Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/jou9xzV0YVAMKTxJ_3B55SeFeQg.roa
File: jou9xzV0YVAMKTxJ_3B55SeFeQg.roa (raw, json)
Hash identifier: +Ibg+NlWG5E6JUiYzO6rQ+HF/oN+GoNRd2p0wcHWAP4=
Subject key identifier: 8E:8B:BD:C7:35:74:61:50:0C:29:3C:49:FF:70:79:E5:27:85:79:08
Certificate issuer: /CN=80f9a24bd26cc8217518a11f598e6372025e8ae9
Certificate serial: 01856BB7FDE51756F80146124E59E8E12269
Authority key identifier: 80:F9:A2:4B:D2:6C:C8:21:75:18:A1:1F:59:8E:63:72:02:5E:8A:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPmiS9JsyCF1GKEfWY5jcgJeiuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/jou9xzV0YVAMKTxJ_3B55SeFeQg.roa
Signing time: Sun 01 Jan 2023 05:04:58 +0000
ROA not before: Sun 01 Jan 2023 05:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3212
IP address blocks: 213.172.224.0/19 maxlen: 19
185.66.148.0/22 maxlen: 22
77.38.0.0/17 maxlen: 17
77.73.104.0/22 maxlen: 22
46.182.224.0/21 maxlen: 21
217.72.64.0/19 maxlen: 19
77.111.0.0/18 maxlen: 18
78.153.32.0/19 maxlen: 19
87.119.128.0/19 maxlen: 19
185.97.68.0/22 maxlen: 22
92.53.128.0/19 maxlen: 19
185.85.148.0/22 maxlen: 22
212.85.160.0/19 maxlen: 19
91.132.208.0/22 maxlen: 22
185.30.136.0/22 maxlen: 22
176.76.0.0/16 maxlen: 16
46.150.32.0/19 maxlen: 19
84.52.128.0/18 maxlen: 18
31.15.128.0/17 maxlen: 17
91.237.132.0/22 maxlen: 22
213.143.64.0/19 maxlen: 19
176.57.92.0/22 maxlen: 22
82.192.32.0/19 maxlen: 19
84.20.224.0/19 maxlen: 19
185.79.228.0/22 maxlen: 22
92.63.16.0/20 maxlen: 20
94.140.64.0/19 maxlen: 19
2a00:b2a0::/32 maxlen: 32
2a00:fc0::/32 maxlen: 32
2a00:13d8::/29 maxlen: 29
2a00:1c80::/29 maxlen: 29
2a05:acc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:b7:fd:e5:17:56:f8:01:46:12:4e:59:e8:e1:22:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f9a24bd26cc8217518a11f598e6372025e8ae9
Validity
Not Before: Jan 1 05:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e8bbdc7357461500c293c49ff7079e527857908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:39:dc:5b:f2:00:a5:a0:d7:32:06:16:f2:7d:
99:36:67:14:e3:ad:9d:69:ec:4a:cb:80:73:8f:f9:
d4:2c:8a:f8:46:b7:40:e4:36:94:e2:79:cd:c5:89:
f4:1f:55:1b:80:aa:1b:9d:a1:46:1e:21:0d:9e:76:
54:01:49:32:a0:4f:a7:3e:69:d7:5b:b0:e7:81:78:
3c:c1:bd:3d:9f:ee:ff:84:bf:3d:8d:2e:e0:cb:b4:
d3:1e:e4:ec:e6:22:c5:3f:32:66:36:0c:12:76:f4:
d6:b7:bf:ad:5b:eb:7a:02:07:b2:a4:0a:ca:b7:d6:
83:a8:a5:ad:4c:90:f2:3e:b5:26:2b:c7:8a:6a:01:
53:4c:8b:09:d7:9b:91:c4:fc:bb:37:96:b9:3b:f8:
14:11:a5:e9:de:1b:62:21:3e:38:2a:48:92:ef:90:
3e:67:ce:07:24:7b:5c:cd:16:99:7c:9b:86:b6:ec:
6b:87:8f:6f:21:05:0b:16:b3:da:62:3b:bd:47:ff:
0f:7c:fe:aa:01:dd:30:0d:5c:75:93:72:90:69:98:
12:a3:a2:9d:d0:4f:da:a5:53:33:bd:74:25:b8:0b:
ee:d6:d2:f3:c3:28:66:da:f4:e7:34:40:9e:87:17:
77:5b:24:05:44:ee:08:bd:18:25:9a:99:f9:29:7a:
5e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:8B:BD:C7:35:74:61:50:0C:29:3C:49:FF:70:79:E5:27:85:79:08
X509v3 Authority Key Identifier:
keyid:80:F9:A2:4B:D2:6C:C8:21:75:18:A1:1F:59:8E:63:72:02:5E:8A:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPmiS9JsyCF1GKEfWY5jcgJeiuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/jou9xzV0YVAMKTxJ_3B55SeFeQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/gPmiS9JsyCF1GKEfWY5jcgJeiuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.15.128.0/17
46.150.32.0/19
46.182.224.0/21
77.38.0.0/17
77.73.104.0/22
77.111.0.0/18
78.153.32.0/19
82.192.32.0/19
84.20.224.0/19
84.52.128.0/18
87.119.128.0/19
91.132.208.0/22
91.237.132.0/22
92.53.128.0/19
92.63.16.0/20
94.140.64.0/19
176.57.92.0/22
176.76.0.0/16
185.30.136.0/22
185.66.148.0/22
185.79.228.0/22
185.85.148.0/22
185.97.68.0/22
212.85.160.0/19
213.143.64.0/19
213.172.224.0/19
217.72.64.0/19
IPv6:
2a00:fc0::/32
2a00:13d8::/29
2a00:1c80::/29
2a00:b2a0::/32
2a05:acc0::/29
Signature Algorithm: sha256WithRSAEncryption
5d:9d:ca:2a:7f:42:08:71:33:c2:30:9d:a0:96:d3:53:48:fb:
76:a6:b8:f4:c7:9c:b0:7c:9a:bc:4a:fc:ad:dd:28:e0:39:df:
3b:43:b3:c8:16:91:23:69:b3:2a:fc:28:cf:61:93:f9:06:3e:
a0:52:5b:f2:e8:b3:7a:e3:96:59:32:af:9a:67:38:67:88:48:
61:74:c8:6d:0d:bc:3e:0c:25:2f:44:0d:4f:a7:35:b9:c3:08:
0b:14:31:87:fd:4e:15:0f:e1:10:78:20:64:55:7b:8c:9a:41:
e0:72:23:31:e3:44:a9:9b:71:2d:da:66:99:97:b5:1e:3d:bd:
2f:1f:c9:d3:aa:46:fd:d8:64:e5:05:37:55:20:03:f9:89:7e:
56:ba:d1:fb:c4:2d:0d:5a:b8:f8:aa:7e:1d:e3:89:46:07:f7:
69:b3:40:8f:4b:79:40:73:e5:63:ff:cc:1a:9c:ac:07:e2:52:
a3:91:cc:a1:85:0c:46:36:d2:21:7e:ce:52:ed:dd:d3:ff:25:
f1:71:91:ea:48:2c:ba:14:33:48:4a:81:e0:ea:ba:4c:5d:a1:
52:88:3f:d2:07:13:dc:38:e5:f9:a7:52:0a:19:8d:fb:3e:28:
c5:ff:30:cf:e0:a9:69:82:c6:11:e8:bf:70:cb:6b:f1:9b:09:
7c:80:61:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:48:58 2025 by rpki-client