Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/1-eM-b2AzkMQQeEaTtLtOlpP91Lk.roa
File: 1-eM-b2AzkMQQeEaTtLtOlpP91Lk.roa (raw, json)
Hash identifier: 90oPP72z/SWxqOFS58FSESj7GbkPifkixhhBwL1ZBQQ=
Subject key identifier: F9:E3:3E:6F:60:33:90:C4:10:78:46:93:B4:BB:4E:96:93:FD:D4:B9
Certificate issuer: /CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Certificate serial: 0183ADF980FE40179580C98D43BAB3445E14
Authority key identifier: 9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/1-eM-b2AzkMQQeEaTtLtOlpP91Lk.roa
Signing time: Thu 06 Oct 2022 15:45:53 +0000
ROA not before: Thu 06 Oct 2022 15:45:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43915
IP address blocks: 193.35.146.0/23 maxlen: 23
87.117.68.0/23 maxlen: 23
194.105.134.0/23 maxlen: 24
194.145.242.0/23 maxlen: 24
195.206.172.0/22 maxlen: 24
185.147.184.0/22 maxlen: 22
217.14.184.0/21 maxlen: 21
109.224.226.0/23 maxlen: 24
109.224.240.0/23 maxlen: 24
178.248.128.0/21 maxlen: 21
109.224.234.0/23 maxlen: 24
194.146.160.0/22 maxlen: 24
147.189.156.0/22 maxlen: 24
185.161.4.0/22 maxlen: 22
87.117.64.0/22 maxlen: 22
213.225.224.0/22 maxlen: 24
217.20.244.0/22 maxlen: 24
79.135.122.0/23 maxlen: 24
185.23.254.0/23 maxlen: 24
45.66.36.0/22 maxlen: 22
2a07:5940::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ad:f9:80:fe:40:17:95:80:c9:8d:43:ba:b3:44:5e:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Validity
Not Before: Oct 6 15:45:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9e33e6f603390c410784693b4bb4e9693fdd4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d7:17:f7:09:1e:3c:7c:e8:7a:8d:d1:d3:04:
a8:a2:a2:fc:4e:74:22:b8:27:2a:4c:61:84:d5:fc:
99:1c:19:31:ca:75:38:73:df:ed:3b:fc:39:73:f3:
50:73:f9:15:c6:ec:88:79:dd:5c:71:f7:56:32:37:
75:13:ec:e3:bf:2a:22:dd:43:79:6f:4a:38:ae:63:
fc:e5:48:f7:df:8b:15:22:0a:77:bf:18:77:b4:3f:
3c:6b:50:9c:97:2a:87:27:ae:81:ef:49:ac:a9:80:
f6:a6:48:cf:79:b4:a3:7f:cb:a0:04:77:6f:62:12:
49:ad:77:6c:41:58:d4:2b:34:c9:d1:e7:52:f3:d6:
61:03:29:2e:fe:c4:a5:ea:98:e9:f6:94:bb:2e:eb:
1b:7b:c2:4e:76:13:ad:80:d6:53:ef:7a:ac:90:3e:
b1:8e:63:0c:85:23:9b:eb:d8:ac:1e:55:a4:0e:b6:
43:a2:b5:4b:0e:df:d7:ea:98:37:fa:c5:ff:c5:3f:
a0:7e:04:63:cc:c0:f9:cc:99:f7:d5:09:ef:56:c9:
2a:b1:8d:05:04:eb:d2:c2:66:de:9e:4a:ff:43:26:
31:7b:72:80:7e:35:1c:d4:d2:83:d1:70:1e:70:e7:
a8:2e:bf:28:13:63:00:a6:b7:05:e4:82:b8:84:0c:
32:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E3:3E:6F:60:33:90:C4:10:78:46:93:B4:BB:4E:96:93:FD:D4:B9
X509v3 Authority Key Identifier:
keyid:9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/1-eM-b2AzkMQQeEaTtLtOlpP91Lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/nyasnus6LPovbKP0E--5zf_pck4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.36.0/22
79.135.122.0/23
87.117.64.0-87.117.69.255
109.224.226.0/23
109.224.234.0/23
109.224.240.0/23
147.189.156.0/22
178.248.128.0/21
185.23.254.0/23
185.147.184.0/22
185.161.4.0/22
