Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/zgEwqVc76VJNkbqljSwEWGsXdIc.roa
File: zgEwqVc76VJNkbqljSwEWGsXdIc.roa (raw, json)
Hash identifier: d9Yl0iNEE8f7Jr/FxKWgrbA6zRGEYFnTZsTgU5terjo=
Subject key identifier: CE:01:30:A9:57:3B:E9:52:4D:91:BA:A5:8D:2C:04:58:6B:17:74:87
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 019156426E9E313F23C20E59D2FEA9F09BFA
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/zgEwqVc76VJNkbqljSwEWGsXdIc.roa
Signing time: Thu 15 Aug 2024 13:37:59 +0000
ROA not before: Thu 15 Aug 2024 13:37:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29278
IP address blocks: 79.172.192.0/18 maxlen: 18
79.172.211.0/24 maxlen: 24
84.21.0.0/19 maxlen: 19
84.21.7.0/24 maxlen: 24
84.21.8.0/24 maxlen: 24
84.21.11.0/24 maxlen: 24
84.21.15.0/24 maxlen: 24
84.21.16.0/24 maxlen: 24
84.21.18.0/24 maxlen: 24
84.21.19.0/24 maxlen: 24
87.229.0.0/17 maxlen: 17
87.229.26.0/24 maxlen: 24
87.229.32.0/24 maxlen: 24
87.229.33.0/24 maxlen: 24
87.229.45.0/24 maxlen: 24
87.229.53.0/24 maxlen: 24
87.229.54.0/24 maxlen: 24
87.229.55.0/24 maxlen: 24
87.229.58.0/24 maxlen: 24
87.229.64.0/19 maxlen: 24
87.229.96.0/24 maxlen: 24
87.229.105.0/24 maxlen: 24
87.229.112.0/20 maxlen: 24
95.138.192.0/21 maxlen: 21
178.238.208.0/20 maxlen: 20
178.238.208.0/21 maxlen: 21
178.238.216.0/21 maxlen: 21
213.181.200.0/24 maxlen: 24
213.181.204.0/24 maxlen: 24
213.181.205.0/24 maxlen: 24
213.181.207.0/24 maxlen: 24
213.181.210.0/24 maxlen: 24
213.181.211.0/24 maxlen: 24
213.181.219.0/24 maxlen: 24
213.181.221.0/24 maxlen: 24
217.113.50.0/24 maxlen: 24
217.113.51.0/24 maxlen: 24
217.113.53.0/24 maxlen: 24
217.113.61.0/24 maxlen: 24
217.113.63.0/24 maxlen: 24
217.144.48.0/23 maxlen: 23
217.144.50.0/24 maxlen: 24
217.144.56.0/21 maxlen: 21
2a02:730::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:56:42:6e:9e:31:3f:23:c2:0e:59:d2:fe:a9:f0:9b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Aug 15 13:37:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce0130a9573be9524d91baa58d2c04586b177487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:28:83:2c:5c:8c:37:fe:ed:3d:6e:99:74:6c:
18:bb:c8:c7:80:26:16:9b:1a:ee:37:1f:79:9b:4a:
c4:01:9d:e4:74:de:80:b8:2f:06:ae:2f:b8:76:26:
d4:1c:2c:f3:79:ef:67:47:dd:ca:52:02:20:64:f1:
2d:e1:30:f1:34:bd:96:ad:41:58:06:9c:e2:3e:3b:
90:6b:41:4d:cf:33:a8:5e:b8:ee:ea:3b:2d:b9:54:
59:53:3c:24:14:57:a3:28:15:2e:46:59:a4:17:74:
27:f7:a8:02:3a:59:4f:48:1e:ce:7d:7a:db:29:f3:
db:e4:ec:ac:4e:42:0f:42:39:59:d1:bd:55:bf:71:
0e:be:c4:6b:ec:db:0a:ee:6f:a6:d2:c9:8f:95:f4:
35:58:8c:6e:68:57:65:eb:ed:19:6b:0c:14:37:35:
b0:6f:0e:f3:41:6f:09:b7:1c:77:b1:66:26:ae:80:
6e:34:d8:19:df:be:2c:4e:4d:61:fa:18:57:60:0c:
6a:d6:d2:05:23:80:41:23:a2:98:2c:dd:b3:e8:9c:
85:40:da:64:f5:e8:26:99:0b:52:de:1c:96:df:a0:
12:a6:f3:57:f1:63:91:c4:6a:b7:56:5e:b7:41:5e:
09:47:f3:17:1b:6d:81:65:2a:6b:5a:43:04:e6:72:
9a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:01:30:A9:57:3B:E9:52:4D:91:BA:A5:8D:2C:04:58:6B:17:74:87
