Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/VOonpE4_RbhcVL7ISItdvQTULzM.roa
File: VOonpE4_RbhcVL7ISItdvQTULzM.roa (raw, json)
Hash identifier: De6rlI/zCXupqFUowHb6arltb3N168Hs7IyxXl5WOA4=
Subject key identifier: 54:EA:27:A4:4E:3F:45:B8:5C:54:BE:C8:48:8B:5D:BD:04:D4:2F:33
Certificate issuer: /CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Certificate serial: 018708A6E61AAA1455DFE1416C7043028120
Authority key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/VOonpE4_RbhcVL7ISItdvQTULzM.roa
Signing time: Wed 22 Mar 2023 09:29:28 +0000
ROA not before: Wed 22 Mar 2023 09:29:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 83.229.76.0/22 maxlen: 32
185.125.192.0/22 maxlen: 32
119.13.192.0/20 maxlen: 32
83.229.104.0/22 maxlen: 32
93.114.10.0/23 maxlen: 32
93.114.12.0/22 maxlen: 32
95.215.36.0/22 maxlen: 32
185.90.243.0/24 maxlen: 32
45.142.92.0/22 maxlen: 32
89.19.42.0/23 maxlen: 32
203.166.152.0/22 maxlen: 32
203.166.148.0/22 maxlen: 32
89.249.51.0/24 maxlen: 32
94.176.112.0/20 maxlen: 32
209.20.176.0/21 maxlen: 32
185.38.102.0/24 maxlen: 32
185.131.220.0/24 maxlen: 32
93.180.192.0/20 maxlen: 32
93.115.12.0/23 maxlen: 32
89.34.78.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:08:a6:e6:1a:aa:14:55:df:e1:41:6c:70:43:02:81:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Validity
Not Before: Mar 22 09:29:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54ea27a44e3f45b85c54bec8488b5dbd04d42f33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:fc:21:bd:ba:30:e2:d0:88:21:ec:ee:b7:1c:
5b:e9:58:7b:0c:53:c1:71:08:12:d9:dc:77:25:4f:
89:b0:1c:fc:c8:79:6e:97:24:57:bc:42:33:25:0f:
cf:88:e2:70:fb:88:64:86:0b:6a:ef:e7:60:79:83:
10:27:18:7a:ee:30:04:2c:18:0e:3b:a7:2e:6d:9c:
4f:48:20:23:39:72:b7:ac:e2:4a:e3:57:13:7e:07:
f9:52:89:83:fd:f6:49:d9:55:70:2f:67:28:2b:69:
9b:bf:ed:3b:f6:d9:29:cd:ba:9e:e3:35:0e:ab:c5:
2a:9c:c0:35:57:6c:5d:c9:e0:e2:57:c8:f0:51:08:
c9:5a:20:6f:06:67:f1:df:77:eb:df:eb:a3:e4:b1:
9b:fd:63:e2:69:93:5d:04:be:d5:20:79:8e:86:4e:
e4:1a:b8:04:ec:af:fe:40:9a:f6:f1:74:3c:a6:14:
e6:8e:85:1b:aa:99:34:d5:20:6d:6d:43:8b:42:b0:
8e:6c:2d:b1:64:6a:d0:ac:58:f1:8c:32:90:4c:fd:
22:b9:e5:17:26:f8:c1:b9:c2:24:63:9f:31:1d:dd:
7f:26:4c:ed:97:17:18:d7:43:66:7e:6f:db:0d:0b:
26:1d:f0:00:cd:9b:da:e0:9d:62:a9:1e:92:76:c3:
79:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:EA:27:A4:4E:3F:45:B8:5C:54:BE:C8:48:8B:5D:BD:04:D4:2F:33
X509v3 Authority Key Identifier:
keyid:1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/VOonpE4_RbhcVL7ISItdvQTULzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.92.0/22
83.229.76.0/22
83.229.104.0/22
89.19.42.0/23
89.34.78.0/23
89.249.51.0/24
93.114.10.0-93.114.15.255
93.115.12.0/23
93.180.192.0/20
94.176.112.0/20
95.215.36.0/22
119.13.192.0/20
185.38.102.0/24
185.90.243.0/24
