Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/vHRfqMNzpy1a-vdceleov0VnhYw.roa
File: vHRfqMNzpy1a-vdceleov0VnhYw.roa (raw, json)
Hash identifier: D9lZAKnmsoLx97LYgCYyeOr9Tv6NHTRTm/ggqMJgnIc=
Subject key identifier: BC:74:5F:A8:C3:73:A7:2D:5A:FA:F7:5C:7A:57:A8:BF:45:67:85:8C
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 01941F8C4A3612EAF5A847D3401CE94F2F89
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/vHRfqMNzpy1a-vdceleov0VnhYw.roa
Signing time: Wed 01 Jan 2025 01:47:55 +0000
ROA not before: Wed 01 Jan 2025 01:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1::/32 maxlen: 48
2a12:bec1:2::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
2a12:bec4:1120::/44 maxlen: 44
2a12:bec4:1430::/44 maxlen: 44
2a12:bec4:1490::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:4a:36:12:ea:f5:a8:47:d3:40:1c:e9:4f:2f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 1 01:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bc745fa8c373a72d5afaf75c7a57a8bf4567858c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6f:cd:9f:d5:2c:6e:19:9d:24:b0:a3:76:50:
0b:47:32:85:73:35:1b:c5:5b:0f:bb:40:4d:8e:9e:
61:fc:2c:30:ba:45:02:c9:c1:8c:3a:05:af:ba:ed:
1e:f1:c7:cf:a3:48:73:97:59:5d:32:0f:19:a8:22:
8b:6c:d6:1c:6e:69:22:3f:f0:f4:db:1c:10:e1:54:
7e:28:d4:3b:99:85:ef:36:bd:52:53:38:dd:e7:54:
ec:b1:d9:ef:c9:a1:27:68:55:d5:84:3c:de:48:11:
46:1f:e2:ae:b0:b9:58:aa:2d:35:77:da:3f:3a:3e:
eb:36:5c:5f:21:5b:1c:55:79:0a:7b:5f:aa:38:3e:
3e:03:72:0e:86:bf:c1:33:b2:25:0e:cf:22:cc:7c:
fa:fa:73:22:0f:7d:be:2c:da:53:cd:8d:be:36:32:
70:f6:ff:b9:ba:1e:d2:08:bb:2e:ab:6b:b6:fd:a5:
c7:de:d0:1f:f2:41:4e:a7:36:c2:9e:81:b4:7f:de:
af:05:00:86:3e:37:97:38:ff:66:08:bb:37:c8:1d:
5a:c6:3a:65:8d:b9:e7:8d:36:83:85:44:3d:9e:8b:
82:09:d5:91:fb:da:a3:4c:6e:56:ca:79:08:56:dc:
65:8a:31:36:09:71:70:f3:0b:b9:fe:01:d0:db:6c:
bc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:74:5F:A8:C3:73:A7:2D:5A:FA:F7:5C:7A:57:A8:BF:45:67:85:8C
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/vHRfqMNzpy1a-vdceleov0VnhYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1::-2a12:bec2:ffff:ffff:ffff:ffff:ffff:ffff
2a12:bec3:b00b::/48
2a12:bec4:100::/44
2a12:bec4:1120::/44
2a12:bec4:1430::/44
2a12:bec4:1490::/44
Signature Algorithm: sha256WithRSAEncryption
5d:f5:1a:e6:2d:ae:e0:96:db:83:07:ee:57:28:75:b8:3e:84:
