Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/auChkZ7Rn1YZG7Vxi5LdZNlgb0w.roa
File: auChkZ7Rn1YZG7Vxi5LdZNlgb0w.roa (raw, json)
Hash identifier: aPp9FdbU0TaouKFfrG21QroOZmDXLf1b/BFeCmfHH4M=
Subject key identifier: 6A:E0:A1:91:9E:D1:9F:56:19:1B:B5:71:8B:92:DD:64:D9:60:6F:4C
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018D9E92DE90488EE175C0EC38227E73BABC
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/auChkZ7Rn1YZG7Vxi5LdZNlgb0w.roa
Signing time: Mon 12 Feb 2024 18:27:21 +0000
ROA not before: Mon 12 Feb 2024 18:27:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203963
IP address blocks: 37.49.144.0/24 maxlen: 24
37.49.148.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.182.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
109.203.163.0/24 maxlen: 24
109.203.166.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.138.0/24 maxlen: 24
176.46.139.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.142.0/24 maxlen: 24
176.46.144.0/24 maxlen: 24
176.46.148.0/24 maxlen: 24
176.46.149.0/24 maxlen: 24
176.46.150.0/24 maxlen: 24
176.46.152.0/24 maxlen: 24
176.46.153.0/24 maxlen: 24
176.46.154.0/24 maxlen: 24
176.46.155.0/24 maxlen: 24
176.46.156.0/24 maxlen: 24
176.46.157.0/24 maxlen: 24
176.46.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9e:92:de:90:48:8e:e1:75:c0:ec:38:22:7e:73:ba:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Feb 12 18:27:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ae0a1919ed19f56191bb5718b92dd64d9606f4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:86:18:db:12:86:8e:25:6d:73:8c:af:96:17:
f5:f7:b1:ed:cf:6c:20:f6:15:2b:26:84:08:eb:c8:
df:42:31:95:cf:6e:6c:9c:79:26:52:1b:b3:00:99:
e9:af:ae:41:9d:06:8d:e4:00:3d:b6:ab:09:fb:bd:
67:59:89:90:8a:e1:85:b1:81:1f:b7:14:36:d6:27:
0a:58:67:34:03:1c:f7:09:ca:b5:4a:ed:ad:ae:57:
35:e4:a8:c2:0e:aa:a8:37:ea:36:d6:49:c7:11:29:
7b:3d:25:3f:a9:d6:de:70:16:ca:ca:d5:46:4a:89:
a3:32:57:64:ff:3b:59:99:d8:02:4d:1f:2e:45:d0:
ea:6d:23:8e:fe:01:94:ff:c1:c5:4a:d9:a8:4e:6f:
06:f1:98:0f:b1:9f:56:7b:3f:4d:68:6e:85:ab:e3:
c5:af:6e:70:7d:d2:ab:9f:94:32:90:0a:c8:29:c0:
09:bb:56:e5:5b:89:f1:8a:b7:67:cb:86:03:78:22:
df:89:f3:a1:49:67:8b:44:42:4e:00:c1:0d:17:e3:
40:23:4e:55:f6:ab:29:4f:86:60:5e:43:32:ad:34:
e7:45:99:e0:0b:21:ce:20:4d:a8:86:24:25:4f:58:
09:c0:73:62:12:df:8e:0a:15:6c:21:28:ad:ea:63:
89:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E0:A1:91:9E:D1:9F:56:19:1B:B5:71:8B:92:DD:64:D9:60:6F:4C
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/auChkZ7Rn1YZG7Vxi5LdZNlgb0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.144.0/24
37.49.148.0/24
94.74.137.0/24
94.74.156.0/24
94.74.158.0/23
94.74.164.0/24
94.74.169.0/24
94.74.171.0/24
94.74.182.0/24
94.74.187.0/24
94.74.191.0/24
