Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/XlLviJBnm83Z0zk2IEnrNSaaPCQ.roa
File: XlLviJBnm83Z0zk2IEnrNSaaPCQ.roa (raw, json)
Hash identifier: G+Kjf9NDWypliu0lNLdLMloLcIZtwXSDr61UcbTKz6w=
Subject key identifier: 5E:52:EF:88:90:67:9B:CD:D9:D3:39:36:20:49:EB:35:26:9A:3C:24
Certificate issuer: /CN=6327607563493337687ad69ce1064e636265be3f
Certificate serial: 018C4AF5EFBC1F9C0209F01172BC4C04AD05
Authority key identifier: 63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/XlLviJBnm83Z0zk2IEnrNSaaPCQ.roa
Signing time: Fri 08 Dec 2023 19:44:40 +0000
ROA not before: Fri 08 Dec 2023 19:44:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63119
IP address blocks: 192.40.91.0/24 maxlen: 24
192.40.90.0/24 maxlen: 24
192.40.92.0/23 maxlen: 23
192.40.93.0/24 maxlen: 24
192.40.92.0/24 maxlen: 24
158.222.4.0/24 maxlen: 24
158.222.2.0/24 maxlen: 24
158.222.1.0/24 maxlen: 24
158.222.0.0/24 maxlen: 24
158.222.9.0/24 maxlen: 24
158.222.8.0/24 maxlen: 24
158.222.6.0/24 maxlen: 24
158.222.11.0/24 maxlen: 24
158.222.10.0/24 maxlen: 24
158.222.15.0/24 maxlen: 24
158.222.14.0/24 maxlen: 24
158.222.13.0/24 maxlen: 24
158.222.12.0/24 maxlen: 24
107.150.68.0/24 maxlen: 24
107.150.66.0/24 maxlen: 24
107.150.69.0/24 maxlen: 24
107.150.76.0/22 maxlen: 22
107.150.78.0/24 maxlen: 24
107.150.77.0/24 maxlen: 24
107.150.76.0/24 maxlen: 24
107.150.74.0/24 maxlen: 24
107.150.73.0/24 maxlen: 24
107.150.72.0/24 maxlen: 24
104.160.3.0/24 maxlen: 24
104.160.1.0/24 maxlen: 24
104.160.11.0/24 maxlen: 24
104.160.9.0/24 maxlen: 24
104.160.7.0/24 maxlen: 24
104.160.15.0/24 maxlen: 24
104.160.14.0/24 maxlen: 24
104.160.31.0/24 maxlen: 24
104.160.30.0/24 maxlen: 24
104.160.29.0/24 maxlen: 24
104.160.28.0/24 maxlen: 24
104.160.28.0/22 maxlen: 22
107.150.82.0/23 maxlen: 23
107.150.84.0/22 maxlen: 22
107.150.81.0/24 maxlen: 24
107.150.79.0/24 maxlen: 24
107.150.85.0/24 maxlen: 24
107.150.84.0/24 maxlen: 24
107.150.83.0/24 maxlen: 24
107.150.87.0/24 maxlen: 24
107.150.86.0/24 maxlen: 24
23.92.117.0/24 maxlen: 24
23.92.116.0/24 maxlen: 24
23.92.118.0/24 maxlen: 24
23.92.125.0/24 maxlen: 24
23.92.124.0/24 maxlen: 24
23.92.123.0/24 maxlen: 24
23.92.122.0/24 maxlen: 24
23.92.121.0/24 maxlen: 24
23.92.120.0/24 maxlen: 24
23.92.119.0/24 maxlen: 24
23.92.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4a:f5:ef:bc:1f:9c:02:09:f0:11:72:bc:4c:04:ad:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6327607563493337687ad69ce1064e636265be3f
Validity
