Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/8I0h_PepfMTTaBoULhsj0MdS3Yg.roa
File: 8I0h_PepfMTTaBoULhsj0MdS3Yg.roa (raw, json)
Hash identifier: 0elOa1S46stVX9MXKIj4LZLeLl2j2BjCwt3mzJLs45c=
Subject key identifier: F0:8D:21:FC:F7:A9:7C:C4:D3:68:1A:14:2E:1B:23:D0:C7:52:DD:88
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 514176EC
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/8I0h_PepfMTTaBoULhsj0MdS3Yg.roa
Signing time: Wed 02 Feb 2022 19:44:08 +0000
ROA not before: Wed 02 Feb 2022 19:44:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 138.188.0.0/16 maxlen: 24
193.134.36.0/22 maxlen: 24
195.144.32.0/19 maxlen: 24
194.6.160.0/19 maxlen: 24
193.222.64.0/19 maxlen: 19
193.247.217.0/24 maxlen: 24
193.247.218.0/23 maxlen: 23
193.247.224.0/21 maxlen: 24
193.247.244.0/23 maxlen: 24
193.247.250.0/24 maxlen: 24
193.247.247.0/24 maxlen: 24
193.247.151.0/24 maxlen: 24
193.5.20.0/24 maxlen: 24
193.247.166.0/24 maxlen: 24
193.247.168.0/21 maxlen: 21
193.247.166.0/23 maxlen: 23
193.5.36.0/24 maxlen: 24
193.5.38.0/24 maxlen: 24
193.247.167.0/24 maxlen: 24
138.187.0.0/16 maxlen: 18
195.35.121.0/24 maxlen: 24
185.106.64.0/22 maxlen: 24
193.5.52.0/24 maxlen: 24
193.5.61.0/24 maxlen: 24
193.5.63.0/24 maxlen: 24
193.5.59.0/24 maxlen: 24
193.247.193.0/24 maxlen: 24
193.5.224.0/20 maxlen: 20
193.246.246.0/24 maxlen: 24
193.246.248.0/22 maxlen: 24
193.135.214.0/23 maxlen: 24
193.135.218.0/24 maxlen: 24
193.247.36.0/22 maxlen: 24
188.92.48.0/21 maxlen: 21
193.246.202.0/23 maxlen: 24
193.135.173.0/24 maxlen: 24
195.65.0.0/16 maxlen: 24
193.247.104.0/23 maxlen: 23
195.176.192.0/19 maxlen: 24
193.5.4.0/23 maxlen: 24
193.5.0.0/24 maxlen: 24
193.5.3.0/24 maxlen: 24
193.5.6.0/23 maxlen: 23
193.247.44.0/22 maxlen: 24
193.135.255.0/24 maxlen: 24
193.247.43.0/24 maxlen: 24
193.247.42.0/24 maxlen: 24
194.11.96.0/20 maxlen: 20
193.247.41.0/24 maxlen: 24
193.247.40.0/24 maxlen: 24
195.176.128.0/19 maxlen: 24
138.190.0.0/16 maxlen: 16
194.11.144.0/21 maxlen: 21
193.247.90.0/24 maxlen: 24
193.247.86.0/24 maxlen: 24
193.134.248.0/23 maxlen: 24
193.246.32.0/21 maxlen: 24
193.246.32.0/20 maxlen: 20
193.135.0.0/23 maxlen: 24
193.246.40.0/21 maxlen: 21
193.135.3.0/24 maxlen: 24
193.134.255.0/24 maxlen: 24
