Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/023b06-5b1e-44e9-98d8-781be598bf58/1/26QKERJdXVObWS-nAodsgy8rPkQ.roa
File: 26QKERJdXVObWS-nAodsgy8rPkQ.roa (raw, json)
Hash identifier: 7mG4Okhc2AS9jwX07PErmYY7zwNILQllBldn1OmKu+E=
Subject key identifier: DB:A4:0A:11:12:5D:5D:53:9B:59:2F:A7:02:87:6C:83:2F:2B:3E:44
Certificate issuer: /CN=715df9aaf9d1cd17ca40c952ad8f71f0a3432bb7
Certificate serial: 237F4A71
Authority key identifier: 71:5D:F9:AA:F9:D1:CD:17:CA:40:C9:52:AD:8F:71:F0:A3:43:2B:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cV35qvnRzRfKQMlSrY9x8KNDK7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/023b06-5b1e-44e9-98d8-781be598bf58/1/26QKERJdXVObWS-nAodsgy8rPkQ.roa
Signing time: Sat 01 Jan 2022 02:59:30 +0000
ROA not before: Sat 01 Jan 2022 02:59:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47441
IP address blocks: 94.125.188.0/23 maxlen: 23
94.125.188.0/24 maxlen: 24
94.125.189.0/24 maxlen: 24
93.174.79.0/24 maxlen: 24
31.210.138.0/23 maxlen: 23
31.210.137.0/24 maxlen: 24
31.210.138.0/24 maxlen: 24
31.210.139.0/24 maxlen: 24
31.210.141.0/24 maxlen: 24
31.210.140.0/23 maxlen: 23
31.210.142.0/24 maxlen: 24
31.210.143.0/24 maxlen: 24
31.210.140.0/24 maxlen: 24
31.210.142.0/23 maxlen: 23
93.174.74.0/23 maxlen: 23
93.174.78.0/23 maxlen: 23
93.174.78.0/24 maxlen: 24
93.174.77.0/24 maxlen: 24
93.174.76.0/23 maxlen: 23
93.174.76.0/24 maxlen: 24
93.174.76.0/22 maxlen: 22
93.174.72.0/24 maxlen: 24
93.174.73.0/24 maxlen: 24
93.174.74.0/24 maxlen: 24
93.174.75.0/24 maxlen: 24
93.174.72.0/22 maxlen: 22
93.174.72.0/23 maxlen: 23
93.174.72.0/21 maxlen: 21
185.10.136.0/24 maxlen: 24
185.10.138.0/23 maxlen: 23
185.10.137.0/24 maxlen: 24
185.10.138.0/24 maxlen: 24
185.10.136.0/23 maxlen: 23
185.10.139.0/24 maxlen: 24
185.10.136.0/22 maxlen: 22
2a02:e487::/32 maxlen: 32
2a02:e486::/32 maxlen: 32
2a02:e480::/32 maxlen: 32
2a02:e482::/32 maxlen: 32
2a02:e485::/32 maxlen: 32
2a02:e480::/29 maxlen: 29
2a02:e483::/32 maxlen: 32
2a02:e481::/32 maxlen: 32
2a02:e484::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 595544689 (0x237f4a71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=715df9aaf9d1cd17ca40c952ad8f71f0a3432bb7
Validity
Not Before: Jan 1 02:59:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dba40a11125d5d539b592fa702876c832f2b3e44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:dd:ec:18:f7:3b:df:a6:7d:7a:6a:b1:46:ef:
fd:f8:6e:5f:cc:b6:5b:14:9a:9c:8b:89:1f:6e:51:
c2:57:cc:66:1e:8e:4d:75:a4:a7:ff:46:72:c9:bd:
5c:00:36:82:3e:f3:4b:6b:d4:fd:06:60:de:71:f9:
d3:53:bb:b4:b0:b4:78:60:ac:2f:f7:0e:be:17:d2:
e2:34:f9:f4:3e:bd:3e:a8:55:bb:fc:3b:57:da:93:
57:25:1f:aa:2e:3b:41:c8:c7:ae:4e:f8:25:76:82:
84:a9:de:0c:b2:1d:f1:58:38:e5:04:85:54:84:c4:
04:bf:25:83:02:cc:c5:c8:19:60:bd:e6:62:81:9c:
36:0d:e1:49:04:c5:3d:65:4f:36:ed:60:5b:03:ad:
83:49:c3:ca:9f:5e:79:89:ef:ef:48:d2:bd:a6:a8:
24:c8:71:ce:60:41:05:0b:c2:69:47:12:4b:75:de:
39:33:fb:11:62:53:c4:de:ad:ba:9d:a5:e4:70:07:
ee:cb:bf:2c:d8:06:84:59:14:5e:15:8f:f8:d7:a9:
7e:f9:43:83:12:86:eb:be:59:24:36:2e:fa:b9:67:
92:53:90:cf:0e:5b:f6:b0:5d:a9:65:c3:7e:3a:33:
50:a7:18:a2:5d:f1:73:86:1a:28:fe:26:0a:d6:b0:
26:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A4:0A:11:12:5D:5D:53:9B:59:2F:A7:02:87:6C:83:2F:2B:3E:44
X509v3 Authority Key Identifier:
keyid:71:5D:F9:AA:F9:D1:CD:17:CA:40:C9:52:AD:8F:71:F0:A3:43:2B:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cV35qvnRzRfKQMlSrY9x8KNDK7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/023b06-5b1e-44e9-98d8-781be598bf58/1/26QKERJdXVObWS-nAodsgy8rPkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/023b06-5b1e-44e9-98d8-781be598bf58/1/cV35qvnRzRfKQMlSrY9x8KNDK7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.137.0-31.210.143.255
93.174.72.0/21
94.125.188.0/23
185.10.136.0/22
IPv6:
2a02:e480::/29
Signature Algorithm: sha256WithRSAEncryption
63:d1:a6:1f:d6:26:79:a1:9e:45:6f:bb:9a:7a:2c:55:ff:11:
6a:4a:77:e1:22:cf:4a:dd:b4:04:db:2e:fe:cb:a5:00:02:b4:
6a:b0:b4:21:45:aa:1d:0f:06:4f:86:5d:4e:da:78:2d:9f:d4:
40:99:47:b6:60:0d:c4:d7:7b:16:d0:89:a9:9b:5f:5d:1c:51:
b8:1d:66:d5:86:f7:10:9d:0d:54:05:1f:68:45:04:df:4e:ed:
06:cf:bf:fc:c8:d2:bb:0a:9e:e0:0e:18:e6:84:c1:d8:fa:dc:
3e:7f:e6:cd:61:b3:89:14:70:95:87:05:37:28:aa:cb:9a:3d:
14:78:e5:ec:6b:d8:c9:6b:0c:80:2d:74:6d:de:2e:f9:e7:5a:
0b:0e:e1:9b:1d:90:84:c6:f1:e2:b0:a1:c6:32:bd:8f:df:a3:
16:60:62:51:a3:d9:31:de:01:c6:eb:08:3a:23:85:7e:06:f8:
83:ae:4e:04:50:59:5d:56:8f:7b:2c:d2:28:48:ec:87:3a:d9:
3e:43:d4:37:b1:10:66:15:8f:33:a1:d6:95:8b:05:14:bd:0e:
42:05:51:15:32:67:a8:47:f3:96:9c:e9:15:6a:c7:84:c2:5b:
ed:ed:d0:3b:38:27:f2:9f:b2:f2:0d:ed:cc:78:99:8a:81:bf:
25:02:cb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:47:31 2025 by rpki-client