Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/K2Ho83wE1LsEM7917KBqBB0BgC0.roa
File: K2Ho83wE1LsEM7917KBqBB0BgC0.roa (raw, json)
Hash identifier: YQYVSsEP2WuuhgRJp6wNgbttoo14MB7r+0XPgORdGuo=
Subject key identifier: 2B:61:E8:F3:7C:04:D4:BB:04:33:BF:75:EC:A0:6A:04:1D:01:80:2D
Certificate issuer: /CN=4a7209f8b7ed4fa9bfb278880c29f98d6a96b63c
Certificate serial: 0184ED8C38FFEE23A0EE32D1F0CA1EBC4A8E
Authority key identifier: 4A:72:09:F8:B7:ED:4F:A9:BF:B2:78:88:0C:29:F9:8D:6A:96:B6:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SnIJ-LftT6m_sniIDCn5jWqWtjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/K2Ho83wE1LsEM7917KBqBB0BgC0.roa
Signing time: Wed 07 Dec 2022 17:05:00 +0000
ROA not before: Wed 07 Dec 2022 17:05:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200303
IP address blocks: 45.132.125.0/24 maxlen: 24
45.132.124.0/24 maxlen: 24
45.132.124.0/23 maxlen: 23
45.132.127.0/24 maxlen: 24
45.132.126.0/23 maxlen: 23
45.132.126.0/24 maxlen: 24
45.95.55.0/24 maxlen: 24
45.95.54.0/24 maxlen: 24
45.95.53.0/24 maxlen: 24
45.95.52.0/24 maxlen: 24
45.95.52.0/22 maxlen: 22
45.142.112.0/23 maxlen: 23
45.142.112.0/22 maxlen: 24
45.142.112.0/24 maxlen: 24
45.142.115.0/24 maxlen: 24
45.142.114.0/24 maxlen: 24
45.142.113.0/24 maxlen: 24
185.245.60.0/22 maxlen: 24
185.244.164.0/24 maxlen: 24
185.244.164.0/23 maxlen: 23
185.244.166.0/24 maxlen: 24
185.244.165.0/24 maxlen: 24
185.244.167.0/24 maxlen: 24
185.244.166.0/23 maxlen: 23
2a0d:3586::/32 maxlen: 32
2a0d:3580:12ee::/48 maxlen: 48
2a0d:3585::/32 maxlen: 32
2a0d:3580:12ec::/48 maxlen: 48
2a0d:3580:12dd::/48 maxlen: 48
2a0d:3580:12eb::/48 maxlen: 48
2a0d:3580:12df::/48 maxlen: 48
2a0d:3580:12da::/48 maxlen: 48
2a0d:3580:12de::/48 maxlen: 48
2a0d:3580:12dc::/48 maxlen: 48
2a0e:d8c0::/29 maxlen: 29
2a0d:3580:5a2d::/48 maxlen: 48
2a0d:3580:12ed::/48 maxlen: 48
2a0d:3580::/32 maxlen: 32
2a0d:3580:12db::/48 maxlen: 48
2a0d:3584:1111::/48 maxlen: 48
2a0d:3580:12ef::/48 maxlen: 48
2a0d:3580:12ea::/48 maxlen: 48
2a0d:3585:2006::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ed:8c:38:ff:ee:23:a0:ee:32:d1:f0:ca:1e:bc:4a:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a7209f8b7ed4fa9bfb278880c29f98d6a96b63c
Validity
Not Before: Dec 7 17:05:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b61e8f37c04d4bb0433bf75eca06a041d01802d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:51:b4:92:7f:1f:de:46:0b:5f:ee:59:ac:1a:
65:55:89:83:33:2e:87:f7:dc:6b:83:2c:21:2a:81:
01:c0:41:73:c0:24:99:24:11:0f:97:37:9a:88:33:
87:40:37:ec:0b:c2:e3:fb:55:13:59:20:4f:01:43:
4b:3f:8d:10:33:2d:81:12:b9:92:4e:a0:07:fb:4e:
a5:89:2a:e4:ba:e8:24:bc:46:50:1d:4d:65:eb:c2:
8a:05:a5:05:8b:58:5a:66:c9:35:73:26:f5:ac:ef:
b4:b6:df:d7:c5:99:fa:17:62:f8:7a:74:08:6b:2b:
c7:94:7a:57:9e:b4:6e:2b:43:fc:8f:a0:48:d2:76:
fc:e7:2a:0d:35:a5:4d:23:f5:ef:2f:e8:09:57:e6:
c1:84:86:53:4f:a6:62:3f:92:1e:6a:4c:19:1a:20:
fe:27:20:35:8a:3f:db:9d:38:d6:63:a6:ad:2a:21:
ef:fc:5f:43:59:d8:db:7d:65:85:3e:cc:e4:e5:7f:
97:76:f2:4e:de:d6:72:ce:41:eb:a2:02:e6:48:14:
40:10:99:69:f8:bb:ab:17:f3:54:16:b2:01:ba:2b:
86:b2:ce:ca:8c:fb:a1:ba:08:6b:3f:7d:3a:2a:c2:
f2:7a:39:db:e5:f0:f6:58:bf:46:a3:c6:40:cc:32:
ed:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:61:E8:F3:7C:04:D4:BB:04:33:BF:75:EC:A0:6A:04:1D:01:80:2D
