Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/OLEyORAqyFMsJb6roqXx36m-DbY.roa
File: OLEyORAqyFMsJb6roqXx36m-DbY.roa (raw, json)
Hash identifier: Ob2P8SycqcruWFvtVnxvHC5Y6breEtM1ZCoK2it3unA=
Subject key identifier: 38:B1:32:39:10:2A:C8:53:2C:25:BE:AB:A2:A5:F1:DF:A9:BE:0D:B6
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 018CC64AD3EFAF6C64AFA53B2CFE80A263DD
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/OLEyORAqyFMsJb6roqXx36m-DbY.roa
Signing time: Mon 01 Jan 2024 18:30:41 +0000
ROA not before: Mon 01 Jan 2024 18:30:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29632
IP address blocks: 95.164.52.0/22 maxlen: 22
95.164.56.0/22 maxlen: 22
195.214.212.0/22 maxlen: 22
195.214.208.0/21 maxlen: 21
195.214.208.0/22 maxlen: 22
95.164.76.0/24 maxlen: 24
195.214.210.0/24 maxlen: 24
95.164.72.0/22 maxlen: 22
95.164.80.0/22 maxlen: 22
95.164.92.0/22 maxlen: 22
95.164.172.0/22 maxlen: 22
95.164.170.0/23 maxlen: 23
94.131.0.0/23 maxlen: 23
94.131.4.0/24 maxlen: 24
94.131.7.0/24 maxlen: 24
94.131.6.0/24 maxlen: 24
62.205.132.0/24 maxlen: 24
62.205.128.0/20 maxlen: 20
62.205.128.0/19 maxlen: 20
62.205.134.0/24 maxlen: 24
62.205.144.0/20 maxlen: 20
62.205.152.0/24 maxlen: 24
62.205.159.0/24 maxlen: 24
95.164.20.0/24 maxlen: 24
95.164.40.0/22 maxlen: 22
95.164.50.0/24 maxlen: 24
95.164.49.0/24 maxlen: 24
2a01:d0:8000::/33 maxlen: 33
2a01:d0::/32 maxlen: 32
2a01:d0:ffff::/48 maxlen: 48
2a01:d0:7fff::/48 maxlen: 48
2a01:d0:317::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:d3:ef:af:6c:64:af:a5:3b:2c:fe:80:a2:63:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 1 18:30:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38b13239102ac8532c25beaba2a5f1dfa9be0db6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e0:9a:90:a2:c2:3d:15:e8:52:8b:65:8e:be:
a4:5f:ac:c2:f8:47:d2:69:86:4f:bc:66:62:35:fe:
fe:6e:64:15:9c:cb:0f:1f:84:c0:4b:07:89:28:ac:
aa:e5:88:e1:ce:36:7b:2c:7f:42:af:51:94:d0:45:
73:88:a1:a9:07:2a:ee:f1:22:00:4e:1d:09:aa:b2:
39:2a:6b:c8:54:82:a0:da:30:9a:b5:58:85:98:2d:
79:c3:93:c9:3c:61:9b:91:e8:0f:29:dc:78:84:d3:
6f:b2:9d:17:d7:32:67:93:f8:f7:31:08:7f:55:c6:
31:6d:16:a4:d9:80:0c:12:e9:78:47:5f:3f:ae:ca:
53:39:53:43:1e:e1:97:b8:cb:f6:55:08:27:8e:ab:
9f:78:bc:9e:53:30:30:fe:25:6b:e7:3e:cc:10:07:
d0:19:13:43:7a:30:0b:64:72:d5:c8:db:9b:e0:8e:
34:14:37:47:ca:db:db:3a:b1:00:ff:2f:a9:88:5b:
d4:c4:c4:05:5c:86:a7:a6:08:48:12:b6:81:bf:af:
0b:fc:31:dc:ed:31:8d:04:af:75:b8:10:f3:f7:28:
37:61:c1:01:7a:9f:84:42:92:1f:23:84:ac:a7:ed:
5e:f8:51:43:0a:ad:e1:a8:21:5d:72:b6:2d:d4:f3:
7b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B1:32:39:10:2A:C8:53:2C:25:BE:AB:A2:A5:F1:DF:A9:BE:0D:B6
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/OLEyORAqyFMsJb6roqXx36m-DbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.128.0/19
