Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9dc00b-0ec5-43f5-88a0-0d7605ad9d71/1/U7wKTFUYzUOBIgEHJcqiuX1Dlck.roa
File: U7wKTFUYzUOBIgEHJcqiuX1Dlck.roa (raw, json)
Hash identifier: j94a+VtDgMz+4hupQOxB7cJwS3HeF8Kz9GyToORlBZY=
Subject key identifier: 53:BC:0A:4C:55:18:CD:43:81:22:01:07:25:CA:A2:B9:7D:43:95:C9
Certificate issuer: /CN=3ae63990b7eee4cb5d54db723c3f8736ddb43139
Certificate serial: 2B4DDE
Authority key identifier: 3A:E6:39:90:B7:EE:E4:CB:5D:54:DB:72:3C:3F:87:36:DD:B4:31:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuY5kLfu5MtdVNtyPD-HNt20MTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9dc00b-0ec5-43f5-88a0-0d7605ad9d71/1/U7wKTFUYzUOBIgEHJcqiuX1Dlck.roa
Signing time: Sat 01 Jan 2022 03:53:44 +0000
ROA not before: Sat 01 Jan 2022 03:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201153
IP address blocks: 80.209.255.0/24 maxlen: 24
185.142.102.0/24 maxlen: 24
185.142.100.0/23 maxlen: 23
185.142.100.0/22 maxlen: 22
185.142.100.0/24 maxlen: 24
185.142.102.0/23 maxlen: 23
185.142.101.0/24 maxlen: 24
195.181.255.0/24 maxlen: 24
185.81.78.0/24 maxlen: 24
185.81.76.0/23 maxlen: 23
185.81.76.0/22 maxlen: 22
185.81.76.0/24 maxlen: 24
185.81.77.0/24 maxlen: 24
185.81.78.0/23 maxlen: 23
185.81.79.0/24 maxlen: 24
212.237.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2837982 (0x2b4dde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae63990b7eee4cb5d54db723c3f8736ddb43139
Validity
Not Before: Jan 1 03:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53bc0a4c5518cd438122010725caa2b97d4395c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:13:7f:25:ca:36:56:5e:c1:24:e8:86:bd:05:
09:be:0a:ab:34:20:48:c0:aa:2c:b3:dc:69:76:38:
97:29:58:63:22:a1:09:b6:50:83:43:f7:4f:95:dc:
44:19:89:e0:ea:73:84:80:56:83:9e:b0:dd:b8:14:
ae:b4:b7:e7:6a:4d:85:22:83:7f:e8:2b:7f:1f:86:
b6:51:12:d1:f3:47:3a:52:76:12:cd:e8:f8:3e:bf:
1c:33:0d:d9:0b:00:2a:24:5f:b6:bf:45:26:91:2e:
53:8f:f4:2c:7f:b8:29:a6:06:4b:0b:2b:bd:3d:9b:
94:cd:95:5f:34:22:5a:13:d0:fe:b4:0c:62:b1:f8:
c9:80:f1:39:32:16:76:35:27:84:48:24:19:52:85:
d8:43:ec:1a:fc:66:96:f4:8b:a4:33:eb:53:5b:cf:
a3:c6:f9:2c:35:16:6d:a6:15:47:d6:5b:21:6a:a6:
5c:ae:a5:de:da:f2:ef:1d:3b:ce:44:ef:0a:8d:cb:
50:0e:80:65:97:15:00:2d:58:f8:fd:72:40:4b:b0:
cc:2d:02:db:bd:bc:13:c9:c9:d7:5d:37:43:a0:de:
84:9c:51:cd:1f:db:4c:33:01:10:4e:82:7e:6c:fd:
18:1e:15:3e:80:63:74:e6:c9:75:a6:1b:86:0a:64:
ff:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BC:0A:4C:55:18:CD:43:81:22:01:07:25:CA:A2:B9:7D:43:95:C9
X509v3 Authority Key Identifier:
keyid:3A:E6:39:90:B7:EE:E4:CB:5D:54:DB:72:3C:3F:87:36:DD:B4:31:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuY5kLfu5MtdVNtyPD-HNt20MTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9dc00b-0ec5-43f5-88a0-0d7605ad9d71/1/U7wKTFUYzUOBIgEHJcqiuX1Dlck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9dc00b-0ec5-43f5-88a0-0d7605ad9d71/1/OuY5kLfu5MtdVNtyPD-HNt20MTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.209.255.0/24
