Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/P6btIkrCYkHWAvc4gjSPJOI7Y9c.roa
File: P6btIkrCYkHWAvc4gjSPJOI7Y9c.roa (raw, json)
Hash identifier: wC3ZV9df4rlSZMefROpBrj6510lT0/l4y4cyATId4VA=
Subject key identifier: 3F:A6:ED:22:4A:C2:62:41:D6:02:F7:38:82:34:8F:24:E2:3B:63:D7
Certificate issuer: /CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Certificate serial: 018A6AF4C8F4563FEC73A623A32141044A56
Authority key identifier: DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/P6btIkrCYkHWAvc4gjSPJOI7Y9c.roa
Signing time: Wed 06 Sep 2023 14:45:41 +0000
ROA not before: Wed 06 Sep 2023 14:45:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210176
IP address blocks: 89.39.210.0/23 maxlen: 24
109.94.144.0/20 maxlen: 24
213.159.136.0/21 maxlen: 24
37.251.200.0/21 maxlen: 24
62.122.40.0/21 maxlen: 24
37.251.240.0/21 maxlen: 24
192.64.44.0/23 maxlen: 24
94.24.64.0/21 maxlen: 24
46.231.104.0/21 maxlen: 24
37.251.176.0/20 maxlen: 24
91.245.216.0/23 maxlen: 24
94.26.24.0/23 maxlen: 24
89.40.220.0/23 maxlen: 24
141.136.16.0/20 maxlen: 24
91.227.240.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6a:f4:c8:f4:56:3f:ec:73:a6:23:a3:21:41:04:4a:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Validity
Not Before: Sep 6 14:45:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fa6ed224ac26241d602f73882348f24e23b63d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ad:50:76:a7:1d:b0:14:2c:4d:ec:94:df:bb:
b4:a5:71:d8:5e:6c:93:2f:e0:43:e7:5a:7a:4a:9a:
ea:7f:09:a6:52:f2:b5:fd:fb:11:65:c4:1b:e4:9a:
1f:e9:8b:65:eb:bd:2f:55:39:e6:ad:40:c4:5a:98:
cc:a1:4b:7d:e8:2a:05:88:81:b9:5e:d9:bb:b3:15:
bd:b8:82:bd:a9:db:0a:35:9d:0e:cf:29:24:bf:40:
66:f2:b9:b5:00:7f:6a:fc:4f:1d:1f:b6:24:d5:51:
d9:60:50:7a:7c:82:64:81:38:34:17:42:9a:f9:b6:
d0:dc:b9:7b:d9:56:e5:38:87:04:ed:ae:de:73:f9:
0a:b1:49:5b:57:a5:c1:07:a2:19:0b:db:d1:7c:df:
03:2b:a0:6c:55:2d:7a:0c:a3:24:50:66:a4:a5:c5:
a2:2f:aa:00:be:6e:eb:0a:58:45:cf:53:95:53:02:
48:6a:0a:14:80:45:28:90:f4:bb:61:09:18:e2:ee:
ba:d4:19:2a:19:eb:f1:ef:bf:d6:20:bd:14:87:f1:
d0:01:62:d4:40:7f:26:ae:f5:1a:09:be:0f:dc:f1:
6b:be:aa:6b:93:81:54:cb:f2:13:69:91:a2:6f:a5:
4e:ad:ac:63:a0:e4:24:fa:76:bd:23:ec:86:43:21:
65:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A6:ED:22:4A:C2:62:41:D6:02:F7:38:82:34:8F:24:E2:3B:63:D7
X509v3 Authority Key Identifier:
keyid:DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/P6btIkrCYkHWAvc4gjSPJOI7Y9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/2-jMj1rx5zYtRU892RqClSkZ22E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.251.176.0/20
37.251.200.0/21
37.251.240.0/21
46.231.104.0/21
62.122.40.0/21
89.39.210.0/23
89.40.220.0/23
91.227.240.0/23
91.245.216.0/23
94.24.64.0/21
94.26.24.0/23