185.125.192.0/22
185.131.220.0/24
203.166.148.0-203.166.155.255
209.20.176.0/21
Signature Algorithm: sha256WithRSAEncryption
18:8a:9c:39:6b:1c:a5:92:c7:6e:89:8e:2d:94:16:0b:dd:33:
99:a8:c0:30:2b:29:ad:e7:d1:a9:bc:55:a5:5b:2f:1f:46:09:
8b:8c:26:bd:ed:14:f9:57:29:f5:04:1d:a9:b1:26:5b:a2:bb:
68:e2:68:20:d4:9d:72:94:fe:2a:bb:00:df:f5:e7:82:cb:74:
41:3a:a0:1d:2e:90:fa:f8:3e:59:77:f6:81:d6:e3:58:43:8e:
3a:69:45:45:6d:de:aa:64:bb:13:33:c5:be:fc:90:8c:59:7e:
e0:c8:96:8a:24:01:fb:58:88:8b:82:44:77:99:0c:ea:88:ef:
0a:33:35:e0:b7:9c:a6:64:6d:b0:69:05:8f:9c:45:20:da:d3:
35:ea:66:14:c8:79:88:34:cd:ce:74:b2:bd:62:af:04:ce:91:
d8:8e:78:33:21:ab:c2:18:7e:7e:ea:79:4e:27:eb:84:47:74:
b8:c2:8e:fa:c7:a3:0b:54:05:06:c4:80:3b:44:22:56:12:67:
f3:c6:f5:6d:e4:94:9b:4b:fb:3a:c6:0e:42:9a:57:ad:56:c9:
a0:e5:c2:d0:d0:5f:fd:20:4b:d8:14:62:e7:21:0b:10:1e:87:
d2:8e:90:ef:0d:80:bc:64:5e:d6:2b:37:96:b2:16:e2:74:80:
8e:e8:9d:4c
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAYcIpuYaqhRV3+FBbHBDAoEgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiYTUxYTBiYzBmMGFmZWJiZjZkNWQ5MjdmZTFmOTgxNmY1
MjM1MmQwHhcNMjMwMzIyMDkyOTI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NGVhMjdhNDRlM2Y0NWI4NWM1NGJlYzg0ODhiNWRiZDA0ZDQyZjMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhfwhvbow4tCIIezutxxb6Vh7DFPB
cQgS2dx3JU+JsBz8yHlulyRXvEIzJQ/PiOJw+4hkhgtq7+dgeYMQJxh67jAELBgO
O6cubZxPSCAjOXK3rOJK41cTfgf5UomD/fZJ2VVwL2coK2mbv+079tkpzbqe4zUO
q8UqnMA1V2xdyeDiV8jwUQjJWiBvBmfx33fr3+uj5LGb/WPiaZNdBL7VIHmOhk7k
GrgE7K/+QJr28XQ8phTmjoUbqpk01SBtbUOLQrCObC2xZGrQrFjxjDKQTP0iueUX
JvjBucIkY58xHd1/JkztlxcY10Nmfm/bDQsmHfAAzZva4J1iqR6SdsN5pwIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFFTqJ6ROP0W4XFS+yEiLXb0E1C8zMB8GA1UdIwQY
MBaAFBulGgvA8K/rv21dkn/h+YFvUjUtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzZVYUM4RHdyLXVfYlYyU2YtSDVnVzlTTlMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS80ZjIxMWUtNzlkNy00NTA0LTllYWQt
ODcxZjllZDcwOGUwLzEvVk9vbnBFNF9SYmhjVkw3SVNJdGR2UVRVTHpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS80ZjIxMWUtNzlkNy00NTA0LTllYWQtODcxZjllZDcwOGUw
LzEvRzZVYUM4RHdyLXVfYlYyU2YtSDVnVzlTTlMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTCBggQCAAEwfAMEAi2O
XAMEAlPlTAMEAlPlaAMEAVkTKgMEAVkiTgMEAFn5MzAMAwQBXXIKAwQEXXIAAwQB
XXMMAwQEXbTAAwQEXrBwAwQCX9ckAwQEdw3AAwQAuSZmAwQAuVrzAwQCuX3AAwQA
uYPcMAwDBALLppQDBALLppgDBAPRFLAwDQYJKoZIhvcNAQELBQADggEBABiKnDlr
HKWSx26Jji2UFgvdM5mowDArKa3n0am8VaVbLx9GCYuMJr3tFPlXKfUEHamxJlui
u2jiaCDUnXKU/iq7AN/154LLdEE6oB0ukPr4Pll39oHW41hDjjppRUVt3qpkuxMz
xb78kIxZfuDIlookAftYiIuCRHeZDOqI7wozNeC3nKZkbbBpBY+cRSDa0zXqZhTI
eYg0zc50sr1irwTOkdiOeDMhq8IYfn7qeU4n64RHdLjCjvrHowtUBQbEgDtEIlYS
Z/PG9W3klJtL+zrGDkKaV61WyaDlwtDQX/0gS9gUYuchCxAeh9KOkO8NgLxkXtYr
N5ayFuJ0gI7onUw=
-----END CERTIFICATE-----
Generated at Fri Apr 11 21:30:34 2025 by rpki-client