Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/BHjifWVoQKxqVIzEnX32wai1mHI.roa
File: BHjifWVoQKxqVIzEnX32wai1mHI.roa (raw, json)
Hash identifier: AjeiL3e+XMTL7CQVb6tcAbQ4dMq9NOjai1XiWf1vXec=
Subject key identifier: 04:78:E2:7D:65:68:40:AC:6A:54:8C:C4:9D:7D:F6:C1:A8:B5:98:72
Certificate issuer: /CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Certificate serial: 0194B6A667F4266F73339603A5C26C5DC672
Authority key identifier: EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/BHjifWVoQKxqVIzEnX32wai1mHI.roa
Signing time: Thu 30 Jan 2025 09:59:06 +0000
ROA not before: Thu 30 Jan 2025 09:59:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203217
IP address blocks: 93.180.216.0/21 maxlen: 21
93.180.216.0/23 maxlen: 23
93.180.216.0/24 maxlen: 24
93.180.217.0/24 maxlen: 24
93.180.218.0/23 maxlen: 23
93.180.218.0/24 maxlen: 24
93.180.219.0/24 maxlen: 24
93.180.220.0/23 maxlen: 23
93.180.220.0/24 maxlen: 24
93.180.221.0/24 maxlen: 24
93.180.222.0/23 maxlen: 23
93.180.222.0/24 maxlen: 24
93.180.223.0/24 maxlen: 24
138.124.156.0/22 maxlen: 22
138.124.156.0/23 maxlen: 23
138.124.156.0/24 maxlen: 24
138.124.157.0/24 maxlen: 24
138.124.158.0/23 maxlen: 23
138.124.158.0/24 maxlen: 24
138.124.159.0/24 maxlen: 24
144.86.228.0/22 maxlen: 22
144.86.228.0/23 maxlen: 23
144.86.228.0/24 maxlen: 24
144.86.229.0/24 maxlen: 24
144.86.230.0/23 maxlen: 23
144.86.230.0/24 maxlen: 24
144.86.231.0/24 maxlen: 24
185.20.196.0/22 maxlen: 22
185.20.196.0/23 maxlen: 23
185.20.196.0/24 maxlen: 24
185.20.197.0/24 maxlen: 24
185.20.198.0/23 maxlen: 23
185.20.198.0/24 maxlen: 24
185.20.199.0/24 maxlen: 24
185.138.120.0/22 maxlen: 22
185.138.120.0/23 maxlen: 23
185.138.120.0/24 maxlen: 24
185.138.121.0/24 maxlen: 24
185.138.122.0/23 maxlen: 23
185.138.122.0/24 maxlen: 24
185.138.123.0/24 maxlen: 24
185.254.12.0/22 maxlen: 22
185.254.12.0/23 maxlen: 23
185.254.13.0/24 maxlen: 24
185.254.14.0/23 maxlen: 23
185.254.14.0/24 maxlen: 24
185.254.15.0/24 maxlen: 24
195.133.220.0/22 maxlen: 22
195.133.220.0/23 maxlen: 23
195.133.220.0/24 maxlen: 24
195.133.221.0/24 maxlen: 24
195.133.222.0/23 maxlen: 23
195.133.222.0/24 maxlen: 24
195.133.223.0/24 maxlen: 24
199.74.188.0/22 maxlen: 22
199.74.188.0/23 maxlen: 23
199.74.188.0/24 maxlen: 24
199.74.189.0/24 maxlen: 24
199.74.190.0/23 maxlen: 23
199.74.190.0/24 maxlen: 24
199.74.191.0/24 maxlen: 24
2a0b:1880::/29 maxlen: 29
2a0b:1880::/48 maxlen: 48
2a0b:1880:1::/48 maxlen: 48
2a0b:1880:2::/48 maxlen: 48
2a0b:1880:3::/48 maxlen: 48
2a0b:1880:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b6:a6:67:f4:26:6f:73:33:96:03:a5:c2:6c:5d:c6:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Validity
Not Before: Jan 30 09:59:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0478e27d656840ac6a548cc49d7df6c1a8b59872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d4:eb:c6:aa:37:e4:9b:de:53:08:81:1e:75:
41:6a:a4:0b:02:35:55:ae:39:d2:a8:39:7d:fe:8f:
3a:a8:77:13:16:7d:5f:32:f7:38:7d:44:90:3f:27:
0a:7d:51:08:57:cb:40:f5:6b:a4:9d:59:2c:7b:8a:
54:97:8a:5e:7f:5a:ab:b4:ef:46:0c:a0:ca:ec:a5:
c5:6f:a5:79:c1:a6:02:a6:62:84:3e:d1:e4:92:45:
fb:c1:98:5c:67:84:d1:14:8b:d5:62:0e:56:02:f1:
74:bc:1d:16:49:4b:9a:45:c8:77:b0:84:fc:2f:e3:
22:1a:ba:9a:88:d6:49:e9:65:b2:6a:5b:ce:4c:6c:
74:a0:c3:a4:a7:d3:bf:20:7a:44:d2:1f:6a:70:46:
a9:4e:29:9d:61:19:e5:7b:28:9f:83:40:cb:15:4d:
b2:c3:3f:6d:04:f5:22:62:61:a5:64:04:9d:a1:31:
75:b5:44:9b:97:8b:23:b1:e1:14:85:82:89:dd:d5:
30:ec:3c:a7:17:60:24:37:1b:17:f3:04:4c:9a:18:
b2:0e:94:60:55:6c:56:d2:4e:dd:b9:6c:24:b8:a3:
7c:d5:d1:4d:4f:76:38:ab:7f:0e:d5:54:41:17:fe:
58:3a:a3:46:0d:c7:59:12:fd:4d:dd:4d:9a:eb:5e:
05:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:78:E2:7D:65:68:40:AC:6A:54:8C:C4:9D:7D:F6:C1:A8:B5:98:72
X509v3 Authority Key Identifier:
keyid:EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/BHjifWVoQKxqVIzEnX32wai1mHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/71TZ5B6l4tFht8TNsuRwLE8kjhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.216.0/21
138.124.156.0/22
144.86.228.0/22
185.20.196.0/22
185.138.120.0/22
185.254.12.0/22
195.133.220.0/22
199.74.188.0/22
IPv6:
2a0b:1880::/29
Signature Algorithm: sha256WithRSAEncryption
32:43:0f:b9:36:fe:5c:68:13:d0:d3:ab:ad:7f:92:fc:d4:e9:
fa:86:b6:8d:37:66:d9:aa:c3:f2:fe:73:50:c3:4c:2c:e5:19:
47:f6:8f:34:bf:76:09:ce:62:d9:3b:06:e6:2f:fd:dd:e2:95:
78:e1:97:18:ba:25:bb:66:e9:a6:89:ef:a8:17:3b:7d:c1:73:
24:bc:6a:ef:bb:6f:49:3b:11:cf:dd:dd:ad:8d:49:9b:c3:f6:
54:20:36:e3:7b:44:4d:97:1f:e4:b6:a4:75:0e:63:c0:4e:51:
1f:9e:c3:b0:8b:c0:00:eb:75:a9:92:12:cf:ea:fe:fe:03:8f:
d1:f9:19:b5:a2:f9:9c:e1:f1:ad:33:f4:25:6d:c3:31:b3:44:
ca:40:68:d9:8b:8d:9f:e6:0b:c6:77:e3:a7:c9:9b:2c:ea:f6:
a5:56:a1:77:6f:71:1c:42:3f:70:c3:80:5c:8b:90:d9:9a:c3:
69:1f:5a:2a:36:39:43:f4:08:7f:01:fe:14:14:88:ab:b6:3c:
20:8c:7a:07:8b:2e:39:29:be:4c:31:40:a4:04:e2:f0:3c:42:
02:38:0d:34:ce:cb:52:49:d7:6e:a5:aa:6d:0e:8f:9a:41:b6:
1c:a8:19:07:2c:97:47:ed:3b:ec:86:29:d4:af:bd:a3:b3:17:
00:01:cd:12
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgISAZS2pmf0Jm9zM5YDpcJsXcZyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNTRkOWU0MWVhNWUyZDE2MWI3YzRjZGIyZTQ3MDJjNGYy
NDhlMTQwHhcNMjUwMTMwMDk1OTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDc4ZTI3ZDY1Njg0MGFjNmE1NDhjYzQ5ZDdkZjZjMWE4YjU5ODcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltTrxqo35JveUwiBHnVBaqQLAjVV
rjnSqDl9/o86qHcTFn1fMvc4fUSQPycKfVEIV8tA9WuknVkse4pUl4pef1qrtO9G
DKDK7KXFb6V5waYCpmKEPtHkkkX7wZhcZ4TRFIvVYg5WAvF0vB0WSUuaRch3sIT8
L+MiGrqaiNZJ6WWyalvOTGx0oMOkp9O/IHpE0h9qcEapTimdYRnleyifg0DLFU2y
wz9tBPUiYmGlZASdoTF1tUSbl4sjseEUhYKJ3dUw7DynF2AkNxsX8wRMmhiyDpRg
VWxW0k7duWwkuKN81dFNT3Y4q38O1VRBF/5YOqNGDcdZEv1N3U2a614FRQIDAQAB
o4ICQjCCAj4wHQYDVR0OBBYEFAR44n1laECsalSMxJ199sGotZhyMB8GA1UdIwQY
MBaAFO9U2eQepeLRYbfEzbLkcCxPJI4UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzFUWjVCNmw0dEZodDhUTnN1UndMRThramhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9lYzAwZTItY2JkYS00YjMyLThjMzIt
ZmJjNmZjYjVlN2E2LzEvQkhqaWZXVm9RS3hxVkl6RW5YMzJ3YWkxbUhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9lYzAwZTItY2JkYS00YjMyLThjMzItZmJjNmZjYjVlN2E2
LzEvNzFUWjVCNmw0dEZodDhUTnN1UndMRThramhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFgGCCsGAQUFBwEHAQH/BEkwRzA2BAIAATAwAwQDXbTYAwQC
inycAwQCkFbkAwQCuRTEAwQCuYp4AwQCuf4MAwQCw4XcAwQCx0q8MA0EAgACMAcD
BQMqCxiAMA0GCSqGSIb3DQEBCwUAA4IBAQAyQw+5Nv5caBPQ06utf5L81On6hraN
N2bZqsPy/nNQw0ws5RlH9o80v3YJzmLZOwbmL/3d4pV44ZcYuiW7Zummie+oFzt9
wXMkvGrvu29JOxHP3d2tjUmbw/ZUIDbje0RNlx/ktqR1DmPATlEfnsOwi8AA63Wp
khLP6v7+A4/R+Rm1ovmc4fGtM/QlbcMxs0TKQGjZi42f5gvGd+OnyZss6valVqF3
b3EcQj9ww4Bci5DZmsNpH1oqNjlD9Ah/Af4UFIirtjwgjHoHiy45Kb5MMUCkBOLw
PEICOA00zstSSddupaptDo+aQbYcqBkHLJdH7TvshinUr72jsxcAAc0S
-----END CERTIFICATE-----
Generated at Mon Apr 7 06:57:31 2025 by rpki-client