Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/e13112-5758-4552-b2ad-ed1b9b8e6470/1/JyTHeWPSw0N2vvDNyoUd8epHXA4.roa
File: JyTHeWPSw0N2vvDNyoUd8epHXA4.roa (raw, json)
Hash identifier: OacdQD8AGHB+uL8UAW3yHrwnc616k4RTRtDRnug3bmo=
Subject key identifier: 27:24:C7:79:63:D2:C3:43:76:BE:F0:CD:CA:85:1D:F1:EA:47:5C:0E
Certificate issuer: /CN=292fb09f7e68afe95f23913114e6c0a6aa726fdd
Certificate serial: 0194222031AD7C7996DF81A821E05F70C1A1
Authority key identifier: 29:2F:B0:9F:7E:68:AF:E9:5F:23:91:31:14:E6:C0:A6:AA:72:6F:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KS-wn35or-lfI5ExFObApqpyb90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/e13112-5758-4552-b2ad-ed1b9b8e6470/1/JyTHeWPSw0N2vvDNyoUd8epHXA4.roa
Signing time: Wed 01 Jan 2025 13:48:42 +0000
ROA not before: Wed 01 Jan 2025 13:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43967
IP address blocks: 91.200.180.0/24 maxlen: 24
91.200.181.0/24 maxlen: 24
91.200.182.0/24 maxlen: 24
91.200.183.0/24 maxlen: 24
178.159.224.0/24 maxlen: 24
178.159.225.0/24 maxlen: 24
178.159.226.0/24 maxlen: 24
178.159.227.0/24 maxlen: 24
178.159.228.0/24 maxlen: 24
178.159.229.0/24 maxlen: 24
178.159.230.0/24 maxlen: 24
178.159.231.0/24 maxlen: 24
178.159.232.0/24 maxlen: 24
178.159.233.0/24 maxlen: 24
178.159.234.0/24 maxlen: 24
178.159.235.0/24 maxlen: 24
178.159.236.0/24 maxlen: 24
178.159.237.0/24 maxlen: 24
178.159.238.0/24 maxlen: 24
178.159.239.0/24 maxlen: 24
193.160.97.0/24 maxlen: 24
194.31.44.0/22 maxlen: 22
194.31.44.0/24 maxlen: 24
194.31.45.0/24 maxlen: 24
194.31.46.0/24 maxlen: 24
194.31.47.0/24 maxlen: 24
195.211.136.0/24 maxlen: 24
195.211.137.0/24 maxlen: 24
195.211.138.0/24 maxlen: 24
195.211.139.0/24 maxlen: 24
195.211.140.0/24 maxlen: 24
195.211.141.0/24 maxlen: 24
195.211.142.0/24 maxlen: 24
195.211.143.0/24 maxlen: 24
195.211.144.0/24 maxlen: 24
195.211.145.0/24 maxlen: 24
195.211.146.0/24 maxlen: 24
195.211.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:31:ad:7c:79:96:df:81:a8:21:e0:5f:70:c1:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=292fb09f7e68afe95f23913114e6c0a6aa726fdd
Validity
Not Before: Jan 1 13:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2724c77963d2c34376bef0cdca851df1ea475c0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8c:41:37:b5:ff:9d:9f:09:c1:f5:fb:ef:1c:
e7:ec:81:63:54:b4:d7:85:f9:fb:eb:65:88:36:5b:
c5:0d:dc:21:de:c4:49:95:cd:55:17:0e:93:15:2a:
c6:3c:4c:03:c4:f6:2a:1a:e7:2d:34:47:41:71:e2:
04:54:c8:19:c8:01:7d:99:45:43:49:af:51:a9:02:
27:04:b6:19:1f:7b:29:b3:0c:97:d5:b9:63:43:35:
89:84:6f:f8:5d:75:19:13:4a:28:f8:f8:28:4b:d2:
66:0e:7f:76:63:96:29:4c:8d:28:64:3b:c5:a9:22:
af:19:5c:91:2c:3a:b8:ca:d3:21:67:11:f0:d4:29:
25:ad:6c:51:0a:3e:e5:75:f8:3d:f1:94:a2:39:ad:
72:3b:d3:d5:b0:c3:f2:f3:32:e2:ac:50:52:23:01:
3d:85:d3:23:91:9c:26:10:92:22:ec:cf:39:d5:91:
90:e7:85:df:63:78:ec:e7:b3:3e:19:3c:90:f9:c1:
cf:4e:5a:f2:da:6e:9b:88:7c:7e:62:ab:ae:86:35:
00:77:f5:1a:7a:26:a2:c7:48:da:cc:7a:32:c2:e1:
c7:76:1f:66:d0:ba:ed:2d:4f:e5:dc:51:3b:2e:19:
55:3f:a9:1e:62:95:00:64:64:13:7e:82:56:dd:5e:
ef:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:24:C7:79:63:D2:C3:43:76:BE:F0:CD:CA:85:1D:F1:EA:47:5C:0E