23:24:bb:52:43:52:1d:7a:1f:c4:51:4e:72:74:60:e7:a1:a9:
9e:15:45:fc:12:f2:55:26:92:b9:ca:e4:4f:63:5f:1d:aa:ee:
1d:a6:14:75:f1:d5:8f:1a:c2:18:cc:a1:cd:be:ac:68:61:dc:
d2:d0:b2:a9:d5:42:38:f9:df:26:b6:77:5c:6d:2b:3a:dc:69:
9b:5f:17:e5:45:d6:ac:0e:f5:ef:e1:8b:e1:c8:be:a4:29:03:
2d:3a:bc:ba:ee:7b:6c:47:85:e9:ce:52:2e:fa:ac:bd:ad:ba:
3f:e8:bc:c4:60:99:10:71:08:a5:e1:ea:3d:1c:ff:bb:90:cd:
f4:d1:d3:43:bb:ff:97:36:b7:75:66:ae:27:0a:30:9e:11:ff:
8f:cd:96:65:e5:03:ef:90:1e:11:a9:0b:bc:8e:5f:86:02:d5:
94:60:01:2c:88:68:f0:63:19:b7:b0:39:2d:5f:7f:ec:ef:a1:
25:42:8b:d7:a7:45:d3:f1:3a:d4:62:e1:9e:c7:31:90:37:f8:
70:9b:89:0a:3f:f3:43:b3:3b:cc:d0:ac:59:e9:4f:6f:f4:fa:
b4:70:84:83:50:75:05:40:a4:d8:22:8a:9c:25:a4:83:69:3b:
fc:58:9f:60
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgISAZQfjEo2Eur1qEfTQBzpTy+JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjUwMTAxMDE0NzU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzc0NWZhOGMzNzNhNzJkNWFmYWY3NWM3YTU3YThiZjQ1Njc4NThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvm/Nn9UsbhmdJLCjdlALRzKFczUb
xVsPu0BNjp5h/CwwukUCycGMOgWvuu0e8cfPo0hzl1ldMg8ZqCKLbNYcbmkiP/D0
2xwQ4VR+KNQ7mYXvNr1SUzjd51TssdnvyaEnaFXVhDzeSBFGH+KusLlYqi01d9o/
Oj7rNlxfIVscVXkKe1+qOD4+A3IOhr/BM7IlDs8izHz6+nMiD32+LNpTzY2+NjJw
9v+5uh7SCLsuq2u2/aXH3tAf8kFOpzbCnoG0f96vBQCGPjeXOP9mCLs3yB1axjpl
jbnnjTaDhUQ9nouCCdWR+9qjTG5WynkIVtxlijE2CXFw8wu5/gHQ22y8/wIDAQAB
o4ICmjCCApYwHQYDVR0OBBYEFLx0X6jDc6ctWvr3XHpXqL9FZ4WMMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvdkhSZnFNTnpweTFhLXZkY2VsZW92MFZuaFl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGvBggrBgEFBQcBBwEB/wSBnzCBnDASBAIAATAMAwQAUtdA
AwQAufiGMIGFBAIAAjB/AwcEKhK+wADQAwcEKhK+wA5AMBEDBgQqEr7AcAMHACoS
vsBwBDASAwcBKhK+wHAGAwcAKhK+wHAIAwcAKhK+wLALMA4DBQAqEr7BAwUAKhK+
wgMHACoSvsOwCwMHBCoSvsQBAAMHBCoSvsQRIAMHBCoSvsQUMAMHBCoSvsQUkDAN
BgkqhkiG9w0BAQsFAAOCAQEAXfUa5i2u4JbbgwfuVyh1uD6EIyS7UkNSHXofxFFO
cnRg56GpnhVF/BLyVSaSucrkT2NfHaruHaYUdfHVjxrCGMyhzb6saGHc0tCyqdVC
OPnfJrZ3XG0rOtxpm18X5UXWrA717+GL4ci+pCkDLTq8uu57bEeF6c5SLvqsva26
P+i8xGCZEHEIpeHqPRz/u5DN9NHTQ7v/lza3dWauJwownhH/j82WZeUD75AeEakL
vI5fhgLVlGABLIho8GMZt7A5LV9/7O+hJUKL16dF0/E61GLhnscxkDf4cJuJCj/z
Q7M7zNCsWelPb/T6tHCEg1B1BUCk2CKKnCWkg2k7/FifYA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 05:34:47 2025 by rpki-client