Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/492e65-d225-432b-8d91-b9b4b0a5c97d/1/uUITbOWk-bCF056ArmfrjKQ3_CM.roa
File: uUITbOWk-bCF056ArmfrjKQ3_CM.roa (raw, json)
Hash identifier: tq9yQ16DCw6+2EGHp4mS4WmzLVhZBKRssJjtsa2Zsz4=
Subject key identifier: B9:42:13:6C:E5:A4:F9:B0:85:D3:9E:80:AE:67:EB:8C:A4:37:FC:23
Certificate issuer: /CN=185228c77144d945c51633cecb94c02a434e1db6
Certificate serial: 090A348D
Authority key identifier: 18:52:28:C7:71:44:D9:45:C5:16:33:CE:CB:94:C0:2A:43:4E:1D:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GFIox3FE2UXFFjPOy5TAKkNOHbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/492e65-d225-432b-8d91-b9b4b0a5c97d/1/uUITbOWk-bCF056ArmfrjKQ3_CM.roa
Signing time: Sat 01 Jan 2022 01:58:46 +0000
ROA not before: Sat 01 Jan 2022 01:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209636
IP address blocks: 86.107.56.0/24 maxlen: 24
188.213.80.0/22 maxlen: 24
89.45.220.0/22 maxlen: 24
89.39.167.0/24 maxlen: 24
85.204.200.0/21 maxlen: 24
37.156.108.0/22 maxlen: 24
89.46.37.0/24 maxlen: 24
89.46.35.0/24 maxlen: 24
89.46.32.0/24 maxlen: 24
89.46.247.0/24 maxlen: 24
89.46.39.0/24 maxlen: 24
188.212.16.0/22 maxlen: 24
195.82.98.0/23 maxlen: 24
185.41.244.0/22 maxlen: 24
185.56.76.0/22 maxlen: 24
185.87.128.0/22 maxlen: 24
188.212.253.0/24 maxlen: 24
89.36.169.0/24 maxlen: 24
37.156.76.0/22 maxlen: 24
89.44.82.0/24 maxlen: 24
89.35.231.0/24 maxlen: 24
89.35.227.0/24 maxlen: 24
188.214.112.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151663757 (0x90a348d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=185228c77144d945c51633cecb94c02a434e1db6
Validity
Not Before: Jan 1 01:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b942136ce5a4f9b085d39e80ae67eb8ca437fc23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:98:5f:b3:2c:dd:90:e2:91:eb:a2:30:d1:62:
7f:fe:83:47:0e:3c:f6:5c:c3:49:f9:9d:f6:d0:6c:
bd:84:52:0a:aa:eb:5e:64:3c:42:bd:71:0f:11:b2:
51:72:e5:59:99:49:d7:ab:b6:99:a2:a3:b3:9a:57:
d9:ce:aa:23:49:33:2e:8f:1b:07:83:24:90:50:97:
a6:12:7d:37:2c:15:a0:4d:c8:b9:3b:d7:96:13:d7:
12:c5:ac:14:b5:2d:b3:8f:2f:6e:3a:af:c6:b6:c8:
de:08:74:49:d2:11:b5:2f:62:07:8d:35:47:c0:e0:
26:9f:34:ac:6e:fe:a1:4f:4d:e6:bf:50:3b:93:52:
af:61:ef:05:1e:ff:5e:ee:de:85:cf:1e:01:1f:87:
63:67:a7:b4:9d:96:91:2c:78:d7:a2:12:95:5c:4e:
6c:ac:56:ef:f8:1c:3b:63:9d:30:a3:1a:3b:74:27:
ee:9c:dc:db:17:77:93:f0:c6:d1:06:59:3b:24:9b:
90:d0:da:63:3f:67:60:5e:75:d1:ae:dd:b7:fd:d6:
cc:0b:85:fc:cd:fb:5b:f3:0d:57:bf:e4:67:34:b7:
ec:cb:8f:f5:a3:08:e7:d5:e0:13:6c:c6:5b:df:85:
a6:63:e8:de:15:6b:a1:7a:89:4f:10:55:22:76:5a:
16:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:42:13:6C:E5:A4:F9:B0:85:D3:9E:80:AE:67:EB:8C:A4:37:FC:23
X509v3 Authority Key Identifier:
keyid:18:52:28:C7:71:44:D9:45:C5:16:33:CE:CB:94:C0:2A:43:4E:1D:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GFIox3FE2UXFFjPOy5TAKkNOHbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/492e65-d225-432b-8d91-b9b4b0a5c97d/1/uUITbOWk-bCF056ArmfrjKQ3_CM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/492e65-d225-432b-8d91-b9b4b0a5c97d/1/GFIox3FE2UXFFjPOy5TAKkNOHbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.76.0/22
