Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/K-bwkCEO7yOI6ARDq12rIja-TQA.roa
File: K-bwkCEO7yOI6ARDq12rIja-TQA.roa (raw, json)
Hash identifier: JDkx3ZHJ/AC/V225sqlLCYZTlCXwYHPmXTr2bbnq31k=
Subject key identifier: 2B:E6:F0:90:21:0E:EF:23:88:E8:04:43:AB:5D:AB:22:36:BE:4D:00
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0195A03F7BC17BAA55CB133DAE0DA9702B5A
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/K-bwkCEO7yOI6ARDq12rIja-TQA.roa
Signing time: Sun 16 Mar 2025 18:37:49 +0000
ROA not before: Sun 16 Mar 2025 18:37:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 62.171.230.0/24 maxlen: 24
194.238.78.0/24 maxlen: 24
194.238.79.0/24 maxlen: 24
213.18.220.0/22 maxlen: 24
217.177.0.0/21 maxlen: 24
217.177.32.0/24 maxlen: 24
217.179.56.0/22 maxlen: 24
217.179.72.0/22 maxlen: 24
217.179.124.0/22 maxlen: 24
217.179.220.0/22 maxlen: 24
217.180.12.0/24 maxlen: 24
217.180.13.0/24 maxlen: 24
217.180.14.0/24 maxlen: 24
217.180.20.0/24 maxlen: 24
217.180.22.0/23 maxlen: 24
217.180.38.0/24 maxlen: 24
217.180.45.0/24 maxlen: 24
217.180.46.0/24 maxlen: 24
217.180.59.0/24 maxlen: 24
217.181.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a0:3f:7b:c1:7b:aa:55:cb:13:3d:ae:0d:a9:70:2b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Mar 16 18:37:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2be6f090210eef2388e80443ab5dab2236be4d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:52:53:2b:18:5a:f0:48:1f:ce:21:ae:9f:59:
4e:14:9d:f3:fb:7a:1a:74:9f:7c:1d:6d:44:ca:f5:
ba:c8:ee:c0:06:1a:78:e7:d4:c6:73:6e:5d:9c:1f:
c6:9d:94:0d:1f:55:c5:fd:1a:97:c9:be:d4:fd:a6:
5d:ba:9d:ea:b1:ef:10:9c:d2:f2:ea:93:43:f3:dd:
bc:cc:82:8b:1e:93:8a:0a:f8:a9:be:90:a4:c7:c9:
44:6b:ae:77:b1:d5:cc:25:ae:d8:82:58:0a:3b:8c:
70:46:59:e1:66:9c:ca:87:79:71:a9:e7:65:6f:b8:
8d:ec:79:a9:df:dc:12:2b:8a:0e:e3:5c:ce:d1:4a:
fe:0b:87:73:a9:42:06:be:1e:7e:eb:92:b0:4c:0e:
26:61:2c:ec:58:51:a4:e9:d3:6f:5d:b8:0f:3b:64:
f4:bb:9f:55:56:46:30:a6:18:c9:b5:c5:25:ba:4d:
c6:f6:b5:dc:a3:c3:eb:f8:f5:f3:d7:fd:68:fb:e4:
f7:2d:a8:f9:3d:3f:8a:47:65:8b:e2:e3:5a:4c:cc:
d2:a2:2a:82:04:02:77:27:86:ef:9a:af:ce:90:3c:
38:b5:27:04:e2:4b:54:b9:6a:3e:f4:ad:a4:e1:b2:
09:37:d4:3b:e0:ee:1f:06:6b:57:97:ca:ef:14:eb:
ea:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E6:F0:90:21:0E:EF:23:88:E8:04:43:AB:5D:AB:22:36:BE:4D:00
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/K-bwkCEO7yOI6ARDq12rIja-TQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.230.0/24
194.238.78.0/23
213.18.220.0/22
217.177.0.0/21
217.177.32.0/24
217.179.56.0/22
217.179.72.0/22
217.179.124.0/22
217.179.220.0/22
217.180.12.0-217.180.14.255
217.180.20.0/24
217.180.22.0/23
217.180.38.0/24
217.180.45.0-217.180.46.255
217.180.59.0/24
217.181.80.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:ad:45:1c:7d:c8:2a:35:9d:b3:f5:27:0b:08:c4:a2:49:d6:
f3:3b:28:66:0a:1b:4b:9f:77:d6:fb:38:84:77:59:7f:70:25:
8a:ac:af:a7:99:aa:63:e1:95:0e:c5:00:50:af:d8:dd:c2:2e:
f5:f0:d7:c4:dc:95:27:28:57:03:40:c1:f7:72:de:4b:84:aa:
1c:eb:c4:be:fb:cd:4e:9a:a9:fd:60:a1:4a:bb:5a:07:95:fe:
ee:2f:38:03:3e:d3:30:a5:16:1b:85:a8:0c:fa:58:60:bd:5a:
fa:13:67:38:66:cc:97:0c:29:f3:c1:c5:13:33:7c:62:7b:d9:
70:ab:97:47:57:77:76:e5:69:e2:3c:8c:a8:95:67:44:63:53:
92:00:e9:36:82:0e:4b:d0:ed:f2:98:3d:4a:98:17:61:ce:97:
4b:d7:f6:a9:2c:b1:aa:f7:f6:bf:0a:f3:fe:0e:e7:30:be:94:
2a:08:bb:62:5e:8d:f4:27:b8:71:9b:83:81:4f:a0:2c:21:62:
e1:71:7c:b7:0a:52:2f:3b:62:90:5d:11:5a:75:e4:a4:ff:82:
85:5f:f0:91:ae:e9:ac:35:ff:00:12:12:c2:60:a6:4a:3a:2d:
b9:23:7e:93:87:c4:bb:e4:d1:d7:c3:60:db:7c:bb:48:56:ce:
91:4d:1d:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:14:37 2025 by rpki-client