Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/8h_5utCbMQDPDfgquuu8Ss7MNVc.roa
File: 8h_5utCbMQDPDfgquuu8Ss7MNVc.roa (raw, json)
Hash identifier: RMftkfgCw1H2KqMeyE8Wzbgxpp1bT5iwXwXOj4qlPsU=
Subject key identifier: F2:1F:F9:BA:D0:9B:31:00:CF:0D:F8:2A:BA:EB:BC:4A:CE:CC:35:57
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01942369F2FB3C9FD6AA72E50DEA6999C772
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/8h_5utCbMQDPDfgquuu8Ss7MNVc.roa
Signing time: Wed 01 Jan 2025 19:48:53 +0000
ROA not before: Wed 01 Jan 2025 19:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62240
IP address blocks: 46.3.4.0/22 maxlen: 22
46.3.4.0/24 maxlen: 24
46.3.5.0/24 maxlen: 24
46.3.6.0/24 maxlen: 24
46.3.7.0/24 maxlen: 24
46.3.16.0/22 maxlen: 22
46.3.16.0/24 maxlen: 24
46.3.17.0/24 maxlen: 24
46.3.18.0/24 maxlen: 24
46.3.19.0/24 maxlen: 24
46.3.24.0/22 maxlen: 22
46.3.24.0/24 maxlen: 24
46.3.25.0/24 maxlen: 24
46.3.26.0/24 maxlen: 24
46.3.27.0/24 maxlen: 24
46.3.30.0/24 maxlen: 24
46.3.32.0/21 maxlen: 21
46.3.32.0/24 maxlen: 24
46.3.33.0/24 maxlen: 24
46.3.34.0/24 maxlen: 24
46.3.35.0/24 maxlen: 24
46.3.36.0/24 maxlen: 24
46.3.37.0/24 maxlen: 24
46.3.38.0/24 maxlen: 24
46.3.39.0/24 maxlen: 24
46.3.64.0/22 maxlen: 22
46.3.64.0/24 maxlen: 24
46.3.65.0/24 maxlen: 24
46.3.66.0/24 maxlen: 24
46.3.67.0/24 maxlen: 24
46.3.68.0/22 maxlen: 22
46.3.68.0/24 maxlen: 24
46.3.69.0/24 maxlen: 24
46.3.70.0/24 maxlen: 24
46.3.71.0/24 maxlen: 24
46.3.72.0/22 maxlen: 24
46.3.72.0/24 maxlen: 24
46.3.73.0/24 maxlen: 24
46.3.74.0/24 maxlen: 24
46.3.75.0/24 maxlen: 24
46.3.76.0/24 maxlen: 24
46.3.86.0/23 maxlen: 23
46.3.92.0/22 maxlen: 22
46.3.92.0/24 maxlen: 24
46.3.93.0/24 maxlen: 24
46.3.94.0/24 maxlen: 24
46.3.95.0/24 maxlen: 24
46.3.148.0/22 maxlen: 22
46.3.148.0/24 maxlen: 24
46.3.149.0/24 maxlen: 24
46.3.150.0/24 maxlen: 24
46.3.151.0/24 maxlen: 24
46.3.203.0/24 maxlen: 24
46.3.204.0/24 maxlen: 24
46.3.224.0/22 maxlen: 22
46.3.224.0/24 maxlen: 24
46.3.225.0/24 maxlen: 24
46.3.226.0/24 maxlen: 24
46.3.227.0/24 maxlen: 24
46.232.26.0/23 maxlen: 24
46.232.26.0/24 maxlen: 24
46.232.27.0/24 maxlen: 24
46.232.28.0/22 maxlen: 24
46.232.28.0/24 maxlen: 24
46.232.29.0/24 maxlen: 24
46.232.30.0/24 maxlen: 24
46.232.31.0/24 maxlen: 24
46.232.32.0/20 maxlen: 24
46.232.80.0/20 maxlen: 20
46.232.80.0/24 maxlen: 24
46.232.81.0/24 maxlen: 24
46.232.82.0/24 maxlen: 24
46.232.83.0/24 maxlen: 24
46.232.84.0/24 maxlen: 24
46.232.85.0/24 maxlen: 24
46.232.86.0/24 maxlen: 24
46.232.87.0/24 maxlen: 24
46.232.88.0/24 maxlen: 24
46.232.89.0/24 maxlen: 24
46.232.90.0/24 maxlen: 24
46.232.91.0/24 maxlen: 24
46.232.92.0/24 maxlen: 24
46.232.93.0/24 maxlen: 24
46.232.94.0/24 maxlen: 24
46.232.95.0/24 maxlen: 24
