Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/ilXnweKxRw3LO2RACKOtNBxct68.roa
File: ilXnweKxRw3LO2RACKOtNBxct68.roa (raw, json)
Hash identifier: qUJu4kZpymktU0nPUGACB0kCG9ho3Fx9LJuzjiltVMY=
Subject key identifier: 8A:55:E7:C1:E2:B1:47:0D:CB:3B:64:40:08:A3:AD:34:1C:5C:B7:AF
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 013B66A9
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/ilXnweKxRw3LO2RACKOtNBxct68.roa
Signing time: Sun 22 May 2022 15:52:29 +0000
ROA not before: Sun 22 May 2022 15:52:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210000
IP address blocks: 176.119.223.0/24 maxlen: 24
194.156.188.0/24 maxlen: 24
2a12:3fc0:1145::/48 maxlen: 48
2a12:3fc0:7000::/48 maxlen: 48
2a12:3fc0:2680::/48 maxlen: 48
2a12:3fc0:2696::/48 maxlen: 48
2a12:3fc0:8378::/48 maxlen: 48
2a12:3fc0:2698::/48 maxlen: 48
2a12:3fc0:7d13::/48 maxlen: 48
2a12:3fc0:75f3::/48 maxlen: 48
2a12:3fc0:7742::/48 maxlen: 48
2a12:3fc0:7502::/48 maxlen: 48
2a12:3fc0:7282::/48 maxlen: 48
2a12:3fc0:7002::/48 maxlen: 48
2a12:3fc0:7602::/48 maxlen: 48
2a12:3fc0:8175::/48 maxlen: 48
2a12:3fc0:8375::/48 maxlen: 48
2a12:3fc0:2650::/48 maxlen: 48
2a12:3fc0:7763::/48 maxlen: 48
2a12:3fc0:7003::/48 maxlen: 48
2a12:3fc0:7001::/48 maxlen: 48
2a12:3fc1::/32 maxlen: 48
2a12:3fc0:7777::/48 maxlen: 48
2a12:3fc0:7d12::/48 maxlen: 48
2a12:3fc0:7f52::/48 maxlen: 48
2a12:3fc0:7b12::/48 maxlen: 48
2a12:3fc0:7532::/48 maxlen: 48
2a12:3fc0:7452::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20670121 (0x13b66a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: May 22 15:52:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a55e7c1e2b1470dcb3b644008a3ad341c5cb7af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:51:2c:92:61:85:bf:6e:f4:90:6a:af:e2:d3:
89:c1:c5:5d:6f:bc:fc:66:39:6f:ce:fe:de:e5:88:
65:5a:0b:72:2e:a6:14:32:88:80:02:0e:ed:1a:a2:
7c:48:48:b3:9b:e8:d8:c8:39:0e:6a:dc:94:6b:8d:
f8:d6:b4:d9:bd:5a:b8:a5:6b:b3:d5:d7:13:94:e2:
c1:f5:46:8b:45:ff:f8:21:5b:fc:f0:cd:1f:55:1e:
93:86:5c:40:f3:f6:9b:28:36:c0:5b:2d:22:63:6f:
4e:1b:25:72:2c:19:de:a3:61:8b:de:8f:7d:52:b6:
1d:15:11:91:12:6e:83:d9:11:79:48:46:59:b6:b3:
8d:9f:c4:f7:73:0f:f0:66:a9:6d:08:76:56:82:3a:
5c:3a:d6:72:5b:c7:a7:fb:37:62:38:0f:06:4b:1e:
be:d5:eb:c1:29:81:f3:8a:91:4a:41:70:6d:00:40:
8f:08:31:0e:f1:9d:42:3a:3f:bc:21:e9:aa:01:b0:
cb:48:cd:25:df:e8:7c:c3:a5:d4:90:24:b2:10:9c:
de:cd:47:bc:3f:10:66:09:61:b6:0d:bd:41:6f:ae:
f1:6c:e2:f6:10:6f:79:48:92:54:45:9b:89:4c:28:
10:bf:35:7c:2b:c7:2b:20:ba:64:ce:cf:88:ec:24:
74:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:55:E7:C1:E2:B1:47:0D:CB:3B:64:40:08:A3:AD:34:1C:5C:B7:AF
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/ilXnweKxRw3LO2RACKOtNBxct68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.223.0/24
194.156.188.0/24
IPv6:
2a12:3fc0:1145::/48
2a12:3fc0:2650::/48
2a12:3fc0:2680::/48
2a12:3fc0:2696::/48
2a12:3fc0:2698::/48
2a12:3fc0:7000::/46
2a12:3fc0:7282::/48
2a12:3fc0:7452::/48
2a12:3fc0:7502::/48
2a12:3fc0:7532::/48
2a12:3fc0:75f3::/48
2a12:3fc0:7602::/48
