Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/f6bd5f-7e26-4072-9d1a-157e3c169918/1/zN6zzUWPHu4N5H-pDUdohURHqLU.roa
File: zN6zzUWPHu4N5H-pDUdohURHqLU.roa (raw, json)
Hash identifier: 4jZ27yQcXH+OFR1kCDpWcX234B/pn3q+pILWqMYkJE4=
Subject key identifier: CC:DE:B3:CD:45:8F:1E:EE:0D:E4:7F:A9:0D:47:68:85:44:47:A8:B5
Certificate issuer: /CN=c74eb7ea35238d02997c42eb574a38a30e5d00e7
Certificate serial: 0189317A5D0FB740DEC42620C22002F7358F
Authority key identifier: C7:4E:B7:EA:35:23:8D:02:99:7C:42:EB:57:4A:38:A3:0E:5D:00:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0636jUjjQKZfELrV0o4ow5dAOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/f6bd5f-7e26-4072-9d1a-157e3c169918/1/zN6zzUWPHu4N5H-pDUdohURHqLU.roa
Signing time: Fri 07 Jul 2023 17:50:50 +0000
ROA not before: Fri 07 Jul 2023 17:50:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34569
IP address blocks: 109.120.192.0/18 maxlen: 18
109.120.213.0/24 maxlen: 24
212.25.32.0/19 maxlen: 19
212.25.58.0/24 maxlen: 24
212.25.62.0/24 maxlen: 24
109.120.215.0/24 maxlen: 24
185.211.200.0/23 maxlen: 23
109.120.218.0/23 maxlen: 23
109.120.222.0/23 maxlen: 23
109.120.224.0/22 maxlen: 22
109.120.220.0/23 maxlen: 23
109.120.230.0/23 maxlen: 23
109.120.228.0/23 maxlen: 24
109.120.232.0/23 maxlen: 23
109.120.240.0/23 maxlen: 23
109.120.238.0/23 maxlen: 23
109.120.242.0/23 maxlen: 23
109.120.244.0/22 maxlen: 22
109.120.252.0/23 maxlen: 23
109.120.248.0/22 maxlen: 22
77.78.38.0/24 maxlen: 24
77.78.56.0/22 maxlen: 22
77.78.60.0/22 maxlen: 22
77.78.0.0/18 maxlen: 18
77.78.20.0/23 maxlen: 23
2a13:86c0::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:31:7a:5d:0f:b7:40:de:c4:26:20:c2:20:02:f7:35:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74eb7ea35238d02997c42eb574a38a30e5d00e7
Validity
Not Before: Jul 7 17:50:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccdeb3cd458f1eee0de47fa90d4768854447a8b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b4:93:73:56:a8:2a:64:1f:89:21:47:b3:0b:
f0:07:e3:03:dd:91:44:40:b1:6a:d1:58:5e:4f:a4:
88:8f:dd:b1:3b:4b:f1:07:64:fe:24:bb:fe:99:81:
5d:ad:46:c2:e7:65:93:a9:0b:6e:9d:73:9c:21:30:
1d:77:0a:34:64:32:58:51:0b:bf:32:e6:87:40:78:
46:51:74:90:b5:72:3f:31:03:0b:4a:aa:d3:d4:f7:
7c:b5:be:37:bf:64:14:8e:02:c2:9c:e7:a6:92:46:
76:76:32:61:79:a8:be:ee:d2:7e:18:96:b0:ae:13:
94:a0:cd:9a:9f:7f:c6:d3:2d:b9:56:e8:7e:4e:85:
db:f0:1d:b2:a8:b1:ac:74:00:ff:87:dd:5d:10:a4:
d8:1f:54:7b:7d:36:b1:5b:8d:5d:f6:3c:89:37:72:
e8:54:cb:0d:98:88:b4:ab:63:71:98:e3:24:1c:ae:
bf:57:4a:a9:17:71:90:2a:33:7e:c8:20:22:bd:36:
a0:bf:d6:13:3a:1e:87:f3:56:92:92:8d:15:62:a5:
2b:76:62:f5:e0:98:41:2c:75:87:be:78:f7:fe:ae:
9f:0d:23:d9:ab:c0:1f:dc:05:1d:c3:69:1a:ab:02:
23:ff:d7:87:5b:b9:2e:f4:44:73:90:4f:bb:19:91:
73:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DE:B3:CD:45:8F:1E:EE:0D:E4:7F:A9:0D:47:68:85:44:47:A8:B5
X509v3 Authority Key Identifier:
keyid:C7:4E:B7:EA:35:23:8D:02:99:7C:42:EB:57:4A:38:A3:0E:5D:00:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0636jUjjQKZfELrV0o4ow5dAOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/f6bd5f-7e26-4072-9d1a-157e3c169918/1/zN6zzUWPHu4N5H-pDUdohURHqLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/f6bd5f-7e26-4072-9d1a-157e3c169918/1/x0636jUjjQKZfELrV0o4ow5dAOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.0.0/18
109.120.192.0/18
185.211.200.0/23
212.25.32.0/19
IPv6:
2a13:86c0::/40
Signature Algorithm: sha256WithRSAEncryption
27:42:b6:8c:1f:cc:e0:56:db:12:97:03:3b:4f:45:71:57:a8:
4b:18:7e:d3:16:b8:18:1e:6d:d8:53:cf:28:2f:24:e4:14:fc:
24:6c:7f:9e:96:7e:97:1d:22:9d:05:ff:15:31:09:c1:5e:bd:
b6:54:90:8b:ac:a8:82:d5:77:54:0b:9d:cb:6d:33:c6:c9:1f:
0c:c0:b3:6a:51:0c:e2:71:46:7b:29:36:55:9a:28:ce:cd:4b:
a0:a2:7e:91:c8:8c:9d:46:c2:d9:bf:c6:9e:1b:2d:93:bb:0b:
03:3a:ad:66:81:19:0c:db:69:9f:06:e4:c9:cf:27:a5:f3:91:
c7:2a:57:c7:2e:dd:8c:57:b5:7d:f8:09:12:83:de:1a:86:87:
67:69:ea:33:08:9f:49:a5:bc:9d:a9:01:18:eb:a8:9e:1f:36:
cd:92:23:03:22:e2:c4:61:43:7c:6b:5b:26:76:bb:0d:2f:d0:
d5:24:3a:01:eb:5e:07:aa:96:5c:bc:c8:5d:dc:b0:30:71:bd:
d9:2e:ed:79:b7:e0:11:f3:b7:4b:fb:89:e6:1f:40:56:7f:66:
fd:7b:49:74:0e:95:f5:37:f2:91:7e:f7:26:8f:45:dd:b9:3d:
24:b2:0e:83:e3:3b:5c:43:bd:c5:38:ef:bb:49:75:bd:65:c4:
72:0f:81:00
-----BEGIN CERTIFICATE-----
MIIFHzCCBAegAwIBAgISAYkxel0Pt0DexCYgwiAC9zWPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NGViN2VhMzUyMzhkMDI5OTdjNDJlYjU3NGEzOGEzMGU1
ZDAwZTcwHhcNMjMwNzA3MTc1MDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjY2RlYjNjZDQ1OGYxZWVlMGRlNDdmYTkwZDQ3Njg4NTQ0NDdhOGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbSTc1aoKmQfiSFHswvwB+MD3ZFE
QLFq0VheT6SIj92xO0vxB2T+JLv+mYFdrUbC52WTqQtunXOcITAddwo0ZDJYUQu/
MuaHQHhGUXSQtXI/MQMLSqrT1Pd8tb43v2QUjgLCnOemkkZ2djJheai+7tJ+GJaw
rhOUoM2an3/G0y25Vuh+ToXb8B2yqLGsdAD/h91dEKTYH1R7fTaxW41d9jyJN3Lo
VMsNmIi0q2NxmOMkHK6/V0qpF3GQKjN+yCAivTagv9YTOh6H81aSko0VYqUrdmL1
4JhBLHWHvnj3/q6fDSPZq8Af3AUdw2kaqwIj/9eHW7ku9ERzkE+7GZFz/wIDAQAB
o4ICKzCCAicwHQYDVR0OBBYEFMzes81Fjx7uDeR/qQ1HaIVER6i1MB8GA1UdIwQY
MBaAFMdOt+o1I40CmXxC61dKOKMOXQDnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDA2MzZqVWpqUUtaZkVMclYwbzRvdzVkQU9jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9mNmJkNWYtN2UyNi00MDcyLTlkMWEt
MTU3ZTNjMTY5OTE4LzEvek42enpVV1BIdTRONUgtcERVZG9oVVJIcUxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi9mNmJkNWYtN2UyNi00MDcyLTlkMWEtMTU3ZTNjMTY5OTE4
LzEveDA2MzZqVWpqUUtaZkVMclYwbzRvdzVkQU9jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAeBAIAATAYAwQGTU4AAwQG
bXjAAwQBudPIAwQF1BkgMA4EAgACMAgDBgAqE4bAADANBgkqhkiG9w0BAQsFAAOC
AQEAJ0K2jB/M4FbbEpcDO09FcVeoSxh+0xa4GB5t2FPPKC8k5BT8JGx/npZ+lx0i
nQX/FTEJwV69tlSQi6yogtV3VAudy20zxskfDMCzalEM4nFGeyk2VZoozs1LoKJ+
kciMnUbC2b/Gnhstk7sLAzqtZoEZDNtpnwbkyc8npfORxypXxy7djFe1ffgJEoPe
GoaHZ2nqMwifSaW8nakBGOuonh82zZIjAyLixGFDfGtbJna7DS/Q1SQ6AeteB6qW
XLzIXdywMHG92S7tebfgEfO3S/uJ5h9AVn9m/XtJdA6V9TfykX73Jo9F3bk9JLIO
g+M7XEO9xTjvu0l1vWXEcg+BAA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:00 2024 by rpki-client on console-fra.rpki-client.org