109.94.144.0/20
141.136.16.0/20
192.64.44.0/23
213.159.136.0/21
Signature Algorithm: sha256WithRSAEncryption
56:05:82:72:0c:58:aa:4c:40:2c:62:e3:4a:15:ec:34:56:40:
47:f2:3e:6c:08:9c:b0:83:11:a9:58:a6:82:ac:93:2c:c9:ee:
54:db:e5:b9:57:7f:51:94:95:26:10:ba:12:34:4c:4b:5a:eb:
f9:28:0b:af:59:14:b1:98:1e:bd:ca:1d:60:dc:e4:f1:d4:92:
47:4a:0e:f1:e0:08:56:94:35:0d:9d:30:7b:38:3d:d0:72:ea:
79:d1:10:2d:97:90:43:9e:3b:f1:30:3c:4b:8d:b1:d5:bd:08:
2a:d0:1f:e8:7c:6a:70:6e:07:60:41:0d:63:7a:f4:f0:7f:ae:
82:a3:8e:dd:78:48:74:ff:9d:b4:71:00:53:9e:af:fc:02:8f:
25:1b:d3:76:a2:a3:7e:bc:89:99:52:99:03:a4:7f:f2:8f:8b:
61:95:40:ca:f5:6d:27:ff:0e:f9:07:ef:f2:14:8f:0b:56:f5:
b5:43:0f:73:16:95:3c:5e:e1:5a:b3:51:b8:f0:d3:e2:b1:bc:
fe:0a:53:93:60:58:02:4e:e9:fb:9c:4d:61:0f:ba:64:1c:b1:
f0:0b:94:c8:42:d3:b5:e8:dd:bd:4a:b4:dd:93:ee:f7:57:e5:
de:64:13:e7:4e:c3:bd:35:08:22:82:b8:89:87:f0:5b:5a:ea:
1d:8d:84:05
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAYpq9Mj0Vj/sc6YjoyFBBEpWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiZThjYzhmNWFmMWU3MzYyZDQ1NGYzZGQ5MWE4Mjk1Mjkx
OWRiNjEwHhcNMjMwOTA2MTQ0NTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZmE2ZWQyMjRhYzI2MjQxZDYwMmY3Mzg4MjM0OGYyNGUyM2I2M2Q3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnK1QdqcdsBQsTeyU37u0pXHYXmyT
L+BD51p6SprqfwmmUvK1/fsRZcQb5Jof6Ytl670vVTnmrUDEWpjMoUt96CoFiIG5
Xtm7sxW9uIK9qdsKNZ0Ozykkv0Bm8rm1AH9q/E8dH7Yk1VHZYFB6fIJkgTg0F0Ka
+bbQ3Ll72VblOIcE7a7ec/kKsUlbV6XBB6IZC9vRfN8DK6BsVS16DKMkUGakpcWi
L6oAvm7rClhFz1OVUwJIagoUgEUokPS7YQkY4u661BkqGevx77/WIL0Uh/HQAWLU
QH8mrvUaCb4P3PFrvqprk4FUy/ITaZGib6VOraxjoOQk+na9I+yGQyFltQIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFD+m7SJKwmJB1gL3OII0jyTiO2PXMB8GA1UdIwQY
MBaAFNvozI9a8ec2LUVPPdkagpUpGdthMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMi1qTWoxcng1ell0UlU4OTJScUNsU2taMjJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9hNTczZmUtNmUwZS00YmZmLTk5ZmMt
MjYyMWQ1Yzk5Y2FiLzEvUDZidElrckNZa0hXQXZjNGdqU1BKT0k3WTljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9hNTczZmUtNmUwZS00YmZmLTk5ZmMtMjYyMWQ1Yzk5Y2Fi
LzEvMi1qTWoxcng1ell0UlU4OTJScUNsU2taMjJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQEJfuwAwQD
JfvIAwQDJfvwAwQDLudoAwQDPnooAwQBWSfSAwQBWSjcAwQBW+PwAwQBW/XYAwQD
XhhAAwQBXhoYAwQEbV6QAwQEjYgQAwQBwEAsAwQD1Z+IMA0GCSqGSIb3DQEBCwUA
A4IBAQBWBYJyDFiqTEAsYuNKFew0VkBH8j5sCJywgxGpWKaCrJMsye5U2+W5V39R
lJUmELoSNExLWuv5KAuvWRSxmB69yh1g3OTx1JJHSg7x4AhWlDUNnTB7OD3Qcup5
0RAtl5BDnjvxMDxLjbHVvQgq0B/ofGpwbgdgQQ1jevTwf66Co47deEh0/520cQBT
nq/8Ao8lG9N2oqN+vImZUpkDpH/yj4thlUDK9W0n/w75B+/yFI8LVvW1Qw9zFpU8
XuFas1G48NPisbz+ClOTYFgCTun7nE1hD7pkHLHwC5TIQtO16N29SrTdk+73V+Xe
ZBPnTsO9NQgigriJh/BbWuodjYQF
-----END CERTIFICATE-----
Generated at Wed Mar 12 07:02:03 2025 by rpki-client