Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/bRSMOgKty2Hx6VfpJEqgmb2FNGw.roa
File: bRSMOgKty2Hx6VfpJEqgmb2FNGw.roa (raw, json)
Hash identifier: vfZqIW680u7PI4yzyae65oA532P7GnniEea87ZJHL8M=
Subject key identifier: 6D:14:8C:3A:02:AD:CB:61:F1:E9:57:E9:24:4A:A0:99:BD:85:34:6C
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 0195AECAEED5519EF7D629D7493BE8CBC309
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/bRSMOgKty2Hx6VfpJEqgmb2FNGw.roa
Signing time: Wed 19 Mar 2025 14:24:49 +0000
ROA not before: Wed 19 Mar 2025 14:24:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 37.221.124.0/22 maxlen: 24
45.67.228.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.231.0/24 maxlen: 24
45.120.176.0/22 maxlen: 24
62.3.12.0/24 maxlen: 24
74.119.192.0/24 maxlen: 24
74.119.193.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
80.92.204.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
86.104.72.0/22 maxlen: 24
89.221.224.0/24 maxlen: 24
89.221.225.0/24 maxlen: 24
91.132.132.0/22 maxlen: 24
91.194.161.0/24 maxlen: 24
91.225.217.0/24 maxlen: 24
91.225.218.0/24 maxlen: 24
91.225.219.0/24 maxlen: 24
94.131.8.0/24 maxlen: 24
103.35.188.0/22 maxlen: 24
103.106.0.0/22 maxlen: 24
103.113.68.0/22 maxlen: 24
103.231.72.0/22 maxlen: 24
176.120.64.0/22 maxlen: 24
176.120.64.0/24 maxlen: 24
176.120.72.0/22 maxlen: 24
185.234.56.0/22 maxlen: 24
185.234.64.0/22 maxlen: 24
185.235.240.0/22 maxlen: 24
185.236.232.0/22 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.150.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
193.203.202.0/24 maxlen: 24
194.54.156.0/24 maxlen: 24
194.54.157.0/24 maxlen: 24
194.54.158.0/24 maxlen: 24
194.54.159.0/24 maxlen: 24
194.62.42.0/24 maxlen: 24
194.246.114.0/24 maxlen: 24
194.246.115.0/24 maxlen: 24
195.42.232.0/22 maxlen: 24
195.149.87.0/24 maxlen: 24
213.159.64.0/21 maxlen: 24
213.159.72.0/21 maxlen: 24
213.159.76.0/24 maxlen: 24
213.159.77.0/24 maxlen: 24
213.159.78.0/24 maxlen: 24
213.159.79.0/24 maxlen: 24
2a09:7c40::/32 maxlen: 32
2a09:7c41::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
2a09:7c43::/32 maxlen: 32
2a09:7c44::/32 maxlen: 32
2a09:7c45::/32 maxlen: 32
2a09:7c46::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a0b:cf45::/32 maxlen: 32
2a0b:cf46::/32 maxlen: 32
2a0b:cf47::/32 maxlen: 32
2a11:3805::/32 maxlen: 32
2a11:3c02::/32 maxlen: 32
2a11:3c03::/32 maxlen: 32
2a11:4c04::/32 maxlen: 32
2a11:4c05::/32 maxlen: 32
2a11:4c06::/32 maxlen: 32
2a14:2d80::/32 maxlen: 32
2a14:2d81::/32 maxlen: 32
2a14:2d82::/32 maxlen: 32
2a14:2d83::/32 maxlen: 32
2a14:2d85::/32 maxlen: 32
2a14:2d87::/32 maxlen: 32
2a14:2e80::/32 maxlen: 32
2a14:2f80::/32 maxlen: 32
2a14:3080::/32 maxlen: 32
2a14:3081::/32 maxlen: 32
2a14:3082::/32 maxlen: 32
2a14:3083::/32 maxlen: 32
2a14:3084::/32 maxlen: 32
