Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/sRpxcAGvP7jVRIl4HPUJfSwHK0c.roa
File: sRpxcAGvP7jVRIl4HPUJfSwHK0c.roa (raw, json)
Hash identifier: pY+5UhWpAPm/Qwp7/Dza9syqHl+lU+6bhE9KbSmbX2Y=
Subject key identifier: B1:1A:71:70:01:AF:3F:B8:D5:44:89:78:1C:F5:09:7D:2C:07:2B:47
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0195DCD39A6363F186272756A192591B38C0
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/sRpxcAGvP7jVRIl4HPUJfSwHK0c.roa
Signing time: Fri 28 Mar 2025 12:56:49 +0000
ROA not before: Fri 28 Mar 2025 12:56:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12741
IP address blocks: 5.226.64.0/18 maxlen: 18
5.226.92.0/24 maxlen: 24
5.226.128.0/22 maxlen: 24
5.226.135.0/24 maxlen: 24
37.128.0.0/17 maxlen: 17
37.128.0.0/19 maxlen: 19
37.128.32.0/20 maxlen: 20
37.128.48.0/20 maxlen: 20
37.128.64.0/18 maxlen: 18
62.87.128.0/17 maxlen: 17
62.89.64.0/18 maxlen: 18
62.111.128.0/17 maxlen: 17
62.111.250.0/24 maxlen: 24
62.148.64.0/19 maxlen: 19
62.181.160.0/19 maxlen: 19
62.233.128.0/17 maxlen: 17
62.244.128.0/19 maxlen: 19
77.65.134.0/24 maxlen: 24
77.65.155.0/24 maxlen: 24
77.65.171.0/24 maxlen: 24
77.65.188.0/24 maxlen: 24
77.65.193.0/24 maxlen: 24
77.65.209.0/24 maxlen: 24
77.252.0.0/14 maxlen: 14
77.252.0.0/16 maxlen: 24
78.8.0.0/14 maxlen: 14
81.168.128.0/17 maxlen: 17
81.210.0.0/17 maxlen: 17
81.219.0.0/16 maxlen: 16
82.143.128.0/18 maxlen: 18
83.238.0.0/16 maxlen: 16
84.40.128.0/17 maxlen: 17
84.40.128.0/20 maxlen: 20
84.40.144.0/21 maxlen: 21
84.40.152.0/21 maxlen: 21
84.40.160.0/19 maxlen: 19
84.40.192.0/20 maxlen: 20
84.40.208.0/21 maxlen: 21
84.40.216.0/21 maxlen: 21
84.40.224.0/21 maxlen: 21
84.40.236.0/24 maxlen: 24
84.40.240.0/20 maxlen: 20
85.31.252.0/24 maxlen: 24
85.128.0.0/17 maxlen: 17
85.202.54.0/24 maxlen: 24
85.202.59.0/24 maxlen: 24
87.105.0.0/16 maxlen: 16
87.204.0.0/15 maxlen: 15
87.204.0.0/16 maxlen: 16
87.205.0.0/17 maxlen: 17
87.205.128.0/17 maxlen: 17
87.239.216.0/21 maxlen: 22
89.171.0.0/16 maxlen: 16
91.192.88.0/22 maxlen: 22
93.159.0.0/18 maxlen: 18
93.180.160.0/19 maxlen: 19
159.205.0.0/16 maxlen: 16
178.16.116.0/24 maxlen: 24
178.16.121.0/24 maxlen: 24
178.16.125.0/24 maxlen: 24
178.36.0.0/15 maxlen: 15
185.58.160.0/22 maxlen: 22
185.58.160.0/23 maxlen: 23
185.58.162.0/23 maxlen: 23
185.72.184.0/22 maxlen: 22
185.164.140.0/22 maxlen: 22
185.244.96.0/22 maxlen: 22
193.19.104.0/23 maxlen: 23
193.91.16.0/20 maxlen: 20
193.192.173.0/24 maxlen: 24
193.192.181.0/24 maxlen: 24
193.192.188.0/24 maxlen: 24
193.192.190.0/24 maxlen: 24
195.114.160.0/19 maxlen: 19
212.49.32.0/19 maxlen: 19
212.106.0.0/19 maxlen: 19
212.106.0.0/20 maxlen: 20
212.106.16.0/20 maxlen: 20
213.17.128.0/17 maxlen: 17
213.17.244.0/24 maxlen: 24
213.134.128.0/19 maxlen: 19
213.146.32.0/19 maxlen: 19
213.186.64.0/19 maxlen: 19
213.195.128.0/18 maxlen: 18
213.216.64.0/18 maxlen: 18
213.238.64.0/18 maxlen: 18
213.241.0.0/17 maxlen: 17
213.241.89.0/24 maxlen: 24
217.30.128.0/19 maxlen: 19
2001:16b0::/32 maxlen: 32
