Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/6TRM8_59cioA3G7bGGdVmzAaLEw.roa
File: 6TRM8_59cioA3G7bGGdVmzAaLEw.roa (raw, json)
Hash identifier: DYaTYYWGV+/tSKj+bvrMmUeFFJtTZeVBazCpYu+68tc=
Subject key identifier: E9:34:4C:F3:FE:7D:72:2A:00:DC:6E:DB:18:67:55:9B:30:1A:2C:4C
Certificate issuer: /CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Certificate serial: 17845672
Authority key identifier: 70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/6TRM8_59cioA3G7bGGdVmzAaLEw.roa
Signing time: Thu 31 Mar 2022 05:25:25 +0000
ROA not before: Thu 31 Mar 2022 05:25:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34655
IP address blocks: 95.128.120.0/24 maxlen: 24
109.71.165.0/24 maxlen: 24
95.128.124.0/24 maxlen: 24
2a03:9c40::/48 maxlen: 48
2a03:9c40:200::/48 maxlen: 48
2a03:9c40:400::/48 maxlen: 48
2a03:9c40:600::/48 maxlen: 48
2a03:9c40:800::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394548850 (0x17845672)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Validity
Not Before: Mar 31 05:25:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9344cf3fe7d722a00dc6edb1867559b301a2c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9d:f8:70:21:72:84:7f:89:4e:28:69:d2:d4:
df:77:fe:77:f1:16:ef:50:e1:20:f3:24:a5:47:7d:
d5:3f:b0:0d:60:25:7f:3f:0f:f0:54:29:22:d6:2f:
e7:ba:d8:c9:c3:a3:12:1d:19:f1:21:c0:af:9a:a4:
41:89:aa:93:c9:f7:16:18:4c:a4:59:f9:63:aa:f0:
ca:f1:db:b0:df:b7:80:4f:60:b4:e9:0e:a1:a0:9a:
e5:53:e5:17:28:18:75:1d:11:2f:2e:98:a5:90:32:
a8:88:cf:6b:cb:ef:9a:6f:2d:fe:8d:5a:9b:62:ae:
92:5d:1b:1c:63:38:af:7a:c6:6f:0d:54:32:2e:a8:
fa:fa:8d:e3:ec:ca:0b:23:74:b6:16:a5:5d:2f:df:
a9:9a:89:5a:99:28:9b:90:2a:e3:26:1d:a5:48:8e:
1e:32:44:60:cc:7e:ef:ac:1e:64:f6:37:a0:26:2c:
18:72:34:e9:c7:b6:06:62:3b:72:01:81:ca:8c:cb:
5c:a8:2e:c6:12:d0:6b:e9:5f:af:1c:b9:9a:5b:e8:
b4:a3:33:ae:18:ec:0a:83:53:ea:38:32:ba:c0:b3:
23:7e:ab:67:20:40:f5:ee:70:b9:17:4b:ec:9a:a7:
31:d0:bc:56:f6:e8:c2:15:1d:3f:53:af:3f:36:e5:
4f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:34:4C:F3:FE:7D:72:2A:00:DC:6E:DB:18:67:55:9B:30:1A:2C:4C
X509v3 Authority Key Identifier:
keyid:70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/6TRM8_59cioA3G7bGGdVmzAaLEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/cE6wMksWcpndYGTbvzQNL5nEAsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.120.0/24
95.128.124.0/24
109.71.165.0/24
IPv6:
2a03:9c40::/48
2a03:9c40:200::/48
2a03:9c40:400::/48
2a03:9c40:600::/48
2a03:9c40:800::/48
Signature Algorithm: sha256WithRSAEncryption
08:28:3b:83:45:68:e8:8f:ad:1a:27:c8:58:19:47:a5:de:50:
fb:86:3b:b3:cd:7c:be:22:d2:2e:f6:31:e8:8a:81:78:8a:6d:
cb:50:a6:95:2c:58:10:5a:09:af:c9:30:c5:71:71:75:8e:da:
07:b6:58:93:f1:a4:d3:54:18:9f:ee:ad:48:4b:a0:c4:89:6c:
9a:28:32:a2:14:6a:dd:a1:60:f3:d1:a9:8f:40:5d:fb:02:3b:
01:70:7e:80:7c:bb:ad:33:02:8d:73:3d:f8:d4:a8:64:37:6a:
28:f3:00:3e:f1:3d:b1:39:cd:17:0c:c8:c9:a9:5c:53:82:a7:
50:56:15:62:f1:d6:cd:de:ef:f1:0f:9d:e9:36:67:05:3a:71:
9b:12:be:ec:3d:b1:d4:67:07:40:a7:d4:2e:9c:a2:a1:fc:a3:
2b:c7:0e:86:98:99:cb:1b:41:ae:e8:29:22:e1:c3:4d:1f:3e:
87:33:58:6c:45:a7:65:0b:9b:c3:53:f8:35:ca:d7:d1:46:15:
4c:24:f0:4d:df:ee:84:fa:0e:20:7d:ed:3e:0c:8a:06:e4:fa:
ea:c7:17:de:cb:81:55:ca:03:ac:c4:91:7e:59:f0:8f:96:1b:
78:58:e6:d8:2a:7d:c0:1e:78:77:3f:01:26:50:01:9d:93:8b:
9f:88:16:e8
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgIEF4RWcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MDRlYjAzMjRiMTY3Mjk5ZGQ2MDY0ZGJiZjM0MGQyZjk5YzQwMmMyMB4XDTIyMDMz
MTA1MjUyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTkzNDRjZjNmZTdk
NzIyYTAwZGM2ZWRiMTg2NzU1OWIzMDFhMmM0YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJyd+HAhcoR/iU4oadLU33f+d/EW71DhIPMkpUd91T+wDWAl
fz8P8FQpItYv57rYycOjEh0Z8SHAr5qkQYmqk8n3FhhMpFn5Y6rwyvHbsN+3gE9g
tOkOoaCa5VPlFygYdR0RLy6YpZAyqIjPa8vvmm8t/o1am2Kukl0bHGM4r3rGbw1U
Mi6o+vqN4+zKCyN0thalXS/fqZqJWpkom5Aq4yYdpUiOHjJEYMx+76weZPY3oCYs
GHI06ce2BmI7cgGByozLXKguxhLQa+lfrxy5mlvotKMzrhjsCoNT6jgyusCzI36r
ZyBA9e5wuRdL7JqnMdC8VvbowhUdP1OvPzblT5cCAwEAAaOCAkowggJGMB0GA1Ud
DgQWBBTpNEzz/n1yKgDcbtsYZ1WbMBosTDAfBgNVHSMEGDAWgBRwTrAySxZymd1g
ZNu/NA0vmcQCwjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NFNndNa3NXY3BuZFlHVGJ2elFOTDVuRUFzSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvYWRhNjkxLTBlM2EtNDg4Zi04OWRlLTRjZjI5ODU3NmIwMS8x
LzZUUk04XzU5Y2lvQTNHN2JHR2RWbXpBYUxFdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
YWRhNjkxLTBlM2EtNDg4Zi04OWRlLTRjZjI5ODU3NmIwMS8xL2NFNndNa3NXY3Bu
ZFlHVGJ2elFOTDVuRUFzSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBg
BggrBgEFBQcBBwEB/wRRME8wGAQCAAEwEgMEAF+AeAMEAF+AfAMEAG1HpTAzBAIA
AjAtAwcAKgOcQAAAAwcAKgOcQAIAAwcAKgOcQAQAAwcAKgOcQAYAAwcAKgOcQAgA
MA0GCSqGSIb3DQEBCwUAA4IBAQAIKDuDRWjoj60aJ8hYGUel3lD7hjuzzXy+ItIu
9jHoioF4im3LUKaVLFgQWgmvyTDFcXF1jtoHtliT8aTTVBif7q1IS6DEiWyaKDKi
FGrdoWDz0amPQF37AjsBcH6AfLutMwKNcz341KhkN2oo8wA+8T2xOc0XDMjJqVxT
gqdQVhVi8dbN3u/xD53pNmcFOnGbEr7sPbHUZwdAp9QunKKh/KMrxw6GmJnLG0Gu
6Cki4cNNHz6HM1hsRadlC5vDU/g1ytfRRhVMJPBN3+6E+g4gfe0+DIoG5Prqxxfe
y4FVygOsxJF+WfCPlht4WObYKn3AHnh3PwEmUAGdk4ufiBbo
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:27 2024 by rpki-client on console-ams.rpki-client.org