Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/bRTJ3zeHrOh2FJ50bTu5JvwoJN4.roa
File: bRTJ3zeHrOh2FJ50bTu5JvwoJN4.roa (raw, json)
Hash identifier: vvzQiJVtN8yhn2HTNQ/VZPF3cUWH7taD2q9FBaMJoaI=
Subject key identifier: 6D:14:C9:DF:37:87:AC:E8:76:14:9E:74:6D:3B:B9:26:FC:28:24:DE
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 01908F7A0BAEE3A4F5BFCF5D00BC63C848CD
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/bRTJ3zeHrOh2FJ50bTu5JvwoJN4.roa
Signing time: Sun 07 Jul 2024 23:14:18 +0000
ROA not before: Sun 07 Jul 2024 23:14:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13194
IP address blocks: 82.140.129.0/24 maxlen: 24
84.15.0.0/16 maxlen: 24
84.15.223.0/24 maxlen: 24
84.46.139.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
84.46.226.0/24 maxlen: 24
86.38.1.0/24 maxlen: 24
86.38.34.0/24 maxlen: 24
86.38.41.0/24 maxlen: 24
86.38.52.0/24 maxlen: 24
86.38.62.0/24 maxlen: 24
86.38.64.0/18 maxlen: 24
86.38.72.0/24 maxlen: 24
86.38.73.0/24 maxlen: 24
86.38.74.0/24 maxlen: 24
86.38.75.0/24 maxlen: 24
86.38.81.0/24 maxlen: 24
86.38.84.0/24 maxlen: 24
86.38.97.0/24 maxlen: 24
86.38.152.0/24 maxlen: 24
86.38.153.0/24 maxlen: 24
86.38.215.0/24 maxlen: 24
86.38.228.0/24 maxlen: 24
86.38.230.0/24 maxlen: 24
86.38.237.0/24 maxlen: 24
86.38.245.0/24 maxlen: 24
89.116.124.0/24 maxlen: 24
89.116.129.0/24 maxlen: 24
89.116.143.0/24 maxlen: 24
89.116.151.0/24 maxlen: 24
89.116.155.0/24 maxlen: 24
89.116.160.0/24 maxlen: 24
89.116.162.0/24 maxlen: 24
89.116.174.0/24 maxlen: 24
89.116.176.0/24 maxlen: 24
89.116.178.0/24 maxlen: 24
89.116.232.0/24 maxlen: 24
89.116.235.0/24 maxlen: 24
89.116.238.0/24 maxlen: 24
89.116.240.0/24 maxlen: 24
89.116.245.0/24 maxlen: 24
89.116.249.0/24 maxlen: 24
89.117.10.0/24 maxlen: 24
89.117.14.0/24 maxlen: 24
89.117.69.0/24 maxlen: 24
89.117.92.0/24 maxlen: 24
89.117.93.0/24 maxlen: 24
89.117.125.0/24 maxlen: 24
89.117.127.0/24 maxlen: 24
89.117.138.0/24 maxlen: 24
89.117.141.0/24 maxlen: 24
89.117.156.0/24 maxlen: 24
89.117.165.0/24 maxlen: 24
89.117.220.0/24 maxlen: 24
89.117.221.0/24 maxlen: 24
89.117.223.0/24 maxlen: 24
89.117.225.0/24 maxlen: 24
89.117.243.0/24 maxlen: 24
89.117.247.0/24 maxlen: 24
89.117.249.0/24 maxlen: 24
89.117.255.0/24 maxlen: 24
185.189.154.0/24 maxlen: 24
213.226.128.0/18 maxlen: 24
213.226.161.0/24 maxlen: 24
213.252.192.0/20 maxlen: 20
213.252.194.0/24 maxlen: 24
213.252.220.0/24 maxlen: 24
213.252.223.0/24 maxlen: 24
213.252.224.0/22 maxlen: 22
213.252.234.0/23 maxlen: 23
213.252.236.0/23 maxlen: 23
213.252.252.0/24 maxlen: 24
213.252.254.0/24 maxlen: 24
217.9.248.0/23 maxlen: 23
2a00:f500::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:8f:7a:0b:ae:e3:a4:f5:bf:cf:5d:00:bc:63:c8:48:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jul 7 23:14:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d14c9df3787ace876149e746d3bb926fc2824de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:8b:39:a6:2c:65:61:f6:30:35:8d:0d:94:a6:
