Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/AGz8FgUVvE3Lvt6ftw3qobdQzrI.roa
File: AGz8FgUVvE3Lvt6ftw3qobdQzrI.roa (raw, json)
Hash identifier: cmT93Ok9vnccSbuDE+6sxmO4c4ItItfSqVr3WTEQ4QE=
Subject key identifier: 00:6C:FC:16:05:15:BC:4D:CB:BE:DE:9F:B7:0D:EA:A1:B7:50:CE:B2
Certificate issuer: /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial: 019420680070567A82D24875ED88A75CE06C
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/AGz8FgUVvE3Lvt6ftw3qobdQzrI.roa
Signing time: Wed 01 Jan 2025 05:47:54 +0000
ROA not before: Wed 01 Jan 2025 05:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 151.186.144.0/20 maxlen: 24
151.186.144.0/24 maxlen: 24
151.186.145.0/24 maxlen: 24
151.186.146.0/24 maxlen: 24
151.186.147.0/24 maxlen: 24
151.186.148.0/24 maxlen: 24
151.186.149.0/24 maxlen: 24
151.186.150.0/24 maxlen: 24
151.186.151.0/24 maxlen: 24
151.186.152.0/24 maxlen: 24
151.186.153.0/24 maxlen: 24
151.186.154.0/24 maxlen: 24
151.186.155.0/24 maxlen: 24
151.186.156.0/24 maxlen: 24
151.186.157.0/24 maxlen: 24
151.186.158.0/24 maxlen: 24
151.186.159.0/24 maxlen: 24
151.186.160.0/21 maxlen: 24
151.186.160.0/24 maxlen: 24
151.186.161.0/24 maxlen: 24
151.186.162.0/24 maxlen: 24
151.186.163.0/24 maxlen: 24
151.186.164.0/24 maxlen: 24
151.186.165.0/24 maxlen: 24
151.186.166.0/24 maxlen: 24
151.186.167.0/24 maxlen: 24
151.186.168.0/22 maxlen: 24
151.186.168.0/24 maxlen: 24
151.186.169.0/24 maxlen: 24
151.186.170.0/24 maxlen: 24
151.186.171.0/24 maxlen: 24
151.186.172.0/22 maxlen: 24
151.186.172.0/24 maxlen: 24
151.186.173.0/24 maxlen: 24
151.186.174.0/24 maxlen: 24
151.186.175.0/24 maxlen: 24
151.186.176.0/20 maxlen: 24
151.186.176.0/24 maxlen: 24
151.186.177.0/24 maxlen: 24
151.186.178.0/24 maxlen: 24
151.186.179.0/24 maxlen: 24
151.186.180.0/24 maxlen: 24
151.186.181.0/24 maxlen: 24
151.186.182.0/24 maxlen: 24
151.186.183.0/24 maxlen: 24
151.186.184.0/24 maxlen: 24
151.186.185.0/24 maxlen: 24
151.186.186.0/24 maxlen: 24
151.186.187.0/24 maxlen: 24
151.186.188.0/24 maxlen: 24
151.186.189.0/24 maxlen: 24
151.186.190.0/24 maxlen: 24
151.186.191.0/24 maxlen: 24
151.186.192.0/20 maxlen: 24
151.186.192.0/24 maxlen: 24
151.186.193.0/24 maxlen: 24
151.186.194.0/24 maxlen: 24
151.186.195.0/24 maxlen: 24
151.186.196.0/24 maxlen: 24
151.186.197.0/24 maxlen: 24
151.186.198.0/24 maxlen: 24
151.186.199.0/24 maxlen: 24
151.186.200.0/24 maxlen: 24
151.186.201.0/24 maxlen: 24
151.186.202.0/24 maxlen: 24
151.186.203.0/24 maxlen: 24