193.246.48.0/23 maxlen: 24
193.246.50.0/24 maxlen: 24
193.246.57.0/24 maxlen: 24
193.246.56.0/24 maxlen: 24
193.135.26.0/23 maxlen: 23
164.128.0.0/16 maxlen: 24
217.192.0.0/15 maxlen: 24
185.84.76.0/22 maxlen: 24
193.246.0.0/23 maxlen: 24
193.246.8.0/22 maxlen: 22
193.246.16.0/21 maxlen: 24
194.209.0.0/16 maxlen: 24
193.135.100.0/24 maxlen: 24
193.135.111.0/24 maxlen: 24
193.47.232.0/24 maxlen: 24
193.223.16.0/20 maxlen: 20
193.135.128.0/22 maxlen: 24
193.135.132.0/24 maxlen: 24
193.135.136.0/24 maxlen: 24
193.135.133.0/24 maxlen: 24
193.135.142.0/23 maxlen: 24
193.135.143.0/24 maxlen: 24
193.135.140.0/24 maxlen: 24
193.223.32.0/19 maxlen: 19
193.135.144.0/23 maxlen: 24
193.246.104.0/24 maxlen: 24
193.246.105.0/24 maxlen: 24
193.246.100.0/24 maxlen: 24
212.243.0.0/16 maxlen: 24
193.246.99.0/24 maxlen: 24
193.246.113.0/24 maxlen: 24
193.246.127.0/24 maxlen: 24
2a02:a90::/32 maxlen: 32
2001:918::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1363244780 (0x514176ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Feb 2 19:44:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f08d21fcf7a97cc4d3681a142e1b23d0c752dd88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c0:f2:f5:61:f0:de:be:d1:29:f4:d9:70:6a:
8b:9a:79:b1:e9:e1:35:4a:b9:78:c9:72:a8:21:27:
38:4c:06:db:a6:2c:24:9b:49:46:75:f4:a9:d6:e3:
88:e5:88:f7:e3:3d:e4:7a:e0:f0:32:fd:ef:d9:81:
96:e4:55:41:a5:80:81:bb:7e:93:c7:91:0a:07:c3:
c6:82:d4:bd:f4:5c:93:e8:17:94:46:98:91:aa:bd:
d2:5b:22:24:7c:fc:30:83:19:3d:c2:42:d6:72:20:
72:38:df:d8:3a:e0:d9:5f:91:fd:11:da:64:c4:a2:
3c:83:ef:71:69:69:9d:4c:2d:62:1f:d4:40:5f:f0:
c8:2b:a1:be:81:6b:e4:10:ba:30:f9:53:51:7f:44:
b7:56:32:a8:06:c3:ed:39:94:28:dd:14:57:95:2c:
8e:de:fb:b7:43:b8:42:5f:82:23:0b:6f:27:7f:58:
63:c8:c8:10:ed:38:59:7b:77:18:bb:c6:c7:f3:12:
69:12:47:a9:55:74:31:33:57:f9:ee:d3:8c:6c:32:
1b:00:4c:c2:14:bd:38:65:03:e3:92:2c:ca:09:59:
ed:b5:80:d9:d6:79:15:71:95:ae:00:e7:98:38:8f:
b2:77:5a:d8:db:ba:ac:47:93:fd:33:00:90:24:f5:
e7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8D:21:FC:F7:A9:7C:C4:D3:68:1A:14:2E:1B:23:D0:C7:52:DD:88
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/8I0h_PepfMTTaBoULhsj0MdS3Yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.187.0.0-138.188.255.255
