Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/QfsmQi_b-DhaPYMiXlZdZTKn33E.roa
File: QfsmQi_b-DhaPYMiXlZdZTKn33E.roa (raw, json)
Hash identifier: gd2A17US+dUu3pyjuescdUmiqpApG1YielugZuDZjSo=
Subject key identifier: 41:FB:26:42:2F:DB:F8:38:5A:3D:83:22:5E:56:5D:65:32:A7:DF:71
Certificate issuer: /CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Certificate serial: 018240349268D1F597FD927C0FE2A205E7C4
Authority key identifier: 6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/QfsmQi_b-DhaPYMiXlZdZTKn33E.roa
Signing time: Wed 27 Jul 2022 15:09:23 +0000
ROA not before: Wed 27 Jul 2022 15:09:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39246
IP address blocks: 77.78.134.0/24 maxlen: 24
77.78.133.0/24 maxlen: 24
77.78.139.0/24 maxlen: 24
77.78.138.0/24 maxlen: 24
77.78.137.0/24 maxlen: 24
77.78.136.0/24 maxlen: 24
77.78.135.0/24 maxlen: 24
77.78.143.0/24 maxlen: 24
77.78.142.0/24 maxlen: 24
77.78.141.0/24 maxlen: 24
77.78.140.0/24 maxlen: 24
77.78.132.0/24 maxlen: 24
77.78.131.0/24 maxlen: 24
77.78.129.0/24 maxlen: 24
77.78.128.0/24 maxlen: 24
109.121.132.0/24 maxlen: 24
109.121.131.0/24 maxlen: 24
109.121.130.0/24 maxlen: 24
109.121.129.0/24 maxlen: 24
109.121.151.0/24 maxlen: 24
109.121.150.0/24 maxlen: 24
109.121.149.0/24 maxlen: 24
109.121.148.0/24 maxlen: 24
109.121.146.0/24 maxlen: 24
109.121.155.0/24 maxlen: 24
109.121.154.0/24 maxlen: 24
109.121.158.0/24 maxlen: 24
109.121.157.0/24 maxlen: 24
109.121.156.0/24 maxlen: 24
109.121.165.0/24 maxlen: 24
109.121.164.0/24 maxlen: 24
109.121.169.0/24 maxlen: 24
109.121.168.0/24 maxlen: 24
109.121.167.0/24 maxlen: 24
109.121.172.0/24 maxlen: 24
109.121.171.0/24 maxlen: 24
109.121.170.0/24 maxlen: 24
109.121.179.0/24 maxlen: 24
109.121.178.0/24 maxlen: 24
109.121.177.0/24 maxlen: 24
109.121.176.0/24 maxlen: 24
109.121.174.0/24 maxlen: 24
109.121.173.0/24 maxlen: 24
109.121.186.0/24 maxlen: 24
109.121.185.0/24 maxlen: 24
109.121.184.0/24 maxlen: 24
109.121.189.0/24 maxlen: 24
109.121.188.0/24 maxlen: 24
109.121.187.0/24 maxlen: 24
62.192.132.0/24 maxlen: 24
62.192.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:40:34:92:68:d1:f5:97:fd:92:7c:0f:e2:a2:05:e7:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Validity
Not Before: Jul 27 15:09:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41fb26422fdbf8385a3d83225e565d6532a7df71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:58:de:67:85:8f:a3:a1:ec:37:62:72:f3:59:
6a:d0:93:06:df:ca:95:de:f9:4b:6c:c9:38:0e:a7:
0f:03:06:47:83:4d:f8:c6:9c:dc:d4:6f:b2:7a:b0:
6e:86:0d:ef:61:6a:5f:e6:cb:d4:00:0f:7d:b6:b0:
94:f8:ff:97:a1:38:24:8b:9b:0c:0a:22:44:fa:ea:
ac:ae:99:46:1a:ac:7e:ca:6b:e3:bb:7a:ed:21:2a:
a7:cb:eb:5f:30:95:80:df:b3:03:e2:db:3b:a0:9b:
be:65:35:e0:24:43:ca:c6:cb:14:dc:92:dd:d0:f9:
9c:15:92:0f:70:0f:ed:3f:40:d4:fc:44:6d:e8:e6:
6a:cd:f9:4a:3c:d4:95:c3:81:e9:49:a9:63:ef:7a:
d0:7a:b5:96:72:50:95:cf:33:9e:69:e1:9a:a8:ab:
f5:94:61:ef:67:cb:ed:40:35:75:c7:a4:13:9e:b9:
cc:c3:a5:09:f1:e6:14:54:12:5c:b8:7c:99:c6:05:
a4:7a:b3:4d:33:b0:5f:5d:51:aa:e9:62:a3:51:ee:
fd:f6:0f:cb:33:ac:38:14:96:fe:fd:fc:ca:74:81:
38:d0:79:40:ae:37:ff:28:76:82:53:0e:27:36:89:
87:4d:54:a3:31:9f:4b:66:88:ca:c9:91:a9:33:de:
2f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:FB:26:42:2F:DB:F8:38:5A:3D:83:22:5E:56:5D:65:32:A7:DF:71
X509v3 Authority Key Identifier:
keyid:6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/QfsmQi_b-DhaPYMiXlZdZTKn33E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/bdLps6TXsks6aqFPPto_FPopx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.132.0/23
77.78.128.0/23
77.78.131.0-77.78.143.255
109.121.129.0-109.121.132.255
109.121.146.0/24
109.121.148.0/22
109.121.154.0-109.121.158.255
109.121.164.0/23
109.121.167.0-109.121.174.255
109.121.176.0/22
109.121.184.0-109.121.189.255
Signature Algorithm: sha256WithRSAEncryption
7a:b7:ca:a4:e5:9e:3e:38:d0:17:91:7c:31:f6:2b:ea:e0:13:
ec:0e:b1:49:54:56:da:b9:41:5f:7c:84:f1:34:53:f9:a6:cc:
ed:64:5d:6b:8b:8f:15:05:4c:69:5e:3e:c0:d6:40:4d:a2:c4:
c7:dc:1e:36:79:b7:81:9c:4d:a1:b7:74:27:1e:d0:be:83:89:
3c:92:a6:bc:97:95:dd:56:2a:78:94:80:66:d0:e6:b4:3b:a0:
8d:39:ab:0e:81:99:49:28:9c:76:ae:cd:82:52:68:51:48:90:
33:0f:ec:70:48:90:09:02:6c:82:d1:20:95:48:61:93:d5:f4:
83:06:84:51:20:c9:61:0e:bd:f3:a6:12:fe:38:17:44:a1:4c:
84:36:73:6f:08:f3:51:e9:36:31:ec:50:bc:e6:f9:ac:88:67:
2f:51:82:08:20:7c:1f:62:21:4f:49:fc:7c:3a:d2:c2:3a:40:
72:32:63:6a:6b:f5:44:76:d5:d2:e8:70:32:ea:7c:3d:6c:3b:
7b:ec:13:a1:0d:e4:76:fb:1f:5a:62:36:c2:6b:3d:28:e3:2d:
39:6c:04:db:f7:dd:f1:2b:d0:a4:0a:27:e4:75:7e:f8:aa:db:
b5:16:d8:31:ce:49:b8:ea:f0:02:bd:a5:18:13:42:fa:21:93:
c2:0b:09:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:26 2023 by rpki-client on console-ams.rpki-client.org