193.35.146.0/23
194.105.134.0/23
194.145.242.0/23
194.146.160.0/22
195.206.172.0/22
213.225.224.0/22
217.14.184.0/21
217.20.244.0/22
IPv6:
2a07:5940::/32
Signature Algorithm: sha256WithRSAEncryption
27:86:4b:d7:60:06:a5:a2:10:b1:7c:0b:20:5c:4d:78:5e:73:
21:13:78:0c:69:17:fd:ec:ea:fa:8c:7f:d8:db:1d:53:5f:21:
98:7b:53:87:5e:99:77:81:93:84:c7:f2:20:28:a6:97:3c:fd:
ad:58:0a:59:ad:a1:33:82:b1:6f:f8:53:5a:54:d2:02:52:00:
59:26:70:74:eb:4a:e2:b3:cc:ab:8e:f8:bc:d3:11:db:c9:ad:
01:ab:01:e6:fb:77:df:fd:db:cb:60:34:3b:0b:9e:27:02:4e:
65:d4:6e:c3:7d:35:56:91:3d:a0:88:49:69:e2:7e:fa:9a:4d:
f6:07:b8:9d:28:e0:4a:bf:62:a8:5d:7a:2f:be:6f:de:7b:a9:
69:83:39:92:53:7c:c5:ce:00:89:84:1f:d8:7d:ac:bf:70:8d:
16:76:5a:a2:b7:01:47:83:00:ef:7c:f8:b9:19:9f:34:7e:6f:
8e:3d:ca:6f:fc:ce:1a:0b:ab:86:2a:0d:69:46:af:91:db:7e:
5c:62:37:78:84:cc:e5:a2:1d:60:d2:dc:36:3b:02:54:38:ee:
9a:8b:6c:fb:db:b8:39:f7:2f:52:11:40:20:17:8e:00:41:60:
8d:cd:0e:b2:d5:07:e7:99:df:16:58:99:c5:65:2e:23:6b:1a:
c2:33:73:3f
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgISAYOt+YD+QBeVgMmNQ7qzRF4UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMjZhYzllZWIzYTJjZmEyZjZjYTNmNDEzZWZiOWNkZmZl
OTcyNGUwHhcNMjIxMDA2MTU0NTUzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOWUzM2U2ZjYwMzM5MGM0MTA3ODQ2OTNiNGJiNGU5NjkzZmRkNGI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdcX9wkePHzoeo3R0wSooqL8TnQi
uCcqTGGE1fyZHBkxynU4c9/tO/w5c/NQc/kVxuyIed1ccfdWMjd1E+zjvyoi3UN5
b0o4rmP85Uj334sVIgp3vxh3tD88a1CclyqHJ66B70msqYD2pkjPebSjf8ugBHdv
YhJJrXdsQVjUKzTJ0edS89ZhAyku/sSl6pjp9pS7Lusbe8JOdhOtgNZT73qskD6x
jmMMhSOb69isHlWkDrZDorVLDt/X6pg3+sX/xT+gfgRjzMD5zJn31QnvVskqsY0F
BOvSwmbenkr/QyYxe3KAfjUc1NKD0XAecOeoLr8oE2MAprcF5IK4hAwy+wIDAQAB
o4ICkTCCAo0wHQYDVR0OBBYEFPnjPm9gM5DEEHhGk7S7TpaT/dS5MB8GA1UdIwQY
MBaAFJ8mrJ7rOiz6L2yj9BPvuc3/6XJOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnlhc251czZMUG92YktQMEUtLTV6Zl9wY2s0LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9kYzMxOGItOTI0MC00Nzc1LWE0YWIt
N2Q0MjY2Y2Y4MjJhLzEvMS1lTS1iMkF6a01RUWVFYVR0THRPbHBQOTFMay5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYzcvZGMzMThiLTkyNDAtNDc3NS1hNGFiLTdkNDI2NmNmODIy
YS8xL255YXNudXM2TFBvdmJLUDBFLS01emZfcGNrNC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjCBpQYIKwYBBQUHAQcBAf8EgZUwgZIwgYAEAgABMHoDBAIt
QiQDBAFPh3owDAMEBld1QAMEAVd1RAMEAW3g4gMEAW3g6gMEAW3g8AMEApO9nAME
A7L4gAMEAbkX/gMEArmTuAMEArmhBAMEAcEjkgMEAcJphgMEAcKR8gMEAsKSoAME
AsPOrAMEAtXh4AMEA9kOuAMEAtkU9DANBAIAAjAHAwUAKgdZQDANBgkqhkiG9w0B
AQsFAAOCAQEAJ4ZL12AGpaIQsXwLIFxNeF5zIRN4DGkX/ezq+ox/2NsdU18hmHtT
h16Zd4GThMfyICimlzz9rVgKWa2hM4Kxb/hTWlTSAlIAWSZwdOtK4rPMq474vNMR
28mtAasB5vt33/3by2A0OwueJwJOZdRuw301VpE9oIhJaeJ++ppN9ge4nSjgSr9i
qF16L75v3nupaYM5klN8xc4AiYQf2H2sv3CNFnZaorcBR4MA73z4uRmfNH5vjj3K
b/zOGgurhioNaUavkdt+XGI3eITM5aIdYNLcNjsCVDjumots+9u4OfcvUhFAIBeO
AEFgjc0OstUH55nfFliZxWUuI2sawjNzPw==
-----END CERTIFICATE-----
Generated at Tue Apr 8 06:09:53 2025 by rpki-client