Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/5TluniPsntkOCPV0imLDYKAdV_A.roa
File: 5TluniPsntkOCPV0imLDYKAdV_A.roa (raw, json)
Hash identifier: sI4PtYPFZ8g8snkNFQGd0CgBfzLD9eoc9TQ7UimXAqk=
Subject key identifier: E5:39:6E:9E:23:EC:9E:D9:0E:08:F5:74:8A:62:C3:60:A0:1D:57:F0
Certificate issuer: /CN=62fa765a393369c96d8d836f23f76e67489c7dde
Certificate serial: 01857142EA1F8BA5760A86BF8E082E8ADF3B
Authority key identifier: 62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/5TluniPsntkOCPV0imLDYKAdV_A.roa
Signing time: Mon 02 Jan 2023 06:54:48 +0000
ROA not before: Mon 02 Jan 2023 06:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 85.209.16.0/24 maxlen: 24
85.209.16.0/23 maxlen: 23
2.58.84.0/23 maxlen: 24
2.58.86.0/23 maxlen: 24
85.209.18.0/23 maxlen: 23
45.66.148.0/22 maxlen: 24
45.13.150.0/23 maxlen: 24
212.102.114.0/24 maxlen: 24
77.83.253.0/24 maxlen: 24
77.83.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:ea:1f:8b:a5:76:0a:86:bf:8e:08:2e:8a:df:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fa765a393369c96d8d836f23f76e67489c7dde
Validity
Not Before: Jan 2 06:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5396e9e23ec9ed90e08f5748a62c360a01d57f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:da:e8:03:ed:9c:5e:6f:c4:a9:61:61:be:21:
03:a9:4c:fe:1f:4e:52:06:4b:44:6c:70:83:1c:ec:
3f:a7:37:40:26:05:63:d9:b0:8a:cd:ac:c5:f3:f8:
75:27:d8:b9:46:8b:b1:b7:d7:9c:f4:62:50:0d:1d:
f5:1d:5d:06:6a:0d:32:b4:6b:08:df:b4:5d:d5:86:
ae:87:18:9d:2a:53:d9:98:f1:e6:cd:03:14:ca:25:
be:4b:9a:ac:8b:be:ee:61:99:61:6f:b3:42:09:fd:
99:a4:11:64:e7:1b:8a:90:9c:55:9f:08:f4:2b:aa:
a5:8d:f0:2f:5a:10:ef:27:87:32:14:57:1c:ac:49:
af:01:9e:a8:99:e8:81:9a:3e:0d:e1:f7:55:c0:24:
9c:1a:91:72:3e:21:40:a6:c3:13:65:58:68:6d:3f:
4a:dc:6a:9b:93:69:66:48:48:51:ee:27:10:3c:a4:
81:63:74:f1:21:03:70:47:12:09:43:9f:56:9c:8e:
7d:cd:c0:1a:db:d1:c3:a2:d0:d1:9b:32:4f:de:a5:
0a:dc:bd:ea:73:ae:32:db:d3:e7:72:1e:d0:ae:64:
cb:8b:d1:6d:d2:90:4a:00:6e:57:bf:1c:11:e2:75:
3d:a7:49:4c:4a:b5:a6:60:fc:8b:65:25:9d:74:c2:
44:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:39:6E:9E:23:EC:9E:D9:0E:08:F5:74:8A:62:C3:60:A0:1D:57:F0
X509v3 Authority Key Identifier:
keyid:62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/5TluniPsntkOCPV0imLDYKAdV_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Yvp2WjkzacltjYNvI_duZ0icfd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.84.0/22
45.13.150.0/23
45.66.148.0/22
77.83.252.0/22
85.209.16.0/22
212.102.114.0/24
Signature Algorithm: sha256WithRSAEncryption
