Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/xEKDMJ3Iuw1SewA-xEvzisFBh7o.roa
File: xEKDMJ3Iuw1SewA-xEvzisFBh7o.roa (raw, json)
Hash identifier: sbzPgD7d9/7ysUgcEh0hdrl1ZqQAj16AihGLac79T1E=
Subject key identifier: C4:42:83:30:9D:C8:BB:0D:52:7B:00:3E:C4:4B:F3:8A:C1:41:87:BA
Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Certificate serial: 128F2787
Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/xEKDMJ3Iuw1SewA-xEvzisFBh7o.roa
Signing time: Wed 02 Feb 2022 10:34:59 +0000
ROA not before: Wed 02 Feb 2022 10:34:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9119
IP address blocks: 85.208.172.0/24 maxlen: 24
185.175.0.0/22 maxlen: 22
80.65.174.0/24 maxlen: 24
80.65.173.0/24 maxlen: 24
80.65.175.0/24 maxlen: 24
194.39.85.0/24 maxlen: 24
213.253.120.0/22 maxlen: 22
213.253.124.0/22 maxlen: 22
91.132.74.0/23 maxlen: 23
2.58.48.0/22 maxlen: 22
80.65.166.0/24 maxlen: 24
80.65.165.0/24 maxlen: 24
80.65.160.0/20 maxlen: 24
80.65.160.0/24 maxlen: 24
80.65.164.0/24 maxlen: 24
80.65.163.0/24 maxlen: 24
80.65.162.0/24 maxlen: 24
80.65.161.0/24 maxlen: 24
80.65.172.0/24 maxlen: 24
80.65.167.0/24 maxlen: 24
80.65.171.0/24 maxlen: 24
80.65.170.0/24 maxlen: 24
80.65.169.0/24 maxlen: 24
80.65.168.0/24 maxlen: 24
147.78.216.0/24 maxlen: 24
147.78.216.0/22 maxlen: 22
213.253.96.0/20 maxlen: 20
213.253.96.0/21 maxlen: 21
217.199.132.0/24 maxlen: 24
217.199.131.0/24 maxlen: 24
213.253.104.0/22 maxlen: 22
217.199.130.0/24 maxlen: 24
217.199.129.0/24 maxlen: 24
217.199.128.0/20 maxlen: 24
217.199.128.0/24 maxlen: 24
217.199.133.0/24 maxlen: 24
217.199.139.0/24 maxlen: 24
213.253.112.0/22 maxlen: 22
217.199.138.0/24 maxlen: 24
213.253.111.0/24 maxlen: 24
217.199.134.0/24 maxlen: 24
217.199.137.0/24 maxlen: 24
217.199.136.0/24 maxlen: 24
213.253.110.0/24 maxlen: 24
213.253.108.0/22 maxlen: 22
217.199.135.0/24 maxlen: 24
213.253.108.0/24 maxlen: 24
213.253.109.0/24 maxlen: 24
217.199.140.0/24 maxlen: 24
213.253.116.0/22 maxlen: 22
217.199.143.0/24 maxlen: 24
217.199.142.0/24 maxlen: 24
217.199.141.0/24 maxlen: 24
213.253.64.0/19 maxlen: 19
45.15.44.0/22 maxlen: 22
212.103.128.0/19 maxlen: 19
84.41.122.0/23 maxlen: 23
84.41.120.0/23 maxlen: 23
84.41.124.0/22 maxlen: 22
84.41.96.0/21 maxlen: 21
84.41.104.0/22 maxlen: 22
84.41.108.0/23 maxlen: 23
84.41.112.0/23 maxlen: 23
84.41.111.0/24 maxlen: 24
84.41.110.0/24 maxlen: 24
84.41.115.0/24 maxlen: 24
84.41.114.0/24 maxlen: 24
84.41.116.0/22 maxlen: 22
46.163.48.0/21 maxlen: 21
46.163.58.0/24 maxlen: 24
46.163.58.0/23 maxlen: 23
46.163.56.0/23 maxlen: 23
46.163.56.0/24 maxlen: 24
