Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/E66-NwYTLCBcB8T0lRRSO1Koio0.roa
File: E66-NwYTLCBcB8T0lRRSO1Koio0.roa (raw, json)
Hash identifier: O/POHANNeucVR1uuz8+JMBLva+LWL7E8jxjqIweuVhE=
Subject key identifier: 13:AE:BE:37:06:13:2C:20:5C:07:C4:F4:95:14:52:3B:52:A8:8A:8D
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 0190A29E3014E04FB528AA2865B6C5A76E07
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/E66-NwYTLCBcB8T0lRRSO1Koio0.roa
Signing time: Thu 11 Jul 2024 16:26:34 +0000
ROA not before: Thu 11 Jul 2024 16:26:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21502
IP address blocks: 77.128.0.0/13 maxlen: 24
77.136.0.0/16 maxlen: 24
77.140.0.0/14 maxlen: 24
77.140.0.0/15 maxlen: 24
77.142.0.0/16 maxlen: 24
77.144.0.0/12 maxlen: 24
77.192.0.0/12 maxlen: 24
78.112.0.0/12 maxlen: 24
79.80.0.0/12 maxlen: 24
81.64.0.0/14 maxlen: 24
81.185.0.0/16 maxlen: 24
84.4.0.0/14 maxlen: 24
85.168.0.0/14 maxlen: 24
87.231.0.0/16 maxlen: 24
88.140.0.0/15 maxlen: 24
88.140.0.0/16 maxlen: 24
88.141.0.0/16 maxlen: 24
89.2.0.0/15 maxlen: 24
89.156.0.0/14 maxlen: 24
89.157.88.0/21 maxlen: 21
89.157.96.0/19 maxlen: 19
92.88.0.0/13 maxlen: 24
93.0.0.0/11 maxlen: 24
109.0.0.0/11 maxlen: 24
195.132.0.0/16 maxlen: 24
213.223.0.0/16 maxlen: 24
213.245.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a2:9e:30:14:e0:4f:b5:28:aa:28:65:b6:c5:a7:6e:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 11 16:26:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13aebe3706132c205c07c4f49514523b52a88a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a1:d9:90:14:7c:54:f9:a3:38:92:99:84:21:
86:ef:92:f3:9a:64:17:d0:bf:c5:70:fd:4c:cd:32:
9d:d2:c1:44:b4:9e:5d:e6:24:99:b3:be:20:f8:76:
68:93:f5:a4:fa:48:88:08:a2:7c:6f:08:c9:14:69:
7c:27:b8:50:5a:b7:58:48:d1:5c:8a:3d:c7:c0:01:
5c:4c:a0:3f:46:d0:92:5e:ad:d9:46:9b:da:80:10:
0c:5f:65:47:63:19:48:ee:87:07:19:70:0e:5a:80:
0d:7b:8c:32:7c:e3:57:e6:70:10:6c:88:15:39:cd:
6f:81:00:3c:89:be:65:ba:e9:c7:4b:1d:4c:15:77:
a9:91:b3:0e:2e:89:77:14:8d:57:ea:e5:bd:54:fc:
57:b4:b1:d7:d8:11:cb:ae:bb:20:72:b9:99:f4:ef:
66:8f:96:7e:47:45:dd:b9:11:e2:29:16:9f:50:62:
87:d4:79:6c:ea:ce:b6:88:dc:a7:07:9c:15:9e:e4:
fa:33:0b:df:5f:d4:3a:f4:da:36:f1:1b:b5:cd:c6:
66:09:72:5e:37:a3:c5:2f:23:e9:eb:03:3b:d5:8d:
72:21:ea:ab:57:03:af:f6:e3:57:3c:7f:62:48:0b:
70:ff:7e:89:ce:5d:e7:4c:6e:9d:01:84:d8:e6:1d:
34:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:AE:BE:37:06:13:2C:20:5C:07:C4:F4:95:14:52:3B:52:A8:8A:8D
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/E66-NwYTLCBcB8T0lRRSO1Koio0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.128.0.0-77.136.255.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
79.80.0.0/12
81.64.0.0/14
