Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/XEVzC06N_FRHGm46ecM9QFkhju4.roa
File: XEVzC06N_FRHGm46ecM9QFkhju4.roa (raw, json)
Hash identifier: 2imfpQyEFDrZigMqEJW9sEHozDx4yr3SzkwgGbDw6jw=
Subject key identifier: 5C:45:73:0B:4E:8D:FC:54:47:1A:6E:3A:79:C3:3D:40:59:21:8E:EE
Certificate issuer: /CN=6327607563493337687ad69ce1064e636265be3f
Certificate serial: 018CC348DD1E3DD33ED4A8CE241D6BA31895
Authority key identifier: 63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/XEVzC06N_FRHGm46ecM9QFkhju4.roa
Signing time: Mon 01 Jan 2024 04:29:41 +0000
ROA not before: Mon 01 Jan 2024 04:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57858
IP address blocks: 37.72.189.0/24 maxlen: 24
37.72.190.0/24 maxlen: 24
37.72.191.0/24 maxlen: 24
37.72.187.0/24 maxlen: 24
37.72.188.0/24 maxlen: 24
5.153.233.0/24 maxlen: 24
5.153.234.0/24 maxlen: 24
5.153.235.0/24 maxlen: 24
5.153.237.0/24 maxlen: 24
5.153.238.0/24 maxlen: 24
130.185.152.0/24 maxlen: 24
130.185.156.0/24 maxlen: 24
130.185.157.0/24 maxlen: 24
130.185.158.0/24 maxlen: 24
130.185.154.0/24 maxlen: 24
130.185.155.0/24 maxlen: 24
130.185.159.0/24 maxlen: 24
185.3.132.0/24 maxlen: 24
185.3.134.0/24 maxlen: 24
185.3.135.0/24 maxlen: 24
185.3.133.0/24 maxlen: 24
46.29.252.0/24 maxlen: 24
46.29.253.0/24 maxlen: 24
46.29.248.0/23 maxlen: 23
46.29.250.0/23 maxlen: 23
46.29.254.0/24 maxlen: 24
46.29.255.0/24 maxlen: 24
151.237.176.0/24 maxlen: 24
151.237.177.0/24 maxlen: 24
151.237.178.0/24 maxlen: 24
151.237.179.0/24 maxlen: 24
151.237.182.0/24 maxlen: 24
151.237.183.0/24 maxlen: 24
151.237.184.0/24 maxlen: 24
151.237.180.0/24 maxlen: 24
151.237.181.0/24 maxlen: 24
151.237.185.0/24 maxlen: 24
151.237.189.0/24 maxlen: 24
151.237.190.0/24 maxlen: 24
151.237.191.0/24 maxlen: 24
151.237.187.0/24 maxlen: 24
5.157.1.0/24 maxlen: 24
5.157.0.0/24 maxlen: 24
5.157.9.0/24 maxlen: 24
5.157.10.0/24 maxlen: 24
5.157.5.0/24 maxlen: 24
5.157.7.0/24 maxlen: 24
37.203.208.0/24 maxlen: 24
37.203.210.0/24 maxlen: 24
37.203.211.0/24 maxlen: 24
37.203.212.0/24 maxlen: 24
37.203.213.0/24 maxlen: 24
37.203.214.0/24 maxlen: 24
5.157.15.0/24 maxlen: 24
5.157.16.0/24 maxlen: 24
5.157.12.0/24 maxlen: 24
5.157.18.0/24 maxlen: 24
5.157.20.0/24 maxlen: 24
5.157.25.0/24 maxlen: 24
5.157.28.0/24 maxlen: 24
5.157.36.0/24 maxlen: 24
5.157.35.0/24 maxlen: 24
5.157.44.0/24 maxlen: 24
5.157.39.0/24 maxlen: 24
5.157.40.0/24 maxlen: 24
5.157.50.0/24 maxlen: 24
5.157.46.0/24 maxlen: 24
5.157.47.0/24 maxlen: 24
5.157.48.0/24 maxlen: 24
5.157.49.0/24 maxlen: 24
5.157.52.0/24 maxlen: 24
5.157.54.0/24 maxlen: 24
5.34.240.0/24 maxlen: 24
91.108.176.0/24 maxlen: 24
91.108.177.0/24 maxlen: 24
91.108.178.0/24 maxlen: 24
91.108.179.0/24 maxlen: 24
176.61.136.0/24 maxlen: 24
176.61.137.0/24 maxlen: 24
176.61.138.0/24 maxlen: 24
176.61.139.0/24 maxlen: 24
91.108.180.0/24 maxlen: 24
91.108.181.0/24 maxlen: 24
91.108.182.0/24 maxlen: 24
176.61.140.0/24 maxlen: 24
176.61.141.0/24 maxlen: 24
176.61.142.0/24 maxlen: 24
176.61.143.0/24 maxlen: 24
5.34.244.0/24 maxlen: 24
5.34.245.0/24 maxlen: 24
5.34.246.0/24 maxlen: 24
5.34.241.0/24 maxlen: 24
5.34.242.0/24 maxlen: 24
5.34.243.0/24 maxlen: 24
5.34.247.0/24 maxlen: 24
178.216.52.0/24 maxlen: 24
178.216.53.0/24 maxlen: 24