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/zgEwqVc76VJNkbqljSwEWGsXdIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.192.0/18
84.21.0.0/19
87.229.0.0/17
95.138.192.0/21
178.238.208.0/20
213.181.200.0/24
213.181.204.0/23
213.181.207.0/24
213.181.210.0/23
213.181.219.0/24
213.181.221.0/24
217.113.50.0/23
217.113.53.0/24
217.113.61.0/24
217.113.63.0/24
217.144.48.0-217.144.50.255
217.144.56.0/21
IPv6:
2a02:730::/32
Signature Algorithm: sha256WithRSAEncryption
36:44:5a:f3:70:38:b5:4e:be:fa:02:64:f2:a8:79:c3:1b:97:
e7:d9:6d:c5:b2:30:73:75:e6:f2:9d:f2:cd:e5:a8:56:ba:e5:
7f:1c:96:49:0b:be:ea:f4:34:83:df:2c:59:ba:5a:e2:9e:83:
83:0d:f0:70:e7:fc:c8:47:5b:50:bd:a8:b2:18:40:3d:40:28:
24:66:51:d7:79:d8:d0:39:f8:08:b2:9d:e4:b6:f5:c8:e1:f3:
5f:c2:1e:d9:c9:99:35:20:9a:85:e4:dd:68:de:99:2c:ee:32:
71:f3:94:83:c1:1f:16:e2:88:94:57:08:b2:36:09:95:09:df:
bb:76:80:28:ac:4c:f8:1e:de:c9:49:fe:46:e5:7a:89:84:e8:
a7:ec:42:54:de:5a:af:74:a7:7e:db:6c:f6:db:53:14:81:5c:
d0:d2:d2:11:d2:cb:e2:26:38:9c:50:0d:5f:11:72:32:2a:ab:
9c:3d:70:90:9d:7c:cd:f2:62:27:c0:b0:a4:a9:dd:81:07:d3:
87:2d:f3:c1:4c:73:82:5e:34:2f:2b:98:a3:40:a9:73:70:9d:
5d:db:77:45:de:b5:6e:70:9c:d0:50:12:bc:21:6b:5e:ef:cc:
07:4c:fe:a4:bc:bb:d5:2d:e8:45:84:6a:0a:ca:72:64:59:fc:
98:49:78:d9
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAZFWQm6eMT8jwg5Z0v6p8Jv6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2
NDI0OTcwHhcNMjQwODE1MTMzNzU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZTAxMzBhOTU3M2JlOTUyNGQ5MWJhYTU4ZDJjMDQ1ODZiMTc3NDg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAziiDLFyMN/7tPW6ZdGwYu8jHgCYW
mxruNx95m0rEAZ3kdN6AuC8Gri+4dibUHCzzee9nR93KUgIgZPEt4TDxNL2WrUFY
BpziPjuQa0FNzzOoXrju6jstuVRZUzwkFFejKBUuRlmkF3Qn96gCOllPSB7OfXrb
KfPb5OysTkIPQjlZ0b1Vv3EOvsRr7NsK7m+m0smPlfQ1WIxuaFdl6+0ZawwUNzWw
bw7zQW8Jtxx3sWYmroBuNNgZ374sTk1h+hhXYAxq1tIFI4BBI6KYLN2z6JyFQNpk
9egmmQtS3hyW36ASpvNX8WORxGq3Vl63QV4JR/MXG22BZSprWkME5nKaHwIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFM4BMKlXO+lSTZG6pY0sBFhrF3SHMB8GA1UdIwQY
MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt
OTU5M2E0ODhhZmNjLzEvemdFd3FWYzc2VkpOa2JxbGpTd0VXR3NYZEljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj
LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTB0BAIAATBuAwQGT6zA
AwQFVBUAAwQHV+UAAwQDX4rAAwQEsu7QAwQA1bXIAwQB1bXMAwQA1bXPAwQB1bXS
AwQA1bXbAwQA1bXdAwQB2XEyAwQA2XE1AwQA2XE9AwQA2XE/MAwDBATZkDADBADZ
kDIDBAPZkDgwDQQCAAIwBwMFACoCBzAwDQYJKoZIhvcNAQELBQADggEBADZEWvNw
OLVOvvoCZPKoecMbl+fZbcWyMHN15vKd8s3lqFa65X8clkkLvur0NIPfLFm6WuKe
g4MN8HDn/MhHW1C9qLIYQD1AKCRmUdd52NA5+AiyneS29cjh81/CHtnJmTUgmoXk
3WjemSzuMnHzlIPBHxbiiJRXCLI2CZUJ37t2gCisTPge3slJ/kbleomE6KfsQlTe
Wq90p37bbPbbUxSBXNDS0hHSy+ImOJxQDV8RcjIqq5w9cJCdfM3yYifAsKSp3YEH
04ct88FMc4JeNC8rmKNAqXNwnV3bd0XetW5wnNBQErwha17vzAdM/qS8u9Ut6EWE
agrKcmRZ/JhJeNk=
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:39 2025 by rpki-client