Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/s0FqVqPXvQ4RiRRzV8RzCViISCg.roa
File: s0FqVqPXvQ4RiRRzV8RzCViISCg.roa (raw, json)
Hash identifier: A3J9jffVa05FkJYr89k956VobOCCM3uypUTeSbGVmeI=
Subject key identifier: B3:41:6A:56:A3:D7:BD:0E:11:89:14:73:57:C4:73:09:58:88:48:28
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018B7798F985A19C8AF5D64A537E7A41F7A9
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/s0FqVqPXvQ4RiRRzV8RzCViISCg.roa
Signing time: Sat 28 Oct 2023 18:43:15 +0000
ROA not before: Sat 28 Oct 2023 18:43:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 94.177.27.0/24 maxlen: 24
188.240.83.0/24 maxlen: 24
84.247.20.0/24 maxlen: 24
89.37.106.0/24 maxlen: 24
89.42.40.0/24 maxlen: 24
62.112.30.0/24 maxlen: 24
89.34.171.0/24 maxlen: 24
89.36.231.0/24 maxlen: 24
89.42.213.0/24 maxlen: 24
89.42.215.0/24 maxlen: 24
46.102.174.0/24 maxlen: 24
89.37.128.0/24 maxlen: 24
176.223.181.0/24 maxlen: 24
93.114.69.0/24 maxlen: 24
89.40.43.0/24 maxlen: 24
176.223.190.0/24 maxlen: 24
188.211.249.0/24 maxlen: 24
94.177.113.0/24 maxlen: 24
94.177.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:77:98:f9:85:a1:9c:8a:f5:d6:4a:53:7e:7a:41:f7:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Oct 28 18:43:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3416a56a3d7bd0e1189147357c4730958884828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1c:4e:3b:0f:dd:a2:66:f7:55:d6:b4:68:08:
82:af:d7:28:ad:a3:da:04:aa:2e:ef:fc:59:30:57:
5a:5f:d2:93:cd:ba:a7:46:6d:be:53:8a:d3:84:5f:
40:a5:8f:77:05:5d:49:a2:5b:bb:00:d7:d6:9f:aa:
c3:5c:9e:10:c1:86:e3:19:31:69:5e:25:c0:61:67:
92:39:89:9d:1e:a4:7c:d6:ed:89:66:ba:05:b6:10:
67:e1:1f:3c:58:d6:6e:64:70:3e:0a:06:74:14:ef:
f7:af:7f:b2:60:84:ec:1a:84:35:59:9a:e3:d5:29:
9c:2b:f9:c8:8e:c7:7f:b4:82:ef:28:a6:c6:73:9c:
ce:8c:5b:d8:7f:1b:ce:fa:a3:c5:9b:e7:df:3f:c4:
32:67:0f:2b:06:df:b4:39:f8:60:72:a4:00:1a:be:
aa:1b:d8:bf:6f:84:61:c4:a5:30:77:68:d3:95:46:
a9:0f:9e:09:73:69:7c:2b:c5:24:d0:99:de:38:23:
50:ce:fa:42:f0:3f:dd:d2:8a:c5:c6:ca:14:10:8d:
e5:69:80:2a:ce:de:08:9f:ad:16:9b:0e:20:a8:6c:
ca:8b:00:6a:79:2b:2a:71:b7:7a:ef:5c:07:35:00:
a1:57:ee:07:f4:f3:84:bc:1a:5c:3f:c0:1b:68:2c:
90:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:41:6A:56:A3:D7:BD:0E:11:89:14:73:57:C4:73:09:58:88:48:28
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/s0FqVqPXvQ4RiRRzV8RzCViISCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.174.0/24
62.112.30.0/24
84.247.20.0/24
89.34.171.0/24
89.36.231.0/24
89.37.106.0/24
89.37.128.0/24
89.40.43.0/24
89.42.40.0/24
89.42.213.0/24
89.42.215.0/24
93.114.69.0/24
94.177.27.0/24
