Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/E_QW2dGCr2jOTXkGyZ2ii_FY7q4.roa
File: E_QW2dGCr2jOTXkGyZ2ii_FY7q4.roa (raw, json)
Hash identifier: BJK7YEyDPmKNaNYbExT/DnblylvHyKVOnthfx58dKIk=
Subject key identifier: 13:F4:16:D9:D1:82:AF:68:CE:4D:79:06:C9:9D:A2:8B:F1:58:EE:AE
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0195ADD1E8E454E545E1A9047CFA687FE3B0
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/E_QW2dGCr2jOTXkGyZ2ii_FY7q4.roa
Signing time: Wed 19 Mar 2025 09:52:49 +0000
ROA not before: Wed 19 Mar 2025 09:52:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 62.171.230.0/24 maxlen: 24
194.238.78.0/24 maxlen: 24
194.238.79.0/24 maxlen: 24
213.18.220.0/22 maxlen: 24
213.18.245.0/24 maxlen: 24
217.177.0.0/21 maxlen: 24
217.177.32.0/24 maxlen: 24
217.179.48.0/24 maxlen: 24
217.179.50.0/24 maxlen: 24
217.179.56.0/22 maxlen: 24
217.179.72.0/22 maxlen: 24
217.179.124.0/22 maxlen: 24
217.179.220.0/22 maxlen: 24
217.180.12.0/24 maxlen: 24
217.180.13.0/24 maxlen: 24
217.180.14.0/24 maxlen: 24
217.180.20.0/24 maxlen: 24
217.180.22.0/23 maxlen: 24
217.180.38.0/24 maxlen: 24
217.180.45.0/24 maxlen: 24
217.180.46.0/24 maxlen: 24
217.180.59.0/24 maxlen: 24
217.181.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ad:d1:e8:e4:54:e5:45:e1:a9:04:7c:fa:68:7f:e3:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Mar 19 09:52:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=13f416d9d182af68ce4d7906c99da28bf158eeae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:99:19:c0:4c:61:ef:1e:ab:3b:c4:8d:34:10:
fc:c2:38:a0:ca:7b:12:a6:a2:87:95:ab:27:15:29:
98:91:3f:44:9c:3c:be:62:ab:0e:7a:a3:29:38:a5:
90:70:a4:aa:5b:61:15:4b:75:a5:79:54:9b:c7:e6:
fa:58:93:d9:9d:a7:60:eb:93:26:db:f2:0d:49:0e:
1c:05:2e:d9:92:fa:9d:b1:8a:c9:9b:25:3a:89:2b:
17:f9:ff:88:43:c0:3a:f3:63:99:1f:4e:c8:97:77:
a6:fc:14:e1:7e:d9:c0:4f:20:5d:c8:03:ad:d7:fc:
f3:84:eb:34:c4:a0:e9:ff:e8:ef:fc:9f:d4:a7:19:
96:df:ed:ee:bf:66:7c:a2:81:10:e4:d6:32:23:a3:
dd:c6:34:00:4b:b9:b1:30:f2:e5:0e:47:17:4a:ff:
ee:4a:c0:7b:d7:20:3f:ff:0e:33:7a:70:e3:2b:c3:
55:6c:0a:dd:b5:84:e0:31:79:79:0d:c4:62:b9:fe:
b0:ba:ac:d9:22:c0:ed:13:80:ab:c7:15:3e:17:91:
13:f5:b9:97:e3:c2:40:46:d7:a6:6e:fb:2a:2f:6d:
02:43:b3:fb:63:65:cb:66:2c:f8:20:92:65:17:96:
6c:75:ca:88:57:5a:17:3d:4c:25:aa:dc:81:c4:66:
1f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F4:16:D9:D1:82:AF:68:CE:4D:79:06:C9:9D:A2:8B:F1:58:EE:AE
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/E_QW2dGCr2jOTXkGyZ2ii_FY7q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.230.0/24
194.238.78.0/23
213.18.220.0/22
213.18.245.0/24
217.177.0.0/21
217.177.32.0/24
217.179.48.0/24
217.179.50.0/24
217.179.56.0/22
217.179.72.0/22
217.179.124.0/22
