Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/PrNUxz0yba76t8wY55c1zKXm_Oo.roa
File: PrNUxz0yba76t8wY55c1zKXm_Oo.roa (raw, json)
Hash identifier: m1KBoMWL6Rj5bP0aLVgjFWVkvzcAuAcBVIFoqutIMt8=
Subject key identifier: 3E:B3:54:C7:3D:32:6D:AE:FA:B7:CC:18:E7:97:35:CC:A5:E6:FC:EA
Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Certificate serial: 0194661925C4818FB13458143378F8DEDD22
Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/PrNUxz0yba76t8wY55c1zKXm_Oo.roa
Signing time: Tue 14 Jan 2025 18:35:11 +0000
ROA not before: Tue 14 Jan 2025 18:35:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5607
IP address blocks: 2.120.0.0/13 maxlen: 13
2.216.0.0/13 maxlen: 13
5.64.0.0/13 maxlen: 13
46.64.0.0/15 maxlen: 15
51.19.0.0/16 maxlen: 16
51.146.0.0/16 maxlen: 16
51.182.0.0/15 maxlen: 15
51.182.0.0/18 maxlen: 18
51.182.64.0/18 maxlen: 18
51.182.128.0/18 maxlen: 18
51.182.192.0/18 maxlen: 18
51.183.0.0/18 maxlen: 18
51.183.64.0/18 maxlen: 18
51.183.128.0/18 maxlen: 18
51.183.192.0/18 maxlen: 18
51.186.0.0/15 maxlen: 15
51.186.0.0/18 maxlen: 18
51.186.64.0/18 maxlen: 18
51.186.128.0/18 maxlen: 18
51.186.192.0/18 maxlen: 18
51.187.0.0/18 maxlen: 18
51.187.64.0/18 maxlen: 18
51.187.128.0/18 maxlen: 18
51.187.192.0/18 maxlen: 18
51.190.0.0/15 maxlen: 15
51.194.0.0/16 maxlen: 16
51.198.0.0/18 maxlen: 18
51.198.72.0/21 maxlen: 21
51.198.80.0/20 maxlen: 20
51.198.96.0/19 maxlen: 19
51.198.128.0/17 maxlen: 17
51.199.0.0/17 maxlen: 17
51.199.128.0/18 maxlen: 18
51.199.192.0/19 maxlen: 19
51.199.224.0/20 maxlen: 20
51.199.240.0/21 maxlen: 21
51.199.248.0/22 maxlen: 22
51.241.0.0/16 maxlen: 16
78.86.0.0/16 maxlen: 16
78.105.0.0/16 maxlen: 16
87.80.0.0/15 maxlen: 15
90.192.0.0/11 maxlen: 11
93.96.0.0/17 maxlen: 17
93.96.128.0/18 maxlen: 18
93.96.224.0/19 maxlen: 19
93.96.224.0/23 maxlen: 23
93.96.228.0/23 maxlen: 23
94.0.0.0/12 maxlen: 12
94.192.0.0/14 maxlen: 14
149.241.0.0/16 maxlen: 16
151.224.0.0/13 maxlen: 13
176.24.0.0/14 maxlen: 14
176.248.0.0/13 maxlen: 13
176.255.240.0/24 maxlen: 24
176.255.241.0/24 maxlen: 24
176.255.242.0/24 maxlen: 24
188.220.0.0/14 maxlen: 14
2a02:c78::/29 maxlen: 29
2a02:c7a::/32 maxlen: 32
2a02:c7a:1200::/48 maxlen: 48
2a02:c7a:1202::/48 maxlen: 48
2a02:c7b::/32 maxlen: 32
2a02:c7c::/30 maxlen: 30
2a02:c7c::/33 maxlen: 33
2a02:c7c:8000::/33 maxlen: 33
2a02:c7d::/33 maxlen: 33
2a02:c7d:8000::/33 maxlen: 33
2a02:c7e::/33 maxlen: 33
2a02:c7e:8000::/33 maxlen: 33
2a02:c7f::/33 maxlen: 33
2a02:c7f:8000::/33 maxlen: 33
2a06:5900::/32 maxlen: 32
2a06:5900::/34 maxlen: 34
2a06:5900:4000::/34 maxlen: 34
2a06:5900:8000::/34 maxlen: 34
2a06:5900:c000::/34 maxlen: 34
2a06:5901::/33 maxlen: 33
2a06:5902::/31 maxlen: 31
2a06:5904::/31 maxlen: 31