81.185.0.0/16
84.4.0.0/14
85.168.0.0/14
87.231.0.0/16
88.140.0.0/15
89.2.0.0/15
89.156.0.0/14
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
195.132.0.0/16
213.223.0.0/16
213.245.0.0/16
Signature Algorithm: sha256WithRSAEncryption
75:af:cc:ea:aa:75:0f:0b:89:45:b3:f5:23:1d:a2:43:24:d5:
21:29:fe:13:39:0e:59:ce:b3:93:59:26:e2:0e:cc:c4:ea:9f:
28:40:b8:ed:3b:d3:2a:3a:ae:79:78:c0:be:5c:17:b9:39:ef:
89:74:73:c0:5e:33:39:65:be:ae:a0:d6:67:4a:58:91:b0:6f:
cc:77:4f:65:81:a3:e2:85:59:6e:77:eb:2b:3a:51:41:99:8c:
b6:10:75:54:3a:d5:10:7b:1b:eb:7b:8b:fd:de:e7:12:4f:db:
b7:8d:d1:50:21:d0:b5:93:14:36:9c:20:85:51:6e:04:7c:98:
18:43:9d:7c:2c:67:d9:5f:56:bb:23:e3:47:43:70:30:2e:c5:
d8:11:39:06:1c:40:c0:1a:6b:59:b3:f3:0a:e4:dc:cd:d3:bc:
d8:0b:82:57:78:38:f8:21:7b:89:b4:ff:6e:d3:a5:64:99:d5:
14:41:ec:39:31:60:11:a1:c6:2f:a6:dd:4f:eb:54:25:f3:8f:
31:84:f9:7b:30:68:12:4c:e2:12:17:0b:f1:e7:c3:5f:c8:1e:
4e:84:29:4e:dd:d8:74:98:2b:0e:f7:d7:db:8b:23:3c:79:e2:
71:67:e7:8a:2a:70:78:7e:5c:ca:60:cb:f1:5b:fe:f6:ea:5d:
ec:5f:32:ce
-----BEGIN CERTIFICATE-----
MIIFZTCCBE2gAwIBAgISAZCinjAU4E+1KKooZbbFp24HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZWY1ZmJiZmNhN2E5M2NmZWU5NjVlZWI2YmRlZTZmYjQz
YzQwM2UwHhcNMjQwNzExMTYyNjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2FlYmUzNzA2MTMyYzIwNWMwN2M0ZjQ5NTE0NTIzYjUyYTg4YThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqHZkBR8VPmjOJKZhCGG75LzmmQX
0L/FcP1MzTKd0sFEtJ5d5iSZs74g+HZok/Wk+kiICKJ8bwjJFGl8J7hQWrdYSNFc
ij3HwAFcTKA/RtCSXq3ZRpvagBAMX2VHYxlI7ocHGXAOWoANe4wyfONX5nAQbIgV
Oc1vgQA8ib5luunHSx1MFXepkbMOLol3FI1X6uW9VPxXtLHX2BHLrrsgcrmZ9O9m
j5Z+R0XduRHiKRafUGKH1Hls6s62iNynB5wVnuT6MwvfX9Q69No28Ru1zcZmCXJe
N6PFLyPp6wM71Y1yIeqrVwOv9uNXPH9iSAtw/36Jzl3nTG6dAYTY5h00dwIDAQAB
o4ICcTCCAm0wHQYDVR0OBBYEFBOuvjcGEywgXAfE9JUUUjtSqIqNMB8GA1UdIwQY
MBaAFKDvX7v8p6k8/ull7ra97m+0PEA+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2Mt
MDI5MmIwMjAxNTBhLzEvRTY2LU53WVRMQ0JjQjhUMGxSUlNPMUtvaW8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2MtMDI5MmIwMjAxNTBh
LzEvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGGBggrBgEFBQcBBwEB/wR3MHUwcwQCAAEwbTAKAwMHTYAD
AwBNiDAKAwMCTYwDAwVNgAMDBE3AAwMETnADAwRPUAMDAlFAAwMAUbkDAwJUBAMD
AlWoAwMAV+cDAwFYjAMDAVkCAwMCWZwDAwNcWAMDBV0AAwMFbQADAwDDhAMDANXf
AwMA1fUwDQYJKoZIhvcNAQELBQADggEBAHWvzOqqdQ8LiUWz9SMdokMk1SEp/hM5
DlnOs5NZJuIOzMTqnyhAuO070yo6rnl4wL5cF7k574l0c8BeMzllvq6g1mdKWJGw
b8x3T2WBo+KFWW536ys6UUGZjLYQdVQ61RB7G+t7i/3e5xJP27eN0VAh0LWTFDac
IIVRbgR8mBhDnXwsZ9lfVrsj40dDcDAuxdgROQYcQMAaa1mz8wrk3M3TvNgLgld4
OPghe4m0/27TpWSZ1RRB7DkxYBGhxi+m3U/rVCXzjzGE+XswaBJM4hIXC/Hnw1/I
Hk6EKU7d2HSYKw7319uLIzx54nFn54oqcHh+XMpgy/Fb/vbqXexfMs4=
-----END CERTIFICATE-----
Generated at Wed Apr 9 03:09:47 2025 by rpki-client