Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/McVuNZ7NGDubWsZ3HBOD4w9NS3o.roa
File: McVuNZ7NGDubWsZ3HBOD4w9NS3o.roa (raw, json)
Hash identifier: td31DLez4MMnMYXNSmfveU3mQIHuWo3C87NEOaHAGg4=
Subject key identifier: 31:C5:6E:35:9E:CD:18:3B:9B:5A:C6:77:1C:13:83:E3:0F:4D:4B:7A
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 520BA39D
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/McVuNZ7NGDubWsZ3HBOD4w9NS3o.roa
Signing time: Mon 02 May 2022 10:02:13 +0000
ROA not before: Mon 02 May 2022 10:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 138.188.0.0/16 maxlen: 24
193.134.36.0/22 maxlen: 24
195.144.32.0/19 maxlen: 24
194.6.160.0/19 maxlen: 24
193.222.64.0/19 maxlen: 19
193.247.217.0/24 maxlen: 24
193.247.218.0/23 maxlen: 23
193.247.224.0/21 maxlen: 24
193.247.244.0/23 maxlen: 24
193.247.250.0/24 maxlen: 24
193.247.247.0/24 maxlen: 24
193.247.151.0/24 maxlen: 24
193.5.20.0/24 maxlen: 24
193.247.166.0/24 maxlen: 24
193.247.168.0/21 maxlen: 21
193.247.166.0/23 maxlen: 23
193.5.36.0/24 maxlen: 24
193.5.38.0/24 maxlen: 24
193.247.167.0/24 maxlen: 24
138.187.0.0/16 maxlen: 19
195.35.121.0/24 maxlen: 24
185.106.64.0/22 maxlen: 24
193.5.52.0/24 maxlen: 24
193.5.61.0/24 maxlen: 24
193.5.63.0/24 maxlen: 24
193.5.59.0/24 maxlen: 24
193.247.193.0/24 maxlen: 24
193.5.224.0/20 maxlen: 20
193.246.246.0/24 maxlen: 24
193.246.248.0/22 maxlen: 24
193.135.214.0/23 maxlen: 24
193.135.218.0/24 maxlen: 24
193.247.36.0/22 maxlen: 24
188.92.48.0/21 maxlen: 21
193.246.202.0/23 maxlen: 24
193.135.173.0/24 maxlen: 24
195.65.0.0/16 maxlen: 24
193.247.104.0/23 maxlen: 23
195.176.192.0/19 maxlen: 24
193.5.4.0/23 maxlen: 24
193.5.0.0/24 maxlen: 24
193.5.3.0/24 maxlen: 24
193.5.6.0/23 maxlen: 23
193.247.44.0/22 maxlen: 24
193.135.255.0/24 maxlen: 24
193.247.43.0/24 maxlen: 24
193.247.42.0/24 maxlen: 24
194.11.96.0/20 maxlen: 20
193.247.41.0/24 maxlen: 24
193.247.40.0/24 maxlen: 24
195.176.128.0/19 maxlen: 24
138.190.0.0/16 maxlen: 16
194.11.144.0/21 maxlen: 21
193.247.90.0/24 maxlen: 24
193.247.86.0/24 maxlen: 24
193.134.248.0/23 maxlen: 24
193.246.32.0/21 maxlen: 24
193.246.32.0/20 maxlen: 20
193.135.0.0/23 maxlen: 24
193.246.40.0/21 maxlen: 21
193.135.3.0/24 maxlen: 24
193.134.255.0/24 maxlen: 24
193.246.48.0/23 maxlen: 24
193.246.50.0/24 maxlen: 24
193.246.57.0/24 maxlen: 24
193.246.56.0/24 maxlen: 24
193.135.26.0/23 maxlen: 23
164.128.0.0/16 maxlen: 24
217.192.0.0/15 maxlen: 24
185.84.76.0/22 maxlen: 24
193.246.0.0/23 maxlen: 24
193.246.8.0/22 maxlen: 22
193.246.16.0/21 maxlen: 24
194.209.0.0/16 maxlen: 24
193.135.100.0/24 maxlen: 24
193.135.111.0/24 maxlen: 24
193.47.232.0/24 maxlen: 24
193.223.16.0/20 maxlen: 20
193.135.128.0/22 maxlen: 24
193.135.132.0/24 maxlen: 24
193.135.136.0/24 maxlen: 24
193.135.133.0/24 maxlen: 24
193.135.142.0/23 maxlen: 24
193.135.143.0/24 maxlen: 24
193.135.140.0/24 maxlen: 24
193.223.32.0/19 maxlen: 19
193.135.144.0/23 maxlen: 24
193.246.104.0/24 maxlen: 24
193.246.105.0/24 maxlen: 24
193.246.100.0/24 maxlen: 24
212.243.0.0/16 maxlen: 24
193.246.99.0/24 maxlen: 24
193.246.113.0/24 maxlen: 24
193.246.127.0/24 maxlen: 24
2a02:a90::/32 maxlen: 32
2001:918::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1376494493 (0x520ba39d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: May 2 10:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31c56e359ecd183b9b5ac6771c1383e30f4d4b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:44:e7:a0:1d:57:76:60:2e:1c:e1:dd:a8:47:
