Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/b8QR1cR7f-YXqGNyIn1wIGqz9n4.roa
File: b8QR1cR7f-YXqGNyIn1wIGqz9n4.roa (raw, json)
Hash identifier: Y0m++qupXfokoMAEwBK4TlvzvA0XHs8KoR+WU+aOEfI=
Subject key identifier: 6F:C4:11:D5:C4:7B:7F:E6:17:A8:63:72:22:7D:70:20:6A:B3:F6:7E
Certificate issuer: /CN=56db1eaf1792a2cd5289dc7fc5242ea35245134e
Certificate serial: 01828B9CBEF53E3C6F0D2EED981017C7600C
Authority key identifier: 56:DB:1E:AF:17:92:A2:CD:52:89:DC:7F:C5:24:2E:A3:52:45:13:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VtserxeSos1Sidx_xSQuo1JFE04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/b8QR1cR7f-YXqGNyIn1wIGqz9n4.roa
Signing time: Thu 11 Aug 2022 06:34:41 +0000
ROA not before: Thu 11 Aug 2022 06:34:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28907
IP address blocks: 195.234.112.0/22 maxlen: 22
77.87.192.0/21 maxlen: 21
195.39.197.0/24 maxlen: 24
195.39.196.0/23 maxlen: 23
89.184.64.0/19 maxlen: 24
78.27.192.0/22 maxlen: 22
78.27.192.0/18 maxlen: 24
78.27.199.0/24 maxlen: 24
5.149.120.0/21 maxlen: 24
195.177.118.0/23 maxlen: 23
195.177.116.0/23 maxlen: 23
2a02:2278:215::/48 maxlen: 48
2a02:2278::/32 maxlen: 48
2a02:2278:100::/48 maxlen: 48
2a02:2278:210::/48 maxlen: 48
2a02:2278:209::/48 maxlen: 48
2a02:2278:208::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:9c:be:f5:3e:3c:6f:0d:2e:ed:98:10:17:c7:60:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56db1eaf1792a2cd5289dc7fc5242ea35245134e
Validity
Not Before: Aug 11 06:34:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fc411d5c47b7fe617a86372227d70206ab3f67e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f2:c8:6a:22:a9:f0:c9:f0:27:fc:91:52:8b:
41:94:a7:17:25:ba:05:34:6e:1c:73:b8:37:bc:35:
aa:a9:64:7a:16:70:6b:44:b8:87:8e:7b:3a:a9:3a:
90:00:ff:39:25:40:95:56:62:8e:09:e7:c2:c7:01:
fb:08:0e:95:5a:8c:1f:f1:07:a0:1d:84:27:fa:0c:
a7:52:4d:28:e9:e6:5d:ea:c8:25:ba:c9:2f:8b:d2:
b4:e1:07:a8:03:60:a5:86:82:65:9f:8e:96:ff:4b:
d5:00:1d:74:c6:7b:9f:d3:33:8f:8c:12:64:ad:df:
ff:92:cb:81:10:e6:18:e8:c4:64:6b:7f:f5:24:f2:
99:f8:15:51:ea:3f:55:57:b0:84:78:26:5c:c4:c3:
4d:c1:87:3f:2f:6e:a6:0f:b0:2c:85:11:a3:99:0e:
ca:c2:4b:f5:4e:c0:80:08:dc:75:e3:fb:f1:24:04:
ad:6d:fa:c0:bb:71:0b:0a:59:0e:ce:ff:52:f1:53:
9c:00:1d:43:71:f0:08:41:66:2e:71:fc:ec:5c:50:
68:49:fb:32:4a:f2:df:a9:9f:b8:05:f7:f7:f5:6a:
37:61:8b:8c:a4:73:ba:87:eb:89:cf:ee:1b:ad:d7:
77:d8:05:d0:90:e0:9a:32:06:71:cf:5f:64:df:41:
89:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C4:11:D5:C4:7B:7F:E6:17:A8:63:72:22:7D:70:20:6A:B3:F6:7E
X509v3 Authority Key Identifier:
keyid:56:DB:1E:AF:17:92:A2:CD:52:89:DC:7F:C5:24:2E:A3:52:45:13:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtserxeSos1Sidx_xSQuo1JFE04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/b8QR1cR7f-YXqGNyIn1wIGqz9n4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/VtserxeSos1Sidx_xSQuo1JFE04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.120.0/21
