Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1b7a59-2df6-4740-b719-608033efc335/1/y7mAfykhVter2zB1DAgT2AFOhlU.roa
File: y7mAfykhVter2zB1DAgT2AFOhlU.roa (raw, json)
Hash identifier: cv9letOeree82Wzq69b4x2/U8BTiJZtyBFwIDJrMilY=
Subject key identifier: CB:B9:80:7F:29:21:56:D7:AB:DB:30:75:0C:08:13:D8:01:4E:86:55
Certificate issuer: /CN=0394a3c46ec087b0d09770d18706107d2c7c17da
Certificate serial: 1689223B
Authority key identifier: 03:94:A3:C4:6E:C0:87:B0:D0:97:70:D1:87:06:10:7D:2C:7C:17:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A5SjxG7Ah7DQl3DRhwYQfSx8F9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1b7a59-2df6-4740-b719-608033efc335/1/y7mAfykhVter2zB1DAgT2AFOhlU.roa
Signing time: Sat 01 Jan 2022 07:53:11 +0000
ROA not before: Sat 01 Jan 2022 07:53:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57722
IP address blocks: 185.248.172.0/22 maxlen: 24
37.26.64.0/21 maxlen: 21
37.26.64.0/24 maxlen: 24
37.26.65.0/24 maxlen: 24
37.26.69.0/24 maxlen: 24
37.26.66.0/24 maxlen: 24
37.26.70.0/24 maxlen: 24
37.26.67.0/24 maxlen: 24
37.26.71.0/24 maxlen: 24
37.26.68.0/24 maxlen: 24
2a07:b200::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378085947 (0x1689223b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0394a3c46ec087b0d09770d18706107d2c7c17da
Validity
Not Before: Jan 1 07:53:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbb9807f292156d7abdb30750c0813d8014e8655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:65:5d:f2:4a:91:c1:a7:e9:0b:a8:ae:b6:41:
d3:e9:24:b9:54:db:06:76:c4:c1:f2:84:fd:aa:71:
ca:ec:48:ee:fe:d9:4b:7b:0b:ed:7f:ce:0b:ed:6e:
8f:79:71:df:e2:f6:44:58:bd:25:41:f1:5f:bb:aa:
34:4d:8f:89:1c:45:00:06:7a:85:9c:9c:ce:c7:b8:
59:ef:1d:d8:aa:ff:fb:e1:48:97:3d:fe:31:2a:94:
47:7a:c4:8d:82:b2:83:64:5d:7f:22:0a:1b:b9:4e:
ca:bc:2d:2e:0b:89:83:8c:90:19:75:8f:b6:ba:06:
04:a3:25:d4:94:36:4f:68:5e:2d:2e:2f:a9:bb:ee:
ca:a5:53:05:67:bc:9d:68:5f:91:39:5a:9a:c6:98:
06:4d:b2:e7:ed:1a:2e:37:94:78:79:3c:aa:67:1a:
a5:e9:15:c8:14:b7:41:fc:f8:16:b4:0d:50:ef:4c:
9d:92:ad:e4:73:e8:5f:bc:23:91:cc:84:b5:e4:fa:
e5:0f:eb:e4:51:62:f9:41:8e:2e:98:e5:69:75:43:
f3:0f:25:a8:c8:e7:d3:f5:ec:7b:83:13:47:85:b8:
51:e9:68:d7:07:35:40:55:9c:2a:8c:4d:33:c8:bf:
19:3c:d0:eb:b8:10:19:57:ce:16:35:ab:1c:fd:0c:
4b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B9:80:7F:29:21:56:D7:AB:DB:30:75:0C:08:13:D8:01:4E:86:55
X509v3 Authority Key Identifier:
keyid:03:94:A3:C4:6E:C0:87:B0:D0:97:70:D1:87:06:10:7D:2C:7C:17:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A5SjxG7Ah7DQl3DRhwYQfSx8F9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1b7a59-2df6-4740-b719-608033efc335/1/y7mAfykhVter2zB1DAgT2AFOhlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1b7a59-2df6-4740-b719-608033efc335/1/A5SjxG7Ah7DQl3DRhwYQfSx8F9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.64.0/21
