Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/99fd41-7ed8-4b25-8d56-c7ac26bcc2da/1/OSCfUjF3Ef7ghNU67VVpfMtgWoo.roa
File: OSCfUjF3Ef7ghNU67VVpfMtgWoo.roa (raw, json)
Hash identifier: moftdOXORBIAXnTpLj/Op+kUYg+QJ1SFAtNNQW7Lki0=
Subject key identifier: 39:20:9F:52:31:77:11:FE:E0:84:D5:3A:ED:55:69:7C:CB:60:5A:8A
Certificate issuer: /CN=fd8eff201218a5a823cbe85336853e3db4dd16eb
Certificate serial: 0194A5FDE21A5007D68D2F8C7DD4D99813C3
Authority key identifier: FD:8E:FF:20:12:18:A5:A8:23:CB:E8:53:36:85:3E:3D:B4:DD:16:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Y7_IBIYpagjy-hTNoU-PbTdFus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/99fd41-7ed8-4b25-8d56-c7ac26bcc2da/1/OSCfUjF3Ef7ghNU67VVpfMtgWoo.roa
Signing time: Mon 27 Jan 2025 04:21:06 +0000
ROA not before: Mon 27 Jan 2025 04:21:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60631
IP address blocks: 45.149.76.0/24 maxlen: 24
45.149.77.0/24 maxlen: 24
45.149.78.0/24 maxlen: 24
45.149.79.0/24 maxlen: 24
158.255.74.0/24 maxlen: 24
171.22.24.0/24 maxlen: 24
171.22.25.0/24 maxlen: 24
171.22.26.0/24 maxlen: 24
171.22.27.0/24 maxlen: 24
176.97.218.0/24 maxlen: 24
178.211.145.0/24 maxlen: 24
185.190.39.0/24 maxlen: 24
193.105.234.0/24 maxlen: 24
212.23.201.0/24 maxlen: 24
2a0e:b080::/32 maxlen: 32
2a0e:b081::/32 maxlen: 32
2a0e:b082::/32 maxlen: 32
2a0e:b083::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:a5:fd:e2:1a:50:07:d6:8d:2f:8c:7d:d4:d9:98:13:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd8eff201218a5a823cbe85336853e3db4dd16eb
Validity
Not Before: Jan 27 04:21:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=39209f52317711fee084d53aed55697ccb605a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2f:96:05:19:3f:a9:3f:46:7b:3e:ee:3e:2a:
c9:67:36:8c:10:0a:07:c3:43:e8:91:fb:bc:88:f3:
3e:d4:e2:8f:3b:16:94:53:96:69:75:dc:83:a8:5f:
db:72:31:5a:b0:44:25:3c:e5:83:62:45:5f:95:60:
12:af:19:4b:cd:1a:22:aa:66:99:e2:7e:7d:3d:3e:
b4:36:d0:e8:66:8a:e9:7d:a2:e2:de:6b:33:1a:78:
0e:d3:a7:71:d1:09:f3:19:b9:f6:35:fc:7d:03:44:
b6:62:ba:86:e4:ea:ce:c6:0f:35:9a:62:31:2f:62:
c8:5e:6c:dd:40:46:52:76:46:d2:12:51:8d:2c:43:
72:c9:4f:ea:38:44:bf:cb:a8:37:d4:58:2c:92:03:
1a:30:67:5c:94:c1:cb:93:02:19:62:0c:6e:45:2c:
11:a8:dc:ee:e7:ef:49:58:1e:d3:7c:69:c4:6b:fe:
d4:d8:91:9b:68:d9:d5:b3:ec:52:f1:26:19:48:9a:
54:c6:7f:a8:b5:d8:d3:40:c2:d7:e5:38:91:b9:de:
55:52:34:eb:d6:29:3b:17:6d:3e:c6:87:bf:0a:8c:
57:ea:f3:4d:7e:d8:fd:b7:a7:fd:cb:b6:ec:4f:5f:
3f:8f:29:36:77:8d:0b:d0:e0:d1:43:6c:a9:49:0f:
06:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:20:9F:52:31:77:11:FE:E0:84:D5:3A:ED:55:69:7C:CB:60:5A:8A
X509v3 Authority Key Identifier:
keyid:FD:8E:FF:20:12:18:A5:A8:23:CB:E8:53:36:85:3E:3D:B4:DD:16:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Y7_IBIYpagjy-hTNoU-PbTdFus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/99fd41-7ed8-4b25-8d56-c7ac26bcc2da/1/OSCfUjF3Ef7ghNU67VVpfMtgWoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/99fd41-7ed8-4b25-8d56-c7ac26bcc2da/1/_Y7_IBIYpagjy-hTNoU-PbTdFus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.76.0/22