185.81.76.0/22
185.142.100.0/22
195.181.255.0/24
212.237.255.0/24
Signature Algorithm: sha256WithRSAEncryption
88:e5:6f:a5:1a:7f:c8:3d:4d:13:45:f3:3e:5f:f6:12:77:a3:
a1:b0:29:62:f0:3c:eb:4f:ed:4c:aa:b4:c2:ba:8b:47:83:c1:
f4:0f:96:ea:86:44:7a:dd:e8:c4:71:67:9a:25:6c:d8:a3:58:
65:ae:85:86:e9:75:91:50:3e:57:68:ea:31:e2:cc:a8:51:38:
b7:33:23:a5:1c:e3:31:c6:12:92:e6:71:fa:5f:1c:3a:18:37:
cb:f7:5d:56:f0:06:13:f1:33:d4:02:04:1f:93:bf:c1:62:35:
43:33:1a:2e:21:e4:49:c4:16:b4:2f:ec:2b:3e:a4:53:41:11:
3d:75:4e:18:4c:21:a7:c8:e8:f1:5d:d6:17:23:f5:19:bc:cb:
88:02:ca:8a:f9:e0:0a:8b:66:a4:02:48:08:a0:94:0c:d5:14:
f6:40:b6:c6:c9:18:80:75:63:f1:56:97:ac:88:cb:01:a2:5d:
b2:91:86:3f:6b:09:54:42:ec:da:6b:98:9b:79:f0:86:82:4a:
af:7e:7c:b6:74:2b:b4:fb:95:fc:70:65:e3:46:df:77:6f:22:
59:26:5c:69:19:a4:96:3d:3d:8a:a1:ee:65:ca:70:3d:98:bb:
ec:b5:60:b3:74:87:96:0d:31:33:2e:33:78:20:2e:33:63:88:
5c:ee:85:2a
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIDK03eMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDNh
ZTYzOTkwYjdlZWU0Y2I1ZDU0ZGI3MjNjM2Y4NzM2ZGRiNDMxMzkwHhcNMjIwMTAx
MDM1MzQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg1M2JjMGE0YzU1MThj
ZDQzODEyMjAxMDcyNWNhYTJiOTdkNDM5NWM5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtxN/Jco2Vl7BJOiGvQUJvgqrNCBIwKoss9xpdjiXKVhjIqEJ
tlCDQ/dPldxEGYng6nOEgFaDnrDduBSutLfnak2FIoN/6Ct/H4a2URLR80c6UnYS
zej4Pr8cMw3ZCwAqJF+2v0UmkS5Tj/Qsf7gppgZLCyu9PZuUzZVfNCJaE9D+tAxi
sfjJgPE5MhZ2NSeESCQZUoXYQ+wa/GaW9IukM+tTW8+jxvksNRZtphVH1lshaqZc
rqXe2vLvHTvORO8KjctQDoBllxUALVj4/XJAS7DMLQLbvbwTycnXXTdDoN6EnFHN
H9tMMwEQToJ+bP0YHhU+gGN05sl1phuGCmT/nwIDAQABo4ICITCCAh0wHQYDVR0O
BBYEFFO8CkxVGM1DgSIBByXKorl9Q5XJMB8GA1UdIwQYMBaAFDrmOZC37uTLXVTb
cjw/hzbdtDE5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
T3VZNWtMZnU1TXRkVk50eVBELUhOdDIwTVRrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80Yi85ZGMwMGItMGVjNS00M2Y1LTg4YTAtMGQ3NjA1YWQ5ZDcxLzEv
VTd3S1RGVVl6VU9CSWdFSEpjcWl1WDFEbGNrLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi85
ZGMwMGItMGVjNS00M2Y1LTg4YTAtMGQ3NjA1YWQ5ZDcxLzEvT3VZNWtMZnU1TXRk
Vk50eVBELUhOdDIwTVRrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcG
CCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAUNH/AwQCuVFMAwQCuY5kAwQAw7X/
AwQA1O3/MA0GCSqGSIb3DQEBCwUAA4IBAQCI5W+lGn/IPU0TRfM+X/YSd6OhsCli
8DzrT+1MqrTCuotHg8H0D5bqhkR63ejEcWeaJWzYo1hlroWG6XWRUD5XaOox4syo
UTi3MyOlHOMxxhKS5nH6Xxw6GDfL911W8AYT8TPUAgQfk7/BYjVDMxouIeRJxBa0
L+wrPqRTQRE9dU4YTCGnyOjxXdYXI/UZvMuIAsqK+eAKi2akAkgIoJQM1RT2QLbG
yRiAdWPxVpesiMsBol2ykYY/awlUQuzaa5ibefCGgkqvfny2dCu0+5X8cGXjRt93
byJZJlxpGaSWPT2Koe5lynA9mLvstWCzdIeWDTEzLjN4IC4zY4hc7oUq
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:15 2024 by rpki-client on console-ams.rpki-client.org