Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/WCwlNGrnqXg0s07Q732U-2ylHg4.roa
File: WCwlNGrnqXg0s07Q732U-2ylHg4.roa (raw, json)
Hash identifier: JC3pVBoWwnSgFg4cCXzdGvV9c4AWdX+y7n3AH9a1Lis=
Subject key identifier: 58:2C:25:34:6A:E7:A9:78:34:B3:4E:D0:EF:7D:94:FB:6C:A5:1E:0E
Certificate issuer: /CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Certificate serial: 01942444CBA64DF87DB52F9C548D420AD7CE
Authority key identifier: 92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/WCwlNGrnqXg0s07Q732U-2ylHg4.roa
Signing time: Wed 01 Jan 2025 23:47:55 +0000
ROA not before: Wed 01 Jan 2025 23:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19905
IP address blocks: 45.153.116.0/24 maxlen: 24
45.153.117.0/24 maxlen: 24
45.153.118.0/24 maxlen: 24
45.153.119.0/24 maxlen: 24
151.236.160.0/24 maxlen: 24
151.236.161.0/24 maxlen: 24
151.236.162.0/24 maxlen: 24
151.236.163.0/24 maxlen: 24
151.236.164.0/24 maxlen: 24
151.236.165.0/24 maxlen: 24
151.236.166.0/24 maxlen: 24
151.236.167.0/24 maxlen: 24
151.236.168.0/24 maxlen: 24
151.236.169.0/24 maxlen: 24
151.236.172.0/24 maxlen: 24
151.236.173.0/24 maxlen: 24
151.236.174.0/24 maxlen: 24
151.236.175.0/24 maxlen: 24
151.236.176.0/24 maxlen: 24
151.236.178.0/24 maxlen: 24
151.236.179.0/24 maxlen: 24
151.236.180.0/24 maxlen: 24
151.236.181.0/24 maxlen: 24
151.236.182.0/24 maxlen: 24
151.236.183.0/24 maxlen: 24
151.236.188.0/24 maxlen: 24
151.236.189.0/24 maxlen: 24
151.236.190.0/24 maxlen: 24
151.236.191.0/24 maxlen: 24
198.160.168.0/24 maxlen: 24
198.176.117.0/24 maxlen: 24
2a10:2200:b::/48 maxlen: 48
2a10:2200:c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:cb:a6:4d:f8:7d:b5:2f:9c:54:8d:42:0a:d7:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Validity
Not Before: Jan 1 23:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=582c25346ae7a97834b34ed0ef7d94fb6ca51e0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9a:cc:fa:3a:23:0a:89:ca:c7:18:2e:23:1e:
33:57:94:33:5f:71:24:49:56:64:ac:1b:e8:90:b3:
15:16:55:00:07:91:90:f3:2c:cf:6b:09:de:05:44:
c5:06:43:a7:6a:19:13:3f:b6:ab:76:1e:ce:27:41:
cd:83:f6:fa:ba:7d:50:32:17:94:6a:e0:d2:b3:4e:
14:d1:22:3c:9d:3f:37:9c:4b:80:54:57:78:1f:29:
69:a0:32:c1:29:c1:ac:eb:5f:b7:06:d5:c1:f9:42:
79:9a:5c:b5:33:d3:60:8f:5e:a2:30:3a:36:80:1f:
ad:66:9f:df:0e:87:ce:20:06:88:a5:16:76:d2:8b:
11:72:ba:ad:be:65:3e:e2:c8:7b:de:91:bd:e9:cf:
8e:5a:a9:0a:b3:a3:be:41:47:07:13:e7:92:ab:98:
fa:5f:69:cb:e6:87:57:fb:69:12:58:75:6f:75:96:
99:6c:da:75:3a:e2:0f:88:db:1c:41:fe:5c:59:b3:
96:b2:bb:52:09:92:44:7b:6b:f8:7c:ad:cb:78:a0:
ed:f9:2b:cc:14:2b:2f:dc:74:23:91:ad:aa:e2:23:
93:d1:0b:14:54:71:31:09:d2:9c:8e:c7:71:3b:00:
b3:35:c6:3e:a7:c2:9a:19:17:54:35:90:df:e9:3a:
1f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2C:25:34:6A:E7:A9:78:34:B3:4E:D0:EF:7D:94:FB:6C:A5:1E:0E
X509v3 Authority Key Identifier:
keyid:92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/WCwlNGrnqXg0s07Q732U-2ylHg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/khkujXhVgfcrGGRCJL2MP6ii0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.116.0/22