Not Before: Dec 8 19:44:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e52ef8890679bcdd9d339362049eb35269a3c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:95:20:f6:51:c0:8b:09:5b:05:79:8d:1f:1d:
6e:84:27:19:d2:be:6e:a0:19:3b:ef:e8:20:46:8b:
d3:28:4e:9d:46:d8:03:35:67:cc:94:78:5f:b0:e7:
0b:e1:11:16:cc:fe:32:e0:7b:f5:85:66:83:a0:73:
a1:69:06:1f:01:79:8c:e5:33:f9:5a:77:43:57:82:
9c:93:24:af:b2:6e:ad:40:4c:22:83:be:1a:7b:5b:
8c:6d:83:80:8e:26:81:19:a3:cb:44:07:0a:2a:7d:
6b:c2:40:40:ac:ce:ae:7c:b0:7a:87:d9:d9:e3:12:
95:e0:a0:b5:63:11:62:a0:78:a0:8d:90:9a:0b:aa:
5d:ff:e5:d6:94:eb:93:cc:20:d8:e0:15:3e:7b:d8:
b3:cd:18:6a:ae:41:9a:fc:13:a1:5f:3a:26:47:3c:
9e:10:05:af:6f:ad:38:35:5d:fd:09:00:3b:12:b9:
27:6d:f9:4d:46:38:fc:0d:92:d5:6a:d2:2d:50:a9:
ca:f8:6b:13:09:ff:e3:26:fe:72:24:37:30:5f:eb:
40:36:48:e3:ca:59:4f:47:2d:2c:ba:82:af:fc:d9:
19:09:76:53:f1:4f:a7:00:48:d7:9c:d5:8b:b8:07:
01:50:b9:3d:f8:3e:49:85:74:48:76:e7:72:f6:29:
7e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:52:EF:88:90:67:9B:CD:D9:D3:39:36:20:49:EB:35:26:9A:3C:24
X509v3 Authority Key Identifier:
keyid:63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/XlLviJBnm83Z0zk2IEnrNSaaPCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/YydgdWNJMzdoetac4QZOY2Jlvj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.92.116.0-23.92.126.255
104.160.1.0/24
104.160.3.0/24
104.160.7.0/24
104.160.9.0/24
104.160.11.0/24
104.160.14.0/23
104.160.28.0/22
107.150.66.0/24
107.150.68.0/23
107.150.72.0-107.150.74.255
107.150.76.0/22
107.150.81.0-107.150.87.255
158.222.0.0-158.222.2.255
158.222.4.0/24
158.222.6.0/24
158.222.8.0/21
192.40.90.0-192.40.93.255
Signature Algorithm: sha256WithRSAEncryption
2b:e4:61:b4:8c:de:fc:c5:fb:47:45:9e:93:f9:4c:10:85:9b:
48:0b:9b:1f:5f:f7:e8:d3:d2:4e:cd:2a:48:60:d8:f0:86:d9:
2f:44:f2:33:33:6b:3c:6e:2f:84:f3:64:63:61:a8:9d:65:47:
d0:20:39:c1:fa:03:56:54:62:65:71:3a:81:3e:79:08:ac:ff:
79:2f:49:b9:8b:89:39:9e:e6:4a:63:52:25:db:27:2c:f1:b0:
0a:06:28:70:a2:f3:ab:19:c4:18:56:cd:14:33:24:a5:90:a4:
f0:e8:a5:4c:c1:36:b6:41:1f:79:3e:cf:bf:5d:52:bc:b2:df:
62:14:cb:b8:aa:ba:0d:dd:df:c3:99:7f:7a:ca:be:2d:98:31:
85:ba:1a:61:ac:5b:5e:2f:46:7b:64:44:38:54:5a:73:6f:bf:
ab:7b:24:54:38:5e:cd:93:75:c2:da:0d:f5:ba:ba:64:da:af:
b5:9f:9b:03:8d:fe:db:9e:74:24:bb:9f:45:d1:5d:4c:6a:8e:
e7:c7:17:9c:28:6e:8a:80:e9:0a:3b:c1:5c:2c:77:c2:4e:33:
4a:ce:c3:35:ba:e5:d1:40:55:14:d1:c3:61:f2:1a:9d:a9:b7:
c1:19:73:59:9f:0c:44:7a:fa:6f:97:13:d1:d0:0f:72:1b:6b:
8c:64:92:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:24 2024 by rpki-client on console-fra.rpki-client.org