Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d7367d-7bbf-4697-96cd-2bb1efc57a86/1/exH031dfZBV1kXdhK13Mn2RQNmg.roa
File: exH031dfZBV1kXdhK13Mn2RQNmg.roa (raw, json)
Hash identifier: kh/kexIofkFpFYVkf5Z+qhuaT2SwGjxnN+Gw4BVD9Qw=
Subject key identifier: 7B:11:F4:DF:57:5F:64:15:75:91:77:61:2B:5D:CC:9F:64:50:36:68
Certificate issuer: /CN=e9e5b014e569186fb84a2024954cccc9c91b1e3f
Certificate serial: 01850BC6C46E57FEB640E7BA34797FB29B06
Authority key identifier: E9:E5:B0:14:E5:69:18:6F:B8:4A:20:24:95:4C:CC:C9:C9:1B:1E:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6eWwFOVpGG-4SiAklUzMyckbHj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d7367d-7bbf-4697-96cd-2bb1efc57a86/1/exH031dfZBV1kXdhK13Mn2RQNmg.roa
Signing time: Tue 13 Dec 2022 13:57:33 +0000
ROA not before: Tue 13 Dec 2022 13:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9146
IP address blocks: 195.222.32.0/19 maxlen: 21
195.222.32.0/20 maxlen: 20
195.222.32.0/21 maxlen: 21
195.222.40.0/21 maxlen: 21
109.175.0.0/17 maxlen: 21
109.175.4.0/23 maxlen: 23
109.175.8.0/24 maxlen: 24
195.222.49.0/24 maxlen: 24
195.222.48.0/20 maxlen: 20
109.175.6.0/23 maxlen: 23
195.222.48.0/21 maxlen: 21
109.175.12.0/23 maxlen: 23
195.222.56.0/21 maxlen: 21
109.175.16.0/22 maxlen: 22
109.175.24.0/24 maxlen: 24
109.175.22.0/23 maxlen: 23
109.175.20.0/23 maxlen: 23
109.175.26.0/24 maxlen: 24
109.175.28.0/23 maxlen: 23
109.175.30.0/24 maxlen: 24
85.92.226.0/24 maxlen: 24
85.92.224.0/19 maxlen: 21
85.92.227.0/24 maxlen: 24
85.92.230.0/24 maxlen: 24
85.92.228.0/23 maxlen: 23
185.12.76.0/24 maxlen: 24
185.12.78.0/23 maxlen: 23
80.65.64.0/19 maxlen: 21
80.65.64.0/21 maxlen: 21
80.65.64.0/22 maxlen: 22
89.146.128.0/18 maxlen: 21
80.65.68.0/22 maxlen: 22
80.65.72.0/22 maxlen: 22
80.65.72.0/21 maxlen: 21
80.65.76.0/22 maxlen: 22
80.65.80.0/21 maxlen: 21
80.65.80.0/22 maxlen: 22
80.65.84.0/22 maxlen: 22
80.65.88.0/21 maxlen: 21
80.65.88.0/22 maxlen: 22
80.65.92.0/22 maxlen: 22
92.36.128.0/17 maxlen: 21
92.36.232.0/22 maxlen: 22
92.36.236.0/22 maxlen: 22
92.36.192.0/21 maxlen: 21
109.163.147.0/24 maxlen: 24
109.163.148.0/22 maxlen: 22
109.163.152.0/21 maxlen: 21
109.163.146.0/24 maxlen: 24
109.163.160.0/20 maxlen: 20
109.163.160.0/21 maxlen: 21
109.163.170.0/24 maxlen: 24
109.163.168.0/23 maxlen: 23
109.163.168.0/21 maxlen: 23
109.163.172.0/22 maxlen: 22
109.163.171.0/24 maxlen: 24
109.163.176.0/21 maxlen: 21
109.163.176.0/20 maxlen: 21
109.163.184.0/21 maxlen: 21
109.163.184.0/22 maxlen: 22
109.163.190.0/23 maxlen: 23
109.163.188.0/23 maxlen: 23
31.176.216.0/22 maxlen: 22
31.176.220.0/22 maxlen: 22
109.163.128.0/22 maxlen: 22
109.163.128.0/19 maxlen: 19
109.163.128.0/18 maxlen: 18
109.163.132.0/22 maxlen: 22
109.163.136.0/21 maxlen: 21
109.163.144.0/23 maxlen: 23
37.203.64.0/18 maxlen: 21
31.176.160.0/20 maxlen: 20
31.176.176.0/20 maxlen: 20
37.203.112.0/22 maxlen: 22
31.176.128.0/20 maxlen: 20
31.176.128.0/17 maxlen: 21
37.203.120.0/22 maxlen: 22
37.203.124.0/22 maxlen: 22
31.176.144.0/20 maxlen: 20
109.175.98.0/23 maxlen: 23
109.175.96.0/22 maxlen: 22
109.175.96.0/23 maxlen: 23
109.175.100.0/22 maxlen: 22
109.175.102.0/23 maxlen: 23
109.175.100.0/23 maxlen: 23
109.175.104.0/22 maxlen: 22
109.175.104.0/23 maxlen: 23
109.175.108.0/22 maxlen: 22
109.175.112.0/22 maxlen: 22
109.175.106.0/23 maxlen: 23
109.175.116.0/22 maxlen: 22
