Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/UqRNi4A54fxSKAUU43jvB59fBlI.roa
File: UqRNi4A54fxSKAUU43jvB59fBlI.roa (raw, json)
Hash identifier: lJlwGPz92C47f//nOhIJ9d42yELHqc/D23FImytu59Q=
Subject key identifier: 52:A4:4D:8B:80:39:E1:FC:52:28:05:14:E3:78:EF:07:9F:5F:06:52
Certificate issuer: /CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Certificate serial: 018A6EBADBBE1255421E42F9B8BEDAA8CDCF
Authority key identifier: 9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/UqRNi4A54fxSKAUU43jvB59fBlI.roa
Signing time: Thu 07 Sep 2023 08:20:54 +0000
ROA not before: Thu 07 Sep 2023 08:20:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43915
IP address blocks: 87.117.68.0/23 maxlen: 23
194.105.134.0/23 maxlen: 24
194.145.242.0/23 maxlen: 24
195.206.172.0/22 maxlen: 24
185.147.184.0/22 maxlen: 22
217.14.184.0/21 maxlen: 21
109.224.226.0/23 maxlen: 24
178.248.128.0/21 maxlen: 21
109.224.234.0/23 maxlen: 24
109.224.240.0/23 maxlen: 24
147.189.156.0/22 maxlen: 24
185.161.4.0/22 maxlen: 22
87.117.64.0/22 maxlen: 22
144.178.104.0/23 maxlen: 23
144.178.118.0/23 maxlen: 23
94.154.184.0/22 maxlen: 24
193.35.146.0/23 maxlen: 23
176.116.116.0/22 maxlen: 22
212.59.72.0/21 maxlen: 24
91.239.57.0/24 maxlen: 24
194.146.160.0/22 maxlen: 24
213.225.224.0/22 maxlen: 24
217.20.244.0/22 maxlen: 24
79.135.122.0/23 maxlen: 24
185.231.136.0/21 maxlen: 21
185.23.254.0/23 maxlen: 24
45.66.36.0/22 maxlen: 22
144.178.252.0/23 maxlen: 23
2a07:5940::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6e:ba:db:be:12:55:42:1e:42:f9:b8:be:da:a8:cd:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Validity
Not Before: Sep 7 08:20:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52a44d8b8039e1fc52280514e378ef079f5f0652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6e:3d:46:e3:d7:b3:0d:d4:49:6d:7d:1b:50:
a7:f0:08:5d:3e:c9:18:59:fc:83:59:66:53:0b:b4:
08:ff:e3:2f:d3:53:d0:c4:19:62:1f:d2:79:8c:03:
fd:a4:93:56:c5:d6:b5:be:be:3b:c5:77:78:26:1b:
ec:3a:ee:68:58:e2:cb:54:6a:47:01:2f:20:ee:0c:
90:c6:49:13:42:33:a0:81:1f:35:53:2b:6a:25:af:
d9:46:ff:4e:d3:91:22:d4:ae:5c:40:c9:80:19:f0:
82:b0:8c:c1:b3:f0:53:0e:bb:ab:f9:47:1c:90:1e:
f4:1c:e0:ed:29:02:5a:8b:96:36:c3:e0:d6:55:93:
da:f5:dc:c4:ac:48:b5:4a:5a:20:1f:91:ec:8b:73:
a7:70:b6:4e:bd:44:f7:bb:f4:ec:73:00:7a:90:b5:
dd:68:bc:b4:64:66:31:dd:58:3a:8d:c8:c2:c6:36:
a0:de:11:89:c0:bf:9f:33:76:eb:2e:ed:66:0e:02:
e5:3f:66:b5:cc:39:bc:af:30:ff:e0:76:55:36:24:
eb:ad:38:93:ea:b6:68:bb:e3:10:b8:c6:55:e6:b8:
7b:d3:2b:3e:04:40:b5:18:38:d5:52:92:f1:d4:51:
09:3c:1d:8d:83:88:aa:81:af:c8:0a:2c:fe:f8:6e:
b1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A4:4D:8B:80:39:E1:FC:52:28:05:14:E3:78:EF:07:9F:5F:06:52
X509v3 Authority Key Identifier:
keyid:9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/UqRNi4A54fxSKAUU43jvB59fBlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/nyasnus6LPovbKP0E--5zf_pck4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.36.0/22
79.135.122.0/23
87.117.64.0-87.117.69.255
91.239.57.0/24
94.154.184.0/22
109.224.226.0/23
109.224.234.0/23
109.224.240.0/23
144.178.104.0/23
144.178.118.0/23