109.203.163.0/24
109.203.166.0/24
176.46.136.0/24
176.46.138.0/23
176.46.141.0-176.46.142.255
176.46.144.0/24
176.46.148.0-176.46.150.255
176.46.152.0-176.46.158.255
Signature Algorithm: sha256WithRSAEncryption
22:8a:fe:fc:54:17:dc:7f:76:c6:5a:60:fe:c0:7b:fa:31:e2:
39:e5:43:71:7f:c7:c6:3f:6e:49:66:f0:5c:8a:7d:4e:3d:56:
db:8b:fc:53:30:7e:ae:b0:19:4b:52:8c:e0:c2:16:1c:a4:64:
3d:f7:cc:49:ae:42:51:d1:44:ff:c9:b1:f6:c0:c6:51:5d:10:
bb:06:84:bf:98:73:54:4a:5a:21:87:3f:bb:09:b6:b0:e1:c3:
87:9b:4a:5b:43:86:1e:10:da:00:88:2c:82:3a:0b:2c:5e:93:
cf:26:2d:3c:9c:54:d6:25:0b:45:69:d1:6e:b9:64:f9:2c:8b:
c5:77:92:95:fb:dd:d8:df:ea:f7:5d:6c:f1:9a:c1:fc:dc:d3:
a7:f0:d4:51:0c:de:54:b8:3a:a9:5c:00:f5:9d:88:c8:67:c9:
22:59:b7:51:b6:23:64:4b:04:c1:5e:60:45:ea:08:9b:9e:72:
35:a8:4b:65:2a:33:9a:e6:40:6c:26:88:f5:60:ee:90:55:58:
87:d3:d7:fd:30:bd:e7:6a:13:a9:21:10:18:60:08:90:ca:2d:
b1:7a:b0:a2:5d:b2:3e:e5:e7:75:3f:41:a2:15:b8:80:66:4a:
e2:81:d1:a1:25:63:97:cc:20:6a:3e:01:b5:de:7e:fb:0e:ac:
68:d5:f1:c8
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgISAY2ekt6QSI7hdcDsOCJ+c7q8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MDQ3NWViZTdmMDdkNzQxNTNjYjFjY2EzMzhjMTZkODAx
ZjQ1ZjcwHhcNMjQwMjEyMTgyNzIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YWUwYTE5MTllZDE5ZjU2MTkxYmI1NzE4YjkyZGQ2NGQ5NjA2ZjRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIYY2xKGjiVtc4yvlhf197Htz2wg
9hUrJoQI68jfQjGVz25snHkmUhuzAJnpr65BnQaN5AA9tqsJ+71nWYmQiuGFsYEf
txQ21icKWGc0Axz3Ccq1Su2trlc15KjCDqqoN+o21knHESl7PSU/qdbecBbKytVG
SomjMldk/ztZmdgCTR8uRdDqbSOO/gGU/8HFStmoTm8G8ZgPsZ9Wez9NaG6Fq+PF
r25wfdKrn5QykArIKcAJu1blW4nxirdny4YDeCLfifOhSWeLREJOAMENF+NAI05V
9qspT4ZgXkMyrTTnRZngCyHOIE2ohiQlT1gJwHNiEt+OChVsISit6mOJ5QIDAQAB
o4ICkjCCAo4wHQYDVR0OBBYEFGrgoZGe0Z9WGRu1cYuS3WTZYG9MMB8GA1UdIwQY
MBaAFNYEdevn8H10FTyxzKM4wW2AH0X3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2Mt
NDk2ZjhlYmIyZDYxLzEvYXVDaGtaN1JuMVlaRzdWeGk1TGRaTmxnYjB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2MtNDk2ZjhlYmIyZDYx
LzEvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGnBggrBgEFBQcBBwEB/wSBlzCBlDCBkQQCAAEwgYoDBAAl
MZADBAAlMZQDBABeSokDBABeSpwDBAFeSp4DBABeSqQDBABeSqkDBABeSqsDBABe
SrYDBABeSrsDBABeSr8DBABty6MDBABty6YDBACwLogDBAGwLoowDAMEALAujQME
ALAujgMEALAukDAMAwQCsC6UAwQAsC6WMAwDBAOwLpgDBACwLp4wDQYJKoZIhvcN
AQELBQADggEBACKK/vxUF9x/dsZaYP7Ae/ox4jnlQ3F/x8Y/bklm8FyKfU49VtuL
/FMwfq6wGUtSjODCFhykZD33zEmuQlHRRP/JsfbAxlFdELsGhL+Yc1RKWiGHP7sJ
trDhw4ebSltDhh4Q2gCILII6Cyxek88mLTycVNYlC0Vp0W65ZPksi8V3kpX73djf
6vddbPGawfzc06fw1FEM3lS4OqlcAPWdiMhnySJZt1G2I2RLBMFeYEXqCJuecjWo
S2UqM5rmQGwmiPVg7pBVWIfT1/0wvedqE6khEBhgCJDKLbF6sKJdsj7l53U/QaIV
uIBmSuKB0aElY5fMIGo+AbXefvsOrGjV8cg=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:30 2025 by rpki-client