Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/_97llZXrV4m0HRs9wt9J1Q6rcAI.roa
File: _97llZXrV4m0HRs9wt9J1Q6rcAI.roa (raw, json)
Hash identifier: 0d6sxQ3nIMJXoGnFnElOPCHVfxr7HIsKqmjzD9Jacq4=
Subject key identifier: FF:DE:E5:95:95:EB:57:89:B4:1D:1B:3D:C2:DF:49:D5:0E:AB:70:02
Certificate issuer: /CN=6d6b20045e1d0fe6cef28781eb300bde9825a4b5
Certificate serial: 0348654C
Authority key identifier: 6D:6B:20:04:5E:1D:0F:E6:CE:F2:87:81:EB:30:0B:DE:98:25:A4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWsgBF4dD-bO8oeB6zAL3pglpLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/_97llZXrV4m0HRs9wt9J1Q6rcAI.roa
Signing time: Tue 31 May 2022 08:36:30 +0000
ROA not before: Tue 31 May 2022 08:36:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.43.254.0/24 maxlen: 24
212.104.164.0/22 maxlen: 22
185.43.255.0/24 maxlen: 24
212.104.162.0/23 maxlen: 23
212.104.161.0/24 maxlen: 24
212.104.166.0/23 maxlen: 23
212.104.172.0/24 maxlen: 24
212.104.171.0/24 maxlen: 24
212.104.170.0/24 maxlen: 24
212.104.169.0/24 maxlen: 24
212.104.168.0/24 maxlen: 24
212.104.179.0/24 maxlen: 24
212.104.178.0/24 maxlen: 24
212.104.177.0/24 maxlen: 24
212.104.176.0/24 maxlen: 24
212.104.175.0/24 maxlen: 24
212.104.173.0/24 maxlen: 24
212.104.181.0/24 maxlen: 24
212.104.180.0/24 maxlen: 24
212.104.186.0/24 maxlen: 24
212.104.185.0/24 maxlen: 24
212.104.184.0/24 maxlen: 24
212.104.183.0/24 maxlen: 24
212.104.182.0/24 maxlen: 24
212.104.188.0/24 maxlen: 24
212.104.187.0/24 maxlen: 24
212.104.191.0/24 maxlen: 24
212.104.190.0/24 maxlen: 24
212.104.189.0/24 maxlen: 24
193.91.0.0/24 maxlen: 24
193.91.10.0/24 maxlen: 24
185.43.253.0/24 maxlen: 24
185.43.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55076172 (0x348654c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6b20045e1d0fe6cef28781eb300bde9825a4b5
Validity
Not Before: May 31 08:36:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffdee59595eb5789b41d1b3dc2df49d50eab7002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3f:a9:da:08:f5:a5:e0:2d:05:aa:0d:7a:11:
48:7b:c9:d2:72:e5:f0:27:63:46:9f:14:7b:2a:2c:
60:9d:d6:f7:1e:94:6f:0e:03:97:cc:a1:67:a9:36:
64:b5:6d:33:55:74:d8:1a:5c:5d:54:76:97:ca:d6:
67:6d:8f:6a:51:d6:bf:2a:aa:5a:67:e4:b1:2b:3c:
29:5e:d0:0f:16:ae:d3:4d:f3:06:f5:b7:2a:8d:f3:
2d:4d:7f:3e:13:d8:25:cd:5c:a1:6d:30:4b:b6:32:
4c:b7:6c:20:af:5d:f4:e3:20:3c:7c:db:86:45:7c:
dc:ad:79:23:02:01:e7:89:eb:79:d3:69:c2:4c:e7:
df:ab:60:f1:06:aa:76:bd:9c:af:2b:68:56:86:82:
f4:6c:eb:21:7a:1e:61:97:1d:83:8b:df:37:e6:a9:
79:63:cb:70:42:bc:63:f2:fd:70:00:4e:fc:c6:f4:
ab:b2:6d:35:74:33:ec:5b:22:05:87:25:3f:87:89:
7f:24:5c:13:d2:73:fa:3a:33:a1:46:aa:90:6f:4a:
e3:7a:90:b2:8f:bf:60:f0:c9:2d:e5:45:70:7e:c0:
39:2c:bf:32:da:f9:58:d4:d6:a6:c5:f9:ed:e4:0f:
50:b8:21:2a:b9:3c:49:89:8c:f0:dc:04:59:51:dd:
17:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DE:E5:95:95:EB:57:89:B4:1D:1B:3D:C2:DF:49:D5:0E:AB:70:02
X509v3 Authority Key Identifier:
keyid:6D:6B:20:04:5E:1D:0F:E6:CE:F2:87:81:EB:30:0B:DE:98:25:A4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWsgBF4dD-bO8oeB6zAL3pglpLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/_97llZXrV4m0HRs9wt9J1Q6rcAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b2eb0c-b023-4132-9e1a-d8a6cdc5c20c/1/bWsgBF4dD-bO8oeB6zAL3pglpLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.252.0/22
193.91.0.0/24
193.91.10.0/24
212.104.161.0-212.104.173.255
212.104.175.0-212.104.191.255
Signature Algorithm: sha256WithRSAEncryption
89:99:3d:22:51:19:9a:cf:8f:15:09:e5:38:bd:82:84:78:b2:
53:f9:0d:c9:fc:c9:70:e8:10:b4:e8:a2:8a:db:3b:65:d8:4b:
a2:ea:93:e6:44:c8:0c:ba:b5:95:30:da:05:5f:48:ba:a6:29:
db:ac:59:d6:a2:fe:50:43:b7:7f:0c:c1:67:d8:f0:2e:4d:f8:
01:39:55:11:55:2b:bf:d6:25:d0:2b:31:93:eb:c3:31:91:07:
a5:7b:7b:3d:d1:25:6b:1d:30:70:8e:aa:95:b6:0f:a7:9c:47:
67:24:56:8e:ee:dc:71:fa:32:c3:d0:97:94:49:60:59:af:be:
fd:ff:11:27:4f:42:33:d2:54:1d:a3:85:7a:6d:55:2b:f3:ac:
7d:43:1c:12:01:2c:b5:99:cc:91:9b:2d:8f:62:80:4a:b9:ca:
45:2b:30:24:57:a8:bd:c4:a3:e5:f0:07:10:3b:9a:39:88:64:
84:3a:ab:aa:b8:bc:e8:31:3f:01:82:28:bf:4c:55:cc:8a:5b:
75:04:1f:09:b6:d4:27:1c:82:19:a6:a1:59:4f:fc:a2:00:fc:
f6:02:03:de:b1:de:cd:71:8d:15:67:e4:7a:6d:52:a2:34:19:
6d:8f:6c:fc:67:f8:c8:19:79:fc:cb:04:d0:10:ea:cf:c7:ca:
47:7f:25:a9
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgIEA0hlTDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZDZiMjAwNDVlMWQwZmU2Y2VmMjg3ODFlYjMwMGJkZTk4MjVhNGI1MB4XDTIyMDUz
MTA4MzYzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmZkZWU1OTU5NWVi
NTc4OWI0MWQxYjNkYzJkZjQ5ZDUwZWFiNzAwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALo/qdoI9aXgLQWqDXoRSHvJ0nLl8CdjRp8UeyosYJ3W9x6U
bw4Dl8yhZ6k2ZLVtM1V02BpcXVR2l8rWZ22PalHWvyqqWmfksSs8KV7QDxau003z
BvW3Ko3zLU1/PhPYJc1coW0wS7YyTLdsIK9d9OMgPHzbhkV83K15IwIB54nredNp
wkzn36tg8Qaqdr2crytoVoaC9GzrIXoeYZcdg4vfN+apeWPLcEK8Y/L9cABO/Mb0
q7JtNXQz7FsiBYclP4eJfyRcE9Jz+jozoUaqkG9K43qQso+/YPDJLeVFcH7AOSy/
Mtr5WNTWpsX57eQPULghKrk8SYmM8NwEWVHdF5kCAwEAAaOCAjEwggItMB0GA1Ud
DgQWBBT/3uWVletXibQdGz3C30nVDqtwAjAfBgNVHSMEGDAWgBRtayAEXh0P5s7y
h4HrMAvemCWktTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JXc2dCRjRkRC1iTzhvZUI2ekFMM3BnbHBMVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvYjJlYjBjLWIwMjMtNDEzMi05ZTFhLWQ4YTZjZGM1YzIwYy8x
L185N2xsWlhyVjRtMEhSczl3dDlKMVE2cmNBSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
YjJlYjBjLWIwMjMtNDEzMi05ZTFhLWQ4YTZjZGM1YzIwYy8xL2JXc2dCRjRkRC1i
TzhvZUI2ekFMM3BnbHBMVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBH
BggrBgEFBQcBBwEB/wQ4MDYwNAQCAAEwLgMEArkr/AMEAMFbAAMEAMFbCjAMAwQA
1GihAwQB1GisMAwDBADUaK8DBAbUaIAwDQYJKoZIhvcNAQELBQADggEBAImZPSJR
GZrPjxUJ5Ti9goR4slP5Dcn8yXDoELTooorbO2XYS6Lqk+ZEyAy6tZUw2gVfSLqm
KdusWdai/lBDt38MwWfY8C5N+AE5VRFVK7/WJdArMZPrwzGRB6V7ez3RJWsdMHCO
qpW2D6ecR2ckVo7u3HH6MsPQl5RJYFmvvv3/ESdPQjPSVB2jhXptVSvzrH1DHBIB
LLWZzJGbLY9igEq5ykUrMCRXqL3Eo+XwBxA7mjmIZIQ6q6q4vOgxPwGCKL9MVcyK
W3UEHwm21CccghmmoVlP/KIA/PYCA96x3s1xjRVn5HptUqI0GW2PbPxn+MgZefzL
BNAQ6s/Hykd/Jak=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:09 2024 by rpki-client on console-fra.rpki-client.org