X509v3 Authority Key Identifier:
keyid:4A:72:09:F8:B7:ED:4F:A9:BF:B2:78:88:0C:29:F9:8D:6A:96:B6:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SnIJ-LftT6m_sniIDCn5jWqWtjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/K2Ho83wE1LsEM7917KBqBB0BgC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/SnIJ-LftT6m_sniIDCn5jWqWtjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.52.0/22
45.132.124.0/22
45.142.112.0/22
185.244.164.0/22
185.245.60.0/22
IPv6:
2a0d:3580::/32
2a0d:3584:1111::/48
2a0d:3585::-2a0d:3586:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:d8c0::/29
Signature Algorithm: sha256WithRSAEncryption
05:fa:94:84:03:51:11:fb:bd:ec:e3:bf:ef:01:09:a9:23:4d:
42:21:3c:1a:e2:7a:79:8d:f3:89:59:3c:a3:80:72:6d:8d:a3:
09:60:34:db:fc:25:9c:61:4e:6c:4b:d2:9a:87:ea:79:ea:d3:
2b:e2:24:86:31:cd:2b:c7:78:80:15:d9:83:cf:08:60:a9:00:
fa:f9:4e:51:39:87:00:b4:cd:ce:64:ef:4f:91:af:f8:6e:78:
32:3c:cd:88:ea:39:73:7c:1d:a8:c1:2b:aa:35:6a:60:22:57:
d4:a0:27:61:fb:3a:d4:fd:28:69:32:41:e9:af:f0:2e:45:82:
73:8e:1e:a1:c7:41:c0:e6:d1:19:4b:c9:15:d2:1a:12:01:fb:
c5:ce:a8:42:41:7b:56:d2:79:04:9f:85:57:47:1a:a8:1c:9f:
fa:84:84:ab:f3:93:4e:f2:ec:2b:4a:40:15:a6:6a:b4:59:8d:
15:1f:43:aa:33:2b:3d:d1:1c:b5:22:54:43:57:aa:b5:dd:aa:
67:7e:47:aa:dc:03:1f:68:19:47:f3:ed:85:15:89:2c:2b:2b:
fb:89:f1:c1:a7:7e:3c:93:f7:e9:c3:83:cd:32:63:53:60:80:
cc:c5:c0:69:71:87:9f:c3:75:0e:41:4e:74:ce:02:9d:e4:c3:
13:28:e2:42
-----BEGIN CERTIFICATE-----
MIIFRDCCBCygAwIBAgISAYTtjDj/7iOg7jLR8MoevEqOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNzIwOWY4YjdlZDRmYTliZmIyNzg4ODBjMjlmOThkNmE5
NmI2M2MwHhcNMjIxMjA3MTcwNTAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjYxZThmMzdjMDRkNGJiMDQzM2JmNzVlY2EwNmEwNDFkMDE4MDJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVG0kn8f3kYLX+5ZrBplVYmDMy6H
99xrgywhKoEBwEFzwCSZJBEPlzeaiDOHQDfsC8Lj+1UTWSBPAUNLP40QMy2BErmS
TqAH+06liSrkuugkvEZQHU1l68KKBaUFi1haZsk1cyb1rO+0tt/XxZn6F2L4enQI
ayvHlHpXnrRuK0P8j6BI0nb85yoNNaVNI/XvL+gJV+bBhIZTT6ZiP5IeakwZGiD+
JyA1ij/bnTjWY6atKiHv/F9DWdjbfWWFPszk5X+XdvJO3tZyzkHrogLmSBRAEJlp
+LurF/NUFrIBuiuGss7KjPuhughrP306KsLyejnb5fD2WL9Go8ZAzDLtiwIDAQAB
o4ICUDCCAkwwHQYDVR0OBBYEFCth6PN8BNS7BDO/deygagQdAYAtMB8GA1UdIwQY
MBaAFEpyCfi37U+pv7J4iAwp+Y1qlrY8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU25JSi1MZnRUNm1fc25pSURDbjVqV3FXdGp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy80NmQ1OTUtOWI2OS00OGJkLWJkMDEt
YzI0MGM5YWZkMTQ5LzEvSzJIbzgzd0UxTHNFTTc5MTdLQnFCQjBCZ0MwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy80NmQ1OTUtOWI2OS00OGJkLWJkMDEtYzI0MGM5YWZkMTQ5
LzEvU25JSi1MZnRUNm1fc25pSURDbjVqV3FXdGp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTAkBAIAATAeAwQCLV80AwQC
LYR8AwQCLY5wAwQCufSkAwQCufU8MC0EAgACMCcDBQAqDTWAAwcAKg01hBERMA4D
BQAqDTWFAwUAKg01hgMFAyoO2MAwDQYJKoZIhvcNAQELBQADggEBAAX6lIQDURH7
vezjv+8BCakjTUIhPBrienmN84lZPKOAcm2NowlgNNv8JZxhTmxL0pqH6nnq0yvi
JIYxzSvHeIAV2YPPCGCpAPr5TlE5hwC0zc5k70+Rr/hueDI8zYjqOXN8HajBK6o1
amAiV9SgJ2H7OtT9KGkyQemv8C5FgnOOHqHHQcDm0RlLyRXSGhIB+8XOqEJBe1bS
eQSfhVdHGqgcn/qEhKvzk07y7CtKQBWmarRZjRUfQ6ozKz3RHLUiVENXqrXdqmd+
R6rcAx9oGUfz7YUViSwrK/uJ8cGnfjyT9+nDg80yY1NggMzFwGlxh5/DdQ5BTnTO
Ap3kwxMo4kI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:48 2024 by rpki-client on console-fra.rpki-client.org