77.87.192.0/21
78.27.192.0/18
89.184.64.0/19
195.39.196.0/23
195.177.116.0/22
195.234.112.0/22
IPv6:
2a02:2278::/32
Signature Algorithm: sha256WithRSAEncryption
88:b7:58:fa:e2:01:d0:5e:b3:a3:77:b9:98:b2:8d:17:bd:ce:
a8:47:15:5a:4e:4d:2c:cb:48:53:21:35:46:c5:e9:0e:bb:0e:
7d:48:b6:e0:1d:ba:99:da:f7:0f:05:ea:ae:64:47:5e:e5:39:
24:55:ea:39:da:03:7e:b2:d6:11:b5:40:ec:7b:e2:0c:d4:3e:
e8:9c:12:c9:d5:51:dd:8a:f6:73:34:3d:3c:d0:b6:a0:a5:3a:
bd:cc:4f:bc:4c:f4:cb:47:07:53:f5:a2:06:54:06:ce:7f:a6:
37:c1:65:50:14:6b:2c:a7:a1:11:c9:81:02:31:98:24:6b:06:
30:69:9e:15:a1:71:53:c4:b8:73:03:53:20:4e:06:52:a4:b9:
ae:fa:26:03:87:0a:0e:ca:94:67:5b:bf:8d:2d:0d:27:69:fb:
23:49:e2:2d:15:8c:4d:ef:94:c1:75:1a:36:c6:36:89:33:40:
6e:28:fe:6f:08:db:ec:33:b7:35:d1:01:5d:a3:66:09:56:ac:
65:23:4f:2e:b6:12:b6:bb:cd:34:c8:4b:78:e9:36:76:15:eb:
b3:ab:ab:71:26:7b:36:49:59:55:55:22:16:78:00:7d:32:1b:
d7:01:2a:d9:a7:d3:3f:96:54:b0:05:f4:db:9b:b8:71:36:88:
69:c6:b0:af
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgISAYKLnL71PjxvDS7tmBAXx2AMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2ZGIxZWFmMTc5MmEyY2Q1Mjg5ZGM3ZmM1MjQyZWEzNTI0
NTEzNGUwHhcNMjIwODExMDYzNDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmM0MTFkNWM0N2I3ZmU2MTdhODYzNzIyMjdkNzAyMDZhYjNmNjdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4vLIaiKp8MnwJ/yRUotBlKcXJboF
NG4cc7g3vDWqqWR6FnBrRLiHjns6qTqQAP85JUCVVmKOCefCxwH7CA6VWowf8Qeg
HYQn+gynUk0o6eZd6sgluskvi9K04QeoA2ClhoJln46W/0vVAB10xnuf0zOPjBJk
rd//ksuBEOYY6MRka3/1JPKZ+BVR6j9VV7CEeCZcxMNNwYc/L26mD7AshRGjmQ7K
wkv1TsCACNx14/vxJAStbfrAu3ELClkOzv9S8VOcAB1DcfAIQWYucfzsXFBoSfsy
SvLfqZ+4Bff39Wo3YYuMpHO6h+uJz+4brdd32AXQkOCaMgZxz19k30GJvQIDAQAB
o4ICPDCCAjgwHQYDVR0OBBYEFG/EEdXEe3/mF6hjciJ9cCBqs/Z+MB8GA1UdIwQY
MBaAFFbbHq8XkqLNUoncf8UkLqNSRRNOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnRzZXJ4ZVNvczFTaWR4X3hTUXVvMUpGRTA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iNGJkNWEtOWQ2Ni00NzFjLTlhMGEt
NDM2MWM4YzM3ZDI5LzEvYjhRUjFjUjdmLVlYcUdOeUluMXdJR3F6OW40LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9iNGJkNWEtOWQ2Ni00NzFjLTlhMGEtNDM2MWM4YzM3ZDI5
LzEvVnRzZXJ4ZVNvczFTaWR4X3hTUXVvMUpGRTA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQDBZV4AwQD
TVfAAwQGThvAAwQFWbhAAwQBwyfEAwQCw7F0AwQCw+pwMA0EAgACMAcDBQAqAiJ4
MA0GCSqGSIb3DQEBCwUAA4IBAQCIt1j64gHQXrOjd7mYso0Xvc6oRxVaTk0sy0hT
ITVGxekOuw59SLbgHbqZ2vcPBequZEde5TkkVeo52gN+stYRtUDse+IM1D7onBLJ
1VHdivZzND080LagpTq9zE+8TPTLRwdT9aIGVAbOf6Y3wWVQFGssp6ERyYECMZgk
awYwaZ4VoXFTxLhzA1MgTgZSpLmu+iYDhwoOypRnW7+NLQ0nafsjSeItFYxN75TB
dRo2xjaJM0BuKP5vCNvsM7c10QFdo2YJVqxlI08uthK2u800yEt46TZ2Feuzq6tx
Jns2SVlVVSIWeAB9MhvXASrZp9M/llSwBfTbm7hxNohpxrCv
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:55:55 2025 by rpki-client