Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e14d80-b5ed-4e7d-9649-694d89142ff9/1/h7WDBlbN7T0spJkd1rD9AOSgsYQ.roa
File: h7WDBlbN7T0spJkd1rD9AOSgsYQ.roa (raw, json)
Hash identifier: ETuHX4ylMVpyULj+DOYNRJFMRDACIauwVSngPK/tEek=
Subject key identifier: 87:B5:83:06:56:CD:ED:3D:2C:A4:99:1D:D6:B0:FD:00:E4:A0:B1:84
Certificate issuer: /CN=5bb0e9679ccd367bb6d1680eb3a432a9106cbd97
Certificate serial: 05B1B2EB
Authority key identifier: 5B:B0:E9:67:9C:CD:36:7B:B6:D1:68:0E:B3:A4:32:A9:10:6C:BD:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W7DpZ5zNNnu20WgOs6QyqRBsvZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e14d80-b5ed-4e7d-9649-694d89142ff9/1/h7WDBlbN7T0spJkd1rD9AOSgsYQ.roa
Signing time: Sat 01 Jan 2022 15:02:43 +0000
ROA not before: Sat 01 Jan 2022 15:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201540
IP address blocks: 185.120.192.0/22 maxlen: 22
185.120.196.0/22 maxlen: 22
185.120.200.0/24 maxlen: 24
185.120.201.0/24 maxlen: 24
185.120.202.0/24 maxlen: 24
185.120.203.0/24 maxlen: 24
185.120.208.0/22 maxlen: 22
185.71.192.0/23 maxlen: 23
185.71.194.0/23 maxlen: 23
185.109.75.0/24 maxlen: 24
185.109.72.0/24 maxlen: 24
185.109.73.0/24 maxlen: 24
185.109.74.0/24 maxlen: 24
185.109.80.0/23 maxlen: 23
185.109.82.0/23 maxlen: 23
185.111.8.0/22 maxlen: 22
185.111.12.0/22 maxlen: 22
185.120.216.0/22 maxlen: 22
185.120.224.0/22 maxlen: 22
185.120.232.0/22 maxlen: 22
185.120.240.0/22 maxlen: 22
185.109.61.0/24 maxlen: 24
185.109.62.0/23 maxlen: 23
185.109.60.0/24 maxlen: 24
185.111.136.0/22 maxlen: 22
185.111.64.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95531755 (0x5b1b2eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bb0e9679ccd367bb6d1680eb3a432a9106cbd97
Validity
Not Before: Jan 1 15:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87b5830656cded3d2ca4991dd6b0fd00e4a0b184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ee:74:c4:d1:98:1b:42:2f:26:50:e5:b1:c4:
92:70:0e:3c:a5:94:c8:28:a0:e6:e0:9d:31:69:7f:
b4:e7:37:63:74:e1:fe:4b:cb:92:8b:8f:a7:fb:96:
b2:73:e0:a2:2f:49:3c:b9:cd:7d:69:ea:d3:69:c4:
cb:62:ae:67:d4:89:0d:3a:fc:e2:92:e4:25:4f:83:
dc:30:87:19:35:1c:de:02:ab:61:f2:6f:bb:96:49:
ae:58:45:b7:b6:f8:c0:55:6b:e2:10:a9:88:f6:9d:
0a:1d:97:36:1f:e0:0c:93:09:39:0b:4c:93:65:6b:
dd:87:d9:84:89:ae:f7:8f:c0:d4:43:61:ac:ef:06:
d0:6a:b1:00:c1:2f:37:8f:86:86:86:95:00:dc:64:
da:fa:81:6f:70:b3:eb:11:44:b7:13:5f:4d:27:f5:
78:d9:0b:fa:d1:d6:b0:9c:cf:0a:ee:80:6f:3f:25:
cf:cf:79:f7:e3:97:bf:60:04:40:40:27:ca:48:1b:
87:bf:fd:cf:42:a4:14:f6:e8:d7:59:98:bf:67:35:
b2:ca:4c:f4:7e:1e:76:78:bd:50:ae:21:8e:15:96:
47:41:35:2b:1c:45:1f:24:9d:37:42:5f:96:76:41:
c7:e2:6b:b3:80:57:50:60:8f:28:65:46:d9:fc:0a:
a1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B5:83:06:56:CD:ED:3D:2C:A4:99:1D:D6:B0:FD:00:E4:A0:B1:84
X509v3 Authority Key Identifier:
keyid:5B:B0:E9:67:9C:CD:36:7B:B6:D1:68:0E:B3:A4:32:A9:10:6C:BD:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W7DpZ5zNNnu20WgOs6QyqRBsvZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e14d80-b5ed-4e7d-9649-694d89142ff9/1/h7WDBlbN7T0spJkd1rD9AOSgsYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e14d80-b5ed-4e7d-9649-694d89142ff9/1/W7DpZ5zNNnu20WgOs6QyqRBsvZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.192.0/22
