Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/RI6_Ylm0OvRNIuBmaNXBkQju3Yk.roa
File: RI6_Ylm0OvRNIuBmaNXBkQju3Yk.roa (raw, json)
Hash identifier: Key9h6OugArOg51mBNe9xKqO+f+YkSCqZYAKDW03ReM=
Subject key identifier: 44:8E:BF:62:59:B4:3A:F4:4D:22:E0:66:68:D5:C1:91:08:EE:DD:89
Certificate issuer: /CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Certificate serial: 0454F6D8
Authority key identifier: DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/RI6_Ylm0OvRNIuBmaNXBkQju3Yk.roa
Signing time: Fri 01 Jul 2022 05:49:02 +0000
ROA not before: Fri 01 Jul 2022 05:49:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 109.94.144.0/20 maxlen: 24
84.247.4.0/22 maxlen: 24
192.109.205.0/24 maxlen: 24
185.200.204.0/22 maxlen: 24
213.159.136.0/21 maxlen: 24
37.251.200.0/21 maxlen: 24
62.122.40.0/21 maxlen: 24
193.17.225.0/24 maxlen: 24
88.135.96.0/20 maxlen: 24
37.251.176.0/20 maxlen: 24
84.247.40.0/22 maxlen: 24
89.40.220.0/23 maxlen: 24
86.106.152.0/22 maxlen: 24
141.136.16.0/20 maxlen: 24
176.223.172.0/22 maxlen: 24
86.104.20.0/22 maxlen: 24
94.24.24.0/22 maxlen: 24
176.223.176.0/22 maxlen: 24
195.128.136.0/24 maxlen: 24
86.104.248.0/22 maxlen: 24
91.227.240.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72677080 (0x454f6d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Validity
Not Before: Jul 1 05:49:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=448ebf6259b43af44d22e06668d5c19108eedd89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0d:9d:00:88:ae:e9:0c:61:d3:ab:23:7c:7d:
cb:30:b1:ed:78:11:84:9b:41:75:fa:a2:89:73:a5:
71:68:63:1e:19:9b:2d:2a:6f:c7:0b:4f:6b:69:3e:
c4:c1:7f:54:00:e8:41:47:4e:d4:a0:c4:bc:5b:3c:
b5:dd:1a:ac:21:71:29:00:6d:8f:83:2b:e5:e9:cc:
0c:8d:e8:87:fa:e6:82:34:8e:83:86:7a:70:dc:e2:
e3:86:4b:32:72:fb:a3:da:ce:50:c9:66:80:ce:c3:
ed:d2:23:03:dc:2a:87:fa:21:d6:cc:00:30:2d:b6:
2b:88:f2:f3:7e:b9:76:2b:86:35:50:52:28:58:5f:
d6:d5:f0:49:02:21:bd:c7:12:3d:5e:c2:9b:99:29:
84:15:1b:c2:7c:4a:c6:ab:38:7a:3b:39:5a:9e:b8:
36:9a:48:9b:61:50:e6:f0:b0:95:3b:57:3d:cf:aa:
64:8a:ed:2a:a5:8a:f9:47:59:8a:c8:f2:28:ff:f1:
6c:73:4b:8b:8c:1d:a9:5d:30:59:c3:c9:53:f3:e7:
02:1e:72:f8:7c:f9:fc:03:8f:d8:95:0b:07:ac:9c:
b4:69:ac:1b:7a:91:d5:e8:a5:88:64:87:8f:03:8d:
82:5e:ec:ce:c8:58:4e:5f:3d:8a:28:6b:71:d6:d5:
81:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:8E:BF:62:59:B4:3A:F4:4D:22:E0:66:68:D5:C1:91:08:EE:DD:89
X509v3 Authority Key Identifier:
keyid:DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/RI6_Ylm0OvRNIuBmaNXBkQju3Yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/2-jMj1rx5zYtRU892RqClSkZ22E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.251.176.0/20
37.251.200.0/21
62.122.40.0/21
84.247.4.0/22
84.247.40.0/22
86.104.20.0/22
86.104.248.0/22
86.106.152.0/22
88.135.96.0/20
89.40.220.0/23
91.227.240.0/23
94.24.24.0/22
109.94.144.0/20
