Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/f9bee6-ada6-4981-bdd2-0c1eccf04a5e/1/jZqNQFvDmkrtYC9QOJjW7H1J040.roa
File: jZqNQFvDmkrtYC9QOJjW7H1J040.roa (raw, json)
Hash identifier: K5fkTdAq10vN8hG778iXp7qr2s/9UcYhTe/I7/FgVAE=
Subject key identifier: 8D:9A:8D:40:5B:C3:9A:4A:ED:60:2F:50:38:98:D6:EC:7D:49:D3:8D
Certificate issuer: /CN=42447a77d82f5ba3521653615c982084b6210694
Certificate serial: 3507DF36
Authority key identifier: 42:44:7A:77:D8:2F:5B:A3:52:16:53:61:5C:98:20:84:B6:21:06:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkR6d9gvW6NSFlNhXJgghLYhBpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/f9bee6-ada6-4981-bdd2-0c1eccf04a5e/1/jZqNQFvDmkrtYC9QOJjW7H1J040.roa
Signing time: Sat 01 Jan 2022 07:59:40 +0000
ROA not before: Sat 01 Jan 2022 07:59:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 185.155.68.0/22 maxlen: 22
212.63.124.0/22 maxlen: 22
89.40.203.0/24 maxlen: 24
188.64.96.0/21 maxlen: 21
89.37.227.0/24 maxlen: 24
213.170.224.0/19 maxlen: 19
94.176.194.0/23 maxlen: 23
213.170.227.0/24 maxlen: 24
94.24.104.0/22 maxlen: 22
185.32.112.0/22 maxlen: 22
185.132.164.0/23 maxlen: 23
185.132.164.0/22 maxlen: 22
185.32.115.0/24 maxlen: 24
185.32.114.0/24 maxlen: 24
159.253.248.0/21 maxlen: 21
94.24.34.0/24 maxlen: 24
94.24.32.0/22 maxlen: 22
94.24.40.0/21 maxlen: 21
2a00:8a80::/29 maxlen: 29
2a00:8a84:a000::/44 maxlen: 44
2a00:8a84:e000::/44 maxlen: 44
2a00:8a84:27f0:e::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 889708342 (0x3507df36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42447a77d82f5ba3521653615c982084b6210694
Validity
Not Before: Jan 1 07:59:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d9a8d405bc39a4aed602f503898d6ec7d49d38d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dc:50:ca:74:32:84:b8:1b:fb:17:eb:79:2e:
77:b4:b7:44:0b:70:c2:58:59:06:9b:52:ce:7d:b9:
22:0d:f9:bd:e0:83:19:37:68:a6:96:2b:a3:61:f3:
2d:07:45:05:53:64:5e:8f:9c:6a:9d:65:98:cc:45:
e9:1d:d7:83:12:45:24:81:4e:42:6d:ad:fa:24:8a:
6d:6c:38:91:35:e9:3d:5c:73:a1:0a:12:5c:3d:15:
1e:72:f0:b1:89:19:fb:1d:d3:b3:26:1d:a6:6f:00:
e6:bc:9c:b9:13:ed:7e:b6:78:f6:cc:91:d3:e0:40:
7c:0b:ac:fa:b8:de:a2:3e:8a:39:ea:00:fa:66:4c:
04:e1:5d:39:63:9d:61:d2:a4:65:c7:f6:c6:2c:30:
5a:8d:8e:e2:36:a3:a1:0e:63:a3:18:d0:15:f8:b3:
2e:37:00:53:6d:1c:35:5a:ca:15:4c:15:ed:3d:df:
fd:68:9d:ef:3c:7e:e2:af:77:e7:f1:d4:24:e8:06:
fb:1f:34:30:af:ad:3f:42:fa:d3:56:04:b1:27:4b:
d0:05:f4:a9:44:52:67:6d:1c:2a:12:15:47:54:04:
b2:e6:81:8c:88:59:03:16:f3:11:0a:bb:a2:2e:05:
28:96:81:3d:c2:87:22:fc:5f:92:c9:93:c1:65:30:
96:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:9A:8D:40:5B:C3:9A:4A:ED:60:2F:50:38:98:D6:EC:7D:49:D3:8D
X509v3 Authority Key Identifier:
keyid:42:44:7A:77:D8:2F:5B:A3:52:16:53:61:5C:98:20:84:B6:21:06:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkR6d9gvW6NSFlNhXJgghLYhBpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/f9bee6-ada6-4981-bdd2-0c1eccf04a5e/1/jZqNQFvDmkrtYC9QOJjW7H1J040.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/f9bee6-ada6-4981-bdd2-0c1eccf04a5e/1/QkR6d9gvW6NSFlNhXJgghLYhBpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.227.0/24
