Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/3W4CmpBV8Ad_kcKH5SiFGnjRq4c.roa
File: 3W4CmpBV8Ad_kcKH5SiFGnjRq4c.roa (raw, json)
Hash identifier: JX8iT9I5yhUbwl1LXJGElS4pEK9bnqkk0gD+MWJs17I=
Subject key identifier: DD:6E:02:9A:90:55:F0:07:7F:91:C2:87:E5:28:85:1A:78:D1:AB:87
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 018572E8276AD703B4A22238EEACA011E482
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/3W4CmpBV8Ad_kcKH5SiFGnjRq4c.roa
Signing time: Mon 02 Jan 2023 14:34:55 +0000
ROA not before: Mon 02 Jan 2023 14:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5518
IP address blocks: 80.233.128.0/17 maxlen: 24
80.233.146.0/24 maxlen: 24
62.63.128.0/18 maxlen: 24
62.63.141.0/24 maxlen: 24
78.154.128.0/19 maxlen: 19
80.233.232.0/24 maxlen: 24
80.233.255.0/24 maxlen: 24
62.63.159.0/24 maxlen: 24
78.154.146.0/24 maxlen: 24
194.19.224.0/24 maxlen: 24
194.19.224.0/19 maxlen: 19
194.19.246.0/24 maxlen: 24
185.87.204.0/22 maxlen: 24
78.28.240.0/24 maxlen: 24
78.28.252.0/24 maxlen: 24
78.28.251.0/24 maxlen: 24
213.175.64.0/18 maxlen: 24
78.28.197.0/24 maxlen: 24
78.28.195.0/24 maxlen: 24
78.28.192.0/18 maxlen: 24
78.28.211.0/24 maxlen: 24
78.28.212.0/24 maxlen: 24
2a02:16d8:101::/48 maxlen: 48
2a02:16d8:104::/48 maxlen: 48
2a02:16d8:105:9::/64 maxlen: 64
2a02:16d8:102::/48 maxlen: 48
2a02:16d8::/32 maxlen: 48
2a02:16d8:b400::/38 maxlen: 38
2a02:16d8:103::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:e8:27:6a:d7:03:b4:a2:22:38:ee:ac:a0:11:e4:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 2 14:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd6e029a9055f0077f91c287e528851a78d1ab87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c8:cb:40:71:2e:52:85:74:ce:31:32:53:0d:
16:84:f6:ad:c7:fb:83:e1:94:68:2f:d3:c9:17:40:
a2:3e:da:99:f3:77:d1:fd:70:db:a8:e7:ef:74:01:
f8:21:37:5c:40:24:46:11:e2:f1:78:83:4e:56:49:
d6:b3:ba:12:1b:8c:e1:81:af:aa:bd:43:1b:5a:b6:
9c:11:54:ac:32:16:38:72:9d:36:a4:3d:ec:8e:59:
c2:6d:e3:f6:98:b5:25:34:aa:dc:3d:d7:39:f4:5b:
7d:00:39:a0:5c:eb:05:31:ec:41:23:db:f8:f2:09:
5e:11:fb:f6:7d:24:be:6b:2d:93:f3:03:bc:50:8a:
4e:1d:28:bd:a9:c5:04:93:0d:ae:94:a7:b7:a0:70:
b0:23:84:ce:f6:e2:28:57:db:36:78:c5:b5:c5:22:
d6:93:b2:77:73:ef:8d:ba:a4:34:f2:8c:15:d0:91:
9d:5d:03:4a:6c:a7:03:63:cc:29:98:39:fb:0d:18:
d6:ba:94:0d:ab:95:a2:53:fa:a3:b5:a9:12:9b:fe:
4f:17:f7:08:9b:ea:15:df:5f:54:b5:ad:de:04:f1:
b2:e8:57:3c:d5:01:ba:ae:e1:eb:a9:ce:7d:3e:41:
8a:3b:36:59:ba:68:af:be:ed:68:44:b6:e1:d5:f0:
a0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:6E:02:9A:90:55:F0:07:7F:91:C2:87:E5:28:85:1A:78:D1:AB:87
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/3W4CmpBV8Ad_kcKH5SiFGnjRq4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.63.128.0/18
