Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/kNOjGCdkXq-TQ2nPBe_Kye-sf4w.roa
File: kNOjGCdkXq-TQ2nPBe_Kye-sf4w.roa (raw, json)
Hash identifier: PnXyimjkdtgFD0AX7dQoWONAzjQO/U7ER3NVLZGTHeM=
Subject key identifier: 90:D3:A3:18:27:64:5E:AF:93:43:69:CF:05:EF:CA:C9:EF:AC:7F:8C
Certificate issuer: /CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Certificate serial: 01841E27C3CB0B1FD27656CACFB79AD4C3DD
Authority key identifier: FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/kNOjGCdkXq-TQ2nPBe_Kye-sf4w.roa
Signing time: Fri 28 Oct 2022 10:33:53 +0000
ROA not before: Fri 28 Oct 2022 10:33:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15419
IP address blocks: 82.140.178.0/24 maxlen: 24
82.140.189.0/24 maxlen: 24
86.38.3.0/24 maxlen: 24
86.38.8.0/21 maxlen: 21
89.116.4.0/22 maxlen: 22
89.116.1.0/24 maxlen: 24
89.116.2.0/23 maxlen: 23
89.116.8.0/22 maxlen: 22
217.9.241.0/24 maxlen: 24
89.116.15.0/24 maxlen: 24
89.116.12.0/23 maxlen: 23
89.116.16.0/23 maxlen: 23
217.9.242.0/24 maxlen: 24
89.116.19.0/24 maxlen: 24
89.116.20.0/22 maxlen: 22
217.9.254.0/23 maxlen: 23
89.116.41.0/24 maxlen: 24
89.116.42.0/23 maxlen: 23
185.149.152.0/22 maxlen: 22
89.116.112.0/23 maxlen: 23
89.116.116.0/22 maxlen: 22
89.116.220.0/23 maxlen: 23
82.140.131.0/24 maxlen: 24
89.116.168.0/23 maxlen: 23
2a02:2630::/29 maxlen: 29
2a02:2630::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:27:c3:cb:0b:1f:d2:76:56:ca:cf:b7:9a:d4:c3:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Validity
Not Before: Oct 28 10:33:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90d3a31827645eaf934369cf05efcac9efac7f8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fb:5c:0e:d3:40:92:41:e9:6f:c4:38:79:be:
9e:86:1e:2f:df:70:cc:71:02:1c:be:9e:89:f0:67:
82:ba:ae:2e:34:cd:12:b4:b4:43:0d:91:c3:9f:4d:
a3:b7:73:97:36:5a:c6:76:c6:ca:7b:78:1c:7d:0c:
d0:8c:3b:25:6e:fe:52:82:ba:67:e3:09:4c:80:2c:
44:a9:1c:2a:0c:4f:21:19:e7:28:29:51:0c:4d:2a:
99:40:c0:19:fd:3e:5f:54:37:27:6a:b6:5d:c5:83:
fe:78:e3:9d:9e:1d:5d:22:87:0f:fa:fa:a1:15:b4:
bf:0c:d6:fc:c3:8a:c4:d6:ca:57:84:cd:8c:46:f2:
9a:33:4b:f3:51:2f:02:6b:66:e8:bd:cf:23:2e:62:
cc:03:2a:40:5e:91:ba:16:3e:bb:86:df:7e:7c:8f:
3a:c2:97:df:54:a3:57:c7:10:2b:2e:c1:0a:f5:0f:
83:cb:47:5b:f4:a1:ee:3b:c7:4e:ac:37:4a:ad:cb:
9e:a0:c0:c5:cb:ba:a1:81:4d:80:a8:f8:8e:55:9e:
24:6e:60:6a:c9:f4:db:bd:57:6f:af:20:c9:fd:bf:
55:79:36:77:17:30:dd:a2:8c:d0:6a:9c:53:22:90:
b5:9d:50:0c:1d:31:7a:d2:89:c3:46:50:b0:fa:1a:
d3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D3:A3:18:27:64:5E:AF:93:43:69:CF:05:EF:CA:C9:EF:AC:7F:8C
X509v3 Authority Key Identifier:
keyid:FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/kNOjGCdkXq-TQ2nPBe_Kye-sf4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/_FtT36gxYJPBcrQxWSLvF-ZfBR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.131.0/24
82.140.178.0/24
82.140.189.0/24
86.38.3.0/24
86.38.8.0/21
89.116.1.0-89.116.13.255
89.116.15.0-89.116.17.255
89.116.19.0-89.116.23.255
