Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/2f46K9EXTSgxhuQx3732_z2E5ZY.roa
File: 2f46K9EXTSgxhuQx3732_z2E5ZY.roa (raw, json)
Hash identifier: 9p8I3XkmJkTn+ZzchX54UmOvfbs7jJf4Hp0jdaYv7Q4=
Subject key identifier: D9:FE:3A:2B:D1:17:4D:28:31:86:E4:31:DF:BD:F6:FF:3D:84:E5:96
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019424B2E4AA0C1CCCA06D496FC1784F0FA1
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/2f46K9EXTSgxhuQx3732_z2E5ZY.roa
Signing time: Thu 02 Jan 2025 01:48:11 +0000
ROA not before: Thu 02 Jan 2025 01:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6830
IP address blocks: 80.81.39.0/24 maxlen: 24
80.81.40.0/24 maxlen: 24
80.81.41.0/24 maxlen: 24
80.81.47.0/24 maxlen: 24
80.81.48.0/24 maxlen: 24
80.81.49.0/24 maxlen: 24
80.81.50.0/24 maxlen: 24
80.81.52.0/24 maxlen: 24
80.81.53.0/24 maxlen: 24
80.81.56.0/24 maxlen: 24
80.81.58.0/24 maxlen: 24
80.255.224.0/20 maxlen: 20
83.223.128.0/24 maxlen: 24
83.223.129.0/24 maxlen: 24
83.223.130.0/24 maxlen: 24
83.223.131.0/24 maxlen: 24
83.223.134.0/24 maxlen: 24
83.223.135.0/24 maxlen: 24
83.223.137.0/24 maxlen: 24
83.223.138.0/24 maxlen: 24
83.223.140.0/24 maxlen: 24
83.223.142.0/24 maxlen: 24
83.223.144.0/24 maxlen: 24
83.223.148.0/24 maxlen: 24
83.223.152.0/24 maxlen: 24
83.223.153.0/24 maxlen: 24
83.223.154.0/24 maxlen: 24
83.223.156.0/24 maxlen: 24
83.223.157.0/24 maxlen: 24
83.223.158.0/24 maxlen: 24
85.254.41.0/24 maxlen: 24
85.254.45.0/24 maxlen: 24
85.254.46.0/24 maxlen: 24
85.254.52.0/24 maxlen: 24
85.254.53.0/24 maxlen: 24
85.254.54.0/24 maxlen: 24
85.254.55.0/24 maxlen: 24
85.254.66.0/24 maxlen: 24
85.254.67.0/24 maxlen: 24
85.254.70.0/24 maxlen: 24
85.254.72.0/24 maxlen: 24
85.254.133.0/24 maxlen: 24
85.254.135.0/24 maxlen: 24
85.254.136.0/24 maxlen: 24
85.254.165.0/24 maxlen: 24
85.254.166.0/24 maxlen: 24
85.254.167.0/24 maxlen: 24
85.254.171.0/24 maxlen: 24
85.254.188.0/24 maxlen: 24
85.254.189.0/24 maxlen: 24
85.254.190.0/24 maxlen: 24
85.254.191.0/24 maxlen: 24
91.190.37.0/24 maxlen: 24
91.190.38.0/24 maxlen: 24
91.190.39.0/24 maxlen: 24
91.190.40.0/24 maxlen: 24
91.190.41.0/24 maxlen: 24
91.190.43.0/24 maxlen: 24
91.190.44.0/24 maxlen: 24
91.190.46.0/24 maxlen: 24
91.190.47.0/24 maxlen: 24
91.190.61.0/24 maxlen: 24
91.190.62.0/24 maxlen: 24
94.101.226.0/24 maxlen: 24
94.101.237.0/24 maxlen: 24
159.148.143.0/24 maxlen: 24
159.148.148.0/24 maxlen: 24
159.148.149.0/24 maxlen: 24
159.148.181.0/24 maxlen: 24
159.148.240.0/24 maxlen: 24
159.148.242.0/24 maxlen: 24
185.7.237.0/24 maxlen: 24
185.7.238.0/24 maxlen: 24
185.7.239.0/24 maxlen: 24
185.176.116.0/24 maxlen: 24
185.176.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:e4:aa:0c:1c:cc:a0:6d:49:6f:c1:78:4f:0f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 01:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d9fe3a2bd1174d283186e431dfbdf6ff3d84e596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:39:fe:65:e2:f8:8e:dd:2d:7b:91:78:8f:a5:
77:44:69:7d:17:ea:a1:b3:b5:87:8b:54:55:57:a1:
4f:4a:90:08:c6:17:05:6a:3f:03:b7:8f:a2:b9:05:
e8:d7:d1:54:33:c3:98:67:0c:f8:e5:04:f8:7c:f2:
95:60:e2:03:71:6a:30:1e:8b:5a:b2:ab:d3:cc:e5:
16:f0:17:4c:8a:87:11:a0:fe:20:00:b8:96:5a:46:
00:27:54:8a:ff:5e:93:9f:b7:2e:7a:d5:22:cb:17:
86:8c:9d:7a:6a:f9:a0:67:d4:67:4b:cd:58:9a:ad:
e1:b1:e2:45:23:2f:a4:0e:ec:1e:e0:14:99:c0:d3:
70:ad:95:ac:a2:64:7d:f4:7e:bc:76:5a:ea:c6:5d:
2f:f9:5a:8c:3f:f6:3e:67:d2:73:51:47:79:d0:63:
4a:81:b4:b0:40:b8:db:bd:36:bb:23:f5:2c:18:c6:
49:6b:9c:9c:39:ab:33:cc:d3:f8:23:da:89:c1:d1:
aa:c6:0c:87:ea:37:de:bc:04:e9:53:d6:ba:66:a0:
33:29:17:ba:f0:52:f5:24:18:bb:d8:4b:e0:2f:ba:
49:db:6b:35:a0:33:f0:bc:ba:64:49:69:58:02:3d:
c7:24:ea:40:53:a8:13:e5:f6:95:7d:30:ec:3f:6a:
5e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:FE:3A:2B:D1:17:4D:28:31:86:E4:31:DF:BD:F6:FF:3D:84:E5:96
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/2f46K9EXTSgxhuQx3732_z2E5ZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.39.0-80.81.41.255
80.81.47.0-80.81.50.255
80.81.52.0/23
80.81.56.0/24
80.81.58.0/24
80.255.224.0/20
83.223.128.0/22
83.223.134.0/23
83.223.137.0-83.223.138.255
83.223.140.0/24
83.223.142.0/24
83.223.144.0/24
83.223.148.0/24
83.223.152.0-83.223.154.255
83.223.156.0-83.223.158.255
85.254.41.0/24
85.254.45.0-85.254.46.255
85.254.52.0/22
85.254.66.0/23
85.254.70.0/24
85.254.72.0/24
85.254.133.0/24
85.254.135.0-85.254.136.255
85.254.165.0-85.254.167.255
85.254.171.0/24
85.254.188.0/22
91.190.37.0-91.190.41.255
91.190.43.0-91.190.44.255
91.190.46.0/23
91.190.61.0-91.190.62.255
94.101.226.0/24
94.101.237.0/24
159.148.143.0/24
159.148.148.0/23
159.148.181.0/24
159.148.240.0/24
159.148.242.0/24
185.7.237.0-185.7.239.255
185.176.116.0/24
185.176.119.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:be:38:82:4d:7d:04:6b:17:25:1c:17:47:5d:89:83:70:b7:
81:72:9b:55:34:9c:32:e3:07:fa:78:12:3c:e8:40:59:a7:bc:
c3:2d:7a:cc:a3:f1:0b:57:cd:c8:aa:3d:5d:52:ec:13:b5:1b:
cb:b6:68:8a:09:c0:b5:83:d4:a8:61:dd:90:22:0a:f7:ad:a1:
9d:0d:46:a8:d6:27:dc:a1:55:bf:b5:a0:c3:94:31:ed:62:ef:
80:00:b2:e8:09:b1:d3:c7:5c:65:7d:3f:f7:3a:1b:2f:fe:e1:
d7:05:a3:1a:d1:d9:b0:15:f8:f2:b8:ee:30:a7:f9:48:d1:2e:
45:fa:b4:0b:2a:46:fb:af:83:77:e4:bb:49:db:39:6e:e5:0c:
2b:7e:01:2c:6c:5e:6e:24:04:63:07:26:f3:44:2e:9d:71:08:
a4:c3:b8:58:56:97:88:cc:67:cf:d2:92:b6:66:a9:86:58:ff:
eb:45:39:1a:ff:cc:f7:e0:0c:27:86:c2:0d:f3:b9:91:ce:0c:
dd:57:eb:f3:ff:4f:00:46:eb:e8:28:ee:60:b3:2a:97:d4:53:
cb:51:5a:4f:19:1d:13:98:39:fa:47:38:69:2d:3f:df:16:c8:
13:d4:c2:0c:fb:fd:e2:72:ac:ae:dd:d3:f6:5d:20:ef:cb:ad:
9c:60:88:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:05 2025 by rpki-client