Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/_OoDPuKBzdDeBCl4g0E3sCaIAfM.roa
File: _OoDPuKBzdDeBCl4g0E3sCaIAfM.roa (raw, json)
Hash identifier: WVi153QJLDbZJymrhuPOJVUDJxVG7gCQelqT9AQGUcU=
Subject key identifier: FC:EA:03:3E:E2:81:CD:D0:DE:04:29:78:83:41:37:B0:26:88:01:F3
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 01856DD4022D7922C3E7753F2280BA5E38B7
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/_OoDPuKBzdDeBCl4g0E3sCaIAfM.roa
Signing time: Sun 01 Jan 2023 14:54:48 +0000
ROA not before: Sun 01 Jan 2023 14:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8315
IP address blocks: 162.248.196.0/22 maxlen: 24
185.113.196.0/22 maxlen: 24
94.198.24.0/21 maxlen: 24
185.113.224.0/22 maxlen: 24
5.100.224.0/21 maxlen: 24
213.171.128.0/19 maxlen: 24
213.171.144.0/20 maxlen: 24
89.18.188.0/22 maxlen: 24
79.99.184.0/21 maxlen: 24
185.113.52.0/22 maxlen: 24
89.18.160.0/22 maxlen: 24
89.18.160.0/19 maxlen: 24
89.18.168.0/21 maxlen: 24
162.251.32.0/21 maxlen: 24
89.18.180.0/22 maxlen: 24
185.12.132.0/22 maxlen: 24
178.251.192.0/21 maxlen: 24
176.62.192.0/21 maxlen: 24
213.214.96.0/19 maxlen: 24
83.98.192.0/21 maxlen: 24
194.105.128.0/23 maxlen: 24
83.98.200.0/22 maxlen: 24
83.98.208.0/20 maxlen: 24
213.247.32.0/19 maxlen: 24
91.216.113.0/24 maxlen: 24
193.34.150.0/23 maxlen: 24
91.216.141.0/24 maxlen: 24
85.92.128.0/19 maxlen: 24
185.38.156.0/22 maxlen: 24
85.92.128.0/20 maxlen: 24
85.92.144.0/22 maxlen: 24
85.92.152.0/21 maxlen: 24
91.200.51.0/24 maxlen: 24
91.200.48.0/23 maxlen: 24
85.158.160.0/21 maxlen: 24
134.0.88.0/22 maxlen: 24
134.0.92.0/23 maxlen: 24
213.189.0.0/19 maxlen: 24
213.189.0.0/21 maxlen: 24
213.189.8.0/22 maxlen: 24
185.77.120.0/22 maxlen: 24
194.165.34.0/24 maxlen: 24
217.195.112.0/20 maxlen: 24
185.74.77.0/24 maxlen: 24
185.74.76.0/24 maxlen: 24
89.30.128.0/18 maxlen: 24
89.30.240.0/21 maxlen: 24
83.98.128.0/18 maxlen: 24
89.30.192.0/19 maxlen: 24
213.189.16.0/20 maxlen: 24
85.222.192.0/21 maxlen: 24
93.175.176.0/20 maxlen: 24
89.30.224.0/22 maxlen: 24
89.30.224.0/21 maxlen: 24
185.30.236.0/22 maxlen: 24
2a00:1bd8::/32 maxlen: 48
2a02:2858::/29 maxlen: 48
2a02:20b0::/32 maxlen: 48
2001:4198::/32 maxlen: 48
2a02:2858:500::/40 maxlen: 40
2001:16f8::/32 maxlen: 48
2a02:20b2::/32 maxlen: 48
2a02:20b1::/32 maxlen: 48
2a03:5500::/31 maxlen: 48