2a06:5906::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:66:19:25:c4:81:8f:b1:34:58:14:33:78:f8:de:dd:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Validity
Not Before: Jan 14 18:35:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3eb354c73d326daefab7cc18e79735cca5e6fcea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ef:4d:ee:70:3f:61:fd:bf:e7:c5:6d:53:bb:
2a:05:2d:3f:e3:6b:28:70:09:eb:63:8c:f8:48:67:
78:fc:42:cc:70:6e:8d:be:11:f8:a5:2a:0d:47:95:
e3:bf:87:4b:30:b5:39:57:25:99:40:64:a3:b0:e5:
bb:70:c6:4c:29:aa:9a:57:5a:bf:b9:fe:6a:9d:62:
6c:78:92:21:bb:c8:27:7b:66:da:8e:7b:f1:bc:07:
28:b4:fc:01:ab:9c:f2:41:70:3a:13:af:96:10:58:
49:c3:84:81:60:41:73:e3:e3:b9:8a:4e:e1:71:b4:
e5:e8:ee:f1:c0:7e:cc:f7:a0:fc:0a:98:a3:0f:50:
9b:90:c3:d5:9c:24:fd:86:0a:85:03:75:cb:56:2d:
98:f8:7d:a6:9a:aa:85:e7:91:9f:fa:bb:e6:69:bb:
03:b2:0b:af:32:53:cc:49:76:be:e3:38:56:9d:b4:
4b:a3:1e:3b:5a:b3:f5:7f:1b:38:a6:c5:2f:7a:0b:
b1:d3:10:66:2c:0a:9e:a0:fc:b6:6a:f2:40:9c:85:
e8:46:c1:26:91:f4:a0:7e:fc:34:e4:1b:65:0f:a0:
04:cb:ad:ee:7b:e7:e4:c6:b1:51:8f:5e:6b:98:24:
f1:70:b5:eb:ca:76:1b:8e:3a:e6:ff:af:e6:77:2b:
98:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B3:54:C7:3D:32:6D:AE:FA:B7:CC:18:E7:97:35:CC:A5:E6:FC:EA
X509v3 Authority Key Identifier:
keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/PrNUxz0yba76t8wY55c1zKXm_Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.120.0.0/13
2.216.0.0/13
5.64.0.0/13
46.64.0.0/15
51.19.0.0/16
51.146.0.0/16
51.182.0.0/15
51.186.0.0/15
51.190.0.0/15
51.194.0.0/16
51.198.0.0/18
51.198.72.0-51.199.251.255
51.241.0.0/16
78.86.0.0/16
78.105.0.0/16
87.80.0.0/15
90.192.0.0/11
93.96.0.0-93.96.191.255
93.96.224.0/19
94.0.0.0/12
94.192.0.0/14
149.241.0.0/16
151.224.0.0/13
176.24.0.0/14
176.248.0.0/13
188.220.0.0/14
IPv6:
2a02:c78::/29
2a06:5900::-2a06:5901:7fff:ffff:ffff:ffff:ffff:ffff
2a06:5902::-2a06:5907:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
b7:02:ec:88:4a:d2:e8:1c:e4:82:14:21:3a:6b:ff:fe:51:d0:
e3:78:cb:4c:7c:3b:70:f7:c6:d9:50:ea:93:a5:2f:3f:90:62:
d2:03:00:24:78:9b:28:01:8a:99:de:59:b6:87:e9:94:1b:43:
35:25:4a:3c:07:d4:9e:92:67:f5:af:06:44:c0:1a:11:28:fe:
99:3a:c0:3e:4c:63:60:f1:ae:24:bf:02:af:2c:22:e5:55:97:
a9:75:22:d5:85:6b:49:18:01:bd:40:8b:4c:56:af:04:5c:2c:
9d:9f:65:29:84:28:93:43:81:29:e4:81:c9:2d:ff:1f:83:76:
04:fb:4c:d0:ea:cf:a6:ef:00:48:20:4d:bd:03:ac:f4:c7:1d:
90:ec:ea:7e:ae:c6:1d:d1:c3:9b:b9:b4:fc:43:40:14:81:a2:
36:c0:a8:6f:f4:6d:2a:0a:75:1b:5b:67:85:03:1e:58:3a:87:
f9:63:3c:66:42:c1:bb:b4:56:91:e5:96:2c:bc:3b:95:88:f4:
92:e8:ea:ca:18:7c:30:a1:fe:1e:75:72:2b:e6:ef:0f:6a:48:
73:f1:ac:0e:18:47:c5:79:c2:ac:71:5a:fe:17:86:9b:75:85:
2d:20:ef:f7:90:03:bb:12:13:df:1b:54:75:a8:69:52:10:44:
73:c2:45:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:47 2025 by rpki-client