpki-client.org