Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/LmwsPKzOOcm5viw7heR1HxqoKkk.roa
File: LmwsPKzOOcm5viw7heR1HxqoKkk.roa (raw, json)
Hash identifier: YR6e6Tl3ScaAnaipUxfZR82LJAbBezMniGsVbfyFwkg=
Subject key identifier: 2E:6C:2C:3C:AC:CE:39:C9:B9:BE:2C:3B:85:E4:75:1F:1A:A8:2A:49
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 018CC9BCCEB2A52DCBCDC73540AE83C2542E
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/LmwsPKzOOcm5viw7heR1HxqoKkk.roa
Signing time: Tue 02 Jan 2024 10:34:03 +0000
ROA not before: Tue 02 Jan 2024 10:34:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31363
IP address blocks: 195.91.254.0/24 maxlen: 24
195.91.255.0/24 maxlen: 24
195.91.204.0/24 maxlen: 24
195.91.208.0/24 maxlen: 24
195.91.209.0/24 maxlen: 24
195.91.210.0/24 maxlen: 24
195.91.211.0/24 maxlen: 24
195.91.213.0/24 maxlen: 24
195.91.215.0/24 maxlen: 24
195.91.217.0/24 maxlen: 24
195.91.218.0/24 maxlen: 24
195.91.219.0/24 maxlen: 24
195.91.222.0/24 maxlen: 24
195.91.223.0/24 maxlen: 24
195.91.224.0/24 maxlen: 24
195.91.220.0/24 maxlen: 24
195.91.221.0/24 maxlen: 24
195.91.225.0/24 maxlen: 24
195.91.226.0/24 maxlen: 24
195.91.232.0/24 maxlen: 24
195.91.233.0/24 maxlen: 24
195.91.229.0/24 maxlen: 24
195.91.230.0/24 maxlen: 24
195.91.231.0/24 maxlen: 24
195.91.227.0/24 maxlen: 24
195.91.228.0/24 maxlen: 24
195.91.236.0/24 maxlen: 24
195.91.237.0/24 maxlen: 24
195.91.238.0/24 maxlen: 24
195.91.234.0/24 maxlen: 24
195.91.235.0/24 maxlen: 24
195.91.239.0/24 maxlen: 24
195.91.240.0/24 maxlen: 24
195.91.246.0/24 maxlen: 24
195.91.243.0/24 maxlen: 24
195.91.244.0/24 maxlen: 24
195.91.245.0/24 maxlen: 24
195.91.241.0/24 maxlen: 24
195.91.242.0/24 maxlen: 24
195.91.252.0/24 maxlen: 24
195.91.247.0/24 maxlen: 24
195.91.149.0/24 maxlen: 24
195.91.150.0/24 maxlen: 24
195.91.151.0/24 maxlen: 24
195.91.146.0/24 maxlen: 24
195.91.147.0/24 maxlen: 24
195.91.148.0/24 maxlen: 24
195.91.153.0/24 maxlen: 24
195.91.156.0/24 maxlen: 24
195.91.160.0/24 maxlen: 24
195.91.166.0/24 maxlen: 24
195.91.165.0/24 maxlen: 24
195.91.168.0/24 maxlen: 24
195.91.169.0/24 maxlen: 24
195.91.170.0/24 maxlen: 24
195.91.171.0/24 maxlen: 24
195.91.172.0/24 maxlen: 24
195.91.178.0/24 maxlen: 24
195.91.179.0/24 maxlen: 24
195.91.173.0/24 maxlen: 24
195.91.174.0/24 maxlen: 24
195.91.175.0/24 maxlen: 24
195.91.180.0/24 maxlen: 24
195.91.181.0/24 maxlen: 24
195.91.182.0/24 maxlen: 24
195.91.184.0/24 maxlen: 24
195.91.191.0/24 maxlen: 24
195.91.187.0/24 maxlen: 24
195.91.188.0/24 maxlen: 24
195.91.195.0/24 maxlen: 24
195.91.196.0/24 maxlen: 24
195.91.197.0/24 maxlen: 24
195.91.138.0/24 maxlen: 24
195.91.133.0/24 maxlen: 24
195.91.145.0/24 maxlen: 24
195.91.144.0/24 maxlen: 24
86.62.79.0/24 maxlen: 24
86.62.84.0/24 maxlen: 24
86.62.94.0/24 maxlen: 24
86.62.96.0/24 maxlen: 24
86.62.92.0/24 maxlen: 24
86.62.98.0/24 maxlen: 24
86.62.102.0/24 maxlen: 24
86.62.103.0/24 maxlen: 24
86.62.99.0/24 maxlen: 24
86.62.110.0/24 maxlen: 24
86.62.112.0/24 maxlen: 24
86.62.118.0/24 maxlen: 24
86.62.114.0/24 maxlen: 24