138.190.0.0/16
164.128.0.0/16
185.84.76.0/22
185.106.64.0/22
188.92.48.0/21
193.5.0.0/24
193.5.3.0-193.5.7.255
193.5.20.0/24
193.5.36.0/24
193.5.38.0/24
193.5.52.0/24
193.5.59.0/24
193.5.61.0/24
193.5.63.0/24
193.5.224.0/20
193.47.232.0/24
193.134.36.0/22
193.134.248.0/23
193.134.255.0-193.135.1.255
193.135.3.0/24
193.135.26.0/23
193.135.100.0/24
193.135.111.0/24
193.135.128.0-193.135.133.255
193.135.136.0/24
193.135.140.0/24
193.135.142.0-193.135.145.255
193.135.173.0/24
193.135.214.0/23
193.135.218.0/24
193.135.255.0/24
193.222.64.0/19
193.223.16.0-193.223.63.255
193.246.0.0/23
193.246.8.0/22
193.246.16.0/21
193.246.32.0-193.246.50.255
193.246.56.0/23
193.246.99.0-193.246.100.255
193.246.104.0/23
193.246.113.0/24
193.246.127.0/24
193.246.202.0/23
193.246.246.0/24
193.246.248.0/22
193.247.36.0-193.247.47.255
193.247.86.0/24
193.247.90.0/24
193.247.104.0/23
193.247.151.0/24
193.247.166.0-193.247.175.255
193.247.193.0/24
193.247.217.0-193.247.219.255
193.247.224.0/21
193.247.244.0/23
193.247.247.0/24
193.247.250.0/24
194.6.160.0/19
194.11.96.0/20
194.11.144.0/21
194.209.0.0/16
195.35.121.0/24
195.65.0.0/16
195.144.32.0/19
195.176.128.0/19
195.176.192.0/19
212.243.0.0/16
217.192.0.0/15
IPv6:
2001:918::/32
2a02:a90::/32
Signature Algorithm: sha256WithRSAEncryption
a6:36:af:00:cb:7c:dd:a6:a7:65:45:b2:4b:6b:9c:b9:16:a2:
b9:a3:bc:4e:24:b5:cf:74:77:31:63:02:11:37:ca:2e:d7:36:
d0:c1:7e:89:f1:9d:35:e6:19:7c:d1:10:10:a0:c7:7c:fa:e5:
ef:ed:4d:ca:a5:61:ec:1b:bd:7f:af:c8:e8:59:00:b4:2c:f0:
12:58:b3:b8:3a:9a:51:e2:ff:4a:2e:ce:6f:8d:7a:62:fa:30:
5c:af:43:8c:45:4e:19:88:cc:76:77:4c:e8:f9:be:7a:d8:fa:
e8:8c:45:8e:6e:93:dd:39:f0:33:29:df:0e:52:e5:22:3b:9b:
69:02:10:ce:74:f3:ea:10:b2:9a:25:9c:60:41:3a:1c:e0:7a:
b1:8f:95:b2:b5:b8:d2:e0:4f:ff:af:8a:81:76:32:63:ca:12:
99:5a:bc:e0:29:ac:f9:76:a6:fb:cd:59:c0:ed:89:44:8f:44:
6f:91:b4:3e:73:09:7e:9d:5c:01:f3:44:4d:37:ba:80:ee:09:
6c:df:b2:55:87:99:d0:ef:84:d4:7f:a4:72:17:d0:72:dd:bb:
83:e7:b6:bd:fe:6e:eb:cc:50:a2:9f:43:6a:0a:5b:46:ec:58:
da:f1:16:1e:c2:c6:3d:9a:15:15:c3:a8:cf:51:73:63:70:32:
fd:57:4e:dd
-----BEGIN CERTIFICATE-----
MIIG9zCCBd+gAwIBAgIEUUF27DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NjYzZjNkYjE1MmUwNTVhYzE0NWJkYmI0MjllMDE4NjU0MjA0YzhkMB4XDTIyMDIw
