Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/TXdo8Dtj5BvSblmoaViD7GcbogE.roa
File: TXdo8Dtj5BvSblmoaViD7GcbogE.roa (raw, json)
Hash identifier: vTqOs1rcYDbfUBMJrlxWssLIN/ydOQtQ5cdw3XbsqiI=
Subject key identifier: 4D:77:68:F0:3B:63:E4:1B:D2:6E:59:A8:69:58:83:EC:67:1B:A2:01
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 019367B07E25C4C79F97D293E5E59C188A8B
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/TXdo8Dtj5BvSblmoaViD7GcbogE.roa
Signing time: Tue 26 Nov 2024 08:57:20 +0000
ROA not before: Tue 26 Nov 2024 08:57:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48309
IP address blocks: 31.25.104.0/22 maxlen: 22
31.25.108.0/24 maxlen: 24
31.25.109.0/24 maxlen: 24
31.25.110.0/23 maxlen: 23
37.191.64.0/20 maxlen: 24
37.191.80.0/22 maxlen: 24
37.191.84.0/23 maxlen: 24
37.191.86.0/24 maxlen: 24
37.191.88.0/22 maxlen: 22
37.191.88.0/23 maxlen: 24
37.191.92.0/22 maxlen: 24
188.136.128.0/24 maxlen: 24
188.136.129.0/24 maxlen: 24
188.136.130.0/24 maxlen: 24
188.136.131.0/24 maxlen: 24
188.136.132.0/24 maxlen: 24
188.136.133.0/24 maxlen: 24
188.136.134.0/24 maxlen: 24
188.136.135.0/24 maxlen: 24
188.136.140.0/22 maxlen: 24
188.136.141.0/24 maxlen: 24
188.136.142.0/24 maxlen: 24
188.136.143.0/24 maxlen: 24
188.136.144.0/22 maxlen: 22
188.136.144.0/24 maxlen: 24
188.136.145.0/24 maxlen: 24
188.136.146.0/24 maxlen: 24
188.136.147.0/24 maxlen: 24
188.136.149.0/24 maxlen: 24
188.136.150.0/24 maxlen: 24
188.136.151.0/24 maxlen: 24
188.136.152.0/24 maxlen: 24
188.136.153.0/24 maxlen: 24
188.136.154.0/24 maxlen: 24
188.136.155.0/24 maxlen: 24
188.136.156.0/24 maxlen: 24
188.136.157.0/24 maxlen: 24
188.136.158.0/24 maxlen: 24
188.136.159.0/24 maxlen: 24
188.136.160.0/24 maxlen: 24
188.136.161.0/24 maxlen: 24
188.136.162.0/24 maxlen: 24
188.136.163.0/24 maxlen: 24
188.136.164.0/24 maxlen: 24
188.136.165.0/24 maxlen: 24
188.136.166.0/24 maxlen: 24
188.136.167.0/24 maxlen: 24
188.136.168.0/24 maxlen: 24
188.136.169.0/24 maxlen: 24
188.136.170.0/24 maxlen: 24
188.136.171.0/24 maxlen: 24
188.136.172.0/24 maxlen: 24
188.136.173.0/24 maxlen: 24
188.136.175.0/24 maxlen: 24
188.136.185.0/24 maxlen: 24
188.136.187.0/24 maxlen: 24
188.136.189.0/24 maxlen: 24
188.136.190.0/24 maxlen: 24
188.136.191.0/24 maxlen: 24
188.136.192.0/23 maxlen: 23
188.136.194.0/24 maxlen: 24
188.136.196.0/24 maxlen: 24
188.136.200.0/24 maxlen: 24
188.136.209.0/24 maxlen: 24
188.136.210.0/24 maxlen: 24
