Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/bAQOwT_HiKcCtPbuAdZsUx-D3sY.roa
File: bAQOwT_HiKcCtPbuAdZsUx-D3sY.roa (raw, json)
Hash identifier: 9Aep/PqH/IQ4TiK6fYRSC0nJom/uH1i/EcjOoD4YLKU=
Subject key identifier: 6C:04:0E:C1:3F:C7:88:A7:02:B4:F6:EE:01:D6:6C:53:1F:83:DE:C6
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 0193F26636999F5B0F80DA152D1DBFA830DC
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/bAQOwT_HiKcCtPbuAdZsUx-D3sY.roa
Signing time: Mon 23 Dec 2024 07:23:25 +0000
ROA not before: Mon 23 Dec 2024 07:23:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35346
IP address blocks: 45.67.116.0/24 maxlen: 24
91.242.64.0/18 maxlen: 24
91.242.68.0/23 maxlen: 24
91.242.70.0/23 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.74.0/24 maxlen: 24
91.242.75.0/24 maxlen: 24
91.242.80.0/24 maxlen: 24
91.242.99.0/24 maxlen: 24
91.242.102.0/24 maxlen: 24
91.242.103.0/24 maxlen: 24
91.242.108.0/22 maxlen: 22
91.242.112.0/20 maxlen: 20
91.242.112.0/24 maxlen: 24
91.242.113.0/24 maxlen: 24
91.242.114.0/24 maxlen: 24
91.242.115.0/24 maxlen: 24
91.242.116.0/24 maxlen: 24
91.242.117.0/24 maxlen: 24
91.242.118.0/24 maxlen: 24
91.242.119.0/24 maxlen: 24
91.242.120.0/24 maxlen: 24
91.242.121.0/24 maxlen: 24
91.242.122.0/24 maxlen: 24
178.175.176.0/22 maxlen: 24
194.114.144.0/24 maxlen: 25
194.114.144.128/27 maxlen: 27
2a07:5540::/29 maxlen: 29
2a07:c040::/29 maxlen: 29
2a09:700::/29 maxlen: 29
2a09:15c0::/29 maxlen: 29
2a09:3ac0::/29 maxlen: 29
2a09:4440::/29 maxlen: 29
2a09:4c40::/29 maxlen: 29
2a09:63c0::/29 maxlen: 29
2a09:7640::/29 maxlen: 29
2a09:7b40::/29 maxlen: 29
2a09:7f00::/29 maxlen: 29
2a09:a480::/29 maxlen: 29
2a09:bdc0::/29 maxlen: 29
2a09:ca40::/29 maxlen: 29
2a09:e400::/29 maxlen: 29
2a09:f6c0::/29 maxlen: 29
2a09:f940::/29 maxlen: 29
2a09:fdc0::/29 maxlen: 29
2a0a:3700::/29 maxlen: 29
2a0a:3780::/29 maxlen: 29
2a0a:6000::/29 maxlen: 29
2a0a:ef00::/29 maxlen: 29
2a0b:280::/29 maxlen: 29
2a0b:5d00::/29 maxlen: 29
2a0c:380::/29 maxlen: 29
2a0c:3600::/32 maxlen: 32
2a0c:3780::/29 maxlen: 29
2a0c:57c0::/29 maxlen: 29
2a0c:ae00::/29 maxlen: 29
2a0d:1a00::/29 maxlen: 29
2a0d:dac0::/29 maxlen: 29
2a0d:fb00::/29 maxlen: 29
2a0e:f80::/29 maxlen: 29
2a0e:2080::/29 maxlen: 29
2a0e:2500::/29 maxlen: 29
2a0e:3380::/29 maxlen: 29
2a0e:3540::/29 maxlen: 29
2a0e:3c40::/29 maxlen: 29
2a0e:7880::/29 maxlen: 29
2a0e:b000::/29 maxlen: 29
2a0e:c3c0::/29 maxlen: 29
2a0e:c700::/29 maxlen: 29
2a0e:c800::/29 maxlen: 29
2a0e:d180::/29 maxlen: 29
2a0e:d880::/29 maxlen: 29
2a0e:e540::/29 maxlen: 29
2a0e:e8c0::/29 maxlen: 29
2a0e:e940::/29 maxlen: 29
2a0e:f540::/29 maxlen: 29
2a0f:740::/29 maxlen: 29
2a0f:1b40::/29 maxlen: 29
2a0f:3900::/29 maxlen: 29
2a0f:4840::/29 maxlen: 29
2a0f:6200::/29 maxlen: 29
2a0f:82c0::/29 maxlen: 29
2a0f:9380::/29 maxlen: 29
2a0f:b200::/29 maxlen: 29