141.136.16.0/20
176.223.172.0-176.223.179.255
185.200.204.0/22
192.109.205.0/24
193.17.225.0/24
195.128.136.0/24
213.159.136.0/21
Signature Algorithm: sha256WithRSAEncryption
7c:28:87:3d:cd:f9:c1:1c:9e:91:33:5c:5c:71:20:7a:1b:b3:
6c:d6:63:24:ca:4c:59:34:24:f8:c9:e5:46:be:d8:65:35:cf:
ad:87:5b:ab:90:6c:18:ae:af:00:32:f3:e9:36:30:81:f3:73:
d3:27:9f:c8:dd:dc:8c:09:fc:d3:72:cf:01:28:ce:ea:d2:f4:
ea:25:32:bc:13:71:97:3f:82:08:f0:da:b8:3f:d5:0a:0a:a2:
6f:bf:fa:d8:92:93:b6:1e:3a:6c:58:95:e6:26:63:2a:99:b6:
76:32:7e:27:15:57:d1:70:8e:02:ee:b7:68:2b:c1:d4:c9:b4:
2d:07:1b:a5:78:26:8b:b0:73:2d:39:9a:75:84:03:6e:37:90:
5a:b3:14:0f:4d:b5:83:ef:97:0e:41:d3:70:9d:50:f7:95:71:
a1:04:ed:e5:fb:93:7d:cc:b3:c4:74:17:ee:d8:32:4a:66:b7:
9c:23:d1:73:bf:84:de:6a:e7:1f:b7:a9:df:d0:90:c3:74:3d:
f4:e8:a0:14:2c:36:78:e3:38:da:e8:f3:ac:ad:e4:42:09:57:
33:89:2e:20:1c:1d:69:10:d7:5a:95:97:fd:5d:6e:2e:e2:3d:
05:54:29:fd:8b:8a:37:7e:3b:97:6d:a3:8d:a2:82:77:b6:b0:
bb:c6:f0:06
-----BEGIN CERTIFICATE-----
MIIFbjCCBFagAwIBAgIEBFT22DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YmU4Y2M4ZjVhZjFlNzM2MmQ0NTRmM2RkOTFhODI5NTI5MTlkYjYxMB4XDTIyMDcw
MTA1NDkwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDQ4ZWJmNjI1OWI0
M2FmNDRkMjJlMDY2NjhkNWMxOTEwOGVlZGQ4OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIsNnQCIrukMYdOrI3x9yzCx7XgRhJtBdfqiiXOlcWhjHhmb
LSpvxwtPa2k+xMF/VADoQUdO1KDEvFs8td0arCFxKQBtj4Mr5enMDI3oh/rmgjSO
g4Z6cNzi44ZLMnL7o9rOUMlmgM7D7dIjA9wqh/oh1swAMC22K4jy8365diuGNVBS
KFhf1tXwSQIhvccSPV7Cm5kphBUbwnxKxqs4ejs5Wp64NppIm2FQ5vCwlTtXPc+q
ZIrtKqWK+UdZisjyKP/xbHNLi4wdqV0wWcPJU/PnAh5y+Hz5/AOP2JULB6yctGms
G3qR1eiliGSHjwONgl7szshYTl89iihrcdbVgesCAwEAAaOCAogwggKEMB0GA1Ud
DgQWBBREjr9iWbQ69E0i4GZo1cGRCO7diTAfBgNVHSMEGDAWgBTb6MyPWvHnNi1F
Tz3ZGoKVKRnbYTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzItak1qMXJ4NXpZdFJVODkyUnFDbFNrWjIyRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODAvYTU3M2ZlLTZlMGUtNGJmZi05OWZjLTI2MjFkNWM5OWNhYi8x
L1JJNl9ZbG0wT3ZSTkl1Qm1hTlhCa1FqdTNZay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAv
YTU3M2ZlLTZlMGUtNGJmZi05OWZjLTI2MjFkNWM5OWNhYi8xLzItak1qMXJ4NXpZ
dFJVODkyUnFDbFNrWjIyRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
nQYIKwYBBQUHAQcBAf8EgY0wgYowgYcEAgABMIGAAwQEJfuwAwQDJfvIAwQDPnoo
AwQCVPcEAwQCVPcoAwQCVmgUAwQCVmj4AwQCVmqYAwQEWIdgAwQBWSjcAwQBW+Pw
AwQCXhgYAwQEbV6QAwQEjYgQMAwDBAKw36wDBAKw37ADBAK5yMwDBADAbc0DBADB
EeEDBADDgIgDBAPVn4gwDQYJKoZIhvcNAQELBQADggEBAHwohz3N+cEcnpEzXFxx
IHobs2zWYyTKTFk0JPjJ5Ua+2GU1z62HW6uQbBiurwAy8+k2MIHzc9Mnn8jd3IwJ
/NNyzwEozurS9OolMrwTcZc/ggjw2rg/1QoKom+/+tiSk7YeOmxYleYmYyqZtnYy
ficVV9FwjgLut2grwdTJtC0HG6V4Jouwcy05mnWEA243kFqzFA9NtYPvlw5B03Cd
UPeVcaEE7eX7k33Ms8R0F+7YMkpmt5wj0XO/hN5q5x+3qd/QkMN0PfTooBQsNnjj
ONro86yt5EIJVzOJLiAcHWkQ11qVl/1dbi7iPQVUKf2Lijd+O5dto42igne2sLvG
8AY=
-----END CERTIFICATE-----
Generated at Wed Mar 12 07:02:45 2025 by rpki-client