Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/XENqpgPTR1WKFF2E5o2FmpHJdFk.roa
File: XENqpgPTR1WKFF2E5o2FmpHJdFk.roa (raw, json)
Hash identifier: rSqIOr6q6De69X9NUd9vUpqm/JEWaja/i4qGzkvGIRk=
Subject key identifier: 5C:43:6A:A6:03:D3:47:55:8A:14:5D:84:E6:8D:85:9A:91:C9:74:59
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1F51AEEDA3FAAC18ECA4DED3B90C7DE
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/XENqpgPTR1WKFF2E5o2FmpHJdFk.roa
Signing time: Thu 08 Dec 2022 13:38:03 +0000
ROA not before: Thu 08 Dec 2022 13:38:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31268
IP address blocks: 212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:f5:1a:ee:da:3f:aa:c1:8e:ca:4d:ed:3b:90:c7:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 13:38:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c436aa603d347558a145d84e68d859a91c97459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:16:20:e2:4d:7a:60:d1:9b:d3:d5:c8:01:23:
c4:70:71:28:24:df:1f:43:56:a9:14:cd:bb:a2:a4:
ee:f7:60:05:1b:2f:27:dc:e0:77:28:60:a3:ba:08:
09:e2:04:e2:ef:32:b8:e0:30:e7:98:25:63:ee:8c:
24:b9:bd:42:e8:36:aa:b3:bb:3e:51:2a:80:5d:d3:
c2:af:4b:02:3a:c8:fd:ab:cd:f9:c8:5a:73:a6:c9:
c8:00:af:4d:aa:e6:12:33:ee:0a:ce:b5:71:08:09:
72:6f:26:04:d0:f3:03:3d:67:b2:4b:00:6c:78:b4:
76:38:26:f9:23:5f:d3:bb:ce:14:be:44:8c:a6:2c:
e5:f7:91:fe:ca:ca:d2:c0:07:aa:8e:3a:f9:2a:4c:
fa:1d:95:ca:68:2c:7c:e5:48:5a:6d:6b:d1:1d:4d:
a0:25:6d:fb:5b:f4:ff:2d:e5:67:77:c7:c5:d2:a2:
24:0c:5e:eb:d2:ec:7b:c3:27:03:a9:ca:9f:9d:8f:
15:ce:f2:a8:06:f2:ea:98:9e:0e:07:89:a8:0a:1f:
9d:f3:b0:b8:b2:2c:89:27:48:48:71:6e:80:4a:10:
fe:a1:7c:18:3f:bd:aa:f9:fc:66:d9:d1:c3:45:66:
19:e5:4f:4a:ac:17:25:14:a3:78:90:3c:57:cb:38:
78:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:43:6A:A6:03:D3:47:55:8A:14:5D:84:E6:8D:85:9A:91:C9:74:59
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/XENqpgPTR1WKFF2E5o2FmpHJdFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
65:44:68:9f:85:44:fe:bc:c8:49:45:cc:c1:f8:59:14:71:79:
96:1d:70:24:66:f3:49:6e:41:cd:60:5e:a6:b9:db:fb:3c:10:
b5:19:10:ba:3a:21:58:b2:33:f9:a0:ec:34:62:6c:03:fb:6f:
d1:b3:b7:ec:66:4f:64:0e:50:5a:10:97:ce:92:cb:e5:8d:d9:
dc:85:8e:d8:e4:aa:3b:b5:70:27:3d:c2:f0:0f:b5:66:bf:cc:
ac:b6:2f:be:02:67:23:f6:ab:ac:8f:ac:e7:31:bb:2a:8d:ad:
8c:6d:ba:49:2d:48:52:f1:d7:c1:e5:14:8f:e0:92:9a:5c:4f:
fe:de:c5:5c:5a:f4:16:8d:07:ed:97:04:2a:3e:26:27:3f:8c:
21:6f:fa:b1:55:32:e2:cb:97:fc:6a:00:1f:b2:1e:d3:01:53:
85:41:8c:bf:f4:a1:c6:62:fe:14:8c:49:f5:1a:6b:b0:7d:75:
51:c4:d7:bb:2e:28:12:fa:5e:68:7a:1e:bd:48:55:f4:bf:0a:
ee:c6:2b:b2:24:12:9d:5d:7c:a6:80:12:ee:65:de:32:ff:4a:
bb:b0:1c:b8:d3:1e:96:70:76:ca:f4:70:22:d3:f5:eb:a0:eb:
86:bc:c3:6d:71:70:bc:c1:a0:bd:b2:85:65:e1:04:55:bb:5b:
19:52:0b:19
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgISAYTx9Rru2j+qwY7KTe07kMfeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA4MTMzODAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YzQzNmFhNjAzZDM0NzU1OGExNDVkODRlNjhkODU5YTkxYzk3NDU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRYg4k16YNGb09XIASPEcHEoJN8f
Q1apFM27oqTu92AFGy8n3OB3KGCjuggJ4gTi7zK44DDnmCVj7owkub1C6Daqs7s+
USqAXdPCr0sCOsj9q835yFpzpsnIAK9NquYSM+4KzrVxCAlybyYE0PMDPWeySwBs
eLR2OCb5I1/Tu84UvkSMpizl95H+ysrSwAeqjjr5Kkz6HZXKaCx85UhabWvRHU2g
JW37W/T/LeVnd8fF0qIkDF7r0ux7wycDqcqfnY8VzvKoBvLqmJ4OB4moCh+d87C4
siyJJ0hIcW6AShD+oXwYP72q+fxm2dHDRWYZ5U9KrBclFKN4kDxXyzh4CQIDAQAB
o4ICbzCCAmswHQYDVR0OBBYEFFxDaqYD00dVihRdhOaNhZqRyXRZMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvWEVOcXBnUFRSMVdLRkYyRTVvMkZtcEhKZEZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGEBggrBgEFBQcBBwEB/wR1MHMwcQQCAAEwawMEArkDIAME
ArnSjAMEA7xeqAMDALyiAwQCwcnkAwQFwwWAAwQFwxBgAwQBw050AwQAw5VvAwQF
w+ZAAwQF1A6gAwQF1CxAAwQF1EVgAwQF1HegAwQF1ZqgAwQF1aggAwQG1fNAAwQE
2XNQMA0GCSqGSIb3DQEBCwUAA4IBAQBlRGifhUT+vMhJRczB+FkUcXmWHXAkZvNJ
bkHNYF6mudv7PBC1GRC6OiFYsjP5oOw0YmwD+2/Rs7fsZk9kDlBaEJfOksvljdnc
hY7Y5Ko7tXAnPcLwD7Vmv8ysti++Amcj9qusj6znMbsqja2MbbpJLUhS8dfB5RSP
4JKaXE/+3sVcWvQWjQftlwQqPiYnP4whb/qxVTLiy5f8agAfsh7TAVOFQYy/9KHG
Yv4UjEn1GmuwfXVRxNe7LigS+l5oeh69SFX0vwruxiuyJBKdXXymgBLuZd4y/0q7
sBy40x6WcHbK9HAi0/XroOuGvMNtcXC8waC9soVl4QRVu1sZUgsZ
-----END CERTIFICATE-----
Generated at Tue Apr 8 04:23:43 2025 by rpki-client