2a0f:da00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f2:66:36:99:9f:5b:0f:80:da:15:2d:1d:bf:a8:30:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Dec 23 07:23:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c040ec13fc788a702b4f6ee01d66c531f83dec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:29:7d:58:d4:82:cc:7f:5e:b6:2d:e3:7e:f5:
22:64:97:63:c4:e6:87:cf:d7:34:a8:10:c8:93:3c:
9a:c7:b0:29:2c:79:b8:3f:7d:52:eb:c7:f0:9c:95:
44:e2:ba:76:27:2d:d5:01:76:d5:cd:1a:2e:2e:19:
51:1d:10:a6:5e:58:53:b2:bd:a2:e9:19:63:ae:78:
16:ed:71:f1:e4:2d:ae:a7:84:78:01:35:d6:b4:2e:
3e:d3:48:eb:af:81:71:4c:b8:52:b9:d5:04:ed:84:
31:e6:82:a0:f3:c6:c6:3c:ca:b5:a0:d6:a0:5f:4f:
b3:31:7c:38:e5:a1:d1:97:23:45:df:7d:3c:1a:ee:
1d:e3:0f:84:41:e9:ae:c1:c9:d3:a8:bd:ac:69:06:
b4:26:a1:bd:c2:27:cb:1a:52:9e:f2:3e:11:0b:ff:
53:6e:f3:c5:53:d2:60:95:60:10:c0:a7:95:5a:27:
a9:19:06:32:3e:f4:a8:ff:d1:4e:96:61:1d:a4:dc:
61:6c:c0:22:1f:3c:c2:c5:77:79:61:57:f3:71:51:
c1:33:7a:d0:ab:e4:7d:18:73:ef:be:99:fa:32:0a:
bb:8d:f4:93:58:09:b5:15:a7:0f:84:c5:f2:f9:df:
18:d5:cc:e1:96:1d:52:1c:81:e8:f7:f8:18:0f:a0:
e6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:04:0E:C1:3F:C7:88:A7:02:B4:F6:EE:01:D6:6C:53:1F:83:DE:C6
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/bAQOwT_HiKcCtPbuAdZsUx-D3sY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.116.0/24
91.242.64.0/18
178.175.176.0/22
194.114.144.0/24
IPv6:
2a07:5540::/29
2a07:c040::/29
2a09:700::/29
2a09:15c0::/29
2a09:3ac0::/29
2a09:4440::/29
2a09:4c40::/29
2a09:63c0::/29
2a09:7640::/29
2a09:7b40::/29
2a09:7f00::/29
2a09:a480::/29
2a09:bdc0::/29
2a09:ca40::/29
2a09:e400::/29
2a09:f6c0::/29
2a09:f940::/29
2a09:fdc0::/29
2a0a:3700::/29
2a0a:3780::/29
2a0a:6000::/29
2a0a:ef00::/29
2a0b:280::/29
2a0b:5d00::/29
2a0c:380::/29
2a0c:3600::/32
2a0c:3780::/29
2a0c:57c0::/29
2a0c:ae00::/29
2a0d:1a00::/29
2a0d:dac0::/29
2a0d:fb00::/29
2a0e:f80::/29
2a0e:2080::/29
2a0e:2500::/29
2a0e:3380::/29
2a0e:3540::/29
2a0e:3c40::/29
2a0e:7880::/29
2a0e:b000::/29
2a0e:c3c0::/29
2a0e:c700::/29
2a0e:c800::/29
2a0e:d180::/29
2a0e:d880::/29
2a0e:e540::/29
2a0e:e8c0::/29
2a0e:e940::/29
2a0e:f540::/29
2a0f:740::/29
2a0f:1b40::/29
2a0f:3900::/29
2a0f:4840::/29
2a0f:6200::/29
2a0f:82c0::/29
2a0f:9380::/29
2a0f:b200::/29
2a0f:da00::/29
Signature Algorithm: sha256WithRSAEncryption
9e:ec:d3:f0:56:6f:6d:a1:85:0e:23:58:fd:fb:fb:c4:e7:b7:
ca:51:4b:37:5d:2e:48:dd:2e:ff:14:c7:ef:d8:c5:40:b5:8e:
de:e1:1b:10:56:28:94:1c:63:5e:0e:a9:ae:12:02:9c:59:ca:
1a:df:ce:3f:ab:26:45:11:a5:41:9d:9e:9d:8c:bd:bb:d6:a6:
6c:77:bd:8d:cb:a9:cc:f9:77:71:55:fd:0e:9d:13:3c:61:f8:
0d:65:12:7d:5c:f1:2f:24:80:90:61:a4:8a:ab:12:6c:cb:7a:
cb:48:b3:ab:10:b6:00:5b:1a:36:62:35:ca:32:1a:c5:95:6d:
9c:bf:ba:98:5f:e2:20:72:a4:0a:10:d1:4d:fb:73:cf:f9:1e:
08:25:c3:2c:6e:94:f0:5c:90:56:86:16:f1:83:6b:7a:71:e6:
80:70:0b:1d:2d:e6:37:8f:72:28:27:65:65:ba:95:e8:49:b0:
a9:bc:8e:30:ba:56:89:47:fe:0a:3f:2c:29:aa:9e:e6:a7:1a:
96:9c:6e:36:be:41:39:b0:2c:25:c5:73:7c:2c:2d:d7:47:7f:
b5:7c:82:bb:98:f6:5a:d3:b4:fc:85:70:6e:dd:83:f3:37:bd:
8c:bb:28:d3:f6:bd:79:77:39:e4:05:95:ad:38:86:02:56:cb:
9a:8b:f2:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 16:42:24 2025 by rpki-client