2a12:3fc0:7742::/48
2a12:3fc0:7763::/48
2a12:3fc0:7777::/48
2a12:3fc0:7b12::/48
2a12:3fc0:7d12::/47
2a12:3fc0:7f52::/48
2a12:3fc0:8175::/48
2a12:3fc0:8375::/48
2a12:3fc0:8378::/48
2a12:3fc1::/32
Signature Algorithm: sha256WithRSAEncryption
68:5c:38:42:2a:b7:c3:6b:00:b0:d5:b1:8f:16:de:27:ff:b8:
ec:84:42:0e:38:54:2b:7f:ba:47:2e:6e:90:e1:56:d7:5c:6b:
9e:43:b8:20:13:4f:9b:11:b4:1f:40:d0:17:88:17:6d:46:30:
53:0a:75:c7:01:cb:05:d6:09:95:7e:b2:1c:67:ef:2f:b8:c7:
17:60:9f:01:56:bf:4c:f3:e6:7c:6d:ae:a5:db:b0:9e:cb:d1:
7d:36:02:d7:82:2a:af:93:df:1e:88:51:a7:1b:e6:bb:ba:8a:
9d:7c:c9:ea:10:3b:3a:17:ff:37:ff:36:9a:03:2b:51:84:d6:
41:fe:9f:e7:ff:b7:2c:81:2a:ab:bc:c3:7d:67:d5:0b:af:ca:
43:0d:0d:88:dc:e8:7b:06:e3:cf:7e:01:14:4f:02:5d:3a:2a:
ae:a8:8b:43:90:50:83:d4:68:8f:a8:50:2e:a9:23:4d:5c:59:
a4:55:65:cc:18:47:6b:4a:94:cb:7d:68:33:47:6a:81:6c:23:
1a:e2:6a:67:f2:67:f6:6f:99:fc:f0:00:7e:f1:e3:11:eb:87:
68:8d:15:0a:e7:81:05:b7:20:7b:d4:21:00:56:f6:36:ff:75:
1e:22:e2:10:ab:29:df:1a:62:a9:45:de:0a:b6:3b:50:3a:5b:
77:f9:a3:5f
-----BEGIN CERTIFICATE-----
MIIFxjCCBK6gAwIBAgIEATtmqTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
OThmN2IxZmQ4MDJiM2RjNmFiZDdhNWNkYTc4NmE2MzExZTFkNjNkMB4XDTIyMDUy
MjE1NTIyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGE1NWU3YzFlMmIx
NDcwZGNiM2I2NDQwMDhhM2FkMzQxYzVjYjdhZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIxRLJJhhb9u9JBqr+LTicHFXW+8/GY5b87+3uWIZVoLci6m
FDKIgAIO7RqifEhIs5vo2Mg5DmrclGuN+Na02b1auKVrs9XXE5TiwfVGi0X/+CFb
/PDNH1Uek4ZcQPP2myg2wFstImNvThslciwZ3qNhi96PfVK2HRURkRJug9kReUhG
WbazjZ/E93MP8GapbQh2VoI6XDrWclvHp/s3YjgPBksevtXrwSmB84qRSkFwbQBA
jwgxDvGdQjo/vCHpqgGwy0jNJd/ofMOl1JAkshCc3s1HvD8QZglhtg29QW+u8Wzi
9hBveUiSVEWbiUwoEL81fCvHKyC6ZM7PiOwkdAcCAwEAAaOCAuAwggLcMB0GA1Ud
DgQWBBSKVefB4rFHDcs7ZEAIo600HFy3rzAfBgNVHSMEGDAWgBR5j3sf2AKz3Gq9
elzaeGpjEeHWPTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VZOTdIOWdDczl4cXZYcGMybmhxWXhIaDFqMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODMvMzA4ODNhLTE2ZDctNDIxMi05MTk5LTA5ZDBhYTI4ZTU1MS8x
L2lsWG53ZUt4UnczTE8yUkFDS090TkJ4Y3Q2OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMv
MzA4ODNhLTE2ZDctNDIxMi05MTk5LTA5ZDBhYTI4ZTU1MS8xL2VZOTdIOWdDczl4
cXZYcGMybmhxWXhIaDFqMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
9QYIKwYBBQUHAQcBAf8EgeUwgeIwEgQCAAEwDAMEALB33wMEAMKcvDCBywQCAAIw
gcQDBwAqEj/AEUUDBwAqEj/AJlADBwAqEj/AJoADBwAqEj/AJpYDBwAqEj/AJpgD
BwIqEj/AcAADBwAqEj/AcoIDBwAqEj/AdFIDBwAqEj/AdQIDBwAqEj/AdTIDBwAq
Ej/AdfMDBwAqEj/AdgIDBwAqEj/Ad0IDBwAqEj/Ad2MDBwAqEj/Ad3cDBwAqEj/A
exIDBwEqEj/AfRIDBwAqEj/Af1IDBwAqEj/AgXUDBwAqEj/Ag3UDBwAqEj/Ag3gD
BQAqEj/BMA0GCSqGSIb3DQEBCwUAA4IBAQBoXDhCKrfDawCw1bGPFt4n/7jshEIO
OFQrf7pHLm6Q4VbXXGueQ7ggE0+bEbQfQNAXiBdtRjBTCnXHAcsF1gmVfrIcZ+8v
uMcXYJ8BVr9M8+Z8ba6l27Cey9F9NgLXgiqvk98eiFGnG+a7uoqdfMnqEDs6F/83
/zaaAytRhNZB/p/n/7csgSqrvMN9Z9ULr8pDDQ2I3Oh7BuPPfgEUTwJdOiquqItD
kFCD1GiPqFAuqSNNXFmkVWXMGEdrSpTLfWgzR2qBbCMa4mpn8mf2b5n88AB+8eMR
64dojRUK54EFtyB71CEAVvY2/3UeIuIQqynfGmKpRd4KtjtQOlt3+aNf
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:56 2025 by rpki-client