Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/gzEzqlR4RG0fDmOPrePrr6yLYhk.roa
File: gzEzqlR4RG0fDmOPrePrr6yLYhk.roa (raw, json)
Hash identifier: xyfujhKLB2ZNk04YWUTFJzkvT8t7Iu1LC7q+J0fjpec=
Subject key identifier: 83:31:33:AA:54:78:44:6D:1F:0E:63:8F:AD:E3:EB:AF:AC:8B:62:19
Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Certificate serial: 01899B29EF98729694EC69C2EB08DCC9FC96
Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/gzEzqlR4RG0fDmOPrePrr6yLYhk.roa
Signing time: Fri 28 Jul 2023 06:22:44 +0000
ROA not before: Fri 28 Jul 2023 06:22:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9119
IP address blocks: 85.208.172.0/24 maxlen: 24
185.175.0.0/22 maxlen: 22
80.65.174.0/24 maxlen: 24
80.65.173.0/24 maxlen: 24
80.65.175.0/24 maxlen: 24
194.39.85.0/24 maxlen: 24
213.253.120.0/22 maxlen: 22
213.253.124.0/22 maxlen: 22
91.132.74.0/23 maxlen: 23
2.58.48.0/22 maxlen: 22
80.65.166.0/24 maxlen: 24
80.65.165.0/24 maxlen: 24
80.65.160.0/24 maxlen: 24
80.65.160.0/20 maxlen: 20
80.65.164.0/24 maxlen: 24
80.65.163.0/24 maxlen: 24
80.65.162.0/24 maxlen: 24
80.65.161.0/24 maxlen: 24
80.65.172.0/24 maxlen: 24
80.65.167.0/24 maxlen: 24
80.65.171.0/24 maxlen: 24
80.65.170.0/24 maxlen: 24
80.65.169.0/24 maxlen: 24
80.65.168.0/24 maxlen: 24
147.78.219.0/24 maxlen: 24
147.78.218.0/24 maxlen: 24
147.78.216.0/24 maxlen: 24
147.78.216.0/22 maxlen: 22
213.253.96.0/20 maxlen: 20
213.253.96.0/21 maxlen: 21
217.199.132.0/24 maxlen: 24
217.199.131.0/24 maxlen: 24
213.253.104.0/22 maxlen: 22
217.199.130.0/24 maxlen: 24
217.199.129.0/24 maxlen: 24
217.199.128.0/20 maxlen: 24
217.199.128.0/24 maxlen: 24
217.199.133.0/24 maxlen: 24
217.199.139.0/24 maxlen: 24
213.253.112.0/22 maxlen: 22
213.253.111.0/24 maxlen: 24
217.199.138.0/24 maxlen: 24
217.199.134.0/24 maxlen: 24
217.199.137.0/24 maxlen: 24
217.199.136.0/24 maxlen: 24
213.253.110.0/24 maxlen: 24
213.253.108.0/22 maxlen: 22
217.199.135.0/24 maxlen: 24
213.253.108.0/24 maxlen: 24
213.253.109.0/24 maxlen: 24
217.199.140.0/24 maxlen: 24
213.253.116.0/22 maxlen: 22
217.199.143.0/24 maxlen: 24
217.199.142.0/24 maxlen: 24
217.199.141.0/24 maxlen: 24
213.253.64.0/19 maxlen: 19
45.15.44.0/22 maxlen: 22
212.103.128.0/19 maxlen: 19
84.41.122.0/23 maxlen: 23
84.41.120.0/23 maxlen: 23
84.41.124.0/22 maxlen: 22
84.41.96.0/21 maxlen: 21
84.41.104.0/22 maxlen: 22
84.41.108.0/23 maxlen: 23
84.41.112.0/23 maxlen: 23
84.41.111.0/24 maxlen: 24
84.41.110.0/24 maxlen: 24
84.41.115.0/24 maxlen: 24
84.41.114.0/24 maxlen: 24
84.41.116.0/22 maxlen: 22
46.163.48.0/21 maxlen: 21
46.163.58.0/24 maxlen: 24
46.163.58.0/23 maxlen: 23
46.163.56.0/23 maxlen: 23
46.163.56.0/24 maxlen: 24
46.163.59.0/24 maxlen: 24
46.163.60.0/22 maxlen: 22
45.156.140.0/23 maxlen: 23
45.156.140.0/24 maxlen: 24
45.8.0.0/22 maxlen: 22
46.163.0.0/19 maxlen: 19
46.163.32.0/20 maxlen: 20
212.13.224.0/19 maxlen: 19
84.41.32.0/19 maxlen: 19
84.41.64.0/19 maxlen: 19
84.41.0.0/18 maxlen: 18
84.41.0.0/19 maxlen: 19
84.41.0.0/21 maxlen: 21
185.54.131.0/24 maxlen: 24
