Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/vHrF7g0c0dcoiJWBTTymJdwO4wg.roa
File: vHrF7g0c0dcoiJWBTTymJdwO4wg.roa (raw, json)
Hash identifier: nyFLmVloXIR7TkBQM56JU2CNcXueLFwmUN5LjRmo4IY=
Subject key identifier: BC:7A:C5:EE:0D:1C:D1:D7:28:88:95:81:4D:3C:A6:25:DC:0E:E3:08
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0193E326147B675DC4547DC8AB7BCF1583B1
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/vHrF7g0c0dcoiJWBTTymJdwO4wg.roa
Signing time: Fri 20 Dec 2024 08:19:03 +0000
ROA not before: Fri 20 Dec 2024 08:19:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8772
IP address blocks: 62.205.128.0/19 maxlen: 20
62.205.132.0/24 maxlen: 24
62.205.134.0/24 maxlen: 24
62.205.144.0/20 maxlen: 20
62.205.152.0/24 maxlen: 24
62.205.159.0/24 maxlen: 24
94.131.0.0/23 maxlen: 23
94.131.0.0/24 maxlen: 24
94.131.4.0/24 maxlen: 24
94.131.6.0/24 maxlen: 24
94.131.7.0/24 maxlen: 24
94.131.124.0/24 maxlen: 24
94.131.127.0/24 maxlen: 24
95.164.12.0/23 maxlen: 23
95.164.15.0/24 maxlen: 24
95.164.20.0/24 maxlen: 24
95.164.40.0/22 maxlen: 22
95.164.49.0/24 maxlen: 24
95.164.50.0/24 maxlen: 24
95.164.52.0/22 maxlen: 24
95.164.56.0/22 maxlen: 22
95.164.72.0/22 maxlen: 22
95.164.76.0/24 maxlen: 24
95.164.80.0/22 maxlen: 22
95.164.120.0/24 maxlen: 24
95.164.121.0/24 maxlen: 24
95.164.122.0/24 maxlen: 24
95.164.123.0/24 maxlen: 24
95.164.170.0/23 maxlen: 23
95.164.172.0/22 maxlen: 22
95.164.248.0/23 maxlen: 23
95.164.251.0/24 maxlen: 24
195.214.212.0/22 maxlen: 22
2a01:d0::/29 maxlen: 48
2a01:d0::/32 maxlen: 32
2a01:d0:4::/48 maxlen: 48
2a01:d0:a::/48 maxlen: 48
2a01:d0:28::/48 maxlen: 48
2a01:d0:3b::/48 maxlen: 48
2a01:d0:43::/48 maxlen: 48
2a01:d0:105::/48 maxlen: 48
2a01:d0:303::/48 maxlen: 48
2a01:d0:305::/48 maxlen: 48
2a01:d0:308::/48 maxlen: 48
2a01:d0:317::/48 maxlen: 48
2a01:d0:31d::/48 maxlen: 48
2a01:d0:333::/48 maxlen: 48
2a01:d0:962::/48 maxlen: 48
2a01:d0:1657::/48 maxlen: 48
2a01:d0:7fff::/48 maxlen: 48
2a01:d0:8000::/33 maxlen: 33
2a01:d0:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:26:14:7b:67:5d:c4:54:7d:c8:ab:7b:cf:15:83:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Dec 20 08:19:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc7ac5ee0d1cd1d7288895814d3ca625dc0ee308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:56:15:19:b4:3b:30:9f:12:05:34:75:05:6f:
92:9e:12:62:9d:e4:6f:d6:77:23:58:e5:25:b2:7c:
14:fc:6a:84:c6:e8:dc:6b:51:4c:36:27:8d:f2:ca:
da:3d:b4:27:e3:bc:5b:4b:f7:3b:ca:1a:74:96:d0:
7e:70:a4:57:d6:db:2e:36:18:c4:a3:82:81:04:62:
0a:88:31:74:e7:f8:35:76:c4:b5:78:7c:43:35:db:
f8:3f:70:dd:79:04:e7:1d:91:84:30:d8:d8:78:16:
99:1e:13:5e:28:a4:0c:e5:25:44:e4:98:ca:2a:06:
4c:0a:61:8d:f8:5c:e9:10:46:a2:ad:88:c8:46:f2:
23:d2:d1:f2:be:e2:01:52:90:c2:67:ec:24:a6:4a:
f4:44:67:b2:13:8c:15:52:b4:e0:57:cb:96:a9:83:
29:7a:1a:14:b3:c2:d4:35:fd:77:5a:f3:99:19:4f:
47:43:83:4e:12:82:de:4a:ad:4e:22:dc:96:a6:6f:
f9:02:8d:54:b6:67:36:68:3c:43:3b:45:5c:d6:5e:
62:31:e6:ee:83:0a:55:49:6d:0e:a3:d1:38:f5:ca:
5c:af:b1:97:f4:c5:b8:b1:6b:04:48:6b:3d:39:6c:
98:31:8b:a4:44:06:1c:93:b5:15:2f:05:b5:9e:5d:
60:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:7A:C5:EE:0D:1C:D1:D7:28:88:95:81:4D:3C:A6:25:DC:0E:E3:08
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/vHrF7g0c0dcoiJWBTTymJdwO4wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.128.0/19
94.131.0.0/23
94.131.4.0/24
94.131.6.0/23
94.131.124.0/24
94.131.127.0/24
95.164.12.0/23
95.164.15.0/24
95.164.20.0/24
95.164.40.0/22
95.164.49.0-95.164.50.255
95.164.52.0-95.164.59.255
95.164.72.0-95.164.76.255
95.164.80.0/22
95.164.120.0/22
95.164.170.0-95.164.175.255
95.164.248.0/23
95.164.251.0/24
195.214.212.0/22
IPv6:
2a01:d0::/29
Signature Algorithm: sha256WithRSAEncryption
0b:db:9d:8e:77:31:4a:41:14:0d:cd:c4:96:b4:d0:5b:40:04:
f3:12:35:81:9f:e5:cd:60:d4:cf:e5:54:af:3d:18:1c:63:9f:
2b:96:83:2a:dd:b2:8d:44:c6:d6:04:ff:bb:21:0c:ab:c9:96:
a2:08:1a:b9:bd:80:c6:03:8b:c9:f5:b7:a5:ca:d6:67:e9:17:
c5:bc:cb:94:82:1b:f2:c8:01:0a:09:f8:50:d5:b3:88:69:81:
c1:2e:11:d6:c2:8f:ab:f6:4f:4a:a9:67:bd:31:08:02:36:97:
9d:76:74:17:f2:41:18:58:b0:6a:94:c4:6c:42:e0:06:08:08:
29:b7:18:07:72:a6:7b:78:c2:9f:15:0c:e1:9e:93:f0:3d:71:
66:f8:dd:5b:0e:da:7c:8c:9c:e7:49:71:d9:29:bd:3c:d0:52:
66:dc:8d:b5:c3:fb:d9:92:63:56:42:46:89:c8:33:dc:69:c1:
73:33:f2:33:39:ce:1f:ea:0d:72:03:5c:e0:b1:7f:6a:72:d5:
ff:73:57:05:7d:bf:9e:cd:7f:3f:33:13:bf:d6:cf:26:b3:ac:
c5:6d:24:a2:6b:18:26:57:a9:64:fc:85:32:3c:30:cd:70:de:
70:b9:d4:5c:2f:bf:37:1c:fb:78:88:03:12:3e:63:c1:a4:c4:
a0:80:77:d6
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgISAZPjJhR7Z13EVH3Iq3vPFYOxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNzQzZWQ2M2U4NjhlZjUwZjZkODRjMDAwM2E4MzQ4M2Zj
NjJhMDMwHhcNMjQxMjIwMDgxOTAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzdhYzVlZTBkMWNkMWQ3Mjg4ODk1ODE0ZDNjYTYyNWRjMGVlMzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVYVGbQ7MJ8SBTR1BW+SnhJineRv
1ncjWOUlsnwU/GqExujca1FMNieN8sraPbQn47xbS/c7yhp0ltB+cKRX1tsuNhjE
o4KBBGIKiDF05/g1dsS1eHxDNdv4P3DdeQTnHZGEMNjYeBaZHhNeKKQM5SVE5JjK
KgZMCmGN+FzpEEairYjIRvIj0tHyvuIBUpDCZ+wkpkr0RGeyE4wVUrTgV8uWqYMp
ehoUs8LUNf13WvOZGU9HQ4NOEoLeSq1OItyWpm/5Ao1Utmc2aDxDO0Vc1l5iMebu
gwpVSW0Oo9E49cpcr7GX9MW4sWsESGs9OWyYMYukRAYck7UVLwW1nl1gPwIDAQAB
o4ICqTCCAqUwHQYDVR0OBBYEFLx6xe4NHNHXKIiVgU08piXcDuMIMB8GA1UdIwQY
MBaAFG10PtY+ho71D22EwAA6g0g/xioDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQt
ZTk3MjRhN2E2YmM4LzEvdkhyRjdnMGMwZGNvaUpXQlRUeW1KZHdPNHdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQtZTk3MjRhN2E2YmM4
LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG+BggrBgEFBQcBBwEB/wSBrjCBqzCBmQQCAAEwgZIDBAU+
zYADBAFegwADBABegwQDBAFegwYDBABeg3wDBABeg38DBAFfpAwDBABfpA8DBABf
pBQDBAJfpCgwDAMEAF+kMQMEAF+kMjAMAwQCX6Q0AwQCX6Q4MAwDBANfpEgDBABf
pEwDBAJfpFADBAJfpHgwDAMEAV+kqgMEBF+koAMEAV+k+AMEAF+k+wMEAsPW1DAN
BAIAAjAHAwUDKgEA0DANBgkqhkiG9w0BAQsFAAOCAQEAC9udjncxSkEUDc3ElrTQ
W0AE8xI1gZ/lzWDUz+VUrz0YHGOfK5aDKt2yjUTG1gT/uyEMq8mWoggaub2AxgOL
yfW3pcrWZ+kXxbzLlIIb8sgBCgn4UNWziGmBwS4R1sKPq/ZPSqlnvTEIAjaXnXZ0
F/JBGFiwapTEbELgBggIKbcYB3Kme3jCnxUM4Z6T8D1xZvjdWw7afIyc50lx2Sm9
PNBSZtyNtcP72ZJjVkJGicgz3GnBczPyMznOH+oNcgNc4LF/anLV/3NXBX2/ns1/
PzMTv9bPJrOsxW0komsYJlepZPyFMjwwzXDecLnUXC+/Nxz7eIgDEj5jwaTEoIB3
1g==
-----END CERTIFICATE-----
Generated at Sat Apr 5 22:32:24 2025 by rpki-client