185.248.172.0/22
IPv6:
2a07:b200::/31
Signature Algorithm: sha256WithRSAEncryption
b2:eb:26:a4:34:a7:e7:6a:42:84:32:9a:1f:e9:32:ec:4d:f1:
b5:49:2f:de:bf:32:29:6c:34:42:72:ed:4a:e1:6d:f5:34:0a:
6e:6d:b1:c4:58:ab:86:ea:3d:73:01:e0:c5:1f:7f:65:8a:bf:
ad:10:c9:7e:ac:16:40:2f:ac:b0:46:2c:e5:58:a7:33:1b:b8:
14:49:b1:d8:fe:57:b3:3d:2b:d1:6c:af:76:b9:f3:3c:b2:dd:
fe:db:51:cd:0e:c0:ca:9a:3e:08:91:3c:fa:48:a2:3b:61:0b:
af:dc:4d:3c:5c:fa:c5:fc:08:4f:f0:a2:78:fc:2f:e1:37:0f:
9e:f6:3b:c0:a6:83:f8:03:d3:19:2f:3d:9a:15:78:1e:a3:d8:
23:6e:d2:95:1d:a6:17:62:d2:67:ba:69:9a:16:91:c3:8d:db:
e5:b0:e7:7c:dc:9d:eb:b1:a2:dd:93:5a:da:62:f4:5a:f3:ec:
47:b7:b6:76:60:ba:24:4e:4b:17:44:da:71:3f:13:a4:d3:51:
9c:86:2d:f4:0d:9d:78:2e:08:d6:01:3b:32:81:bf:12:3c:f6:
98:57:b2:7b:08:09:66:c8:5f:0b:a5:8c:36:3e:b5:9a:53:e0:
07:48:a3:bf:4f:50:49:78:5a:85:d9:ec:06:44:b9:a8:9e:e7:
b3:b0:bc:77
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEFokiOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
Mzk0YTNjNDZlYzA4N2IwZDA5NzcwZDE4NzA2MTA3ZDJjN2MxN2RhMB4XDTIyMDEw
MTA3NTMxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2JiOTgwN2YyOTIx
NTZkN2FiZGIzMDc1MGMwODEzZDgwMTRlODY1NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJVlXfJKkcGn6QuorrZB0+kkuVTbBnbEwfKE/apxyuxI7v7Z
S3sL7X/OC+1uj3lx3+L2RFi9JUHxX7uqNE2PiRxFAAZ6hZyczse4We8d2Kr/++FI
lz3+MSqUR3rEjYKyg2RdfyIKG7lOyrwtLguJg4yQGXWPtroGBKMl1JQ2T2heLS4v
qbvuyqVTBWe8nWhfkTlamsaYBk2y5+0aLjeUeHk8qmcapekVyBS3Qfz4FrQNUO9M
nZKt5HPoX7wjkcyEteT65Q/r5FFi+UGOLpjlaXVD8w8lqMjn0/Xse4MTR4W4Uelo
1wc1QFWcKoxNM8i/GTzQ67gQGVfOFjWrHP0MS3UCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBTLuYB/KSFW16vbMHUMCBPYAU6GVTAfBgNVHSMEGDAWgBQDlKPEbsCHsNCX
cNGHBhB9LHwX2jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0E1U2p4RzdBaDdEUWwzRFJod1lRZlN4OEY5by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTMvMWI3YTU5LTJkZjYtNDc0MC1iNzE5LTYwODAzM2VmYzMzNS8x
L3k3bUFmeWtoVnRlcjJ6QjFEQWdUMkFGT2hsVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMv
MWI3YTU5LTJkZjYtNDc0MC1iNzE5LTYwODAzM2VmYzMzNS8xL0E1U2p4RzdBaDdE
UWwzRFJod1lRZlN4OEY5by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAyUaQAMEArn4rDANBAIAAjAHAwUB
KgeyADANBgkqhkiG9w0BAQsFAAOCAQEAsusmpDSn52pChDKaH+ky7E3xtUkv3r8y
KWw0QnLtSuFt9TQKbm2xxFirhuo9cwHgxR9/ZYq/rRDJfqwWQC+ssEYs5VinMxu4
FEmx2P5Xsz0r0WyvdrnzPLLd/ttRzQ7Aypo+CJE8+kiiO2ELr9xNPFz6xfwIT/Ci
ePwv4TcPnvY7wKaD+APTGS89mhV4HqPYI27SlR2mF2LSZ7ppmhaRw43b5bDnfNyd
67Gi3ZNa2mL0WvPsR7e2dmC6JE5LF0TacT8TpNNRnIYt9A2deC4I1gE7MoG/Ejz2
mFeyewgJZshfC6WMNj61mlPgB0ijv09QSXhahdnsBkS5qJ7ns7C8dw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:34 2023 by rpki-client on console-fra.rpki-client.org