46.163.59.0/24 maxlen: 24
46.163.60.0/22 maxlen: 22
45.156.140.0/24 maxlen: 24
45.8.0.0/22 maxlen: 22
46.163.0.0/19 maxlen: 19
46.163.32.0/20 maxlen: 20
212.13.224.0/19 maxlen: 19
84.41.32.0/19 maxlen: 19
84.41.64.0/19 maxlen: 19
84.41.0.0/18 maxlen: 18
84.41.0.0/19 maxlen: 19
84.41.0.0/21 maxlen: 21
185.54.131.0/24 maxlen: 24
185.54.130.0/24 maxlen: 24
185.54.128.0/24 maxlen: 24
185.54.128.0/23 maxlen: 23
2a0b:c300::/29 maxlen: 29
2a02:805::/33 maxlen: 33
2a0b:c306::/32 maxlen: 32
2a02:801::/33 maxlen: 33
2a02:800::/32 maxlen: 32
2a0e:2e00::/29 maxlen: 29
2a0e:1e80::/29 maxlen: 29
2a09:e140::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 311371655 (0x128f2787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Validity
Not Before: Feb 2 10:34:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c44283309dc8bb0d527b003ec44bf38ac14187ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8d:73:c9:d6:2f:54:fd:3d:d4:f6:c4:d6:4c:
e5:ca:d8:62:c0:39:4e:ab:39:de:8a:1d:21:61:9d:
10:3d:e4:5d:44:61:30:6a:73:72:4e:0c:55:ae:71:
d0:92:d9:fd:08:3f:74:e8:6c:5a:ac:2e:a1:01:60:
f8:be:ff:b4:fa:fd:71:e7:67:7e:99:43:84:2c:54:
47:49:cb:09:18:29:fc:cd:89:b3:6a:64:6d:80:48:
26:b2:3a:18:90:b2:82:77:6d:c1:37:b6:60:68:bc:
ac:23:af:11:64:9b:6f:bf:af:51:21:8e:eb:fb:c2:
38:ff:7f:ce:00:7b:b8:01:60:11:a7:bf:5c:d0:d1:
d1:7c:0c:04:22:54:2b:b0:6b:b5:6d:4e:05:f9:08:
02:8b:3f:2b:c2:fd:c3:c5:52:38:6f:69:16:c8:77:
5e:a5:a5:50:44:3e:aa:36:f1:b8:de:5c:e0:06:7d:
bd:08:6b:e3:57:6d:12:be:a1:9c:bd:94:16:5b:a4:
00:62:2b:f9:6c:91:ef:9f:0b:3d:65:be:a9:ad:37:
5f:11:01:e8:5b:24:59:d3:f6:f6:c6:53:8e:a1:af:
99:65:02:97:6f:43:09:76:11:51:fb:97:a4:13:a7:
25:1c:70:9e:57:28:b7:dd:70:59:d6:dc:db:d4:f5:
0d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:42:83:30:9D:C8:BB:0D:52:7B:00:3E:C4:4B:F3:8A:C1:41:87:BA
X509v3 Authority Key Identifier:
keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/xEKDMJ3Iuw1SewA-xEvzisFBh7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.48.0/22
45.8.0.0/22
45.15.44.0/22
45.156.140.0/24
46.163.0.0/18
80.65.160.0/20
84.41.0.0/17
85.208.172.0/24
91.132.74.0/23
147.78.216.0/22
185.54.128.0/22
185.175.0.0/22
194.39.85.0/24
212.13.224.0/19
212.103.128.0/19
213.253.64.0/18
217.199.128.0/20
IPv6:
2a02:800::-2a02:801:7fff:ffff:ffff:ffff:ffff:ffff
2a02:805::/33
2a09:e140::/29
2a0b:c300::/29
2a0e:1e80::/29
2a0e:2e00::/29
Signature Algorithm: sha256WithRSAEncryption
8d:8e:62:e0:45:35:32:12:78:a3:64:f9:95:9a:d8:b3:ee:84:
6c:eb:39:e9:73:45:31:41:5b:45:9b:79:0f:e8:56:73:ab:23:
e0:60:cc:36:ec:e1:3f:5f:5b:18:b7:98:6b:f6:8f:43:c2:79:
1d:e8:f1:0d:29:0e:a3:a4:57:d9:3f:18:fe:96:2c:aa:b5:8e:
70:e3:59:ad:0d:3a:87:ab:49:43:b1:35:b0:70:a7:3a:66:cf:
f3:1f:1d:e8:5f:01:19:f7:22:2a:bd:b4:7e:8c:be:25:c6:45:
09:19:e9:e5:5d:22:98:11:5a:eb:d4:8d:a7:fa:2d:81:50:bb:
ed:68:36:d3:ff:62:83:37:c1:9c:d1:8e:02:c9:9c:ce:9e:ba:
d4:2d:66:f1:2e:6a:bd:02:94:f3:9e:67:48:7d:07:19:57:f6:
be:63:82:39:e8:22:7f:2e:13:9d:61:ac:a5:ff:54:ba:f7:3a:
5b:30:36:76:24:c7:1b:61:2d:e2:11:3c:0b:24:2f:6e:de:a1:
12:dc:45:d9:9b:3a:5f:69:44:67:f8:e7:78:11:8f:23:72:0d:
28:52:f5:0a:2b:8d:f4:7d:ed:0e:b4:65:e2:aa:73:7c:5b:46:
56:c4:d3:38:8d:40:19:d7:2a:4d:7b:62:09:ae:59:7b:ba:8a:
7a:78:15:9c
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgIEEo8nhzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YzdiMDZiZjQxMzAwZGM0ZDMwZjNkMGUxODBjOWI5NWQyYmNkZGZmMB4XDTIyMDIw
MjEwMzQ1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzQ0MjgzMzA5ZGM4
YmIwZDUyN2IwMDNlYzQ0YmYzOGFjMTQxODdiYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMqNc8nWL1T9PdT2xNZM5crYYsA5Tqs53oodIWGdED3kXURh
MGpzck4MVa5x0JLZ/Qg/dOhsWqwuoQFg+L7/tPr9cednfplDhCxUR0nLCRgp/M2J
s2pkbYBIJrI6GJCygndtwTe2YGi8rCOvEWSbb7+vUSGO6/vCOP9/zgB7uAFgEae/
XNDR0XwMBCJUK7BrtW1OBfkIAos/K8L9w8VSOG9pFsh3XqWlUEQ+qjbxuN5c4AZ9
vQhr41dtEr6hnL2UFlukAGIr+WyR758LPWW+qa03XxEB6FskWdP29sZTjqGvmWUC
l29DCXYRUfuXpBOnJRxwnlcot91wWdbc29T1DV8CAwEAAaOCAqgwggKkMB0GA1Ud
DgQWBBTEQoMwnci7DVJ7AD7ES/OKwUGHujAfBgNVHSMEGDAWgBQcewa/QTANxNMP
PQ4YDJuV0rzd/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hIc0d2MEV3RGNUVER6ME9HQXlibGRLODNmOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvNzAyYjI4LWUxNTgtNDBjMC04MzMwLTI0ZmRkYzZkMTQ3Yi8x
L3hFS0RNSjNJdXcxU2V3QS14RXZ6aXNGQmg3by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
NzAyYjI4LWUxNTgtNDBjMC04MzMwLTI0ZmRkYzZkMTQ3Yi8xL0hIc0d2MEV3RGNU
VER6ME9HQXlibGRLODNmOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
vQYIKwYBBQUHAQcBAf8Ega0wgaowbAQCAAEwZgMEAgI6MAMEAi0IAAMEAi0PLAME
AC2cjAMEBi6jAAMEBFBBoAMEB1QpAAMEAFXQrAMEAVuESgMEApNO2AMEArk2gAME
ArmvAAMEAMInVQMEBdQN4AMEBdRngAMEBtX9QAMEBNnHgDA6BAIAAjA0MA4DBAMq
AggDBgcqAggBAAMGByoCCAUAAwUDKgnhQAMFAyoLwwADBQMqDh6AAwUDKg4uADAN
BgkqhkiG9w0BAQsFAAOCAQEAjY5i4EU1MhJ4o2T5lZrYs+6EbOs56XNFMUFbRZt5
D+hWc6sj4GDMNuzhP19bGLeYa/aPQ8J5HejxDSkOo6RX2T8Y/pYsqrWOcONZrQ06
h6tJQ7E1sHCnOmbP8x8d6F8BGfciKr20foy+JcZFCRnp5V0imBFa69SNp/otgVC7
7Wg20/9igzfBnNGOAsmczp661C1m8S5qvQKU855nSH0HGVf2vmOCOegify4TnWGs
pf9Uuvc6WzA2diTHG2Et4hE8CyQvbt6hEtxF2Zs6X2lEZ/jneBGPI3INKFL1CiuN
9H3tDrRl4qpzfFtGVsTTOI1AGdcqTXtiCa5Ze7qKengVnA==
-----END CERTIFICATE-----
Generated at Tue Apr 8 07:34:14 2025 by rpki-client