34:2b:6e:c0:ff:3d:b0:f6:f9:a4:ce:05:fe:1d:bd:48:f2:41:
b1:78:a6:bc:72:89:fe:53:7f:2c:c6:fb:22:eb:e4:db:6e:5e:
4e:3c:d3:ad:1f:a9:32:40:36:b2:bf:b9:93:82:73:74:da:3e:
70:1e:fa:38:3c:cd:ac:35:eb:42:cf:41:23:34:ae:a6:09:8d:
b1:9f:2d:24:4d:bd:c0:64:95:41:40:23:39:9b:c3:3b:ae:d6:
ec:0f:bd:81:c2:78:d8:c6:e7:f0:f4:d6:ad:54:4d:ec:fc:26:
93:d3:4e:a5:52:37:8a:b5:1d:22:9c:8b:99:f0:91:df:41:c8:
97:28:61:24:a9:af:f6:fe:25:03:af:21:96:52:71:6d:7f:88:
66:2c:e2:2a:cf:17:a5:09:79:70:77:47:61:1a:79:15:7c:a7:
d1:4d:3c:8d:97:8b:e5:e6:4d:0e:f8:b8:ea:eb:23:79:87:32:
ad:d1:4d:5c:16:2c:d9:c5:92:16:cd:09:bb:f1:69:97:f9:a9:
86:d9:fd:c8:3b:be:55:ec:1f:40:dc:9d:b0:bd:53:b8:55:9a:
dd:9c:0f:bc:20:ac:3f:b7:15:ac:44:fd:1b:e7:45:53:62:cd:
2b:58:9f:75:7e:9f:cd:44:fa:b2:6f:39:9b:16:07:f6:62:e8:
8b:43:27:73
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYVxQuofi6V2Coa/jgguit87MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmE3NjVhMzkzMzY5Yzk2ZDhkODM2ZjIzZjc2ZTY3NDg5
YzdkZGUwHhcNMjMwMTAyMDY1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTM5NmU5ZTIzZWM5ZWQ5MGUwOGY1NzQ4YTYyYzM2MGEwMWQ1N2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhdroA+2cXm/EqWFhviEDqUz+H05S
BktEbHCDHOw/pzdAJgVj2bCKzazF8/h1J9i5Rouxt9ec9GJQDR31HV0Gag0ytGsI
37Rd1YauhxidKlPZmPHmzQMUyiW+S5qsi77uYZlhb7NCCf2ZpBFk5xuKkJxVnwj0
K6qljfAvWhDvJ4cyFFccrEmvAZ6omeiBmj4N4fdVwCScGpFyPiFApsMTZVhobT9K
3Gqbk2lmSEhR7icQPKSBY3TxIQNwRxIJQ59WnI59zcAa29HDotDRmzJP3qUK3L3q
c64y29Pnch7QrmTLi9Ft0pBKAG5XvxwR4nU9p0lMSrWmYPyLZSWddMJEqwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFOU5bp4j7J7ZDgj1dIpiw2CgHVfwMB8GA1UdIwQY
MBaAFGL6dlo5M2nJbY2DbyP3bmdInH3eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXZwMldqa3phY2x0allOdklfZHVaMGljZmQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9hZGZmODAtYjIwNy00ZmJkLWJmNWUt
MDdkZDFiNGM1NWQ5LzEvNVRsdW5pUHNudGtPQ1BWMGltTERZS0FkVl9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi9hZGZmODAtYjIwNy00ZmJkLWJmNWUtMDdkZDFiNGM1NWQ5
LzEvWXZwMldqa3phY2x0allOdklfZHVaMGljZmQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQCAjpUAwQB
LQ2WAwQCLUKUAwQCTVP8AwQCVdEQAwQA1GZyMA0GCSqGSIb3DQEBCwUAA4IBAQA0
K27A/z2w9vmkzgX+Hb1I8kGxeKa8con+U38sxvsi6+Tbbl5OPNOtH6kyQDayv7mT
gnN02j5wHvo4PM2sNetCz0EjNK6mCY2xny0kTb3AZJVBQCM5m8M7rtbsD72BwnjY
xufw9NatVE3s/CaT006lUjeKtR0inIuZ8JHfQciXKGEkqa/2/iUDryGWUnFtf4hm
LOIqzxelCXlwd0dhGnkVfKfRTTyNl4vl5k0O+Ljq6yN5hzKt0U1cFizZxZIWzQm7
8WmX+amG2f3IO75V7B9A3J2wvVO4VZrdnA+8IKw/txWsRP0b50VTYs0rWJ91fp/N
RPqybzmbFgf2YuiLQydz
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:26 2024 by rpki-client on console-fra.rpki-client.org