Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/NVbWpfkBBf5htk5F82CmdeFF19I.roa
File: NVbWpfkBBf5htk5F82CmdeFF19I.roa (raw, json)
Hash identifier: ehdTbKkpxHmHtqFpem0nx3N2N7nK7z8U4LCzB5Hb47s=
Subject key identifier: 35:56:D6:A5:F9:01:05:FE:61:B6:4E:45:F3:60:A6:75:E1:45:D7:D2
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 019420D5F1501496DAAC60EFB3D718789ECF
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/NVbWpfkBBf5htk5F82CmdeFF19I.roa
Signing time: Wed 01 Jan 2025 07:47:59 +0000
ROA not before: Wed 01 Jan 2025 07:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42473
IP address blocks: 37.235.3.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
94.16.98.0/24 maxlen: 24
94.16.100.0/24 maxlen: 24
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.204.0/24 maxlen: 24
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.216.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.240.0/24 maxlen: 24
144.208.241.0/24 maxlen: 24
144.208.242.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
144.208.254.0/24 maxlen: 24
144.208.255.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
178.255.152.0/21 maxlen: 32
185.2.176.0/22 maxlen: 32
185.2.176.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.228.148.0/22 maxlen: 22
188.65.72.0/21 maxlen: 32
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
188.172.247.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
194.1.206.0/24 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
2a00:11c0::/32 maxlen: 128
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:46::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:5c::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:6c::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a01:aea0:dd1::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a05:8900:36::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:f1:50:14:96:da:ac:60:ef:b3:d7:18:78:9e:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 1 07:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3556d6a5f90105fe61b64e45f360a675e145d7d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:81:d7:d1:ad:4c:7b:65:ba:50:b4:77:e1:e7:
0b:3e:af:8f:c3:d6:5d:1f:5c:e0:e8:16:59:ea:10:
de:06:33:4b:b7:65:46:5b:68:ec:31:6c:56:a7:2d:
0e:a7:ba:1e:cc:e5:3a:57:5c:0f:9a:4a:21:92:02:
40:7c:76:54:6f:bf:9f:87:6f:78:20:50:17:8e:22:
ff:1f:39:17:e3:c8:43:e2:e4:9b:90:b5:47:0e:eb:
4c:3a:8e:39:52:f8:64:43:82:0b:93:7b:2a:43:cb:
95:a8:ea:87:55:a1:c8:47:4e:be:9f:e0:8d:bf:cb:
11:b5:7d:69:85:92:67:ce:2b:47:fd:27:d4:b0:83:
fe:4e:7a:3f:34:d2:20:12:4d:df:0a:a0:bd:e6:5e:
70:33:58:d2:fc:df:88:ca:9e:b9:2a:8d:ca:63:e2:
69:82:66:6b:ff:19:b4:b1:e7:43:86:b1:70:d5:ad:
41:40:1a:b9:8e:51:ff:b7:9d:1f:95:3b:36:31:4f:
37:89:3e:36:0f:ec:95:f9:29:b2:b5:a7:ce:dc:7c:
07:be:8e:cf:13:88:ca:70:53:8c:97:8f:b4:1e:05:
77:64:6d:a4:5e:80:3d:08:16:65:2c:5b:3a:ee:aa:
12:db:43:51:6c:9e:df:7f:bd:05:91:69:1c:b9:f9:
ed:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:56:D6:A5:F9:01:05:FE:61:B6:4E:45:F3:60:A6:75:E1:45:D7:D2
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/NVbWpfkBBf5htk5F82CmdeFF19I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.100.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
dc:8f:3f:cd:da:43:dd:9d:e9:0e:cb:e0:4a:0b:be:5f:79:d4:
46:3f:91:91:c5:50:1d:54:94:6c:ec:8d:c5:80:d8:42:8c:da:
27:28:8a:6d:4f:eb:63:67:fc:e5:0a:f0:5a:bd:83:fd:85:3f:
76:a2:63:79:61:7f:d5:d6:51:c0:e0:9a:2d:6b:c3:3e:92:19:
21:ac:79:d8:81:59:42:7e:05:eb:de:78:a9:fa:f4:96:1d:cb:
f8:2b:43:e5:d6:e2:1e:bf:a9:79:e2:a5:d4:fe:de:a6:86:31:
f4:67:7f:ad:a4:1c:63:8d:45:21:46:dc:a8:77:df:13:8f:38:
0e:f2:a1:61:e0:23:c7:bc:39:02:cf:d8:25:75:f5:95:47:8f:
90:00:12:b7:46:b1:92:20:f0:36:95:7a:08:5b:2b:ab:9b:21:
a6:fa:9f:dd:b9:1b:30:2a:29:66:a2:37:fc:ec:84:a3:9f:e4:
52:fb:e2:ad:df:2d:0a:ee:1b:aa:b1:28:9a:f3:53:64:6f:d1:
3f:69:5e:fa:69:01:12:83:eb:78:9d:bc:aa:9c:54:51:1b:73:
9d:81:1e:d7:7d:7a:4e:73:c9:48:b6:e7:40:c7:bf:a3:24:95:
b2:fa:9e:f6:52:e0:35:f2:a4:fa:78:f0:5b:74:e0:f2:a3:88:
9c:ef:1d:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:14:40 2025 by rpki-client