37.156.108.0/22
85.204.200.0/21
86.107.56.0/24
89.35.227.0/24
89.35.231.0/24
89.36.169.0/24
89.39.167.0/24
89.44.82.0/24
89.45.220.0/22
89.46.32.0/24
89.46.35.0/24
89.46.37.0/24
89.46.39.0/24
89.46.247.0/24
185.41.244.0/22
185.56.76.0/22
185.87.128.0/22
188.212.16.0/22
188.212.253.0/24
188.213.80.0/22
188.214.112.0/21
195.82.98.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:bf:df:50:6f:c0:39:f4:66:22:8c:be:b5:2c:aa:28:38:65:
90:83:64:60:4f:a3:46:5b:ed:ba:15:06:c8:77:81:d9:98:2c:
07:d8:bd:1d:40:b8:45:42:f7:06:95:af:8c:72:33:cb:df:ea:
96:4d:d0:ec:78:ad:7b:af:55:1d:b4:cb:06:d6:0f:67:4a:c0:
7e:79:98:b9:dc:58:2c:8a:d0:f3:24:36:fb:e9:59:a7:55:4e:
80:f0:12:d0:a3:c8:7f:3c:5f:9f:d7:51:62:f4:49:2e:47:5d:
37:01:81:f7:d5:d3:7b:ab:18:c2:e6:49:83:4d:24:94:aa:02:
08:fb:a9:b5:64:b9:51:5b:cd:40:d2:c3:b1:30:e1:29:bb:bf:
54:42:c8:d6:5b:73:43:a5:78:23:1d:1c:51:e9:f0:53:00:02:
98:1f:38:44:2b:e7:39:c6:64:e7:b7:33:81:63:f1:d5:cf:83:
ae:b0:fc:ae:82:f5:67:fc:b6:80:cb:ab:d3:71:b7:68:7a:4a:
20:dc:b3:1c:3d:8b:a0:07:c5:89:5d:e6:59:ec:d3:ee:8c:2b:
8c:d4:88:c8:4a:54:b7:9d:2f:59:ab:94:79:de:8a:87:da:8f:
36:0c:8e:f4:13:49:e5:87:94:c6:57:f7:98:40:23:ae:70:58:
2a:de:5d:48
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgIECQo0jTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ODUyMjhjNzcxNDRkOTQ1YzUxNjMzY2VjYjk0YzAyYTQzNGUxZGI2MB4XDTIyMDEw
MTAxNTg0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjk0MjEzNmNlNWE0
ZjliMDg1ZDM5ZTgwYWU2N2ViOGNhNDM3ZmMyMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANqYX7Ms3ZDikeuiMNFif/6DRw489lzDSfmd9tBsvYRSCqrr
XmQ8Qr1xDxGyUXLlWZlJ16u2maKjs5pX2c6qI0kzLo8bB4MkkFCXphJ9NywVoE3I
uTvXlhPXEsWsFLUts48vbjqvxrbI3gh0SdIRtS9iB401R8DgJp80rG7+oU9N5r9Q
O5NSr2HvBR7/Xu7ehc8eAR+HY2entJ2WkSx416ISlVxObKxW7/gcO2OdMKMaO3Qn
7pzc2xd3k/DG0QZZOySbkNDaYz9nYF510a7dt/3WzAuF/M37W/MNV7/kZzS37MuP
9aMI59XgE2zGW9+FpmPo3hVroXqJTxBVInZaFiMCAwEAAaOCApIwggKOMB0GA1Ud
DgQWBBS5QhNs5aT5sIXTnoCuZ+uMpDf8IzAfBgNVHSMEGDAWgBQYUijHcUTZRcUW
M87LlMAqQ04dtjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dGSW94M0ZFMlVYRkZqUE95NVRBS2tOT0hiWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTMvNDkyZTY1LWQyMjUtNDMyYi04ZDkxLWI5YjRiMGE1Yzk3ZC8x
L3VVSVRiT1drLWJDRjA1NkFybWZyaktRM19DTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMv
NDkyZTY1LWQyMjUtNDMyYi04ZDkxLWI5YjRiMGE1Yzk3ZC8xL0dGSW94M0ZFMlVY
RkZqUE95NVRBS2tOT0hiWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
pwYIKwYBBQUHAQcBAf8EgZcwgZQwgZEEAgABMIGKAwQCJZxMAwQCJZxsAwQDVczI
AwQAVms4AwQAWSPjAwQAWSPnAwQAWSSpAwQAWSenAwQAWSxSAwQCWS3cAwQAWS4g
AwQAWS4jAwQAWS4lAwQAWS4nAwQAWS73AwQCuSn0AwQCuThMAwQCuVeAAwQCvNQQ
AwQAvNT9AwQCvNVQAwQDvNZwAwQBw1JiMA0GCSqGSIb3DQEBCwUAA4IBAQCfv99Q
b8A59GYijL61LKooOGWQg2RgT6NGW+26FQbId4HZmCwH2L0dQLhFQvcGla+McjPL
3+qWTdDseK17r1UdtMsG1g9nSsB+eZi53FgsitDzJDb76VmnVU6A8BLQo8h/PF+f
11Fi9EkuR103AYH31dN7qxjC5kmDTSSUqgII+6m1ZLlRW81A0sOxMOEpu79UQsjW
W3NDpXgjHRxR6fBTAAKYHzhEK+c5xmTntzOBY/HVz4OusPyugvVn/LaAy6vTcbdo
ekog3LMcPYugB8WJXeZZ7NPujCuM1IjISlS3nS9Zq5R53oqH2o82DI70E0nlh5TG
V/eYQCOucFgq3l1I
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:16 2024 by rpki-client on console-ams.rpki-client.org