151.186.204.0/24 maxlen: 24
151.186.205.0/24 maxlen: 24
151.186.206.0/24 maxlen: 24
151.186.207.0/24 maxlen: 24
2a04:e4c4:5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:00:70:56:7a:82:d2:48:75:ed:88:a7:5c:e0:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Validity
Not Before: Jan 1 05:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=006cfc160515bc4dcbbede9fb70deaa1b750ceb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:73:d9:01:d2:cc:5d:55:4a:15:42:23:7d:e2:
99:fd:e9:7c:ca:d9:48:43:11:bb:a9:43:33:99:b6:
55:8e:61:3d:a3:29:05:55:3c:70:ff:b1:01:14:5d:
ed:6f:86:5b:67:f1:ce:dd:af:42:f2:a1:54:84:e2:
f8:ef:9a:d8:f8:d0:2d:81:e2:7b:93:93:20:1b:6d:
bd:76:67:20:c0:49:8f:48:88:db:18:85:f4:87:be:
bb:11:4f:c5:ac:da:b3:76:e5:91:d7:7d:bc:9d:47:
b2:b7:1f:58:39:c1:0d:d8:1e:91:87:83:4d:ea:98:
b0:70:84:8c:2f:b1:c4:43:65:43:45:ac:f7:c2:90:
e4:08:82:d0:b6:56:ee:f4:b5:91:7f:ed:0d:50:d0:
e6:a2:6a:ba:9e:bd:94:c6:a3:d7:c7:a4:31:e8:a2:
bf:7f:ce:24:fd:41:ab:5f:b3:04:c9:90:7c:c0:87:
e0:51:a1:a9:a3:7f:39:eb:94:80:a5:19:88:25:ed:
d6:3c:da:00:7c:21:b3:60:04:2d:b7:33:cb:ef:7b:
3b:54:84:37:11:fd:26:64:2c:c6:fc:b5:51:ef:46:
e3:f3:0c:32:3a:95:68:a1:83:18:03:20:8e:02:72:
c1:f8:80:dc:56:39:f4:c0:2a:76:c2:53:97:17:f5:
eb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:6C:FC:16:05:15:BC:4D:CB:BE:DE:9F:B7:0D:EA:A1:B7:50:CE:B2
X509v3 Authority Key Identifier:
keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/AGz8FgUVvE3Lvt6ftw3qobdQzrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.186.144.0-151.186.207.255
IPv6:
2a04:e4c4:5::/48
Signature Algorithm: sha256WithRSAEncryption
38:0a:75:08:03:05:0a:12:20:d6:ee:f1:ad:d3:41:56:44:bf:
71:2a:af:40:2a:bc:4c:db:4a:a4:cb:af:42:67:ba:7b:d4:1e:
53:bf:02:68:f8:61:92:2c:da:ca:74:9c:46:0a:97:0e:b4:a8:
c0:09:c1:2b:9c:a4:10:ea:fd:99:69:a4:d1:d5:72:be:6a:76:
63:1b:f5:7e:33:f8:48:bf:2b:38:00:8d:14:66:a2:46:a1:6b:
4e:fc:fe:85:ce:23:0b:03:18:67:2e:e7:94:dd:7d:31:93:f3:
2b:b0:4e:91:7b:86:e5:9f:92:48:a6:86:1e:e9:8b:ad:32:06:
f4:fa:0d:e4:f5:13:d7:38:51:94:08:a5:e8:75:72:e4:46:e4:
91:4d:bd:10:57:ea:83:eb:96:6d:65:b2:cd:43:d6:97:29:90:
5a:fb:90:d6:73:92:6a:c1:23:e5:ab:55:1f:42:37:6d:6c:cb:
07:d7:fe:5d:e6:5b:47:8e:7a:32:5a:64:ed:ef:55:9c:2f:c6:
f5:4d:6f:29:4d:09:09:3b:91:45:cf:09:e2:70:2d:f7:f2:66:
59:d7:67:ae:65:6e:2d:54:db:89:8a:0b:3a:49:7a:a3:18:6e:
a8:26:d9:69:11:68:74:76:d5:41:24:f0:d9:68:95:ef:a8:61:
0d:33:d4:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:53:11 2025 by rpki-client