185.109.60.0/22
185.109.72.0/22
185.109.80.0/22
185.111.8.0/21
185.111.64.0/23
185.111.136.0/22
185.120.192.0-185.120.203.255
185.120.208.0/22
185.120.216.0/22
185.120.224.0/22
185.120.232.0/22
185.120.240.0/22
Signature Algorithm: sha256WithRSAEncryption
07:50:77:46:47:df:61:5c:59:ff:9c:f3:fd:46:fe:ff:65:9a:
9f:f3:cb:93:c4:b6:07:33:bf:da:4c:1e:19:2a:48:1e:28:98:
6b:6b:d2:a3:e5:89:ee:20:7e:8f:f8:47:95:79:e9:fc:af:7a:
5b:0f:44:b5:83:67:62:86:d2:af:94:79:42:7b:2f:2a:28:d7:
2c:f0:b0:db:3f:50:40:c6:2a:37:56:85:01:ad:71:7d:a6:05:
04:55:c2:37:b6:64:8f:52:df:8b:0c:8b:47:ab:72:76:0c:86:
10:fc:a4:95:65:e0:5c:83:ec:c9:66:c1:a2:16:37:07:19:db:
07:ba:d6:c4:f9:86:11:04:ed:95:b7:c6:5c:9c:0b:42:a4:b7:
82:f6:20:f8:45:32:26:12:b3:11:ee:a4:66:f6:13:74:f7:7d:
77:98:da:53:90:39:ed:55:0d:97:8b:18:81:df:f6:b9:43:b9:
dc:15:8c:81:16:b0:a6:3b:f3:e6:5f:18:f6:4a:a8:e1:14:2e:
47:01:e3:20:91:d1:9e:e5:df:98:b7:23:d1:a3:29:cc:e6:c5:
06:9b:51:b9:2f:ee:98:d0:b5:a6:22:55:d8:5b:31:8c:3a:d4:
b5:7c:54:78:db:d4:1a:ec:76:f1:39:99:0b:21:22:a5:68:13:
d3:12:22:bf
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgIEBbGy6zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YmIwZTk2NzljY2QzNjdiYjZkMTY4MGViM2E0MzJhOTEwNmNiZDk3MB4XDTIyMDEw
MTE1MDI0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODdiNTgzMDY1NmNk
ZWQzZDJjYTQ5OTFkZDZiMGZkMDBlNGEwYjE4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKjudMTRmBtCLyZQ5bHEknAOPKWUyCig5uCdMWl/tOc3Y3Th
/kvLkouPp/uWsnPgoi9JPLnNfWnq02nEy2KuZ9SJDTr84pLkJU+D3DCHGTUc3gKr
YfJvu5ZJrlhFt7b4wFVr4hCpiPadCh2XNh/gDJMJOQtMk2Vr3YfZhImu94/A1ENh
rO8G0GqxAMEvN4+GhoaVANxk2vqBb3Cz6xFEtxNfTSf1eNkL+tHWsJzPCu6Abz8l
z8959+OXv2AEQEAnykgbh7/9z0KkFPbo11mYv2c1sspM9H4edni9UK4hjhWWR0E1
KxxFHySdN0JflnZBx+Jrs4BXUGCPKGVG2fwKofcCAwEAAaOCAlkwggJVMB0GA1Ud
DgQWBBSHtYMGVs3tPSykmR3WsP0A5KCxhDAfBgNVHSMEGDAWgBRbsOlnnM02e7bR
aA6zpDKpEGy9lzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1c3RHBaNXpOTm51MjBXZ09zNlF5cVJCc3ZaYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvZTE0ZDgwLWI1ZWQtNGU3ZC05NjQ5LTY5NGQ4OTE0MmZmOS8x
L2g3V0RCbGJON1Qwc3BKa2QxckQ5QU9TZ3NZUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
ZTE0ZDgwLWI1ZWQtNGU3ZC05NjQ5LTY5NGQ4OTE0MmZmOS8xL1c3RHBaNXpOTm51
MjBXZ09zNlF5cVJCc3ZaYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBv
BggrBgEFBQcBBwEB/wRgMF4wXAQCAAEwVgMEArlHwAMEArltPAMEArltSAMEArlt
UAMEA7lvCAMEAblvQAMEArlviDAMAwQGuXjAAwQCuXjIAwQCuXjQAwQCuXjYAwQC
uXjgAwQCuXjoAwQCuXjwMA0GCSqGSIb3DQEBCwUAA4IBAQAHUHdGR99hXFn/nPP9
Rv7/ZZqf88uTxLYHM7/aTB4ZKkgeKJhra9Kj5YnuIH6P+EeVeen8r3pbD0S1g2di
htKvlHlCey8qKNcs8LDbP1BAxio3VoUBrXF9pgUEVcI3tmSPUt+LDItHq3J2DIYQ
/KSVZeBcg+zJZsGiFjcHGdsHutbE+YYRBO2Vt8ZcnAtCpLeC9iD4RTImErMR7qRm
9hN09313mNpTkDntVQ2XixiB3/a5Q7ncFYyBFrCmO/PmXxj2SqjhFC5HAeMgkdGe
5d+YtyPRoynM5sUGm1G5L+6Y0LWmIlXYWzGMOtS1fFR429Qa7HbxOZkLISKlaBPT
EiK/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-fra.rpki-client.org