89.116.41.0-89.116.43.255
89.116.112.0/23
89.116.116.0/22
89.116.168.0/23
89.116.220.0/23
185.149.152.0/22
217.9.241.0-217.9.242.255
217.9.254.0/23
IPv6:
2a02:2630::/29
Signature Algorithm: sha256WithRSAEncryption
b6:09:5b:ec:3f:2c:f9:f4:32:dc:2f:79:3a:7c:de:14:5f:6e:
87:21:c1:45:85:27:85:a1:27:67:3f:ba:da:3d:26:1c:03:0a:
ae:b6:f5:17:b8:a7:22:8f:c3:2e:ac:7d:50:d5:55:64:0e:a7:
cc:e3:38:74:63:32:fb:04:f1:c3:36:10:89:79:55:59:a4:d1:
17:69:a6:cf:35:4e:5e:9f:c4:97:74:36:ec:a4:9c:e6:77:27:
4e:17:e6:80:2f:ed:4d:2d:ff:1b:81:6e:22:10:67:e4:fc:7c:
64:9b:b6:fa:df:82:0c:b7:b9:6e:29:92:18:1e:24:98:d5:2d:
34:85:62:00:96:1f:67:8e:30:51:74:4c:c3:ab:9d:fd:59:5a:
a0:e5:e7:3f:5c:3a:27:a9:ae:01:b8:9f:e6:de:14:03:0b:e6:
06:33:0a:00:a4:99:29:11:79:09:fa:db:21:9d:16:a8:2b:8d:
08:fc:28:a7:5d:b4:2d:b8:53:18:62:fe:2c:3b:95:39:ef:91:
bf:57:1d:2b:9e:72:d5:cd:4c:70:11:7c:2a:54:0f:eb:75:3e:
e1:1b:06:61:f6:03:ad:d3:d6:d0:ae:1c:2c:60:7e:d2:c1:ec:
b9:57:67:61:2a:4c:86:9d:95:0f:21:4a:02:8c:bf:96:0a:eb:
89:cd:f6:89
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgISAYQeJ8PLCx/SdlbKz7ea1MPdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjNWI1M2RmYTgzMTYwOTNjMTcyYjQzMTU5MjJlZjE3ZTY1
ZjA1MWQwHhcNMjIxMDI4MTAzMzUzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MGQzYTMxODI3NjQ1ZWFmOTM0MzY5Y2YwNWVmY2FjOWVmYWM3ZjhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApftcDtNAkkHpb8Q4eb6ehh4v33DM
cQIcvp6J8GeCuq4uNM0StLRDDZHDn02jt3OXNlrGdsbKe3gcfQzQjDslbv5Sgrpn
4wlMgCxEqRwqDE8hGecoKVEMTSqZQMAZ/T5fVDcnarZdxYP+eOOdnh1dIocP+vqh
FbS/DNb8w4rE1spXhM2MRvKaM0vzUS8Ca2bovc8jLmLMAypAXpG6Fj67ht9+fI86
wpffVKNXxxArLsEK9Q+Dy0db9KHuO8dOrDdKrcueoMDFy7qhgU2AqPiOVZ4kbmBq
yfTbvVdvryDJ/b9VeTZ3FzDdoozQapxTIpC1nVAMHTF60onDRlCw+hrT4QIDAQAB
o4ICnzCCApswHQYDVR0OBBYEFJDToxgnZF6vk0NpzwXvysnvrH+MMB8GA1UdIwQY
MBaAFPxbU9+oMWCTwXK0MVki7xfmXwUdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0Z0VDM2Z3hZSlBCY3JReFdTTHZGLVpmQlIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC81ZDU2ZTUtODM4YS00M2YzLWI1MmMt
MTRlZmM5ODI4NjdmLzEva05PakdDZGtYcS1UUTJuUEJlX0t5ZS1zZjR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC81ZDU2ZTUtODM4YS00M2YzLWI1MmMtMTRlZmM5ODI4Njdm
LzEvX0Z0VDM2Z3hZSlBCY3JReFdTTHZGLVpmQlIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG0BggrBgEFBQcBBwEB/wSBpDCBoTCBjwQCAAEwgYgDBABS
jIMDBABSjLIDBABSjL0DBABWJgMDBANWJggwDAMEAFl0AQMEAVl0DDAMAwQAWXQP
AwQBWXQQMAwDBABZdBMDBANZdBAwDAMEAFl0KQMEAll0KAMEAVl0cAMEAll0dAME
AVl0qAMEAVl03AMEArmVmDAMAwQA2QnxAwQA2QnyAwQB2Qn+MA0EAgACMAcDBQMq
AiYwMA0GCSqGSIb3DQEBCwUAA4IBAQC2CVvsPyz59DLcL3k6fN4UX26HIcFFhSeF
oSdnP7raPSYcAwqutvUXuKcij8MurH1Q1VVkDqfM4zh0YzL7BPHDNhCJeVVZpNEX
aabPNU5en8SXdDbspJzmdydOF+aAL+1NLf8bgW4iEGfk/Hxkm7b634IMt7luKZIY
HiSY1S00hWIAlh9njjBRdEzDq539WVqg5ec/XDonqa4BuJ/m3hQDC+YGMwoApJkp
EXkJ+tshnRaoK40I/CinXbQtuFMYYv4sO5U575G/Vx0rnnLVzUxwEXwqVA/rdT7h
GwZh9gOt09bQrhwsYH7Swey5V2dhKkyGnZUPIUoCjL+WCuuJzfaJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:18 2024 by rpki-client on console-ams.rpki-client.org