144.178.252.0/23
147.189.156.0/22
176.116.116.0/22
178.248.128.0/21
185.23.254.0/23
185.147.184.0/22
185.161.4.0/22
185.231.136.0/21
193.35.146.0/23
194.105.134.0/23
194.145.242.0/23
194.146.160.0/22
195.206.172.0/22
212.59.72.0/21
213.225.224.0/22
217.14.184.0/21
217.20.244.0/22
IPv6:
2a07:5940::/32
Signature Algorithm: sha256WithRSAEncryption
a6:c7:41:04:bc:01:49:3f:90:0f:cb:64:cb:ca:20:1b:1f:bd:
9a:5c:47:10:ef:33:50:fd:2b:08:7a:15:0d:52:c3:b9:3e:43:
a5:73:ff:a1:68:a3:52:28:ea:33:dd:f6:95:f9:61:e1:37:52:
26:7f:ea:b6:ca:1b:03:dc:40:16:48:ab:bb:a2:19:c7:37:de:
3e:db:a1:8e:49:ea:37:91:c0:c3:29:c6:ca:9b:35:18:56:8e:
db:d9:87:3c:bb:79:c1:10:0e:5a:d1:71:1c:94:e5:57:9d:2e:
8d:fc:8e:56:e7:cf:a2:ac:89:5d:9f:71:81:b8:87:e1:e2:a6:
09:7c:72:ee:7c:37:75:00:69:4e:66:39:10:53:bb:36:af:67:
f6:a8:b7:2a:9e:18:62:86:81:5a:12:4c:09:00:51:73:44:22:
a6:54:03:4a:04:57:6c:69:ca:55:68:36:33:f8:0f:c0:64:25:
c6:0f:b3:be:fd:d1:7b:4f:99:7d:de:79:16:3b:d2:b3:8f:d5:
59:29:75:4c:40:49:e1:0a:56:02:4d:dd:ee:33:67:04:42:9f:
aa:1f:e0:02:fb:75:56:12:7e:10:f9:1a:6e:bf:0a:9e:21:2a:
ea:33:92:54:5f:ec:25:2a:98:ff:51:91:df:03:bf:90:99:94:
ea:b9:69:67
-----BEGIN CERTIFICATE-----
MIIFtTCCBJ2gAwIBAgISAYpuutu+ElVCHkL5uL7aqM3PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMjZhYzllZWIzYTJjZmEyZjZjYTNmNDEzZWZiOWNkZmZl
OTcyNGUwHhcNMjMwOTA3MDgyMDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmE0NGQ4YjgwMzllMWZjNTIyODA1MTRlMzc4ZWYwNzlmNWYwNjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmm49RuPXsw3USW19G1Cn8AhdPskY
WfyDWWZTC7QI/+Mv01PQxBliH9J5jAP9pJNWxda1vr47xXd4JhvsOu5oWOLLVGpH
AS8g7gyQxkkTQjOggR81UytqJa/ZRv9O05Ei1K5cQMmAGfCCsIzBs/BTDrur+Ucc
kB70HODtKQJai5Y2w+DWVZPa9dzErEi1SlogH5Hsi3OncLZOvUT3u/TscwB6kLXd
aLy0ZGYx3Vg6jcjCxjag3hGJwL+fM3brLu1mDgLlP2a1zDm8rzD/4HZVNiTrrTiT
6rZou+MQuMZV5rh70ys+BEC1GDjVUpLx1FEJPB2Ng4iqga/ICiz++G6xRQIDAQAB
o4ICwTCCAr0wHQYDVR0OBBYEFFKkTYuAOeH8UigFFON47wefXwZSMB8GA1UdIwQY
MBaAFJ8mrJ7rOiz6L2yj9BPvuc3/6XJOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnlhc251czZMUG92YktQMEUtLTV6Zl9wY2s0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9kYzMxOGItOTI0MC00Nzc1LWE0YWIt
N2Q0MjY2Y2Y4MjJhLzEvVXFSTmk0QTU0ZnhTS0FVVTQzanZCNTlmQmxJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9kYzMxOGItOTI0MC00Nzc1LWE0YWItN2Q0MjY2Y2Y4MjJh
LzEvbnlhc251czZMUG92YktQMEUtLTV6Zl9wY2s0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHWBggrBgEFBQcBBwEB/wSBxjCBwzCBsQQCAAEwgaoDBAIt
QiQDBAFPh3owDAMEBld1QAMEAVd1RAMEAFvvOQMEAl6auAMEAW3g4gMEAW3g6gME
AW3g8AMEAZCyaAMEAZCydgMEAZCy/AMEApO9nAMEArB0dAMEA7L4gAMEAbkX/gME
ArmTuAMEArmhBAMEA7nniAMEAcEjkgMEAcJphgMEAcKR8gMEAsKSoAMEAsPOrAME
A9Q7SAMEAtXh4AMEA9kOuAMEAtkU9DANBAIAAjAHAwUAKgdZQDANBgkqhkiG9w0B
AQsFAAOCAQEApsdBBLwBST+QD8tky8ogGx+9mlxHEO8zUP0rCHoVDVLDuT5DpXP/
oWijUijqM932lflh4TdSJn/qtsobA9xAFkiru6IZxzfePtuhjknqN5HAwynGyps1
GFaO29mHPLt5wRAOWtFxHJTlV50ujfyOVufPoqyJXZ9xgbiH4eKmCXxy7nw3dQBp
TmY5EFO7Nq9n9qi3Kp4YYoaBWhJMCQBRc0QiplQDSgRXbGnKVWg2M/gPwGQlxg+z
vv3Re0+Zfd55FjvSs4/VWSl1TEBJ4QpWAk3d7jNnBEKfqh/gAvt1VhJ+EPkabr8K
niEq6jOSVF/sJSqY/1GR3wO/kJmU6rlpZw==
-----END CERTIFICATE-----
Generated at Tue Apr 8 06:12:28 2025 by rpki-client