2001:41b0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:dc:d3:9a:63:63:f1:86:27:27:56:a1:92:59:1b:38:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Mar 28 12:56:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b11a717001af3fb8d54489781cf5097d2c072b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5c:7f:ec:58:04:b0:c0:2b:7e:a1:eb:6a:8e:
82:59:9b:f9:f0:eb:e2:9c:55:83:42:d0:19:2d:82:
a8:4e:e5:70:47:a9:34:5f:1e:d0:e5:6c:87:b8:b3:
05:a3:15:1d:8a:cf:70:7e:25:c9:8a:c1:e5:07:66:
0b:1f:02:4d:e2:b4:6d:61:60:12:60:79:ff:2c:65:
6a:c7:66:56:06:ac:94:4f:0d:6c:ba:bb:19:26:f1:
74:ff:fc:4c:fb:d1:30:47:ea:b6:02:e7:33:37:38:
9e:a0:02:22:e7:d5:7d:bd:d9:fd:4d:7e:93:b9:97:
1a:d7:86:8c:b0:cc:ed:9e:1e:57:08:17:94:83:c8:
df:29:74:a2:e9:94:28:f6:67:f7:cc:4d:e2:5b:66:
ad:5b:e3:f6:fc:fd:01:4a:43:4a:a3:a4:d9:71:72:
24:42:ee:08:4c:4b:04:1f:82:2b:fe:cf:26:a4:b3:
c0:07:ff:36:89:3a:9f:d6:e3:3d:02:ea:db:b9:e3:
44:f6:50:7c:31:36:f9:54:56:51:f0:42:56:11:e1:
5d:b5:8d:70:fd:51:59:9c:75:35:c6:a5:31:4b:77:
3a:11:cd:d0:cf:fd:67:da:f4:e2:77:4b:d5:b1:04:
e7:02:89:5d:e6:bf:20:ec:df:e8:f7:57:4c:d5:a5:
9d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:1A:71:70:01:AF:3F:B8:D5:44:89:78:1C:F5:09:7D:2C:07:2B:47
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/sRpxcAGvP7jVRIl4HPUJfSwHK0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.64.0-5.226.131.255
5.226.135.0/24
37.128.0.0/17
62.87.128.0/17
62.89.64.0/18
62.111.128.0/17
62.148.64.0/19
62.181.160.0/19
62.233.128.0/17
62.244.128.0/19
77.65.134.0/24
77.65.155.0/24
77.65.171.0/24
77.65.188.0/24
77.65.193.0/24
77.65.209.0/24
77.252.0.0/14
78.8.0.0/14
81.168.128.0/17
81.210.0.0/17
81.219.0.0/16
82.143.128.0/18
83.238.0.0/16
84.40.128.0/17
85.31.252.0/24
85.128.0.0/17
85.202.54.0/24
85.202.59.0/24
87.105.0.0/16
87.204.0.0/15
87.239.216.0/21
89.171.0.0/16
91.192.88.0/22
93.159.0.0/18
93.180.160.0/19
159.205.0.0/16
178.16.116.0/24
178.16.121.0/24
178.16.125.0/24
178.36.0.0/15
185.58.160.0/22
185.72.184.0/22
185.164.140.0/22
185.244.96.0/22
193.19.104.0/23
193.91.16.0/20
193.192.173.0/24
193.192.181.0/24
193.192.188.0/24
193.192.190.0/24
195.114.160.0/19
212.49.32.0/19
212.106.0.0/19
213.17.128.0/17
213.134.128.0/19
213.146.32.0/19
213.186.64.0/19
213.195.128.0/18
213.216.64.0/18
213.238.64.0/18
213.241.0.0/17
217.30.128.0/19
IPv6:
2001:16b0::/32
2001:41b0::/32
Signature Algorithm: sha256WithRSAEncryption
67:02:c5:5a:76:8e:38:6f:bf:7b:58:43:06:52:56:6f:96:a3:
cd:48:e3:f5:0b:fe:b7:2a:a8:83:f2:44:8c:ca:4b:66:08:78:
21:30:29:ec:4e:4e:ac:04:2e:39:e3:7d:ff:61:83:88:83:e7:
3c:2d:5a:47:7d:dc:62:99:75:0f:30:25:29:74:ea:05:54:e3:
1f:30:de:da:60:c7:85:53:9d:a1:78:f7:dc:58:40:56:b4:86:
82:eb:1d:ae:9e:a3:21:18:72:71:14:b2:ea:4b:63:fd:33:fe:
d4:89:a3:5f:be:3f:bb:58:ac:16:3f:a2:ab:b1:d0:85:36:20:
dc:57:f4:34:90:67:75:b5:81:bd:94:94:19:80:92:10:25:ea:
92:1c:db:0f:1c:7c:93:ba:94:06:c4:d2:83:e0:ac:b5:4b:d3:
00:6d:5c:de:00:ac:33:f5:d4:09:87:af:35:a4:ee:6c:0e:33:
a2:f5:b0:3b:90:db:fc:87:af:64:66:cc:f1:61:7c:10:ef:48:
17:c6:3f:e3:49:7a:0f:2b:ea:3e:0f:cd:d4:c0:4d:c2:0d:d2:
96:37:f5:a3:b7:ff:ad:91:c8:04:3b:e5:d9:71:c3:23:84:77:
d4:eb:ad:a9:58:3f:b0:dc:44:62:59:0c:1d:53:2f:e2:c8:da:
2c:48:86:d1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:51:49 2025 by rpki-client