Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/pocLo2IUa96EYAO9rbTb3m68VAo.roa
File: pocLo2IUa96EYAO9rbTb3m68VAo.roa (raw, json)
Hash identifier: Z7HB26uR5mWKPIqwiHiyjqm7+3tugkPZzITbgrY+cl4=
Subject key identifier: A6:87:0B:A3:62:14:6B:DE:84:60:03:BD:AD:B4:DB:DE:6E:BC:54:0A
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 0195B069AB2DE241246F9E3443DAF5B0DC20
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/pocLo2IUa96EYAO9rbTb3m68VAo.roa
Signing time: Wed 19 Mar 2025 21:57:49 +0000
ROA not before: Wed 19 Mar 2025 21:57:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62164
IP address blocks: 5.181.164.0/22 maxlen: 22
5.181.164.0/23 maxlen: 23
5.181.167.0/24 maxlen: 24
45.11.88.0/22 maxlen: 22
45.11.88.0/23 maxlen: 24
45.11.90.0/23 maxlen: 23
45.81.150.0/24 maxlen: 24
45.81.151.0/24 maxlen: 24
45.92.29.0/24 maxlen: 24
85.209.84.0/23 maxlen: 23
85.209.87.0/24 maxlen: 24
185.149.232.0/22 maxlen: 22
185.149.232.0/24 maxlen: 24
185.149.233.0/24 maxlen: 24
185.149.234.0/23 maxlen: 23
185.191.228.0/23 maxlen: 23
185.191.231.0/24 maxlen: 24
185.199.224.0/23 maxlen: 23
185.199.226.0/24 maxlen: 24
185.202.172.0/23 maxlen: 23
185.202.174.0/24 maxlen: 24
185.215.148.0/24 maxlen: 24
185.215.151.0/24 maxlen: 24
185.218.235.0/24 maxlen: 24
185.235.14.0/23 maxlen: 23
193.39.184.0/24 maxlen: 24
193.39.185.0/24 maxlen: 24
193.39.186.0/24 maxlen: 24
193.39.187.0/24 maxlen: 24
212.162.148.0/22 maxlen: 22
2a0b:aac0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:b0:69:ab:2d:e2:41:24:6f:9e:34:43:da:f5:b0:dc:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Mar 19 21:57:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6870ba362146bde846003bdadb4dbde6ebc540a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:78:a0:21:06:6b:98:84:a1:5d:57:d2:4c:08:
04:73:97:ff:19:e5:b1:04:c8:56:64:a3:07:fa:f4:
19:c2:46:1c:27:03:2d:0d:6d:0f:00:6f:d6:73:26:
da:bb:a7:88:08:ab:ae:4d:de:8c:aa:2d:22:de:6b:
97:b3:d3:52:65:bb:f5:27:32:22:a1:c3:c9:39:c2:
ad:4c:5c:97:3f:1c:99:88:12:00:55:d2:66:48:fe:
da:b7:39:aa:fe:74:ed:5a:3c:f8:c8:27:16:a4:0d:
64:dc:df:07:c6:df:1a:ee:9d:cb:d0:bf:f3:3f:00:
af:88:c0:bd:49:3b:ab:05:79:28:5c:a7:79:4c:fc:
9a:9c:1c:ac:ad:91:0d:6d:ae:fa:29:8a:b9:8d:d7:
81:aa:02:0b:85:42:53:b0:66:cf:3b:6a:ec:35:18:
72:cd:da:02:9e:a8:2a:b3:19:4e:0d:ea:de:48:4e:
83:fd:55:ba:4a:cd:a0:c6:de:24:73:ed:79:ff:a5:
4e:13:82:9d:0b:34:f7:ba:f0:0e:03:d9:f9:ee:84:
18:7a:48:91:b5:19:81:7c:08:51:91:56:58:0c:ca:
9b:14:1c:96:fc:46:a0:6d:f5:77:d1:ac:1e:b7:9c:
b8:f4:f2:30:3e:47:af:cd:7c:60:98:f8:4b:b4:f9:
98:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:87:0B:A3:62:14:6B:DE:84:60:03:BD:AD:B4:DB:DE:6E:BC:54:0A
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/pocLo2IUa96EYAO9rbTb3m68VAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.164.0/22
45.11.88.0/22
45.81.150.0/23
45.92.29.0/24
85.209.84.0/23
85.209.87.0/24
185.149.232.0/22
185.191.228.0/23
185.191.231.0/24
185.199.224.0-185.199.226.255
185.202.172.0-185.202.174.255
185.215.148.0/24
185.215.151.0/24
185.218.235.0/24
185.235.14.0/23
193.39.184.0/22
212.162.148.0/22
IPv6:
2a0b:aac0::/29
Signature Algorithm: sha256WithRSAEncryption
5b:f1:d9:95:b2:9d:81:28:4d:7c:d1:5d:72:60:10:9a:7e:a5:
1e:b2:58:a5:42:0e:7c:fc:e8:3b:2a:cf:82:70:cb:c4:86:2d:
58:f7:24:1b:aa:6c:f2:a1:0b:56:7a:0d:50:59:58:64:18:72:
3a:8e:16:02:e3:55:6a:5b:9c:93:23:17:c9:fb:40:1b:e7:85:
12:84:ad:82:0e:96:58:47:af:4b:a4:07:3c:22:3e:a2:4d:9a:
af:bc:e3:86:16:d5:bc:d0:c2:d9:f0:d6:8f:24:e1:54:74:a9:
21:4c:b4:02:09:59:12:58:e7:e8:85:76:4f:54:7b:70:66:73:
84:b7:d0:98:77:59:a5:67:1e:3a:ec:98:94:34:69:69:46:ec:
7a:d9:9a:35:ba:53:37:3e:96:6e:29:54:79:b4:89:32:0d:06:
30:ac:1e:aa:76:ad:28:2b:35:f0:7f:a5:11:64:ef:32:c3:64:
0a:b0:37:eb:0e:60:91:10:08:c3:fc:bb:03:5e:38:87:d9:f8:
07:ca:81:40:34:e8:46:9d:d5:0a:d3:71:6c:8b:ab:15:28:0e:
e1:9e:9f:4e:c9:21:2a:44:df:76:69:8d:9c:74:f8:16:c2:d8:
c9:75:9c:ee:8f:a6:ba:9f:66:72:76:e2:0f:5f:af:d9:ab:3b:
fb:75:5c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:54:26 2025 by rpki-client