151.236.160.0-151.236.169.255
151.236.172.0-151.236.176.255
151.236.178.0-151.236.183.255
151.236.188.0/22
198.160.168.0/24
198.176.117.0/24
IPv6:
2a10:2200:b::-2a10:2200:c:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
44:de:1b:0b:52:a5:a9:61:c5:11:4e:c9:af:a7:ec:2b:d9:6b:
92:2e:f6:c8:b0:3a:c5:7b:79:53:fc:28:8b:84:19:27:a7:33:
38:e8:8b:d0:6d:9e:b3:30:37:b0:6d:7c:39:0e:67:02:f8:13:
c4:f2:f3:a1:2c:08:d1:6a:fc:ae:91:31:b8:f5:b5:b8:95:7c:
86:57:ae:b2:9d:83:56:6b:21:44:2c:35:5c:76:bc:b9:02:56:
0f:48:21:3e:f5:b2:1f:53:ad:5d:7b:aa:93:72:f4:dc:ca:54:
4a:15:c1:ea:66:80:86:07:08:b5:c0:93:a2:09:93:c5:32:fb:
5d:9d:4a:1f:8b:2c:cb:9a:ba:a5:dd:57:50:b5:0f:0f:42:14:
d9:df:0f:25:1a:51:16:37:49:a9:32:41:b5:ee:a4:55:6a:a5:
b1:f8:b5:e9:0f:1b:9e:27:1a:96:32:76:97:36:a8:f5:1f:cf:
b4:7f:c8:3b:57:25:c6:2a:a6:ad:37:e9:59:ea:1e:24:78:15:
a3:a6:9a:56:74:4b:ed:52:3f:db:df:00:b4:ac:23:dd:e6:03:
b4:ad:72:9d:67:de:e5:01:f1:fe:2c:9e:35:e0:78:a1:f7:3a:
89:4a:2e:51:10:19:0f:e8:ea:60:cc:e9:72:91:a2:54:b4:74:
33:0a:5c:d6
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgISAZQkRMumTfh9tS+cVI1CCtfOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMTkyZThkNzg1NTgxZjcyYjE4NjQ0MjI0YmQ4YzNmYThh
MmQxMWIwHhcNMjUwMTAxMjM0NzU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODJjMjUzNDZhZTdhOTc4MzRiMzRlZDBlZjdkOTRmYjZjYTUxZTBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm5rM+jojConKxxguIx4zV5QzX3Ek
SVZkrBvokLMVFlUAB5GQ8yzPawneBUTFBkOnahkTP7ardh7OJ0HNg/b6un1QMheU
auDSs04U0SI8nT83nEuAVFd4HylpoDLBKcGs61+3BtXB+UJ5mly1M9Ngj16iMDo2
gB+tZp/fDofOIAaIpRZ20osRcrqtvmU+4sh73pG96c+OWqkKs6O+QUcHE+eSq5j6
X2nL5odX+2kSWHVvdZaZbNp1OuIPiNscQf5cWbOWsrtSCZJEe2v4fK3LeKDt+SvM
FCsv3HQjka2q4iOT0QsUVHExCdKcjsdxOwCzNcY+p8KaGRdUNZDf6Tof0wIDAQAB
o4ICYTCCAl0wHQYDVR0OBBYEFFgsJTRq56l4NLNO0O99lPtspR4OMB8GA1UdIwQY
MBaAFJIZLo14VYH3KxhkQiS9jD+ootEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2hrdWpYaFZnZmNyR0dSQ0pMMk1QNmlpMFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9kOWIzOTctZTEwNS00YWM5LTg1Mzct
MDA4NWEzNjVhMjVmLzEvV0N3bE5Hcm5xWGcwczA3UTczMlUtMnlsSGc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi9kOWIzOTctZTEwNS00YWM5LTg1MzctMDA4NWEzNjVhMjVm
LzEva2hrdWpYaFZnZmNyR0dSQ0pMMk1QNmlpMFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHcGCCsGAQUFBwEHAQH/BGgwZjBIBAIAATBCAwQCLZl0MAwD
BAWX7KADBAGX7KgwDAMEApfsrAMEAJfssDAMAwQBl+yyAwQDl+ywAwQCl+y8AwQA
xqCoAwQAxrB1MBoEAgACMBQwEgMHACoQIgAACwMHACoQIgAADDANBgkqhkiG9w0B
AQsFAAOCAQEARN4bC1KlqWHFEU7Jr6fsK9lrki72yLA6xXt5U/woi4QZJ6czOOiL
0G2eszA3sG18OQ5nAvgTxPLzoSwI0Wr8rpExuPW1uJV8hleusp2DVmshRCw1XHa8
uQJWD0ghPvWyH1OtXXuqk3L03MpUShXB6maAhgcItcCTogmTxTL7XZ1KH4ssy5q6
pd1XULUPD0IU2d8PJRpRFjdJqTJBte6kVWqlsfi16Q8bnicaljJ2lzao9R/PtH/I
O1clxiqmrTfpWeoeJHgVo6aaVnRL7VI/298AtKwj3eYDtK1ynWfe5QHx/iyeNeB4
ofc6iUouURAZD+jqYMzpcpGiVLR0Mwpc1g==
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:53:25 2025 by rpki-client