Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/Kg4OTnPhRQm9wowhyzPvjPOKcZw.roa
File: Kg4OTnPhRQm9wowhyzPvjPOKcZw.roa (raw, json)
Hash identifier: YbNUBCyJE1FeuWE5yHWqbNEkWYQArqKAP8DRk5EUI5A=
Subject key identifier: 2A:0E:0E:4E:73:E1:45:09:BD:C2:8C:21:CB:33:EF:8C:F3:8A:71:9C
Certificate issuer: /CN=6327607563493337687ad69ce1064e636265be3f
Certificate serial: 018C4AF5EF1FAEE6453E2E7B0F11FC066221
Authority key identifier: 63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/Kg4OTnPhRQm9wowhyzPvjPOKcZw.roa
Signing time: Fri 08 Dec 2023 19:44:40 +0000
ROA not before: Fri 08 Dec 2023 19:44:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58065
IP address blocks: 23.92.115.0/24 maxlen: 24
192.40.94.0/24 maxlen: 24
151.237.188.0/24 maxlen: 24
37.72.186.0/24 maxlen: 24
107.150.64.0/24 maxlen: 24
130.185.153.0/24 maxlen: 24
107.150.71.0/24 maxlen: 24
107.150.65.0/24 maxlen: 24
107.150.67.0/24 maxlen: 24
107.150.70.0/24 maxlen: 24
5.157.11.0/24 maxlen: 24
107.150.75.0/24 maxlen: 24
5.157.6.0/24 maxlen: 24
104.160.16.0/24 maxlen: 24
104.160.17.0/24 maxlen: 24
107.150.91.0/24 maxlen: 24
5.157.19.0/24 maxlen: 24
5.157.21.0/24 maxlen: 24
5.157.23.0/24 maxlen: 24
5.157.24.0/24 maxlen: 24
107.150.88.0/24 maxlen: 24
162.212.168.0/24 maxlen: 24
162.212.170.0/24 maxlen: 24
162.212.172.0/24 maxlen: 24
162.212.171.0/24 maxlen: 24
162.212.169.0/24 maxlen: 24
107.150.89.0/24 maxlen: 24
107.150.90.0/24 maxlen: 24
162.212.173.0/24 maxlen: 24
162.212.174.0/24 maxlen: 24
162.212.175.0/24 maxlen: 24
5.157.26.0/24 maxlen: 24
5.157.29.0/24 maxlen: 24
107.150.93.0/24 maxlen: 24
5.157.32.0/24 maxlen: 24
5.157.33.0/24 maxlen: 24
5.157.34.0/24 maxlen: 24
5.157.37.0/24 maxlen: 24
5.157.43.0/24 maxlen: 24
5.157.51.0/24 maxlen: 24
5.157.53.0/24 maxlen: 24
5.157.55.0/24 maxlen: 24
2a02:5740:14::/48 maxlen: 48
2a02:5740:9::/48 maxlen: 48
2a02:5740:10::/48 maxlen: 48
2a02:5740:26::/48 maxlen: 48
2a02:5740:24::/48 maxlen: 48
2a02:5740:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4a:f5:ef:1f:ae:e6:45:3e:2e:7b:0f:11:fc:06:62:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6327607563493337687ad69ce1064e636265be3f
Validity
Not Before: Dec 8 19:44:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a0e0e4e73e14509bdc28c21cb33ef8cf38a719c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0d:f6:68:a4:5d:37:b0:5b:b4:19:80:3c:99:
4a:29:53:fd:59:3e:17:fc:4c:b0:19:50:c2:d7:c9:
5d:62:a9:cf:33:88:88:59:3f:1b:af:2a:b5:14:7e:
9b:7d:12:11:d2:ea:5b:99:bb:cb:f9:0a:84:66:7b:
d7:08:94:c3:43:1a:df:fd:08:a6:06:be:d0:89:68:
0b:31:d6:b6:5d:84:21:93:98:c0:fa:0e:35:b0:fc:
4a:3d:88:19:53:2e:4d:bb:4c:d1:8d:ce:9e:25:b4:
55:e6:94:29:1c:87:e9:d9:f2:dc:88:14:78:ae:b7:
0d:d8:ca:fd:0c:cb:13:3a:2a:f8:86:20:37:c4:d5:
3f:ff:e1:ef:35:51:06:d3:ef:b7:72:17:1f:f8:df:
63:59:4c:8e:56:da:14:80:00:4b:4c:ed:cc:60:c7:
90:2c:35:af:4f:ed:9e:b3:8e:38:99:8c:ce:38:de:
3e:33:a4:32:91:3e:d2:a5:f0:f2:8b:4e:f3:95:dd:
ea:c5:ce:59:4e:88:65:a6:2f:19:92:0e:b3:27:ea:
e9:34:02:d3:53:8a:35:1f:c6:4f:8b:87:e5:07:e6:
eb:ce:b1:19:e3:37:d0:e2:82:3e:f5:1e:0a:98:be:
f5:cf:e1:ce:c8:b5:06:8e:ae:03:63:45:08:ea:68:
30:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:0E:0E:4E:73:E1:45:09:BD:C2:8C:21:CB:33:EF:8C:F3:8A:71:9C
X509v3 Authority Key Identifier:
keyid:63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/Kg4OTnPhRQm9wowhyzPvjPOKcZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/YydgdWNJMzdoetac4QZOY2Jlvj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.6.0/24
5.157.11.0/24
5.157.19.0/24
5.157.21.0/24
5.157.23.0-5.157.24.255
5.157.26.0/24
5.157.29.0/24
5.157.32.0-5.157.34.255
5.157.37.0/24
5.157.43.0/24
5.157.51.0/24
5.157.53.0/24
5.157.55.0/24
23.92.115.0/24
37.72.186.0/24
104.160.16.0/23
107.150.64.0/23
107.150.67.0/24
107.150.70.0/23
107.150.75.0/24
107.150.88.0/22
107.150.93.0/24
130.185.153.0/24
151.237.188.0/24
162.212.168.0/21
192.40.94.0/24
IPv6:
2a02:5740:4::/48
2a02:5740:9::/48
2a02:5740:10::/48
2a02:5740:14::/48
2a02:5740:24::/48
2a02:5740:26::/48
Signature Algorithm: sha256WithRSAEncryption
22:11:aa:72:52:63:22:2d:b1:f9:a5:4b:88:7a:9c:61:74:da:
19:b1:b4:fa:53:ad:29:57:5e:aa:50:6d:55:dc:e1:dc:a6:26:
77:64:b6:ad:d8:8a:31:af:c4:09:9f:46:bf:ce:d2:d3:25:76:
bd:ce:cb:26:8f:95:f7:68:72:ad:0d:f1:d8:66:d8:46:fc:60:
59:b4:07:6f:1c:48:78:67:ac:f5:e1:c4:21:cc:54:1f:ca:c8:
2e:b2:74:f9:53:d0:c9:c8:d8:6e:cb:b9:b8:cc:98:c7:14:78:
17:72:ad:0a:57:cd:a7:a5:60:27:f2:b1:82:f0:78:3f:02:b4:
8d:63:91:fa:24:e2:fc:30:79:48:89:1a:5b:59:85:77:19:e7:
d6:e4:36:78:aa:53:07:22:c6:c4:97:14:dd:ba:e3:e8:5e:ed:
f2:f2:2c:0b:9e:9f:62:92:4d:1b:99:27:1e:f7:6a:6c:4f:57:
2b:18:e3:1e:ce:f9:83:a9:4d:6e:18:3b:b5:c5:34:99:16:a6:
38:3d:7b:bb:9a:5d:32:35:bd:93:97:f0:df:83:f3:6f:31:0d:
7a:b2:14:8c:f5:5b:b1:a8:2e:56:78:b6:c0:0b:eb:2b:30:29:
9e:92:c1:29:7e:90:ac:21:50:5f:46:9f:9a:1e:01:c1:1c:22:
61:1c:73:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:22 2024 by rpki-client on console-ams.rpki-client.org