X509v3 Authority Key Identifier:
keyid:29:2F:B0:9F:7E:68:AF:E9:5F:23:91:31:14:E6:C0:A6:AA:72:6F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KS-wn35or-lfI5ExFObApqpyb90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/e13112-5758-4552-b2ad-ed1b9b8e6470/1/JyTHeWPSw0N2vvDNyoUd8epHXA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/e13112-5758-4552-b2ad-ed1b9b8e6470/1/KS-wn35or-lfI5ExFObApqpyb90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.180.0/22
178.159.224.0/20
193.160.97.0/24
194.31.44.0/22
195.211.136.0-195.211.147.255
Signature Algorithm: sha256WithRSAEncryption
46:10:55:dc:06:55:51:2a:72:dc:34:52:85:64:4c:24:85:23:
91:e6:e9:a5:e4:00:c5:26:b0:52:06:7f:a0:4c:72:09:38:da:
d3:43:a8:b2:1d:39:34:da:1b:5a:4d:b9:9d:e1:ad:5d:a2:a8:
28:c8:cf:67:75:f0:eb:54:f7:a1:04:66:58:f3:ba:2a:2d:71:
d8:a8:a9:3b:07:2c:8f:4b:38:6f:63:8d:8a:17:aa:53:af:5a:
a3:ed:57:66:3d:0a:c5:17:1e:41:13:6e:44:73:29:16:da:22:
8e:0f:bd:72:53:d1:e0:35:6f:7a:92:7b:b9:f3:96:69:81:3d:
4e:41:8e:23:c5:f6:6d:7f:54:28:2c:e5:27:7e:b5:de:c8:b2:
00:25:65:2d:17:c8:6c:d3:c4:05:27:d7:7a:ff:a4:70:d1:e1:
be:92:f3:33:a8:6f:8b:4c:17:31:53:12:18:03:14:84:21:c4:
91:e9:1d:6a:3f:13:cd:55:b8:48:6f:67:c2:74:c4:8b:ee:60:
b4:3e:27:7c:c4:45:ad:52:4a:3c:86:07:c8:bc:70:08:44:c2:
2e:64:2c:aa:1f:b1:f9:d5:b3:da:f7:cc:77:11:21:92:ac:84:
99:76:03:19:7f:1d:97:19:ed:68:7e:4d:8c:73:e9:e8:27:66:
94:fa:f6:68
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAZQiIDGtfHmW34GoIeBfcMGhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MmZiMDlmN2U2OGFmZTk1ZjIzOTEzMTE0ZTZjMGE2YWE3
MjZmZGQwHhcNMjUwMTAxMTM0ODQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzI0Yzc3OTYzZDJjMzQzNzZiZWYwY2RjYTg1MWRmMWVhNDc1YzBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoxBN7X/nZ8JwfX77xzn7IFjVLTX
hfn762WINlvFDdwh3sRJlc1VFw6TFSrGPEwDxPYqGuctNEdBceIEVMgZyAF9mUVD
Sa9RqQInBLYZH3spswyX1bljQzWJhG/4XXUZE0oo+PgoS9JmDn92Y5YpTI0oZDvF
qSKvGVyRLDq4ytMhZxHw1CklrWxRCj7ldfg98ZSiOa1yO9PVsMPy8zLirFBSIwE9
hdMjkZwmEJIi7M851ZGQ54XfY3js57M+GTyQ+cHPTlry2m6biHx+YquuhjUAd/Ua
eiaix0jazHoywuHHdh9m0LrtLU/l3FE7LhlVP6keYpUAZGQTfoJW3V7vFQIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFCckx3lj0sNDdr7wzcqFHfHqR1wOMB8GA1UdIwQY
MBaAFCkvsJ9+aK/pXyORMRTmwKaqcm/dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1Mtd24zNW9yLWxmSTVFeEZPYkFwcXB5YjkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9lMTMxMTItNTc1OC00NTUyLWIyYWQt
ZWQxYjliOGU2NDcwLzEvSnlUSGVXUFN3ME4ydnZETnlvVWQ4ZXBIWEE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS9lMTMxMTItNTc1OC00NTUyLWIyYWQtZWQxYjliOGU2NDcw
LzEvS1Mtd24zNW9yLWxmSTVFeEZPYkFwcXB5YjkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQCW8i0AwQE
sp/gAwQAwaBhAwQCwh8sMAwDBAPD04gDBALD05AwDQYJKoZIhvcNAQELBQADggEB
AEYQVdwGVVEqctw0UoVkTCSFI5Hm6aXkAMUmsFIGf6BMcgk42tNDqLIdOTTaG1pN
uZ3hrV2iqCjIz2d18OtU96EEZljzuiotcdioqTsHLI9LOG9jjYoXqlOvWqPtV2Y9
CsUXHkETbkRzKRbaIo4PvXJT0eA1b3qSe7nzlmmBPU5BjiPF9m1/VCgs5Sd+td7I
sgAlZS0XyGzTxAUn13r/pHDR4b6S8zOob4tMFzFTEhgDFIQhxJHpHWo/E81VuEhv
Z8J0xIvuYLQ+J3zERa1SSjyGB8i8cAhEwi5kLKofsfnVs9r3zHcRIZKshJl2Axl/
HZcZ7Wh+TYxz6egnZpT69mg=
-----END CERTIFICATE-----
Generated at Thu Feb 20 03:32:28 2025 by rpki-client