94.177.113.0/24
94.177.118.0/24
176.223.181.0/24
176.223.190.0/24
188.211.249.0/24
188.240.83.0/24
Signature Algorithm: sha256WithRSAEncryption
49:35:9f:cb:de:6a:b6:40:87:1e:85:71:b1:ce:bd:c1:46:98:
b7:6d:b2:7f:5b:59:75:18:1e:18:25:10:b9:7f:1e:96:29:00:
18:9a:8b:b8:17:74:e7:31:5c:69:9f:9d:7e:52:29:94:d8:db:
e7:81:68:7c:24:cc:54:5a:00:37:6d:57:95:24:fa:59:66:34:
1b:fa:33:12:f1:df:8f:0c:6b:97:d8:75:7c:fe:c7:fc:4f:aa:
db:87:04:d9:44:d8:57:51:b8:dc:c5:54:e3:be:73:42:e4:fc:
83:87:c3:4f:7e:ee:8d:7b:71:32:2d:15:c8:61:6e:ea:8b:9b:
52:a0:e9:b7:d8:1a:32:4d:1c:bc:f6:61:3d:5a:18:40:61:97:
1a:7b:31:10:cf:4d:61:bc:e5:30:ef:23:48:b7:a8:3c:3a:21:
25:97:00:83:30:c7:46:37:52:07:f5:9f:89:98:d5:27:38:6d:
2e:4c:b0:a6:7a:ee:d6:77:79:35:58:6b:3c:de:1a:c5:6c:64:
19:30:1d:08:9b:53:36:a3:e3:ab:ad:00:38:9f:06:74:32:5a:
db:f1:49:d8:cb:34:dd:2a:5d:7e:7c:0b:fb:a4:9a:09:9d:42:
a6:31:9d:43:d5:84:08:1f:c9:ef:fd:1f:af:da:73:bb:ed:80:
3c:c0:07:8a
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgISAYt3mPmFoZyK9dZKU356QfepMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDBlOTgxOTUzMDYxOTcyYzg5NmJkNmQyNzczOGQwODNh
YWRiMGUwHhcNMjMxMDI4MTg0MzE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzQxNmE1NmEzZDdiZDBlMTE4OTE0NzM1N2M0NzMwOTU4ODg0ODI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiRxOOw/domb3Vda0aAiCr9coraPa
BKou7/xZMFdaX9KTzbqnRm2+U4rThF9ApY93BV1Jolu7ANfWn6rDXJ4QwYbjGTFp
XiXAYWeSOYmdHqR81u2JZroFthBn4R88WNZuZHA+CgZ0FO/3r3+yYITsGoQ1WZrj
1SmcK/nIjsd/tILvKKbGc5zOjFvYfxvO+qPFm+ffP8QyZw8rBt+0OfhgcqQAGr6q
G9i/b4RhxKUwd2jTlUapD54Jc2l8K8Uk0JneOCNQzvpC8D/d0orFxsoUEI3laYAq
zt4In60Wmw4gqGzKiwBqeSsqcbd671wHNQChV+4H9POEvBpcP8AbaCyQ3wIDAQAB
o4ICdjCCAnIwHQYDVR0OBBYEFLNBalaj170OEYkUc1fEcwlYiEgoMB8GA1UdIwQY
MBaAFNoA6YGVMGGXLIlr1tJ3ONCDqtsOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAt
OWE0OGVjZjllMTVlLzEvczBGcVZxUFh2UTRSaVJSelY4UnpDVmlJU0NnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAtOWE0OGVjZjllMTVl
LzEvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcgMEAC5mrgME
AD5wHgMEAFT3FAMEAFkiqwMEAFkk5wMEAFklagMEAFklgAMEAFkoKwMEAFkqKAME
AFkq1QMEAFkq1wMEAF1yRQMEAF6xGwMEAF6xcQMEAF6xdgMEALDftQMEALDfvgME
ALzT+QMEALzwUzANBgkqhkiG9w0BAQsFAAOCAQEASTWfy95qtkCHHoVxsc69wUaY
t22yf1tZdRgeGCUQuX8elikAGJqLuBd05zFcaZ+dflIplNjb54FofCTMVFoAN21X
lST6WWY0G/ozEvHfjwxrl9h1fP7H/E+q24cE2UTYV1G43MVU475zQuT8g4fDT37u
jXtxMi0VyGFu6oubUqDpt9gaMk0cvPZhPVoYQGGXGnsxEM9NYbzlMO8jSLeoPDoh
JZcAgzDHRjdSB/WfiZjVJzhtLkywpnru1nd5NVhrPN4axWxkGTAdCJtTNqPjq60A
OJ8GdDJa2/FJ2Ms03SpdfnwL+6SaCZ1CpjGdQ9WECB/J7/0fr9pzu+2APMAHig==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:03 2025 by rpki-client