2a14:3880::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ae:ca:ee:d5:51:9e:f7:d6:29:d7:49:3b:e8:cb:c3:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Mar 19 14:24:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6d148c3a02adcb61f1e957e9244aa099bd85346c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e3:b2:9c:47:06:7f:0e:4f:07:5e:87:b7:96:
c8:34:43:e0:9e:cc:27:33:86:b3:fc:d3:3a:d5:c9:
9c:d3:43:a8:b3:08:9e:24:f2:37:36:f7:b4:c3:71:
83:59:9d:10:de:ef:d1:52:78:44:2f:c7:11:89:13:
1b:f0:63:69:6f:13:d4:d8:ad:9d:f1:84:34:5a:6a:
be:ae:2e:48:a2:7b:db:d8:bc:ef:b9:6e:90:25:41:
87:4a:21:7f:8e:35:8c:25:6d:0c:18:58:a9:be:18:
3e:55:12:66:56:17:40:74:c7:dd:45:66:46:67:b2:
d5:7a:34:a9:9c:df:a0:51:79:56:58:af:b0:59:db:
e2:f6:19:19:75:a5:b8:5f:01:ea:00:ce:74:d2:38:
fc:72:2c:e9:ba:3d:10:d7:cc:27:97:80:ad:70:4e:
a8:39:4b:9b:1c:c5:38:0d:84:b8:17:79:b9:51:bc:
b7:d0:c8:97:08:0a:1a:f0:77:a8:fd:8e:1d:39:4a:
f0:5f:3b:87:0c:be:ff:20:6d:9a:36:8d:99:b5:d2:
04:12:fa:d9:fb:53:9c:41:5a:c5:62:5b:e4:7b:dc:
ad:df:51:22:c9:fe:ac:99:ed:61:8f:69:5e:ff:cd:
05:cc:21:b4:ef:6d:12:23:f7:af:4b:97:dc:fb:5a:
64:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:14:8C:3A:02:AD:CB:61:F1:E9:57:E9:24:4A:A0:99:BD:85:34:6C
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/bRSMOgKty2Hx6VfpJEqgmb2FNGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.124.0/22
45.67.228.0/22
45.120.176.0/22
62.3.12.0/24
74.119.192.0/22
80.92.204.0-80.92.206.255
86.104.72.0/22
89.221.224.0/23
91.132.132.0/22
91.194.161.0/24
91.225.217.0-91.225.219.255
94.131.8.0/24
103.35.188.0/22
103.106.0.0/22
103.113.68.0/22
103.231.72.0/22
176.120.64.0/22
176.120.72.0/22
185.234.56.0/22
185.234.64.0/22
185.235.240.0/22
185.236.232.0/22
185.242.84.0/22
185.250.148.0/22
193.203.202.0/24
194.54.156.0/22
194.62.42.0/24
194.246.114.0/23
195.42.232.0/22
195.149.87.0/24
213.159.64.0/20
IPv6:
2a09:7c40::/29
2a0b:cf45::-2a0b:cf47:ffff:ffff:ffff:ffff:ffff:ffff
2a11:3805::/32
2a11:3c02::/31
2a11:4c04::-2a11:4c06:ffff:ffff:ffff:ffff:ffff:ffff
2a14:2d80::/30
2a14:2d85::/32
2a14:2d87::/32
2a14:2e80::/32
2a14:2f80::/32
2a14:3080::-2a14:3084:ffff:ffff:ffff:ffff:ffff:ffff
2a14:3880::/32
Signature Algorithm: sha256WithRSAEncryption
6d:ba:20:01:b6:85:c5:22:b5:69:0a:ac:c8:49:6c:7f:a0:06:
7f:80:7c:ea:b6:66:6f:7f:c9:17:0c:13:f3:36:af:10:43:2d:
39:62:19:5b:53:fd:1b:6c:56:1b:40:11:49:cf:2c:a2:7a:a4:
05:25:73:04:2b:2f:4b:f0:60:bf:69:ed:7a:ea:64:ec:71:e8:
9f:15:59:cc:77:dd:5a:ee:ec:c6:f4:ea:02:0f:66:5b:51:11:
26:fd:1e:e3:7f:bf:01:ae:c4:c5:3c:b3:eb:0d:b2:e5:50:3e:
b4:ae:b7:99:53:1c:84:de:14:76:8f:2c:c8:e5:0f:f6:04:c5:
8e:28:00:f9:d6:3a:e9:d0:4a:76:5b:d4:bd:12:d1:ab:94:bb:
ae:30:0a:a6:8f:f1:48:b0:af:db:9c:46:4a:06:f5:22:38:de:
0d:46:36:cb:99:47:cc:b9:15:79:0d:25:c7:f7:59:3b:a0:2f:
e4:cc:0c:d7:e4:6d:07:ff:b0:ed:32:bb:bf:7c:c7:f8:55:8a:
92:e2:6c:95:06:6f:a6:f4:f1:54:c7:c9:01:d6:2d:9b:d5:7d:
3f:26:07:00:b8:ea:f9:32:3a:1f:21:9f:79:9f:a3:e2:5c:5e:
12:3a:f9:47:92:eb:ec:78:de:d0:a7:32:46:d0:de:7b:50:a3:
2a:c2:bd:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:09:12 2025 by rpki-client