89.40.203.0/24
94.24.32.0/22
94.24.40.0/21
94.24.104.0/22
94.176.194.0/23
159.253.248.0/21
185.32.112.0/22
185.132.164.0/22
185.155.68.0/22
188.64.96.0/21
212.63.124.0/22
213.170.224.0/19
IPv6:
2a00:8a80::/29
Signature Algorithm: sha256WithRSAEncryption
4c:a5:c9:3f:27:e6:cb:93:92:cd:70:5f:ee:1f:49:80:9d:42:
a2:38:61:d3:88:7f:9b:f5:87:76:d6:24:1f:45:aa:6e:b0:cc:
fc:8e:c3:76:99:a4:fd:cc:14:ee:bb:06:7e:4b:26:a2:de:60:
fe:81:59:62:31:42:b8:69:45:03:e6:aa:5c:5c:b3:0c:91:4d:
80:d2:bf:8d:9e:88:30:0d:f8:ae:07:db:89:ff:89:80:d9:c8:
4d:20:95:ee:3f:5d:1f:ec:29:79:89:5e:5e:2d:5e:76:6f:50:
bb:2b:91:65:29:32:38:51:2d:08:30:78:9f:52:f1:d6:f2:8d:
1d:2b:3c:41:09:2e:dd:62:d4:80:b4:90:6c:33:3c:d0:8a:68:
c0:79:f7:d5:e5:fb:19:de:b8:ef:e8:70:08:18:39:e0:33:d3:
9d:e6:db:cc:e3:1f:18:66:38:b2:4b:e8:c4:1f:96:30:0d:a0:
56:f8:ac:6b:4e:06:24:a5:ec:50:1d:af:26:7f:fa:4b:4d:65:
cd:eb:a4:a0:28:36:80:b6:2c:fb:a4:d3:61:94:9c:8c:64:c2:
cb:a8:39:6b:b2:94:98:f9:9b:a7:03:e4:ec:07:7a:d7:e5:52:
84:f2:87:f8:95:63:cc:32:a0:9a:f5:56:a1:53:8e:fb:75:a8:
7d:97:08:ca
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgIENQffNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MjQ0N2E3N2Q4MmY1YmEzNTIxNjUzNjE1Yzk4MjA4NGI2MjEwNjk0MB4XDTIyMDEw
MTA3NTk0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQ5YThkNDA1YmMz
OWE0YWVkNjAyZjUwMzg5OGQ2ZWM3ZDQ5ZDM4ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKPcUMp0MoS4G/sX63kud7S3RAtwwlhZBptSzn25Ig35veCD
GTdoppYro2HzLQdFBVNkXo+cap1lmMxF6R3XgxJFJIFOQm2t+iSKbWw4kTXpPVxz
oQoSXD0VHnLwsYkZ+x3TsyYdpm8A5rycuRPtfrZ49syR0+BAfAus+rjeoj6KOeoA
+mZMBOFdOWOdYdKkZcf2xiwwWo2O4jajoQ5joxjQFfizLjcAU20cNVrKFUwV7T3f
/Wid7zx+4q935/HUJOgG+x80MK+tP0L601YEsSdL0AX0qURSZ20cKhIVR1QEsuaB
jIhZAxbzEQq7oi4FKJaBPcKHIvxfksmTwWUwljsCAwEAAaOCAmAwggJcMB0GA1Ud
DgQWBBSNmo1AW8OaSu1gL1A4mNbsfUnTjTAfBgNVHSMEGDAWgBRCRHp32C9bo1IW
U2FcmCCEtiEGlDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FrUjZkOWd2VzZOU0ZsTmhYSmdnaExZaEJwUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjcvZjliZWU2LWFkYTYtNDk4MS1iZGQyLTBjMWVjY2YwNGE1ZS8x
L2pacU5RRnZEbWtydFlDOVFPSmpXN0gxSjA0MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjcv
ZjliZWU2LWFkYTYtNDk4MS1iZGQyLTBjMWVjY2YwNGE1ZS8xL1FrUjZkOWd2VzZO
U0ZsTmhYSmdnaExZaEJwUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB2
BggrBgEFBQcBBwEB/wRnMGUwVAQCAAEwTgMEAFkl4wMEAFkoywMEAl4YIAMEA14Y
KAMEAl4YaAMEAV6wwgMEA5/9+AMEArkgcAMEArmEpAMEArmbRAMEA7xAYAMEAtQ/
fAMEBdWq4DANBAIAAjAHAwUDKgCKgDANBgkqhkiG9w0BAQsFAAOCAQEATKXJPyfm
y5OSzXBf7h9JgJ1Cojhh04h/m/WHdtYkH0WqbrDM/I7Ddpmk/cwU7rsGfksmot5g
/oFZYjFCuGlFA+aqXFyzDJFNgNK/jZ6IMA34rgfbif+JgNnITSCV7j9dH+wpeYle
Xi1edm9QuyuRZSkyOFEtCDB4n1Lx1vKNHSs8QQku3WLUgLSQbDM80IpowHn31eX7
Gd647+hwCBg54DPTnebbzOMfGGY4skvoxB+WMA2gVvisa04GJKXsUB2vJn/6S01l
zeukoCg2gLYs+6TTYZScjGTCy6g5a7KUmPmbpwPk7Ad61+VShPKH+JVjzDKgmvVW
oVOO+3WofZcIyg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:15 2024 by rpki-client on console-ams.rpki-client.org