86.62.115.0/24 maxlen: 24
86.62.116.0/24 maxlen: 24
86.62.117.0/24 maxlen: 24
86.62.113.0/24 maxlen: 24
86.62.119.0/24 maxlen: 24
86.62.125.0/24 maxlen: 24
195.54.210.0/24 maxlen: 24
86.62.75.0/24 maxlen: 24
2a02:2698:9800::/38 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:ce:b2:a5:2d:cb:cd:c7:35:40:ae:83:c2:54:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 2 10:34:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e6c2c3cacce39c9b9be2c3b85e4751f1aa82a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a3:2d:fe:e6:09:a5:d6:54:71:6a:06:c8:df:
50:80:cd:7a:77:ee:3d:ff:93:21:a3:8d:b3:b2:85:
2d:ea:56:2b:b3:e3:ef:b5:9c:35:8c:7f:cb:7a:57:
43:33:58:45:08:5b:47:15:8c:01:53:d0:74:7a:50:
10:91:13:96:cf:83:c2:09:21:90:ab:a2:d4:5b:ee:
dd:9c:24:e6:3b:e7:e0:1b:3d:b9:c3:fb:9d:7b:06:
92:57:fb:a9:4a:8a:82:7f:39:14:e9:dc:d7:81:cf:
5c:22:f9:4b:d1:fd:30:ef:6c:e8:85:42:82:0d:cb:
e2:d2:12:3d:ae:3b:10:87:95:23:48:06:a7:ab:64:
9f:03:09:3d:cd:e6:c6:89:a8:d8:f5:ac:af:8d:1b:
b9:cf:25:79:d0:00:9f:44:6e:e8:c5:28:70:95:99:
0b:51:8f:a8:36:ac:fc:2c:38:fb:61:60:bc:83:8b:
bb:d2:01:b0:c3:71:ec:62:df:aa:fa:b8:22:56:93:
fe:00:27:00:83:93:b8:a9:f3:24:08:43:2f:d0:4c:
5e:7e:52:e7:f4:12:92:dd:c3:2a:10:dc:12:78:f3:
d8:5e:90:08:51:74:15:d2:2d:39:c7:d3:cf:84:70:
5a:00:1c:e5:a2:3e:bd:2d:d3:40:04:68:1f:9c:54:
46:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:6C:2C:3C:AC:CE:39:C9:B9:BE:2C:3B:85:E4:75:1F:1A:A8:2A:49
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/LmwsPKzOOcm5viw7heR1HxqoKkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.75.0/24
86.62.79.0/24
86.62.84.0/24
86.62.92.0/24
86.62.94.0/24
86.62.96.0/24
86.62.98.0/23
86.62.102.0/23
86.62.110.0/24
86.62.112.0/21
86.62.125.0/24
195.54.210.0/24
195.91.133.0/24
195.91.138.0/24
195.91.144.0/21
195.91.153.0/24
195.91.156.0/24
195.91.160.0/24
195.91.165.0-195.91.166.255
195.91.168.0/21
195.91.178.0-195.91.182.255
195.91.184.0/24
195.91.187.0-195.91.188.255
195.91.191.0/24
195.91.195.0-195.91.197.255
195.91.204.0/24
195.91.208.0/22
195.91.213.0/24
195.91.215.0/24
195.91.217.0-195.91.247.255
195.91.252.0/24
195.91.254.0/23
IPv6:
2a02:2698:9800::/38
Signature Algorithm: sha256WithRSAEncryption
8e:f7:df:05:01:04:9b:49:83:00:a8:f6:ff:8e:e1:85:d9:cb:
a1:96:78:45:74:e4:c8:cd:66:73:ad:69:79:e6:27:12:8f:df:
00:c0:b0:7b:f7:63:7d:57:a4:57:f9:28:29:15:81:1d:35:92:
70:39:a9:8e:18:5d:ad:e5:f0:3c:63:7a:2c:63:ce:57:52:7c:
33:92:a7:90:4f:92:29:0c:97:6a:2e:c9:ef:1f:94:07:fe:9b:
06:6c:65:a1:47:1d:17:1f:da:93:d5:36:95:93:01:6b:a0:fb:
a8:20:19:7e:a4:f2:60:47:a3:6f:2a:fe:28:c9:a5:f4:33:f1:
2e:a8:0f:2d:91:13:03:f5:64:61:19:a6:6a:66:e8:75:e5:1b:
f9:35:77:0d:0c:54:72:68:ae:85:0a:aa:7f:48:7e:a7:3b:94:
54:97:a4:27:a4:52:40:36:74:7d:29:10:3a:ca:ad:73:d2:a6:
a6:0d:ce:78:4c:23:19:e1:fe:2a:f2:c3:4d:dd:c1:ae:fb:75:
e3:1e:5b:c9:63:3d:3a:ac:30:6b:09:14:5d:df:af:40:fc:c4:
c5:ce:71:66:57:59:9b:d5:d8:c0:7c:bb:21:b5:ba:7d:a8:2f:
34:90:d5:6a:ad:11:3f:2a:ff:8b:b2:51:0b:89:fe:a8:e3:4f:
c9:86:08:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:51 2025 by rpki-client