158.255.74.0/24
171.22.24.0/22
176.97.218.0/24
178.211.145.0/24
185.190.39.0/24
193.105.234.0/24
212.23.201.0/24
IPv6:
2a0e:b080::/30
Signature Algorithm: sha256WithRSAEncryption
4d:6f:77:c6:1f:df:18:ef:9a:a8:92:07:a8:6a:f4:ea:ae:1e:
22:9c:f8:02:c4:c2:d5:ce:9e:06:e1:a7:f9:42:83:ce:b3:98:
61:94:41:50:c5:26:14:db:71:a9:d0:f8:95:57:51:99:cf:ff:
2d:72:d6:3e:b6:7e:41:a1:e6:87:3a:6d:88:88:c7:ef:3e:99:
e3:80:fa:f3:f9:e6:3f:d9:87:a1:d0:7a:54:66:37:16:90:47:
9b:bc:cb:98:fc:93:e2:0f:92:0e:50:d4:de:fb:88:2d:32:e7:
73:77:e2:be:b5:98:1b:bf:0e:52:83:05:62:d4:4c:aa:a1:ce:
6b:fa:ef:bc:6e:d8:f8:d8:85:44:60:ac:65:23:10:02:c2:29:
b4:e0:2e:57:e2:bd:c3:77:84:18:5f:34:e7:c8:24:d0:58:b2:
2a:c9:a6:bd:35:d6:75:a3:e1:ef:0f:18:2b:4f:04:57:dc:a1:
59:8c:3d:3b:c7:9f:ff:3d:da:16:7e:73:e7:1a:74:2c:55:de:
88:5b:ec:c9:bd:68:1f:90:67:60:d9:bf:89:03:7b:da:e3:9e:
8a:58:b6:85:ac:7e:8e:16:0c:3d:15:6a:9d:e1:98:9b:b2:17:
04:9e:ee:9c:69:64:70:0b:fa:5d:87:92:ce:69:42:62:3c:3a:
17:02:24:34
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgISAZSl/eIaUAfWjS+MfdTZmBPDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkOGVmZjIwMTIxOGE1YTgyM2NiZTg1MzM2ODUzZTNkYjRk
ZDE2ZWIwHhcNMjUwMTI3MDQyMTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTIwOWY1MjMxNzcxMWZlZTA4NGQ1M2FlZDU1Njk3Y2NiNjA1YThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3i+WBRk/qT9Gez7uPirJZzaMEAoH
w0Pokfu8iPM+1OKPOxaUU5ZpddyDqF/bcjFasEQlPOWDYkVflWASrxlLzRoiqmaZ
4n59PT60NtDoZorpfaLi3mszGngO06dx0QnzGbn2Nfx9A0S2YrqG5OrOxg81mmIx
L2LIXmzdQEZSdkbSElGNLENyyU/qOES/y6g31FgskgMaMGdclMHLkwIZYgxuRSwR
qNzu5+9JWB7TfGnEa/7U2JGbaNnVs+xS8SYZSJpUxn+otdjTQMLX5TiRud5VUjTr
1ik7F20+xoe/CoxX6vNNftj9t6f9y7bsT18/jyk2d40L0ODRQ2ypSQ8GrwIDAQAB
o4ICQjCCAj4wHQYDVR0OBBYEFDkgn1IxdxH+4ITVOu1VaXzLYFqKMB8GA1UdIwQY
MBaAFP2O/yASGKWoI8voUzaFPj203RbrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1k3X0lCSVlwYWdqeS1oVE5vVS1QYlRkRnVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC85OWZkNDEtN2VkOC00YjI1LThkNTYt
YzdhYzI2YmNjMmRhLzEvT1NDZlVqRjNFZjdnaE5VNjdWVnBmTXRnV29vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC85OWZkNDEtN2VkOC00YjI1LThkNTYtYzdhYzI2YmNjMmRh
LzEvX1k3X0lCSVlwYWdqeS1oVE5vVS1QYlRkRnVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFgGCCsGAQUFBwEHAQH/BEkwRzA2BAIAATAwAwQCLZVMAwQA
nv9KAwQCqxYYAwQAsGHaAwQAstORAwQAub4nAwQAwWnqAwQA1BfJMA0EAgACMAcD
BQIqDrCAMA0GCSqGSIb3DQEBCwUAA4IBAQBNb3fGH98Y75qokgeoavTqrh4inPgC
xMLVzp4G4af5QoPOs5hhlEFQxSYU23Gp0PiVV1GZz/8tctY+tn5BoeaHOm2IiMfv
PpnjgPrz+eY/2Yeh0HpUZjcWkEebvMuY/JPiD5IOUNTe+4gtMudzd+K+tZgbvw5S
gwVi1Eyqoc5r+u+8btj42IVEYKxlIxACwim04C5X4r3Dd4QYXzTnyCTQWLIqyaa9
NdZ1o+HvDxgrTwRX3KFZjD07x5//PdoWfnPnGnQsVd6IW+zJvWgfkGdg2b+JA3va
456KWLaFrH6OFgw9FWqd4ZibshcEnu6caWRwC/pdh5LOaUJiPDoXAiQ0
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:07:54 2025 by rpki-client