Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/VU38qFo2WWbc3olxYeYDQd_6Q2M.roa
File: VU38qFo2WWbc3olxYeYDQd_6Q2M.roa (raw, json)
Hash identifier: YouTIuvAVO2kCjoQMRBTrUA4j9GNhAnK8g8TUUSFe3o=
Subject key identifier: 55:4D:FC:A8:5A:36:59:66:DC:DE:89:71:61:E6:03:41:DF:FA:43:63
Certificate issuer: /CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Certificate serial: 02F4C616
Authority key identifier: D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/VU38qFo2WWbc3olxYeYDQd_6Q2M.roa
Signing time: Wed 18 May 2022 23:25:16 +0000
ROA not before: Wed 18 May 2022 23:25:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 31.6.28.0/23 maxlen: 24
31.6.43.0/24 maxlen: 24
31.6.48.0/24 maxlen: 24
31.6.50.0/23 maxlen: 24
31.6.45.0/24 maxlen: 24
31.6.46.0/23 maxlen: 24
31.6.56.0/23 maxlen: 24
31.6.52.0/22 maxlen: 24
31.6.62.0/23 maxlen: 24
31.6.59.0/24 maxlen: 24
31.6.61.0/24 maxlen: 24
31.6.1.0/24 maxlen: 24
31.6.2.0/24 maxlen: 24
185.29.166.0/24 maxlen: 24
31.6.16.0/24 maxlen: 24
31.6.12.0/22 maxlen: 24
31.6.20.0/24 maxlen: 24
31.6.24.0/22 maxlen: 24
178.208.177.0/24 maxlen: 24
178.208.178.0/23 maxlen: 24
178.208.184.0/24 maxlen: 24
178.208.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49595926 (0x2f4c616)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Validity
Not Before: May 18 23:25:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=554dfca85a365966dcde897161e60341dffa4363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ea:e0:8f:db:6d:61:9d:14:90:39:0f:b0:14:
bd:9b:f9:fe:32:80:c1:a2:6b:3d:ab:87:be:c3:e2:
b0:a6:6b:36:5d:8a:69:5b:6e:c5:f9:49:1d:2d:67:
90:ab:c8:7d:90:af:55:9b:ed:79:b5:f1:68:bc:06:
9b:c2:a8:da:a3:ef:23:6b:4d:cd:f8:1a:a9:34:c5:
68:0c:94:1c:e2:4a:99:86:2e:55:9a:e7:43:e7:de:
be:a1:c6:54:c7:93:21:3f:cf:13:cf:6c:50:c8:7a:
10:0f:2c:15:f0:83:12:55:c3:dc:12:c8:89:b5:b7:
21:0a:28:80:47:22:10:29:5e:f3:45:cc:99:26:39:
cc:62:a6:0a:35:ce:22:b1:0d:e7:00:85:79:0d:50:
e9:4a:36:85:2b:03:96:76:7e:27:49:1f:43:ad:17:
2a:18:b0:67:48:43:12:2a:be:7a:54:4a:6d:69:4d:
bf:8c:10:1a:f9:b3:fc:c1:64:a4:ad:61:c7:36:1a:
f7:19:3b:2b:1c:2f:55:15:de:16:22:e3:f5:24:1f:
70:9c:f9:3a:73:b9:75:b5:9e:54:87:59:8e:00:b8:
ed:06:20:53:60:a3:fd:b4:95:d2:cd:cd:09:7b:78:
f3:74:53:af:c7:a7:96:ba:c9:37:69:06:f5:f9:18:
24:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:4D:FC:A8:5A:36:59:66:DC:DE:89:71:61:E6:03:41:DF:FA:43:63
X509v3 Authority Key Identifier:
keyid:D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/VU38qFo2WWbc3olxYeYDQd_6Q2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.1.0-31.6.2.255
31.6.12.0-31.6.16.255
31.6.20.0/24
31.6.24.0-31.6.29.255
31.6.43.0/24
31.6.45.0-31.6.48.255
31.6.50.0-31.6.57.255
31.6.59.0/24
31.6.61.0-31.6.63.255
178.208.177.0-178.208.184.255