2a01:40e0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:02:2d:79:22:c3:e7:75:3f:22:80:ba:5e:38:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 14:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcea033ee281cdd0de042978834137b0268801f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:df:fe:5c:b7:ae:e0:55:36:ed:14:c8:f6:d0:
9b:d7:20:eb:88:cc:f0:cf:a1:09:48:20:63:f4:f8:
ad:37:cf:17:41:19:82:c6:93:b0:09:58:b5:fe:1a:
35:a7:17:c4:fe:7f:bd:5e:98:1e:f7:bc:63:4b:dc:
37:e7:1e:c3:01:e9:95:4b:aa:8b:18:d1:24:85:b2:
31:97:75:9b:62:0c:fa:cd:f0:47:1d:f8:e2:42:7d:
71:7f:44:94:c0:0b:88:65:06:b3:34:6e:42:30:6f:
1b:1c:c3:8a:58:f9:d2:5c:97:a2:c0:4c:17:d8:81:
c6:f7:27:bf:89:36:1d:bc:6f:f0:f2:16:bd:1d:82:
73:ce:10:35:0c:1b:a9:89:31:58:6d:17:d6:e9:4e:
3f:0d:13:04:40:2a:47:40:a5:10:10:2f:de:84:44:
7e:07:14:ef:1e:e0:83:28:86:d2:0b:5b:49:b4:98:
b1:85:fb:69:e7:f9:c0:3e:b5:bb:f9:a8:8f:aa:78:
e2:e0:6b:40:e0:6e:f4:fc:48:a9:50:a4:de:2b:77:
44:32:7a:cf:44:40:8c:ea:50:79:79:95:37:6c:9f:
50:c1:50:6a:49:51:92:ee:56:8a:a0:67:4a:55:90:
51:b1:8f:c8:ac:16:c6:37:3e:90:b4:ba:eb:d3:50:
1c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:EA:03:3E:E2:81:CD:D0:DE:04:29:78:83:41:37:B0:26:88:01:F3
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/_OoDPuKBzdDeBCl4g0E3sCaIAfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.224.0/21
79.99.184.0/21
83.98.128.0-83.98.203.255
83.98.208.0/20
85.92.128.0/19
85.158.160.0/21
85.222.192.0/21
89.18.160.0/19
89.30.128.0-89.30.231.255
89.30.240.0/21
91.200.48.0/23
91.200.51.0/24
91.216.113.0/24
91.216.141.0/24
93.175.176.0/20
94.198.24.0/21
134.0.88.0-134.0.93.255
162.248.196.0/22
162.251.32.0/21
176.62.192.0/21
178.251.192.0/21
185.12.132.0/22
185.30.236.0/22
185.38.156.0/22
185.74.76.0/23
185.77.120.0/22
185.113.52.0/22
185.113.196.0/22
185.113.224.0/22
193.34.150.0/23
194.105.128.0/23
194.165.34.0/24
213.171.128.0/19
213.189.0.0/19
213.214.96.0/19
213.247.32.0/19
217.195.112.0/20
IPv6:
2001:16f8::/32
2001:4198::/32
2a00:1bd8::/32
2a01:40e0::/32
2a02:20b0::-2a02:20b2:ffff:ffff:ffff:ffff:ffff:ffff
2a02:2858::/29
2a03:5500::/31
Signature Algorithm: sha256WithRSAEncryption
00:96:fd:ca:33:13:49:db:ab:12:0a:50:33:57:8e:87:db:87:
e4:e9:35:8c:f8:f8:a9:ef:eb:27:a6:40:40:d7:94:e3:51:b5:
68:ad:60:f0:86:d5:57:bc:13:6c:8c:55:08:f2:16:e6:e8:b8:
de:8a:22:17:83:ac:0f:03:6c:af:98:b1:ed:ba:34:76:bc:4e:
82:1b:d6:bc:7e:23:48:a6:8f:da:78:7e:c3:4b:ff:b6:4f:43:
73:6e:80:44:7c:0e:76:db:8d:09:b0:be:6a:20:be:b9:3d:32:
4f:e6:eb:77:cb:57:92:03:23:af:bd:aa:3d:b4:01:fd:d0:8c:
58:b7:35:a7:fc:24:ec:32:c1:0d:07:68:1e:a9:62:a3:77:31:
b7:1e:1f:db:6c:4d:12:76:13:c1:2c:bf:7a:1a:53:a1:9f:2a:
95:7e:72:1b:5b:e9:fc:ae:d8:8f:c7:bd:42:ed:ae:30:55:0b:
55:47:17:79:41:99:5a:98:a6:6e:db:53:5f:46:50:1f:02:96:
3b:2a:a0:ba:47:bf:81:5f:91:f4:c7:8b:31:e0:59:32:f7:f0:
8d:da:82:7d:26:75:4a:cf:f9:59:ce:c4:32:71:0d:5f:c1:ce:
c7:37:93:72:ab:33:d9:06:2a:38:b9:ab:67:4b:2c:0d:bd:98:
ec:d8:2d:4d
-----BEGIN CERTIFICATE-----
MIIGNzCCBR+gAwIBAgISAYVt1AIteSLD53U/IoC6Xji3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNjQwYjAyMzExMzc2ZGM5NmVlYmZlY2E3NTVjM2IwMDYx
MTQwZWMwHhcNMjMwMTAxMTQ1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmY2VhMDMzZWUyODFjZGQwZGUwNDI5Nzg4MzQxMzdiMDI2ODgwMWYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsN/+XLeu4FU27RTI9tCb1yDriMzw
z6EJSCBj9PitN88XQRmCxpOwCVi1/ho1pxfE/n+9Xpge97xjS9w35x7DAemVS6qL
GNEkhbIxl3WbYgz6zfBHHfjiQn1xf0SUwAuIZQazNG5CMG8bHMOKWPnSXJeiwEwX
2IHG9ye/iTYdvG/w8ha9HYJzzhA1DBupiTFYbRfW6U4/DRMEQCpHQKUQEC/ehER+
BxTvHuCDKIbSC1tJtJixhftp5/nAPrW7+aiPqnji4GtA4G70/EipUKTeK3dEMnrP
RECM6lB5eZU3bJ9QwVBqSVGS7laKoGdKVZBRsY/IrBbGNz6QtLrr01AcJwIDAQAB
o4IDQzCCAz8wHQYDVR0OBBYEFPzqAz7igc3Q3gQpeINBN7AmiAHzMB8GA1UdIwQY
MBaAFM9kCwIxE3bclu6/7KdVw7AGEUDsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejJRTEFqRVRkdHlXN3Jfc3AxWERzQVlSUU93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMGVjNzgtN2U0NC00OWU0LTg0NDMt
OWRiNWJlNGQwZWZmLzEvX09vRFB1S0J6ZERlQkNsNGcwRTNzQ2FJQWZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMGVjNzgtN2U0NC00OWU0LTg0NDMtOWRiNWJlNGQwZWZm
LzEvejJRTEFqRVRkdHlXN3Jfc3AxWERzQVlSUU93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBVwYIKwYBBQUHAQcBAf8EggFGMIIBQjCB/QQCAAEwgfYD
BAMFZOADBANPY7gwDAMEB1NigAMEAlNiyAMEBFNi0AMEBVVcgAMEA1WeoAMEA1Xe
wAMEBVkSoDAMAwQHWR6AAwQDWR7gAwQDWR7wAwQBW8gwAwQAW8gzAwQAW9hxAwQA
W9iNAwQEXa+wAwQDXsYYMAwDBAOGAFgDBAGGAFwDBAKi+MQDBAOi+yADBAOwPsAD
BAOy+8ADBAK5DIQDBAK5HuwDBAK5JpwDBAG5SkwDBAK5TXgDBAK5cTQDBAK5ccQD
BAK5ceADBAHBIpYDBAHCaYADBADCpSIDBAXVq4ADBAXVvQADBAXV1mADBAXV9yAD
BATZw3AwQAQCAAIwOgMFACABFvgDBQAgAUGYAwUAKgAb2AMFACoBQOAwDgMFBCoC
ILADBQAqAiCyAwUDKgIoWAMFASoDVQAwDQYJKoZIhvcNAQELBQADggEBAACW/coz
E0nbqxIKUDNXjofbh+TpNYz4+Knv6yemQEDXlONRtWitYPCG1Ve8E2yMVQjyFubo
uN6KIheDrA8DbK+Yse26NHa8ToIb1rx+I0imj9p4fsNL/7ZPQ3NugER8DnbbjQmw
vmogvrk9Mk/m63fLV5IDI6+9qj20Af3QjFi3Naf8JOwywQ0HaB6pYqN3MbceH9ts
TRJ2E8Esv3oaU6GfKpV+chtb6fyu2I/HvULtrjBVC1VHF3lBmVqYpm7bU19GUB8C
ljsqoLpHv4FfkfTHizHgWTL38I3agn0mdUrP+VnOxDJxDV/Bzsc3k3KrM9kGKji5
q2dLLA29mOzYLU0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:57 2024 by rpki-client on console-ams.rpki-client.org