94.131.0.0/23
94.131.4.0/24
94.131.6.0/23
95.164.20.0/24
95.164.40.0/22
95.164.49.0-95.164.50.255
95.164.52.0-95.164.59.255
95.164.72.0-95.164.76.255
95.164.80.0/22
95.164.92.0/22
95.164.170.0-95.164.175.255
195.214.208.0/21
IPv6:
2a01:d0::/32
Signature Algorithm: sha256WithRSAEncryption
4d:27:c4:12:09:eb:0d:9b:f3:4e:1c:78:45:fe:7c:41:b9:a3:
fd:71:24:6e:3d:b3:fa:b1:0c:02:10:41:c3:4a:11:72:8d:35:
df:e8:1f:5e:43:25:f2:f3:3e:2e:a3:ad:01:ec:f6:9a:ff:38:
80:4a:3a:55:41:0f:8e:c4:1f:8f:01:9f:d1:b1:f1:ee:7b:c4:
b7:5b:bd:06:ee:1f:68:7c:e2:4f:91:a7:30:ac:69:ae:a3:79:
93:76:09:dd:e5:0b:5c:bf:69:d5:85:ce:60:3f:2e:2a:19:9b:
6c:d5:de:17:92:7f:db:33:8c:8b:4a:c0:75:9e:02:a9:ab:d7:
83:f1:5e:44:91:8e:11:b1:52:94:1c:25:2b:53:34:36:42:2c:
c4:f2:ea:d3:c5:c2:b4:f0:72:8c:fc:f4:60:c5:59:f3:12:25:
71:69:32:bc:05:f2:85:c5:e9:c0:37:fc:6f:3a:d9:0d:b5:c8:
4e:fe:d7:59:6d:45:29:e7:96:fa:b7:ef:52:84:0e:e5:b5:e5:
ac:b5:cb:b1:b8:42:78:3c:8b:a1:4f:36:07:ba:50:a3:1a:bb:
de:9b:5b:bd:20:70:c9:1f:97:cc:b1:b0:8e:a0:52:1e:3e:1c:
3d:03:25:41:53:c0:d1:62:e2:45:40:86:3a:64:c5:4c:ef:cc:
0b:a0:29:49
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAYzGStPvr2xkr6U7LP6AomPdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNzQzZWQ2M2U4NjhlZjUwZjZkODRjMDAwM2E4MzQ4M2Zj
NjJhMDMwHhcNMjQwMTAxMTgzMDQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOGIxMzIzOTEwMmFjODUzMmMyNWJlYWJhMmE1ZjFkZmE5YmUwZGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuCakKLCPRXoUotljr6kX6zC+EfS
aYZPvGZiNf7+bmQVnMsPH4TASweJKKyq5YjhzjZ7LH9Cr1GU0EVziKGpByru8SIA
Th0JqrI5KmvIVIKg2jCatViFmC15w5PJPGGbkegPKdx4hNNvsp0X1zJnk/j3MQh/
VcYxbRak2YAMEul4R18/rspTOVNDHuGXuMv2VQgnjqufeLyeUzAw/iVr5z7MEAfQ
GRNDejALZHLVyNub4I40FDdHytvbOrEA/y+piFvUxMQFXIanpghIEraBv68L/DHc
7TGNBK91uBDz9yg3YcEBep+EQpIfI4Ssp+1e+FFDCq3hqCFdcrYt1PN7cwIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFDixMjkQKshTLCW+q6Kl8d+pvg22MB8GA1UdIwQY
MBaAFG10PtY+ho71D22EwAA6g0g/xioDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQt
ZTk3MjRhN2E2YmM4LzEvT0xFeU9SQXF5Rk1zSmI2cm9xWHgzNm0tRGJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQtZTk3MjRhN2E2YmM4
LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTB0BAIAATBuAwQFPs2A
AwQBXoMAAwQAXoMEAwQBXoMGAwQAX6QUAwQCX6QoMAwDBABfpDEDBABfpDIwDAME
Al+kNAMEAl+kODAMAwQDX6RIAwQAX6RMAwQCX6RQAwQCX6RcMAwDBAFfpKoDBARf
pKADBAPD1tAwDQQCAAIwBwMFACoBANAwDQYJKoZIhvcNAQELBQADggEBAE0nxBIJ
6w2b804ceEX+fEG5o/1xJG49s/qxDAIQQcNKEXKNNd/oH15DJfLzPi6jrQHs9pr/
OIBKOlVBD47EH48Bn9Gx8e57xLdbvQbuH2h84k+RpzCsaa6jeZN2Cd3lC1y/adWF
zmA/LioZm2zV3heSf9szjItKwHWeAqmr14PxXkSRjhGxUpQcJStTNDZCLMTy6tPF
wrTwcoz89GDFWfMSJXFpMrwF8oXF6cA3/G862Q21yE7+11ltRSnnlvq371KEDuW1
5ay1y7G4Qng8i6FPNge6UKMau96bW70gcMkfl8yxsI6gUh4+HD0DJUFTwNFi4kVA
hjpkxUzvzAugKUk=
-----END CERTIFICATE-----
Generated at Sat Apr 5 18:24:15 2025 by rpki-client