03:5d:73:e3:43:a8:9b:71:ba:65:48:5f:8e:c5:ca:
ef:d1:95:76:87:5e:e5:71:5e:6d:c8:d6:ef:bc:e2:
53:1d:7e:03:09:3d:15:d0:85:a1:63:44:2b:6b:7b:
22:38:28:fc:1e:ab:0a:b6:54:89:89:e9:35:70:00:
bf:ca:a3:72:ce:97:eb:e7:ce:7e:2f:9e:6b:cc:a3:
51:d7:8a:b9:2c:f0:82:56:fe:50:e7:46:dd:46:2d:
3a:11:aa:23:58:92:87:35:06:b3:53:06:52:e3:8f:
2c:33:1c:ee:4c:8b:10:8a:18:f3:7c:f2:8a:82:84:
a4:91:5a:8a:3f:cb:68:cd:5f:f6:14:af:9a:d2:a8:
f2:21:6f:e8:00:d4:8a:3a:1b:29:5e:a2:5d:44:0a:
ce:d2:e3:ca:8f:b5:de:08:3f:65:55:91:c0:42:61:
1b:6e:a4:e4:79:a3:95:cb:e4:c6:e3:68:1f:21:ba:
01:a3:4d:61:1e:0d:ad:b7:21:e0:7f:b5:64:9b:a1:
31:83:ea:4f:b8:27:8e:c2:9a:3b:60:63:6a:58:87:
83:95:c2:24:68:65:57:11:c4:bc:73:19:7d:7d:06:
bf:60:3c:3e:3e:fc:5e:e5:1c:72:48:6e:f1:c2:e7:
6b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C5:6E:35:9E:CD:18:3B:9B:5A:C6:77:1C:13:83:E3:0F:4D:4B:7A
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/McVuNZ7NGDubWsZ3HBOD4w9NS3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.187.0.0-138.188.255.255
138.190.0.0/16
164.128.0.0/16
185.84.76.0/22
185.106.64.0/22
188.92.48.0/21
193.5.0.0/24
193.5.3.0-193.5.7.255
193.5.20.0/24
193.5.36.0/24
193.5.38.0/24
193.5.52.0/24
193.5.59.0/24
193.5.61.0/24
193.5.63.0/24
193.5.224.0/20
193.47.232.0/24
193.134.36.0/22
193.134.248.0/23
193.134.255.0-193.135.1.255
193.135.3.0/24
193.135.26.0/23
193.135.100.0/24
193.135.111.0/24
193.135.128.0-193.135.133.255
193.135.136.0/24
193.135.140.0/24
193.135.142.0-193.135.145.255
193.135.173.0/24
193.135.214.0/23
193.135.218.0/24
193.135.255.0/24
193.222.64.0/19
193.223.16.0-193.223.63.255
193.246.0.0/23
193.246.8.0/22
193.246.16.0/21
193.246.32.0-193.246.50.255
193.246.56.0/23
193.246.99.0-193.246.100.255
193.246.104.0/23
193.246.113.0/24
193.246.127.0/24
193.246.202.0/23
193.246.246.0/24
193.246.248.0/22
193.247.36.0-193.247.47.255
193.247.86.0/24
193.247.90.0/24
193.247.104.0/23
193.247.151.0/24
193.247.166.0-193.247.175.255
193.247.193.0/24
193.247.217.0-193.247.219.255
193.247.224.0/21
193.247.244.0/23
193.247.247.0/24
193.247.250.0/24
194.6.160.0/19
194.11.96.0/20
194.11.144.0/21
194.209.0.0/16
195.35.121.0/24
195.65.0.0/16
195.144.32.0/19
195.176.128.0/19
195.176.192.0/19
212.243.0.0/16
217.192.0.0/15
IPv6:
2001:918::/32
2a02:a90::/32
Signature Algorithm: sha256WithRSAEncryption
a0:52:ef:cb:a3:1c:f6:21:60:dc:74:a4:f8:95:42:56:3c:9c:
49:9c:3a:3d:c1:be:6a:7d:58:4d:d0:56:62:9e:fc:72:d4:7f:
80:70:2b:e1:35:80:8f:3e:35:c8:34:09:ea:e9:1d:0b:25:3f:
c4:7c:3e:b8:6f:9c:1c:a1:96:34:c4:01:b8:34:be:07:cb:44:
5a:1d:db:ab:de:64:b1:b9:b5:1d:50:ca:30:7c:66:d6:56:81:
26:69:54:e1:8c:95:36:63:d1:59:86:d0:fb:37:f0:8f:74:79:
76:04:41:8f:43:ec:4e:34:f6:5a:c1:ed:af:05:e2:ec:cc:36:
4f:a3:f3:55:de:ad:78:38:b5:9c:89:61:2a:6f:05:a6:d6:cd:
8b:f8:13:23:bc:20:9b:94:9e:2c:78:8d:9c:cd:f1:7e:d4:0a:
e9:20:44:22:45:8b:b0:a0:78:f5:ac:e8:53:f3:3f:f1:9a:44:
79:7f:ad:f6:d8:9a:79:f0:2c:06:fe:bc:30:10:a7:84:85:ee:
bc:88:20:52:d8:eb:8f:1b:32:e8:35:b2:11:f0:80:96:31:97:
05:b3:56:f6:4d:b5:64:4d:aa:dd:71:b4:90:9a:20:d1:38:05:
88:9d:17:c8:f3:7b:df:41:00:a5:6e:00:c5:76:6c:12:23:09:
16:53:80:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:45:43 2025 by rpki-client