78.28.192.0/18
78.154.128.0/19
80.233.128.0/17
185.87.204.0/22
194.19.224.0/19
213.175.64.0/18
IPv6:
2a02:16d8::/32
Signature Algorithm: sha256WithRSAEncryption
64:64:19:44:74:5e:dd:cc:2a:6c:28:90:46:5b:ef:70:9d:45:
30:ff:5e:59:f3:9f:cc:39:b4:41:a2:72:6d:c7:e5:6d:13:d6:
57:7c:1e:70:be:10:3e:c9:62:29:dd:3a:66:8a:dd:f6:50:eb:
82:b4:c8:54:e9:a1:13:a5:4a:e4:08:44:f1:63:a1:91:76:bb:
9f:76:3a:bd:c0:ab:44:ce:21:95:a5:10:d4:af:a0:f6:1d:55:
86:83:08:61:29:0f:76:a3:98:a2:f0:71:58:a0:da:15:1a:c3:
04:a2:eb:8b:bb:39:6f:76:9b:8a:eb:be:26:38:fc:f8:81:a2:
f9:bb:23:85:e6:88:7f:a1:b6:d1:93:d5:73:a2:ba:88:d7:c7:
af:44:6b:cb:a8:07:c2:24:29:a2:17:b9:37:cd:1e:1f:e3:8e:
96:de:07:2d:84:04:73:78:aa:2f:ea:51:72:e9:5f:c6:3a:f9:
77:f4:3c:2e:f9:b8:b4:3c:18:e4:29:1b:e5:3c:f8:bc:e7:a9:
3f:91:28:98:3b:97:48:d3:d0:0a:90:93:56:44:d5:fe:64:72:
eb:43:69:f1:6b:7c:14:49:96:40:2b:03:7b:2c:56:08:6d:c1:
34:f6:67:e0:da:56:f1:e7:44:f0:4a:f0:ba:2d:da:1f:bd:38:
26:41:e1:ad
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgISAYVy6Cdq1wO0oiI47qygEeSCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMzg5N2ZjN2E5NjNmMTQyMTVkNThlMTgyNDE0NGFiMTlm
ZDU4MTAwHhcNMjMwMTAyMTQzNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDZlMDI5YTkwNTVmMDA3N2Y5MWMyODdlNTI4ODUxYTc4ZDFhYjg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhMjLQHEuUoV0zjEyUw0WhPatx/uD
4ZRoL9PJF0CiPtqZ83fR/XDbqOfvdAH4ITdcQCRGEeLxeINOVknWs7oSG4zhga+q
vUMbWracEVSsMhY4cp02pD3sjlnCbeP2mLUlNKrcPdc59Ft9ADmgXOsFMexBI9v4
8gleEfv2fSS+ay2T8wO8UIpOHSi9qcUEkw2ulKe3oHCwI4TO9uIoV9s2eMW1xSLW
k7J3c++NuqQ08owV0JGdXQNKbKcDY8wpmDn7DRjWupQNq5WiU/qjtakSm/5PF/cI
m+oV319Uta3eBPGy6Fc81QG6ruHrqc59PkGKOzZZumivvu1oRLbh1fCgoQIDAQAB
o4ICPDCCAjgwHQYDVR0OBBYEFN1uApqQVfAHf5HCh+UohRp40auHMB8GA1UdIwQY
MBaAFBM4l/x6lj8UIV1Y4YJBRKsZ/VgQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXppWF9IcVdQeFFoWFZqaGdrRkVxeG45V0JBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy84YmU0YWYtNjJiZS00MTgwLWJlYzkt
ZjJiODdmMzhiOWRkLzEvM1c0Q21wQlY4QWRfa2NLSDVTaUZHbmpScTRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy84YmU0YWYtNjJiZS00MTgwLWJlYzktZjJiODdmMzhiOWRk
LzEvRXppWF9IcVdQeFFoWFZqaGdrRkVxeG45V0JBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQGPj+AAwQG
ThzAAwQFTpqAAwQHUOmAAwQCuVfMAwQFwhPgAwQG1a9AMA0EAgACMAcDBQAqAhbY
MA0GCSqGSIb3DQEBCwUAA4IBAQBkZBlEdF7dzCpsKJBGW+9wnUUw/15Z85/MObRB
onJtx+VtE9ZXfB5wvhA+yWIp3Tpmit32UOuCtMhU6aETpUrkCETxY6GRdrufdjq9
wKtEziGVpRDUr6D2HVWGgwhhKQ92o5ii8HFYoNoVGsMEouuLuzlvdpuK674mOPz4
gaL5uyOF5oh/obbRk9VzorqI18evRGvLqAfCJCmiF7k3zR4f446W3gcthARzeKov
6lFy6V/GOvl39Dwu+bi0PBjkKRvlPPi856k/kSiYO5dI09AKkJNWRNX+ZHLrQ2nx
a3wUSZZAKwN7LFYIbcE09mfg2lbx50TwSvC6LdofvTgmQeGt
-----END CERTIFICATE-----
Generated at Fri Sep 15 08:34:47 2023 by rpki-client on console-ams.rpki-client.org