178.216.54.0/24 maxlen: 24
178.216.55.0/24 maxlen: 24
178.216.50.0/24 maxlen: 24
178.216.51.0/24 maxlen: 24
178.216.48.0/24 maxlen: 24
178.216.49.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:dd:1e:3d:d3:3e:d4:a8:ce:24:1d:6b:a3:18:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6327607563493337687ad69ce1064e636265be3f
Validity
Not Before: Jan 1 04:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c45730b4e8dfc54471a6e3a79c33d4059218eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ff:d2:44:a3:af:a1:7e:3b:f4:7d:a7:c4:a1:
46:58:1a:69:ff:f1:3d:6b:bd:4c:ff:90:92:3e:25:
05:83:b8:37:1e:5c:a6:eb:5f:e7:15:29:a0:1a:b5:
c3:30:6c:73:66:f4:e8:f1:db:4e:42:99:08:eb:bb:
d7:37:77:29:2a:00:8c:84:05:4f:f3:18:f3:08:e0:
6d:dc:76:2b:2c:80:2c:a3:07:9b:73:16:4f:58:01:
bb:56:b6:f4:7d:c7:37:f3:49:79:7e:37:d9:d2:cb:
13:7d:ff:19:2b:e1:f4:84:0b:22:ef:42:5e:c3:67:
d2:62:b2:8d:2a:0e:f1:c0:f7:ae:51:0f:bf:d6:30:
61:5a:24:e4:9e:58:3a:ba:71:11:52:d3:50:22:e9:
7e:5d:a7:c7:26:40:e2:44:c4:06:e0:46:3b:c7:a5:
ba:4d:56:e3:c1:88:d9:1d:a9:0a:fd:4b:8f:ee:b8:
02:7b:f7:cd:02:ae:00:ea:45:13:61:85:83:0c:bb:
5d:02:e3:bb:bd:15:e6:64:2f:31:c1:b6:95:2f:62:
ff:2b:d9:cf:3c:ae:3b:3d:cf:20:f3:c8:5a:86:75:
94:c7:da:d5:4a:74:12:4f:8f:8f:d1:03:e0:02:a3:
99:01:59:de:81:d4:14:d1:cf:6d:4a:cf:d7:66:6a:
a2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:45:73:0B:4E:8D:FC:54:47:1A:6E:3A:79:C3:3D:40:59:21:8E:EE
X509v3 Authority Key Identifier:
keyid:63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/XEVzC06N_FRHGm46ecM9QFkhju4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/YydgdWNJMzdoetac4QZOY2Jlvj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.240.0/21
5.153.233.0-5.153.235.255
5.153.237.0-5.153.238.255
5.157.0.0/23
5.157.5.0/24
5.157.7.0/24
5.157.9.0-5.157.10.255
5.157.12.0/24
5.157.15.0-5.157.16.255
5.157.18.0/24
5.157.20.0/24
5.157.25.0/24
5.157.28.0/24
5.157.35.0-5.157.36.255
5.157.39.0-5.157.40.255
5.157.44.0/24
5.157.46.0-5.157.50.255
5.157.52.0/24
5.157.54.0/24
37.72.187.0-37.72.191.255
37.203.208.0/24
37.203.210.0-37.203.214.255
46.29.248.0/21
91.108.176.0-91.108.182.255
130.185.152.0/24
130.185.154.0-130.185.159.255
151.237.176.0-151.237.185.255
151.237.187.0/24
151.237.189.0-151.237.191.255
176.61.136.0/21
178.216.48.0/21
185.3.132.0/22
Signature Algorithm: sha256WithRSAEncryption
03:fe:17:9a:c3:f6:bf:51:98:78:58:bc:3c:6a:23:d5:22:4c:
79:92:9f:23:1d:95:87:1f:df:15:b2:31:4d:68:9d:74:78:a5:
2d:5c:e2:3f:5d:b8:38:e2:67:27:7c:33:a3:d4:2c:c6:04:55:
4c:ae:ae:07:73:5f:6d:4f:27:34:c9:a6:5b:a2:cd:b7:47:26:
d2:41:98:c7:d8:a9:b4:f6:8b:5c:b1:7f:db:d2:82:1e:61:0f:
96:11:64:56:86:cb:17:ac:d8:97:14:cd:e7:71:8f:0d:5c:78:
af:a6:80:ba:98:09:5f:84:60:25:dc:71:18:df:59:07:8e:b5:
fe:51:ef:6f:81:f1:74:ad:6f:ab:b7:e8:d5:21:d5:31:3d:8c:
8f:a5:12:e5:e4:0e:34:2b:55:bf:22:36:1c:2c:b4:96:aa:49:
7c:a2:51:5f:2f:8b:28:99:3b:8c:29:13:e1:3d:6b:8a:c1:4d:
95:3b:00:3f:86:70:cc:26:07:34:cf:bd:3e:4f:4c:cc:c4:60:
22:73:ee:1d:bc:5c:75:da:7b:35:ba:07:16:6b:b4:ce:5d:e0:
6c:3c:b3:24:1f:d2:8c:b7:a4:fa:b9:04:c3:00:50:b7:ec:f7:
89:57:64:03:33:59:a0:c1:6e:20:51:b3:45:ec:a5:0d:12:8c:
d2:16:45:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 07:18:13 2024 by rpki-client on console-ams.rpki-client.org