109.175.120.0/22 maxlen: 22
109.175.124.0/22 maxlen: 22
109.175.40.0/22 maxlen: 22
109.175.44.0/23 maxlen: 23
109.175.46.0/23 maxlen: 23
2a02:27b0:5300::/40 maxlen: 40
2a02:27b0:4a00::/40 maxlen: 40
2a02:27b0::/32 maxlen: 32
2a02:27b0:4100::/40 maxlen: 40
2a02:27b0:4400::/40 maxlen: 40
2a02:27b0:5500::/40 maxlen: 40
2a02:27b0:4800::/40 maxlen: 40
2a02:27b0:4900::/40 maxlen: 40
2a02:27b0:4d00::/40 maxlen: 40
2a02:27b0:4c00::/40 maxlen: 40
2a02:27b0:4200::/40 maxlen: 40
2a02:27b0:4500::/40 maxlen: 40
2a02:27b0:4300::/40 maxlen: 40
2a02:27b0:4b00::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0b:c6:c4:6e:57:fe:b6:40:e7:ba:34:79:7f:b2:9b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9e5b014e569186fb84a2024954cccc9c91b1e3f
Validity
Not Before: Dec 13 13:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b11f4df575f6415759177612b5dcc9f64503668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:af:33:cf:8a:0f:b9:f6:ca:71:e5:4c:2b:7f:
c9:9d:f5:2f:de:a9:e9:e4:15:88:af:85:a0:10:ba:
e2:ff:7d:c5:46:7b:7a:83:12:28:b9:59:f3:c8:f3:
6a:55:b8:91:e3:3e:96:e9:8f:0c:8b:85:47:8b:c8:
57:15:50:64:93:d4:4b:18:1c:27:e3:04:36:6a:64:
22:e2:02:c1:0d:d4:e6:6e:d1:82:a2:3e:0d:5c:c8:
0c:26:fa:6d:83:3f:6d:73:67:8b:27:98:1d:78:08:
db:2f:1d:2a:98:37:55:3f:3a:36:1d:86:48:83:5b:
81:79:d0:e6:b9:40:39:7e:ae:7c:a3:f2:9d:f0:77:
ed:43:d2:64:67:27:fe:b6:13:e9:38:79:06:1d:24:
1e:60:e2:b7:cf:19:4e:78:1c:58:cf:9c:f9:8c:b9:
b0:43:cf:31:e0:d4:02:a7:f9:dd:31:f7:82:82:f0:
5b:c0:6a:ba:31:b8:f3:5a:d7:e2:d5:84:c7:20:5b:
e1:f3:f8:6f:04:41:61:0a:12:90:c6:b7:fa:32:c7:
19:fe:de:d7:ff:47:62:45:64:76:06:d7:a7:c4:5d:
98:5b:74:15:28:30:11:01:53:cd:c1:39:bd:91:2f:
dd:1e:d1:1b:e2:61:b2:7c:0e:a8:cc:4a:48:21:06:
1a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:11:F4:DF:57:5F:64:15:75:91:77:61:2B:5D:CC:9F:64:50:36:68
X509v3 Authority Key Identifier:
keyid:E9:E5:B0:14:E5:69:18:6F:B8:4A:20:24:95:4C:CC:C9:C9:1B:1E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6eWwFOVpGG-4SiAklUzMyckbHj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d7367d-7bbf-4697-96cd-2bb1efc57a86/1/exH031dfZBV1kXdhK13Mn2RQNmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d7367d-7bbf-4697-96cd-2bb1efc57a86/1/6eWwFOVpGG-4SiAklUzMyckbHj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.176.128.0/17
37.203.64.0/18
80.65.64.0/19
85.92.224.0/19
89.146.128.0/18
92.36.128.0/17
109.163.128.0/18
109.175.0.0/17
185.12.76.0/24
185.12.78.0/23
195.222.32.0/19
IPv6:
2a02:27b0::/32
Signature Algorithm: sha256WithRSAEncryption
88:23:36:28:0c:a8:a9:7a:0c:33:3f:3d:7d:99:06:4c:3c:ef:
16:f9:0f:c0:e7:11:44:54:d0:2f:d8:14:de:e9:7d:7c:68:49:
90:d5:58:d9:11:ca:6b:3b:92:02:c2:1e:cf:55:0f:7c:11:b9:
7e:ce:ca:8d:a8:81:85:7c:8c:07:b8:b7:b2:3d:6d:b7:c7:7d:
bd:f5:e2:fa:cf:bf:04:16:71:e7:94:34:8c:f7:4e:97:03:15:
f6:3d:64:73:aa:4e:c2:10:9c:6e:20:e3:13:5e:8c:35:f2:83:
cf:97:a0:32:17:e2:ec:52:d7:36:ba:78:24:0e:e8:8f:4d:7a:
94:9d:c7:ff:95:dc:e6:2a:f3:6e:3e:32:b4:1d:bd:0d:f9:6b:
c4:f8:dc:77:5d:0a:fe:d1:2b:25:e6:5f:d8:ad:29:29:fe:a7:
af:af:5c:63:dd:b9:0c:0d:c5:65:21:10:a9:00:35:a4:22:0e:
85:d5:5c:b0:60:b6:4a:7f:3a:1e:5a:71:7c:0e:c3:05:9b:44:
cc:a4:23:18:d5:3e:80:4b:40:aa:81:89:b0:86:e7:51:83:ab:
88:da:55:dc:ba:22:c0:93:b6:0b:3d:10:a9:7c:26:7e:c2:2b:
11:f7:d7:e3:90:0f:2b:8f:e6:d8:76:52:59:93:63:46:1a:6d:
83:98:b0:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:30 2025 by rpki-client