185.54.130.0/24 maxlen: 24
185.54.128.0/24 maxlen: 24
185.54.128.0/23 maxlen: 23
2a0b:c300::/29 maxlen: 29
2a02:805::/33 maxlen: 33
2a0b:c306::/32 maxlen: 32
2a02:801::/33 maxlen: 33
2a02:800::/32 maxlen: 32
2a0f:2180::/29 maxlen: 29
2a0e:2e00::/29 maxlen: 29
2a0e:1e80::/29 maxlen: 29
2a09:e140::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:29:ef:98:72:96:94:ec:69:c2:eb:08:dc:c9:fc:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Validity
Not Before: Jul 28 06:22:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=833133aa5478446d1f0e638fade3ebafac8b6219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9d:d1:04:19:c6:64:98:d4:40:5c:78:9f:e5:
47:8e:a0:9d:06:08:92:1c:41:a1:ec:32:9f:0a:bf:
35:90:7b:e8:60:f6:79:d4:ef:39:ce:4e:11:c0:be:
80:9d:f2:14:b5:5c:7c:ec:49:41:91:79:a3:21:93:
e1:ee:00:fc:92:8d:10:0d:02:a1:35:9d:4a:e3:2d:
87:b0:62:9c:71:9c:05:41:69:a2:cc:6b:77:e8:56:
06:a5:31:d3:c4:f6:3b:6e:77:9f:35:c8:fd:9a:dd:
61:7d:f9:9b:ff:60:21:c6:ad:1d:f8:36:d4:c4:8d:
c2:7d:bb:2d:5d:34:5e:2c:88:39:ec:b6:b7:25:0e:
9b:2e:d7:13:e0:a7:98:79:c7:01:f9:7e:a1:f3:7d:
12:db:ad:56:5d:c0:7f:32:87:d1:72:6e:74:bf:fe:
12:c0:cc:85:04:cd:10:12:5a:6e:65:83:d0:08:d5:
59:48:ce:4a:59:82:27:fe:dd:27:c5:bc:db:13:b6:
b8:20:f6:79:ed:5e:13:8d:0c:7e:22:db:59:2a:25:
86:d6:bd:cf:99:bd:76:29:2c:f5:7f:65:4c:09:0f:
01:ab:ec:bf:fa:74:f0:5f:09:be:cc:4f:13:81:25:
15:0e:34:67:59:2b:b2:2b:e4:b9:6f:85:ec:e1:39:
db:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:31:33:AA:54:78:44:6D:1F:0E:63:8F:AD:E3:EB:AF:AC:8B:62:19
X509v3 Authority Key Identifier:
keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/gzEzqlR4RG0fDmOPrePrr6yLYhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.48.0/22
45.8.0.0/22
45.15.44.0/22
45.156.140.0/23
46.163.0.0/18
80.65.160.0/20
84.41.0.0/17
85.208.172.0/24
91.132.74.0/23
147.78.216.0/22
185.54.128.0/22
185.175.0.0/22
194.39.85.0/24
212.13.224.0/19
212.103.128.0/19
213.253.64.0/18
217.199.128.0/20
IPv6:
2a02:800::-2a02:801:7fff:ffff:ffff:ffff:ffff:ffff
2a02:805::/33
2a09:e140::/29
2a0b:c300::/29
2a0e:1e80::/29
2a0e:2e00::/29
2a0f:2180::/29
Signature Algorithm: sha256WithRSAEncryption
16:69:37:8d:91:c4:54:7f:c2:73:31:cd:71:93:92:58:e4:5e:
70:b8:d4:32:e7:84:75:b0:9f:49:a8:01:af:62:4f:b4:09:4d:
89:92:d1:8a:67:5c:81:9f:44:b9:f8:d1:68:62:01:5b:e8:39:
bb:58:16:6f:c4:7a:ff:c5:29:67:96:52:a6:df:0a:53:45:48:
7e:b5:27:5d:86:b3:45:cf:12:dc:d1:c5:36:cf:a4:e1:9e:d4:
31:1b:ad:0e:84:bc:a0:46:fa:05:d0:4a:73:a1:37:0f:ad:28:
ac:26:25:46:8f:21:a7:09:61:97:27:6c:f0:8f:c7:31:18:a9:
df:d3:fd:6c:6f:2f:05:ba:4c:19:68:1b:c4:3f:07:78:05:cf:
fb:e9:0b:c2:e0:fb:c0:b5:ac:4d:41:9c:9e:0d:64:33:5b:62:
7f:99:30:cd:5d:41:37:f8:43:ea:2a:29:be:ae:da:06:35:0e:
c9:4a:f7:8c:9d:49:ea:c9:31:0e:58:ef:a3:98:26:5c:70:e6:
b4:f4:e8:f2:da:d1:8a:a8:fa:a1:48:73:86:eb:d3:d8:65:9a:
0a:3e:58:c7:3b:9d:34:54:49:f5:43:9b:3d:8f:5a:07:25:f1:
e1:8d:79:42:a6:b3:0a:ff:dd:14:2e:46:8a:26:08:8c:12:f5:
49:de:56:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:34:15 2025 by rpki-client