7f:91:a6:b5:63:e2:d5:a4:8f:ab:77:ba:41:88:00:
16:bb:9e:92:97:0c:ed:be:41:f2:e3:c5:3c:ae:f4:
a4:a1:d5:1f:01:1f:17:ce:01:de:f6:a5:9b:08:3e:
a7:d0:7a:41:de:de:9f:9a:23:63:e0:58:f9:6f:be:
fc:69:ae:e2:49:ac:f1:ed:d5:6a:14:5a:41:e5:af:
9a:09:5b:51:bd:ff:7f:a4:aa:1f:74:59:06:c2:aa:
7f:0b:46:3c:0e:8b:9c:35:46:ce:76:0a:79:d6:8e:
39:e3:c4:15:82:a4:db:f1:00:e0:72:b0:1d:d9:96:
28:87:c2:6a:28:c2:f3:18:15:17:ac:df:09:11:75:
c4:2e:f8:0d:de:31:40:6a:b0:3a:bf:c2:3a:57:43:
c6:1a:71:e7:f8:da:3c:05:be:90:f9:da:5f:06:1c:
f7:26:f9:ba:f0:64:c2:3a:c8:ba:05:76:ac:66:0e:
88:00:07:4f:b1:db:87:35:58:f4:62:cb:9b:cc:43:
df:7c:4e:c2:39:7e:22:01:cd:ad:2c:e2:16:c5:f8:
d5:d4:eb:71:bd:7f:0a:7e:e2:fe:ef:89:79:24:d2:
b1:ea:ca:3c:bd:ac:c2:dc:6e:ff:c3:6e:15:c4:b2:
4c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:14:C9:DF:37:87:AC:E8:76:14:9E:74:6D:3B:B9:26:FC:28:24:DE
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/bRTJ3zeHrOh2FJ50bTu5JvwoJN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.129.0/24
84.15.0.0/16
84.46.139.0/24
84.46.204.0/24
84.46.207.0/24
84.46.226.0/24
86.38.1.0/24
86.38.34.0/24
86.38.41.0/24
86.38.52.0/24
86.38.62.0/24
86.38.64.0/18
86.38.152.0/23
86.38.215.0/24
86.38.228.0/24
86.38.230.0/24
86.38.237.0/24
86.38.245.0/24
89.116.124.0/24
89.116.129.0/24
89.116.143.0/24
89.116.151.0/24
89.116.155.0/24
89.116.160.0/24
89.116.162.0/24
89.116.174.0/24
89.116.176.0/24
89.116.178.0/24
89.116.232.0/24
89.116.235.0/24
89.116.238.0/24
89.116.240.0/24
89.116.245.0/24
89.116.249.0/24
89.117.10.0/24
89.117.14.0/24
89.117.69.0/24
89.117.92.0/23
89.117.125.0/24
89.117.127.0/24
89.117.138.0/24
89.117.141.0/24
89.117.156.0/24
89.117.165.0/24
89.117.220.0/23
89.117.223.0/24
89.117.225.0/24
89.117.243.0/24
89.117.247.0/24
89.117.249.0/24
89.117.255.0/24
185.189.154.0/24
213.226.128.0/18
213.252.192.0/20
213.252.220.0/24
213.252.223.0-213.252.227.255
213.252.234.0-213.252.237.255
213.252.252.0/24
213.252.254.0/24
217.9.248.0/23
IPv6:
2a00:f500::/29
Signature Algorithm: sha256WithRSAEncryption
06:e9:eb:05:97:6d:84:a0:07:79:40:98:75:ec:07:f4:84:cd:
5a:f9:20:66:b0:5b:c9:6f:b3:f2:1a:c3:a4:e4:26:0f:e2:a8:
11:c3:d4:d2:6e:8a:fe:e1:8b:ee:32:06:db:af:4e:b3:ee:c3:
48:e5:17:c5:67:fa:10:9e:f8:cf:d8:87:a0:6f:e3:58:38:3e:
ae:59:14:dd:1b:b2:b5:f2:f9:5f:dd:0e:86:f3:32:63:fb:97:
38:a1:5f:ff:1c:30:6c:3c:da:85:a4:a4:81:88:62:80:a1:bd:
f8:94:b1:d0:f4:37:58:1a:b0:15:b9:98:84:0a:c1:69:e5:5f:
0c:0e:49:33:3a:a4:46:94:bc:a7:93:eb:82:f7:86:51:c4:e3:
d5:9e:65:59:4b:66:3a:90:3e:d9:fb:00:db:e4:0f:a7:14:4d:
7c:c1:8b:8a:61:9c:42:43:f3:b1:13:8d:c3:9c:5f:18:70:d5:
d3:92:12:58:fc:4c:2c:83:f5:51:e6:0b:fa:fe:0b:5e:1a:f3:
b8:db:3d:a5:42:e3:4d:6b:87:e4:9c:40:81:d2:8b:3b:88:a6:
df:13:fa:b8:79:28:ff:81:31:f1:95:cb:0d:7b:90:20:4e:07:
6c:e2:8a:f4:13:6d:0d:c3:c1:d1:05:20:73:39:71:6a:39:b4:
1c:c2:e9:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:46 2025 by rpki-client