185.29.166.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:83:90:d8:2f:a4:d9:9c:23:90:1d:e9:44:49:55:f8:fe:60:
40:d7:c3:ed:70:55:47:1e:49:7b:30:8f:a9:62:6d:d0:78:db:
27:96:e9:7d:7a:3b:13:8e:fc:4f:cf:f4:72:d4:7c:36:ed:99:
e0:d5:68:74:0a:d8:ce:a0:73:50:b6:8a:aa:4c:15:22:49:41:
1e:04:2d:1a:54:82:ec:89:7a:60:b0:36:d2:db:f2:22:66:79:
29:2d:b6:76:0f:b1:9f:a8:d0:27:95:53:af:c3:65:33:57:78:
45:a1:a1:f2:9d:74:55:c8:2b:af:62:b7:dd:1c:59:9d:22:f6:
bb:5a:51:ef:a0:27:a1:bf:19:ec:c2:ca:37:fb:e4:7f:18:14:
af:7c:d3:0f:a1:2b:cf:05:c0:05:2d:4e:cc:78:98:f3:9c:df:
ea:4a:a2:bf:74:b9:62:e8:f2:ea:02:67:56:51:71:79:13:24:
fe:a3:b3:1d:ce:ca:ca:06:4c:c9:1e:7a:e2:27:4a:7d:f9:0c:
bd:02:17:3d:ef:fd:f0:9a:b3:d7:0c:23:35:97:9d:64:62:ec:
e4:eb:e7:62:41:8e:75:68:c8:28:65:e9:35:ab:40:43:27:1d:
a4:d1:b2:8f:b6:80:c1:51:d2:bc:9a:0e:4a:77:c1:06:dc:76:
d5:89:0c:3e
-----BEGIN CERTIFICATE-----
MIIFZzCCBE+gAwIBAgIEAvTGFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NTNlY2U3MWVmNmViZjU1YmI3Yjg3ZTUwNjY1YmExMWZkYzc3ZjA4MB4XDTIyMDUx
ODIzMjUxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTU0ZGZjYTg1YTM2
NTk2NmRjZGU4OTcxNjFlNjAzNDFkZmZhNDM2MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN/q4I/bbWGdFJA5D7AUvZv5/jKAwaJrPauHvsPisKZrNl2K
aVtuxflJHS1nkKvIfZCvVZvtebXxaLwGm8Ko2qPvI2tNzfgaqTTFaAyUHOJKmYYu
VZrnQ+fevqHGVMeTIT/PE89sUMh6EA8sFfCDElXD3BLIibW3IQoogEciECle80XM
mSY5zGKmCjXOIrEN5wCFeQ1Q6Uo2hSsDlnZ+J0kfQ60XKhiwZ0hDEiq+elRKbWlN
v4wQGvmz/MFkpK1hxzYa9xk7KxwvVRXeFiLj9SQfcJz5OnO5dbWeVIdZjgC47QYg
U2Cj/bSV0s3NCXt483RTr8enlrrJN2kG9fkYJF0CAwEAAaOCAoEwggJ9MB0GA1Ud
DgQWBBRVTfyoWjZZZtzeiXFh5gNB3/pDYzAfBgNVHSMEGDAWgBTVPs5x726/Vbt7
h+UGZboR/cd/CDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFUN09jZTl1djFXN2U0ZmxCbVc2RWYzSGZ3Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvYzgxNjY5LTI1MTktNGRhNS1iZDVkLTFjMjYyNjU5MGQyOC8x
L1ZVMzhxRm8yV1diYzNvbHhZZVlEUWRfNlEyTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
YzgxNjY5LTI1MTktNGRhNS1iZDVkLTFjMjYyNjU5MGQyOC8xLzFUN09jZTl1djFX
N2U0ZmxCbVc2RWYzSGZ3Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
lgYIKwYBBQUHAQcBAf8EgYYwgYMwgYAEAgABMHowDAMEAB8GAQMEAB8GAjAMAwQC
HwYMAwQAHwYQAwQAHwYUMAwDBAMfBhgDBAEfBhwDBAAfBiswDAMEAB8GLQMEAB8G
MDAMAwQBHwYyAwQBHwY4AwQAHwY7MAwDBAAfBj0DBAYfBgAwDAMEALLQsQMEALLQ
uAMEALkdpjANBgkqhkiG9w0BAQsFAAOCAQEAn4OQ2C+k2ZwjkB3pRElV+P5gQNfD
7XBVRx5JezCPqWJt0HjbJ5bpfXo7E478T8/0ctR8Nu2Z4NVodArYzqBzULaKqkwV
IklBHgQtGlSC7Il6YLA20tvyImZ5KS22dg+xn6jQJ5VTr8NlM1d4RaGh8p10Vcgr
r2K33RxZnSL2u1pR76Anob8Z7MLKN/vkfxgUr3zTD6ErzwXABS1OzHiY85zf6kqi
v3S5Yujy6gJnVlFxeRMk/qOzHc7KygZMyR564idKffkMvQIXPe/98Jqz1wwjNZed
ZGLs5OvnYkGOdWjIKGXpNatAQycdpNGyj7aAwVHSvJoOSnfBBtx21YkMPg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:21 2023 by rpki-client on console-ams.rpki-client.org