Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/BS7DIw41GWvh-dWQvEGGOCz834o.roa
File: BS7DIw41GWvh-dWQvEGGOCz834o.roa (raw, json)
Hash identifier: gM9eoC7Q1vq483O0OLUtTsiv3AfDc3fL2S4CNDgC4no=
Subject key identifier: 05:2E:C3:23:0E:35:19:6B:E1:F9:D5:90:BC:41:86:38:2C:FC:DF:8A
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 162A54B1
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/BS7DIw41GWvh-dWQvEGGOCz834o.roa
Signing time: Mon 04 Jul 2022 14:00:25 +0000
ROA not before: Mon 04 Jul 2022 14:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8315
IP address blocks: 162.248.196.0/22 maxlen: 24
185.113.196.0/22 maxlen: 24
94.198.24.0/21 maxlen: 24
185.113.224.0/22 maxlen: 24
5.100.224.0/21 maxlen: 24
213.171.128.0/19 maxlen: 24
213.171.144.0/20 maxlen: 24
89.18.188.0/22 maxlen: 24
79.99.184.0/21 maxlen: 24
185.113.52.0/22 maxlen: 24
89.18.160.0/22 maxlen: 24
89.18.160.0/19 maxlen: 24
89.18.168.0/21 maxlen: 24
162.251.32.0/21 maxlen: 24
89.18.180.0/22 maxlen: 24
185.12.132.0/22 maxlen: 24
178.251.192.0/21 maxlen: 24
176.62.192.0/21 maxlen: 24
213.214.96.0/19 maxlen: 24
83.98.192.0/21 maxlen: 24
194.105.128.0/23 maxlen: 24
83.98.200.0/22 maxlen: 24
83.98.208.0/20 maxlen: 24
213.247.32.0/19 maxlen: 24
91.216.113.0/24 maxlen: 24
193.34.150.0/23 maxlen: 24
91.216.141.0/24 maxlen: 24
85.92.128.0/19 maxlen: 24
185.38.156.0/22 maxlen: 24
85.92.128.0/20 maxlen: 24
85.92.144.0/22 maxlen: 24
85.92.152.0/21 maxlen: 24
91.200.51.0/24 maxlen: 24
91.200.48.0/23 maxlen: 24
85.158.160.0/21 maxlen: 24
134.0.88.0/22 maxlen: 24
134.0.92.0/23 maxlen: 24
213.189.0.0/19 maxlen: 24
213.189.0.0/21 maxlen: 24
213.189.8.0/22 maxlen: 24
185.77.120.0/22 maxlen: 24
194.165.34.0/24 maxlen: 24
217.195.112.0/20 maxlen: 24
185.74.77.0/24 maxlen: 24
185.74.76.0/24 maxlen: 24
89.30.128.0/18 maxlen: 24
89.30.240.0/21 maxlen: 24
83.98.128.0/18 maxlen: 24
89.30.192.0/19 maxlen: 24
213.189.16.0/20 maxlen: 24
85.222.192.0/21 maxlen: 24
93.175.176.0/20 maxlen: 24
89.30.224.0/22 maxlen: 24
89.30.224.0/21 maxlen: 24
185.30.236.0/22 maxlen: 24
2a00:1bd8::/32 maxlen: 48
2a02:2858::/29 maxlen: 48
2a02:20b0::/32 maxlen: 48
2001:4198::/32 maxlen: 48
2a02:2858:500::/40 maxlen: 40
2001:16f8::/32 maxlen: 48
2a02:20b2::/32 maxlen: 48
2a02:20b1::/32 maxlen: 48
2a03:5500::/31 maxlen: 48
2a01:40e0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 371872945 (0x162a54b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jul 4 14:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=052ec3230e35196be1f9d590bc4186382cfcdf8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d7:7b:33:3a:cb:7c:bb:de:46:f2:ed:b0:28:
bc:da:c4:dc:ab:ab:ac:03:5b:2e:a3:69:21:16:ef:
75:45:f9:45:78:b9:f1:76:f7:1a:f0:56:4d:01:a0:
63:69:e9:a2:8a:00:2c:c1:5f:73:af:20:f2:44:bf:
2b:84:dd:80:b2:6f:a4:d9:1f:84:e5:af:c2:ae:f4:
f9:00:03:bf:ef:ba:9d:fd:fd:fb:b7:2f:19:c5:86:
11:57:71:27:14:63:75:33:f6:0b:40:b5:01:09:58:
40:ea:00:5e:09:bc:2f:e5:65:c7:36:b5:db:5a:87:
bf:03:6a:df:8c:ad:0c:92:3b:e6:17:26:66:73:84:
74:1a:0b:d9:d2:81:20:21:09:96:6c:4c:be:34:0b:
fa:ec:cf:ea:5f:0a:93:bd:17:a8:73:dc:1e:cc:bb:
97:8e:a5:44:d6:1d:27:04:a1:73:44:b4:93:1d:b9:
6f:85:65:ce:73:0a:f3:4a:de:37:01:b3:ba:78:45:
a9:e5:85:b5:d2:99:15:24:46:59:56:58:78:5d:3e:
59:93:73:19:c2:2b:3e:f0:4f:c5:e7:14:b5:97:41:
f0:d8:bc:8f:a5:ca:e8:76:ee:dd:1d:39:9d:27:e1:
05:11:61:b5:f6:b4:c4:31:b3:46:ef:d9:c1:d8:d8:
57:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:2E:C3:23:0E:35:19:6B:E1:F9:D5:90:BC:41:86:38:2C:FC:DF:8A
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/BS7DIw41GWvh-dWQvEGGOCz834o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.224.0/21
79.99.184.0/21
83.98.128.0-83.98.203.255
83.98.208.0/20
85.92.128.0/19
85.158.160.0/21
85.222.192.0/21
89.18.160.0/19
89.30.128.0-89.30.231.255
89.30.240.0/21
91.200.48.0/23
91.200.51.0/24
91.216.113.0/24
91.216.141.0/24
93.175.176.0/20
94.198.24.0/21
134.0.88.0-134.0.93.255
162.248.196.0/22
162.251.32.0/21
176.62.192.0/21
178.251.192.0/21
185.12.132.0/22
185.30.236.0/22
185.38.156.0/22
185.74.76.0/23
185.77.120.0/22
185.113.52.0/22
185.113.196.0/22
185.113.224.0/22
193.34.150.0/23
194.105.128.0/23
194.165.34.0/24
213.171.128.0/19
213.189.0.0/19
213.214.96.0/19
213.247.32.0/19
217.195.112.0/20
IPv6:
2001:16f8::/32
2001:4198::/32
2a00:1bd8::/32
2a01:40e0::/32
2a02:20b0::-2a02:20b2:ffff:ffff:ffff:ffff:ffff:ffff
2a02:2858::/29
2a03:5500::/31
Signature Algorithm: sha256WithRSAEncryption
3f:d2:e3:f1:f9:c0:f2:7b:1a:b7:72:c3:5d:9a:0a:d2:31:61:
f9:54:f8:1c:cf:d3:4d:90:3c:c1:f0:38:52:2c:c9:94:e0:66:
6e:37:dd:04:6a:32:a0:2c:26:38:41:99:1f:a5:c0:ea:94:f6:
b0:e7:e3:20:20:c8:b4:c7:e9:52:8d:bf:f0:4a:96:01:60:64:
ae:aa:67:58:aa:2a:5e:8e:11:e6:a2:c5:2d:3c:d6:ec:d3:5d:
b4:38:95:83:d4:db:71:23:c5:4a:63:20:4c:16:54:d4:6a:90:
87:9c:3e:1e:15:9d:c7:64:7f:40:f7:c5:58:0c:a0:00:bc:c4:
46:7b:df:c4:8c:ac:05:53:53:b8:ed:f5:a1:8a:d8:b2:bc:02:
f3:86:78:92:e4:5d:31:58:31:de:14:ac:b1:a1:f3:81:f0:d3:
5c:fc:ce:9c:f2:21:b5:3c:f2:f7:03:80:a5:a0:98:45:a0:c7:
a5:dc:49:a3:0b:da:bf:95:ea:dd:ca:69:39:a0:86:16:0f:a6:
17:f7:7d:d8:27:ef:5f:8f:a4:a7:e5:e3:94:ee:cd:a7:45:fb:
8b:50:cb:e8:56:f1:66:41:49:fb:0c:7a:27:11:ab:52:12:f1:
9a:00:6c:44:18:29:cd:1a:f5:0c:3b:60:57:4e:d8:23:19:7d:
ec:a1:e6:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org