Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/4aQ6poPKp-HvKJUaAVrcaQqFg8w.roa
File: 4aQ6poPKp-HvKJUaAVrcaQqFg8w.roa (raw, json)
Hash identifier: UdqV56q9YwdXK/iTLLjfD4HU2KkUnXtEE8pAhTSH3YM=
Subject key identifier: E1:A4:3A:A6:83:CA:A7:E1:EF:28:95:1A:01:5A:DC:69:0A:85:83:CC
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01938EA18434C0E34E57C8CAE899EF70BF6A
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/4aQ6poPKp-HvKJUaAVrcaQqFg8w.roa
Signing time: Tue 03 Dec 2024 22:26:09 +0000
ROA not before: Tue 03 Dec 2024 22:26:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8772
IP address blocks: 62.205.128.0/19 maxlen: 20
62.205.132.0/24 maxlen: 24
62.205.134.0/24 maxlen: 24
62.205.144.0/20 maxlen: 20
62.205.152.0/24 maxlen: 24
62.205.159.0/24 maxlen: 24
94.131.0.0/23 maxlen: 23
94.131.0.0/24 maxlen: 24
94.131.4.0/24 maxlen: 24
94.131.6.0/24 maxlen: 24
94.131.7.0/24 maxlen: 24
94.131.124.0/24 maxlen: 24
94.131.127.0/24 maxlen: 24
95.164.12.0/23 maxlen: 23
95.164.15.0/24 maxlen: 24
95.164.20.0/24 maxlen: 24
95.164.40.0/22 maxlen: 22
95.164.49.0/24 maxlen: 24
95.164.50.0/24 maxlen: 24
95.164.52.0/22 maxlen: 22
95.164.56.0/22 maxlen: 22
95.164.72.0/22 maxlen: 22
95.164.76.0/24 maxlen: 24
95.164.80.0/22 maxlen: 22
95.164.120.0/24 maxlen: 24
95.164.121.0/24 maxlen: 24
95.164.122.0/24 maxlen: 24
95.164.123.0/24 maxlen: 24
95.164.160.0/22 maxlen: 24
95.164.170.0/23 maxlen: 23
95.164.172.0/22 maxlen: 22
95.164.248.0/23 maxlen: 23
95.164.251.0/24 maxlen: 24
195.214.212.0/22 maxlen: 22
2a01:d0::/32 maxlen: 32
2a01:d0:4::/48 maxlen: 48
2a01:d0:a::/48 maxlen: 48
2a01:d0:28::/48 maxlen: 48
2a01:d0:3b::/48 maxlen: 48
2a01:d0:43::/48 maxlen: 48
2a01:d0:105::/48 maxlen: 48
2a01:d0:303::/48 maxlen: 48
2a01:d0:305::/48 maxlen: 48
2a01:d0:308::/48 maxlen: 48
2a01:d0:317::/48 maxlen: 48
2a01:d0:31d::/48 maxlen: 48
2a01:d0:333::/48 maxlen: 48
2a01:d0:962::/48 maxlen: 48
2a01:d0:1657::/48 maxlen: 48
2a01:d0:7fff::/48 maxlen: 48
2a01:d0:8000::/33 maxlen: 33
2a01:d0:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8e:a1:84:34:c0:e3:4e:57:c8:ca:e8:99:ef:70:bf:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Dec 3 22:26:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1a43aa683caa7e1ef28951a015adc690a8583cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:59:03:80:65:1a:e3:6c:51:ab:87:ff:1f:92:
d4:7b:fc:b5:75:43:e8:30:49:57:82:3a:e9:cb:09:
30:d1:e9:aa:94:79:1d:48:99:70:64:c1:ac:f9:e7:
c9:8e:cd:28:2a:8c:1e:ae:25:a1:7f:44:f2:60:6f:
03:ad:3f:06:c3:19:6f:7a:c4:ac:f8:bb:97:f8:9e:
da:0d:b5:45:a6:fa:e7:a2:be:69:1c:75:22:f2:0d:
54:70:9f:df:36:f8:93:ec:d1:96:68:54:60:5e:f0:
03:99:c5:58:68:be:95:49:7a:b2:36:e2:42:b0:87:
28:72:92:27:c9:fb:07:ba:40:47:67:c6:9d:ec:65:
01:34:ba:d6:fe:57:b3:d2:4a:0e:45:8b:87:b0:23:
d1:49:fa:fc:55:b1:6a:48:a2:fc:d7:d5:0a:e7:cf:
69:7f:4d:e0:ee:30:0e:53:0a:35:52:95:4d:a8:8e:
89:20:6c:af:f4:1d:a7:b6:0c:67:85:82:8c:ca:a9:
e7:27:24:c3:9a:12:e2:f5:3a:9c:34:86:df:04:c5:
a0:d7:dc:49:d1:46:99:3c:c8:f9:7e:65:a1:2c:b6:
66:99:04:02:6b:6f:4b:6b:88:e0:0d:fe:d4:29:fa:
e4:94:69:74:f2:0f:d8:fe:f9:7d:d1:98:c7:40:53:
21:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A4:3A:A6:83:CA:A7:E1:EF:28:95:1A:01:5A:DC:69:0A:85:83:CC
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/4aQ6poPKp-HvKJUaAVrcaQqFg8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.128.0/19
94.131.0.0/23
94.131.4.0/24
94.131.6.0/23
94.131.124.0/24
94.131.127.0/24
95.164.12.0/23
95.164.15.0/24
95.164.20.0/24
95.164.40.0/22
95.164.49.0-95.164.50.255
95.164.52.0-95.164.59.255
95.164.72.0-95.164.76.255
95.164.80.0/22
95.164.120.0/22
95.164.160.0/22
95.164.170.0-95.164.175.255
95.164.248.0/23
95.164.251.0/24
195.214.212.0/22
IPv6:
2a01:d0::/32
Signature Algorithm: sha256WithRSAEncryption
16:f3:6c:a6:66:6c:d0:c1:79:76:cb:b4:db:3b:7d:95:2d:bf:
e1:8b:a0:6c:d6:03:73:7d:2e:ec:d8:b9:36:5e:40:e7:4b:3b:
ba:7d:9a:4d:a1:8e:26:6e:b4:26:74:6c:b1:f4:03:e7:6c:7f:
1d:8e:7a:8f:03:4c:5a:2d:dc:e1:f9:26:ce:3c:88:9a:c1:f0:
ae:1c:1e:58:73:38:e3:91:d7:68:be:20:54:72:f4:3f:aa:3c:
77:b9:0a:d4:75:ba:ed:bf:32:42:ce:f2:45:db:07:9d:11:e3:
b5:7f:8d:48:a2:17:f6:cb:0c:6e:90:78:a8:8a:1a:89:a3:2b:
17:bd:9b:74:eb:df:2b:04:8c:26:20:7d:57:84:af:de:24:0e:
a6:80:bb:a4:3c:90:b0:83:73:8a:21:c4:c1:69:04:4f:05:7e:
11:01:ad:1b:39:9b:1d:48:7d:17:e4:03:44:da:84:40:0b:a6:
dc:c4:e9:1a:2f:4e:f0:b3:0d:f8:27:d0:70:c6:94:10:1e:99:
b2:ee:a1:00:09:7d:15:22:0e:74:24:52:18:29:9c:12:c8:67:
39:18:77:79:71:81:f8:a8:fc:b1:cd:d5:22:93:5b:ae:56:7a:
71:61:d6:3e:03:13:87:13:75:a2:e6:fa:be:7c:aa:03:53:48:
09:c0:48:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:02:09 2025 by rpki-client