217.179.220.0/22
217.180.12.0-217.180.14.255
217.180.20.0/24
217.180.22.0/23
217.180.38.0/24
217.180.45.0-217.180.46.255
217.180.59.0/24
217.181.80.0/22
Signature Algorithm: sha256WithRSAEncryption
51:ab:b5:59:24:7d:bb:57:b7:08:88:f6:a5:fe:5c:15:f7:51:
27:cb:4c:d2:1a:4d:7e:37:17:8d:76:0d:7b:11:8d:62:89:16:
f9:13:79:69:7e:58:25:e8:32:99:5c:52:ed:61:5d:52:ae:32:
5b:01:c4:62:16:5f:6b:35:9f:93:33:31:f9:f1:5d:46:15:b4:
a0:36:1a:9d:8b:e1:c0:6b:d8:d1:f1:52:91:76:c8:88:7a:d1:
ca:62:e6:7d:1c:7e:28:36:0e:22:ac:ba:ce:50:1e:90:c9:86:
27:c0:d9:e1:bb:c5:83:3f:65:a9:9f:b6:51:7b:a6:ac:7a:20:
ec:b6:20:09:bf:e7:da:4e:14:f6:e7:04:ca:cd:15:5a:d6:ad:
6f:11:b4:19:af:bf:7a:41:ea:26:95:56:81:1e:0a:7c:18:bf:
66:3a:c3:a0:d5:33:5b:dc:00:f8:6f:3e:fd:d9:61:e0:38:aa:
65:63:bd:73:dc:82:97:45:eb:44:34:39:c8:78:52:27:cf:51:
69:4b:18:81:d8:1d:d4:27:d6:d1:a8:e0:46:f0:1b:3f:fb:c0:
93:fc:dc:46:7c:d1:e1:15:ab:22:c5:fc:dc:81:2e:c6:b2:ff:
34:73:a7:e1:84:61:ce:a2:6a:23:9c:ff:ee:33:03:1b:be:ff:
73:55:f9:e5
-----BEGIN CERTIFICATE-----
MIIFfjCCBGagAwIBAgISAZWt0ejkVOVF4akEfPpof+OwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhNTgzNmRkZTliOWRhZWYzNWE4YTdmNzRkNjMyNmY2YjQy
ZGE3NGQwHhcNMjUwMzE5MDk1MjQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2Y0MTZkOWQxODJhZjY4Y2U0ZDc5MDZjOTlkYTI4YmYxNThlZWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJkZwExh7x6rO8SNNBD8wjigynsS
pqKHlasnFSmYkT9EnDy+YqsOeqMpOKWQcKSqW2EVS3WleVSbx+b6WJPZnadg65Mm
2/INSQ4cBS7ZkvqdsYrJmyU6iSsX+f+IQ8A682OZH07Il3em/BThftnATyBdyAOt
1/zzhOs0xKDp/+jv/J/UpxmW3+3uv2Z8ooEQ5NYyI6PdxjQAS7mxMPLlDkcXSv/u
SsB71yA//w4zenDjK8NVbArdtYTgMXl5DcRiuf6wuqzZIsDtE4CrxxU+F5ET9bmX
48JARtembvsqL20CQ7P7Y2XLZiz4IJJlF5ZsdcqIV1oXPUwlqtyBxGYfTwIDAQAB
o4ICijCCAoYwHQYDVR0OBBYEFBP0FtnRgq9ozk15BsmdoovxWO6uMB8GA1UdIwQY
MBaAFGpYNt3pudrvNain901jJva0LadNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUt
YzE5OTQyNzM3ZTZkLzEvRV9RVzJkR0NyMmpPVFhrR3laMmlpX0ZZN3E0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUtYzE5OTQyNzM3ZTZk
LzEvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGfBggrBgEFBQcBBwEB/wSBjzCBjDCBiQQCAAEwgYIDBAA+
q+YDBAHC7k4DBALVEtwDBADVEvUDBAPZsQADBADZsSADBADZszADBADZszIDBALZ
szgDBALZs0gDBALZs3wDBALZs9wwDAMEAtm0DAMEANm0DgMEANm0FAMEAdm0FgME
ANm0JjAMAwQA2bQtAwQA2bQuAwQA2bQ7AwQC2bVQMA0GCSqGSIb3DQEBCwUAA4IB
AQBRq7VZJH27V7cIiPal/lwV91Eny0zSGk1+NxeNdg17EY1iiRb5E3lpflgl6DKZ
XFLtYV1SrjJbAcRiFl9rNZ+TMzH58V1GFbSgNhqdi+HAa9jR8VKRdsiIetHKYuZ9
HH4oNg4irLrOUB6QyYYnwNnhu8WDP2Wpn7ZRe6aseiDstiAJv+faThT25wTKzRVa
1q1vEbQZr796QeomlVaBHgp8GL9mOsOg1TNb3AD4bz792WHgOKplY71z3IKXRetE
NDnIeFInz1FpSxiB2B3UJ9bRqOBG8Bs/+8CT/NxGfNHhFasixfzcgS7Gsv80c6fh
hGHOomojnP/uMwMbvv9zVfnl
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:58:25 2025 by rpki-client