149.126.192.0/24 maxlen: 24
149.126.197.0/24 maxlen: 24
149.126.200.0/24 maxlen: 24
149.126.206.0/24 maxlen: 24
149.126.215.0/24 maxlen: 24
149.126.224.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:f2:fb:3c:9f:d6:aa:72:e5:0d:ea:69:99:c7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 1 19:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f21ff9bad09b3100cf0df82abaebbc4acecc3557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d8:fa:6c:77:52:d6:79:e5:6b:1b:e0:65:80:
df:59:ff:bc:a8:eb:aa:9c:14:0f:23:6e:68:21:cf:
70:7e:40:22:63:cc:fa:de:f6:35:fb:b3:c8:e7:1b:
e0:8e:1b:ec:65:d0:ba:5d:73:97:f2:9b:68:a3:4a:
10:23:3d:1d:21:75:b9:64:44:7e:01:4b:64:33:e2:
d5:3e:83:fb:3a:6c:51:09:c5:e0:89:cc:93:3b:26:
a7:da:b0:10:7b:e8:9b:7b:6b:a1:84:17:2f:cf:a6:
19:5c:7d:1a:18:4f:aa:30:1e:56:d1:68:7f:7d:e5:
30:15:fe:65:a9:e7:a4:e9:67:40:95:a0:ce:2d:90:
89:c8:f8:dc:66:76:6f:17:6c:20:c0:7e:34:7d:c5:
90:55:37:4d:3f:c4:ea:1e:5b:35:48:1c:e9:89:75:
4d:49:58:f5:8e:4f:98:ce:a6:1b:2c:87:08:ba:26:
76:84:a6:33:ed:d8:bb:bd:b4:cb:3d:ab:8e:ce:c6:
17:46:82:f8:80:22:b8:32:aa:e8:41:a2:c0:98:54:
8c:aa:38:0c:d3:41:4c:8c:6d:e8:b9:0b:ad:1e:22:
23:7d:8c:a1:97:27:4c:48:cc:bd:48:3c:89:24:6d:
bc:aa:b2:22:71:ec:ee:a0:6e:d9:39:9d:fb:ac:0b:
ca:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:1F:F9:BA:D0:9B:31:00:CF:0D:F8:2A:BA:EB:BC:4A:CE:CC:35:57
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/8h_5utCbMQDPDfgquuu8Ss7MNVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.4.0/22
46.3.16.0/22
46.3.24.0/22
46.3.30.0/24
46.3.32.0/21
46.3.64.0-46.3.76.255
46.3.86.0/23
46.3.92.0/22
46.3.148.0/22
46.3.203.0-46.3.204.255
46.3.224.0/22
46.232.26.0-46.232.47.255
46.232.80.0/20
149.126.192.0/24
149.126.197.0/24
149.126.200.0/24
149.126.206.0/24
149.126.215.0/24
149.126.224.0/24
149.126.246.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:5c:3d:b0:ff:11:50:22:f9:7f:0d:02:c6:6c:74:e3:15:ff:
c9:e4:ff:82:e2:a2:ac:9f:97:c2:09:73:0a:f4:41:4e:fe:1d:
e5:a0:b8:ef:9a:39:4c:7d:cb:82:9a:01:c9:85:4a:25:80:f4:
ae:b3:a6:c6:2e:8a:53:31:50:d3:d9:21:cf:79:cb:85:e3:1a:
65:75:d7:0d:b9:a3:3a:74:e9:70:51:f5:31:0e:44:fb:9f:9d:
f3:b7:f5:c1:81:ae:10:d6:53:fb:38:8d:0b:37:5b:f9:70:d3:
59:8e:be:6c:47:e1:73:c8:ea:fb:cf:fb:e6:82:0d:7d:c5:f1:
81:23:33:8b:f2:0d:5c:2e:56:53:58:7e:3b:b2:88:18:38:88:
a5:e7:ae:49:11:12:b5:06:ad:5f:ad:26:1a:2e:57:7e:83:db:
7b:b0:33:9b:91:35:c6:62:3f:76:4a:3e:36:5f:eb:9c:09:41:
52:59:c0:18:01:fa:e4:60:24:6f:be:23:d8:70:19:ee:ea:36:
04:99:a9:8f:97:6b:10:b2:46:98:04:95:58:fb:60:c8:1b:54:
48:a4:19:17:9e:cb:59:79:07:d3:b7:a8:6b:e0:2d:65:a2:30:
7c:4a:6b:09:23:1d:f8:9d:d1:62:80:d3:b3:af:66:f2:e0:f9:
73:08:2d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:45 2025 by rpki-client