Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/596b71-b808-455e-8e21-7145f087f7ce/1/9GK55XV9TnIysCcLUR7wsCTGQgw.roa
File: 9GK55XV9TnIysCcLUR7wsCTGQgw.roa (raw, json)
Hash identifier: 99YFNdH8apxe4XtiQyS7UcA7YxpUqhaiy2DeJEbhucQ=
Subject key identifier: F4:62:B9:E5:75:7D:4E:72:32:B0:27:0B:51:1E:F0:B0:24:C6:42:0C
Certificate issuer: /CN=550352e48a993e752de77091b63198c8232341ce
Certificate serial: 0AD68DBE
Authority key identifier: 55:03:52:E4:8A:99:3E:75:2D:E7:70:91:B6:31:98:C8:23:23:41:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VQNS5IqZPnUt53CRtjGYyCMjQc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/596b71-b808-455e-8e21-7145f087f7ce/1/9GK55XV9TnIysCcLUR7wsCTGQgw.roa
Signing time: Sat 01 Jan 2022 07:53:30 +0000
ROA not before: Sat 01 Jan 2022 07:53:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41897
IP address blocks: 89.147.94.0/23 maxlen: 23
89.147.94.0/24 maxlen: 24
89.147.95.0/24 maxlen: 24
89.147.92.0/23 maxlen: 23
89.147.92.0/22 maxlen: 22
89.147.93.0/24 maxlen: 24
89.147.92.0/24 maxlen: 24
185.156.152.0/23 maxlen: 23
185.156.152.0/22 maxlen: 22
185.156.152.0/24 maxlen: 24
185.156.155.0/24 maxlen: 24
185.156.153.0/24 maxlen: 24
185.156.154.0/23 maxlen: 24
185.156.154.0/24 maxlen: 24
89.147.84.0/22 maxlen: 22
89.147.84.0/23 maxlen: 23
89.147.84.0/24 maxlen: 24
89.147.85.0/24 maxlen: 24
89.147.82.0/24 maxlen: 24
89.147.82.0/23 maxlen: 23
89.147.83.0/24 maxlen: 24
89.147.80.0/20 maxlen: 20
89.147.80.0/21 maxlen: 21
89.147.80.0/22 maxlen: 22
89.147.80.0/24 maxlen: 24
89.147.81.0/24 maxlen: 24
89.147.80.0/23 maxlen: 23
89.147.88.0/21 maxlen: 21
89.147.89.0/24 maxlen: 24
89.147.88.0/23 maxlen: 23
89.147.88.0/22 maxlen: 22
89.147.90.0/24 maxlen: 24
89.147.87.0/24 maxlen: 24
89.147.90.0/23 maxlen: 23
89.147.88.0/24 maxlen: 24
89.147.86.0/24 maxlen: 24
89.147.86.0/23 maxlen: 23
89.147.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181833150 (0xad68dbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=550352e48a993e752de77091b63198c8232341ce
Validity
Not Before: Jan 1 07:53:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f462b9e5757d4e7232b0270b511ef0b024c6420c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:49:a0:fd:0c:7e:eb:32:d7:1d:dd:1a:77:cf:
0d:c7:61:06:76:1b:b5:d8:54:e5:40:2e:7f:9f:ac:
a8:11:52:fb:50:bf:65:87:e7:c6:2e:0a:ab:bb:6d:
9d:91:cc:a0:1c:43:a9:fd:8c:59:99:63:f1:78:08:
c4:66:4f:ae:a5:0e:64:07:9b:23:6f:e5:8b:31:39:
9e:ab:25:d2:08:14:c2:35:d3:74:31:de:77:a9:2c:
0d:14:84:85:6f:d2:cf:1d:d9:db:f3:80:12:96:c5:
3d:4a:bf:59:f7:e5:6e:29:1a:03:5f:4a:db:da:cb:
65:29:2d:65:cb:1f:25:6d:d5:b0:4e:f0:22:78:10:
90:6c:ba:dd:6b:4f:79:85:c3:33:8b:23:3d:52:b0:
dd:fc:22:94:a2:f0:3e:08:b6:d6:da:64:b2:38:0d:
39:f6:ae:3b:e6:46:06:c2:91:fc:44:41:89:59:9f:
82:a2:7f:41:25:14:75:0c:3c:37:de:68:96:d2:aa:
9c:42:58:78:18:f2:64:d9:84:16:9c:99:8c:d3:13:
44:12:7f:0a:e0:3a:2b:38:c6:c5:a1:60:84:56:7f:
21:97:f2:09:d1:32:c0:91:13:f6:1e:b4:7d:77:1f:
ea:32:c6:dd:79:6d:58:59:fe:86:60:af:47:e6:e2:
5e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:62:B9:E5:75:7D:4E:72:32:B0:27:0B:51:1E:F0:B0:24:C6:42:0C
X509v3 Authority Key Identifier:
keyid:55:03:52:E4:8A:99:3E:75:2D:E7:70:91:B6:31:98:C8:23:23:41:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VQNS5IqZPnUt53CRtjGYyCMjQc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/596b71-b808-455e-8e21-7145f087f7ce/1/9GK55XV9TnIysCcLUR7wsCTGQgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/596b71-b808-455e-8e21-7145f087f7ce/1/VQNS5IqZPnUt53CRtjGYyCMjQc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.147.80.0/20
185.156.152.0/22
Signature Algorithm: sha256WithRSAEncryption
56:be:4a:c9:63:e8:e8:b9:e2:f8:aa:f0:dc:ff:28:fc:b4:62:
be:0a:4a:93:00:8a:97:3c:15:ec:f9:52:92:87:08:24:28:ec:
91:93:d5:10:ad:7e:6a:d0:db:e0:ed:65:dd:af:8d:27:de:28:
e7:83:85:2e:f3:78:4a:f4:92:15:de:01:d4:5f:61:2b:55:6c:
ce:04:35:7f:e5:55:96:74:74:2b:a6:af:43:f3:c8:29:fb:f3:
8f:ee:67:6e:3e:46:12:01:69:3b:70:ba:41:be:d7:fc:9b:97:
79:a6:c2:26:fa:0e:1f:cb:14:1f:64:0f:20:a8:eb:39:da:13:
e9:12:27:bc:48:06:d4:8d:dd:95:d7:24:d2:11:8a:96:fc:39:
48:c3:82:a3:2d:ab:52:a5:36:02:72:b2:d2:a2:43:30:5c:da:
62:9c:95:a2:21:6b:21:a3:00:2d:f4:46:cf:56:c6:c1:be:9d:
6e:bc:61:d8:c7:0e:0a:ef:d7:9f:d8:ad:2e:91:0e:74:88:dd:
52:2d:44:ef:b4:3d:9d:ab:0e:3c:1d:72:a3:67:73:4e:66:90:
dc:38:fc:bf:4b:4b:49:53:4c:38:43:c2:c8:9a:52:cf:92:12:
b8:dd:e3:49:3b:72:e2:25:be:83:ec:f6:d5:a0:e9:75:3f:52:
93:b7:b9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:58 2024 by rpki-client on console-fra.rpki-client.org