188.136.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:67:b0:7e:25:c4:c7:9f:97:d2:93:e5:e5:9c:18:8a:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Nov 26 08:57:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d7768f03b63e41bd26e59a8695883ec671ba201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1e:d1:a6:65:b5:4d:98:63:0d:cb:d5:ad:1c:
be:5e:18:9e:a8:f9:92:48:ef:f5:11:b4:c5:53:5e:
32:c7:77:4b:db:06:36:a7:cb:f0:d4:a1:13:a6:1c:
fc:fb:cb:db:e4:77:87:dd:4e:a2:5b:29:2d:4a:78:
75:f8:27:72:40:fa:9d:d6:45:49:32:19:a1:72:58:
fd:ad:28:c3:5f:0a:3a:9e:51:c5:e0:46:e5:20:a4:
61:f6:6c:77:a3:b2:fd:dd:fd:06:0c:26:66:08:a9:
f4:b6:be:9f:d3:e0:f1:d6:53:12:a9:c3:f7:62:71:
f4:a6:de:dd:d8:0a:39:d6:99:a7:ec:f8:57:a2:af:
00:6c:ad:f5:35:b3:e7:20:7e:3e:20:c2:e4:b5:88:
29:6c:2b:60:0d:91:4e:fc:dd:6d:4d:1d:f3:9c:f2:
88:d2:10:56:d8:af:f5:25:0f:a4:1e:73:53:d0:8d:
61:94:27:43:c0:d0:cf:83:eb:9a:25:44:04:f8:24:
52:a8:9f:90:72:1f:f6:2a:67:3e:18:c4:71:8f:6e:
4f:ea:b3:68:7b:56:e0:20:be:62:6b:bd:c7:9d:43:
d7:ed:37:48:a9:78:be:b5:ba:bb:b4:28:77:25:be:
ed:46:91:13:56:ed:45:e7:26:32:34:99:e3:77:3a:
28:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:77:68:F0:3B:63:E4:1B:D2:6E:59:A8:69:58:83:EC:67:1B:A2:01
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/TXdo8Dtj5BvSblmoaViD7GcbogE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.104.0/21
37.191.64.0-37.191.86.255
37.191.88.0/21
188.136.128.0/21
188.136.140.0-188.136.147.255
188.136.149.0-188.136.173.255
188.136.175.0/24
188.136.185.0/24
188.136.187.0/24
188.136.189.0-188.136.194.255
188.136.196.0/24
188.136.200.0/24
188.136.209.0-188.136.211.255
Signature Algorithm: sha256WithRSAEncryption
19:53:89:37:ba:91:4c:26:c6:04:1f:ba:65:96:b7:b1:99:8a:
74:f2:80:72:60:6d:c3:d5:85:bf:11:95:7d:22:dd:4b:aa:e3:
3d:31:6b:6b:e3:76:43:6b:11:e7:f3:0a:25:19:b7:d5:5a:c4:
05:90:58:b3:0b:32:90:6f:bd:ad:87:1b:28:d5:4f:26:e5:72:
ce:9c:a9:bb:1f:b9:ba:d7:29:33:d9:97:5b:26:7f:45:24:e0:
14:50:58:f0:fb:dc:f2:14:3b:22:98:31:9d:5b:24:35:02:0b:
9d:29:10:de:df:a7:e6:e3:db:e4:a9:18:b1:7a:cc:0e:a9:b2:
b1:18:79:4f:27:b1:f0:88:a2:3a:6d:d6:1d:ef:b4:28:50:d9:
24:09:70:ee:b4:8d:e0:0b:8e:20:78:b4:e8:1d:e7:5f:66:56:
e8:6f:bb:52:29:e9:e0:51:78:49:84:21:07:cf:57:bc:4f:c8:
42:8a:94:e5:7f:c3:a4:a0:57:0b:77:f6:cb:5f:05:3b:85:3c:
58:83:74:4f:ec:26:30:98:62:e0:d7:88:e3:1b:02:0d:b7:bc:
f5:f8:6a:db:b4:ce:b4:ee:fc:0b:f8:4c:30:2b:90:f2:54:73:
6e:ed:ab:23:f1:d0:57:46:00:d8:df:76:d1:00:37:8d:c9:64:
df:02:0f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 10:01:07 2025 by rpki-client