MjE5NDQwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjA4ZDIxZmNmN2E5
N2NjNGQzNjgxYTE0MmUxYjIzZDBjNzUyZGQ4ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJvA8vVh8N6+0Sn02XBqi5p5senhNUq5eMlyqCEnOEwG26Ys
JJtJRnX0qdbjiOWI9+M95Hrg8DL979mBluRVQaWAgbt+k8eRCgfDxoLUvfRck+gX
lEaYkaq90lsiJHz8MIMZPcJC1nIgcjjf2Drg2V+R/RHaZMSiPIPvcWlpnUwtYh/U
QF/wyCuhvoFr5BC6MPlTUX9Et1YyqAbD7TmUKN0UV5Usjt77t0O4Ql+CIwtvJ39Y
Y8jIEO04WXt3GLvGx/MSaRJHqVV0MTNX+e7TjGwyGwBMwhS9OGUD45IsyglZ7bWA
2dZ5FXGVrgDnmDiPsnda2Nu6rEeT/TMAkCT150kCAwEAAaOCBBEwggQNMB0GA1Ud
DgQWBBTwjSH896l8xNNoGhQuGyPQx1LdiDAfBgNVHSMEGDAWgBQmY/PbFS4FWsFF
vbtCngGGVCBMjTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ptUHoyeFV1QlZyQlJiMjdRcDRCaGxRZ1RJMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvYzhjNmY2LTU5NWMtNDViMS1hNzZlLWJkMTkyNjc2YzliYi8x
LzhJMGhfUGVwZk1UVGFCb1VMaHNqME1kUzNZZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
YzhjNmY2LTU5NWMtNDViMS1hNzZlLWJkMTkyNjc2YzliYi8xL0ptUHoyeFV1QlZy
QlJiMjdRcDRCaGxRZ1RJMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
AiUGCCsGAQUFBwEHAQH/BIICFDCCAhAwggH2BAIAATCCAe4wCgMDAIq7AwMAirwD
AwCKvgMDAKSAAwQCuVRMAwQCuWpAAwQDvFwwAwQAwQUAMAwDBADBBQMDBAPBBQAD
BADBBRQDBADBBSQDBADBBSYDBADBBTQDBADBBTsDBADBBT0DBADBBT8DBATBBeAD
BADBL+gDBALBhiQDBAHBhvgwDAMEAMGG/wMEAcGHAAMEAMGHAwMEAcGHGgMEAMGH
ZAMEAMGHbzAMAwQHwYeAAwQBwYeEAwQAwYeIAwQAwYeMMAwDBAHBh44DBAHBh5AD
BADBh60DBAHBh9YDBADBh9oDBADBh/8DBAXB3kAwDAMEBMHfEAMEBsHfAAMEAcH2
AAMEAsH2CAMEA8H2EDAMAwQFwfYgAwQAwfYyAwQBwfY4MAwDBADB9mMDBADB9mQD
BAHB9mgDBADB9nEDBADB9n8DBAHB9soDBADB9vYDBALB9vgwDAMEAsH3JAMEBMH3
IAMEAMH3VgMEAMH3WgMEAcH3aAMEAMH3lzAMAwQBwfemAwQEwfegAwQAwffBMAwD
BADB99kDBALB99gDBAPB9+ADBAHB9/QDBADB9/cDBADB9/oDBAXCBqADBATCC2AD
BAPCC5ADAwDC0QMEAMMjeQMDAMNBAwQFw5AgAwQFw7CAAwQFw7DAAwMA1PMDAwHZ
wDAUBAIAAjAOAwUAIAEJGAMFACoCCpAwDQYJKoZIhvcNAQELBQADggEBAKY2rwDL
fN2mp2VFsktrnLkWormjvE4ktc90dzFjAhE3yi7XNtDBfonxnTXmGXzREBCgx3z6
5e/tTcqlYewbvX+vyOhZALQs8BJYs7g6mlHi/0ouzm+NemL6MFyvQ4xFThmIzHZ3
TOj5vnrY+uiMRY5uk9058DMp3w5S5SI7m2kCEM508+oQspolnGBBOhzgerGPlbK1
uNLgT/+vioF2MmPKEplavOAprPl2pvvNWcDtiUSPRG+RtD5zCX6dXAHzRE03uoDu
CWzfslWHmdDvhNR/pHIX0HLdu4Pntr3+buvMUKKfQ2oKW0bsWNrxFh7Cxj2aFRXD
qM9Rc2NwMv1XTt0=
-----END CERTIFICATE-----
Generated at Wed Apr 9 19:35:50 2025 by rpki-client