Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/Z6fDeX6jtfxBTlOyjwReTX-5Twg.roa
File: Z6fDeX6jtfxBTlOyjwReTX-5Twg.roa (raw, json)
Hash identifier: 4fBZC0/Lf77IgtyHHeXXcG/qsMADRkVH1VXZ3tK8e6U=
Subject key identifier: 67:A7:C3:79:7E:A3:B5:FC:41:4E:53:B2:8F:04:5E:4D:7F:B9:4F:08
Certificate issuer: /CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Certificate serial: 01823D04D7A8293A57B4206DC212EE690D56
Authority key identifier: DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/Z6fDeX6jtfxBTlOyjwReTX-5Twg.roa
Signing time: Wed 27 Jul 2022 00:18:23 +0000
ROA not before: Wed 27 Jul 2022 00:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 109.94.144.0/20 maxlen: 24
84.247.4.0/22 maxlen: 24
192.109.205.0/24 maxlen: 24
185.200.204.0/22 maxlen: 24
213.159.136.0/21 maxlen: 24
193.17.225.0/24 maxlen: 24
88.135.96.0/20 maxlen: 24
37.251.176.0/20 maxlen: 24
84.247.40.0/22 maxlen: 24
89.40.220.0/23 maxlen: 24
86.106.152.0/22 maxlen: 24
141.136.16.0/20 maxlen: 24
176.223.172.0/22 maxlen: 24
86.104.20.0/22 maxlen: 24
94.24.24.0/22 maxlen: 24
195.128.136.0/24 maxlen: 24
86.104.248.0/22 maxlen: 24
91.227.240.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3d:04:d7:a8:29:3a:57:b4:20:6d:c2:12:ee:69:0d:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Validity
Not Before: Jul 27 00:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67a7c3797ea3b5fc414e53b28f045e4d7fb94f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:5d:72:14:fd:9a:ee:54:f4:18:eb:0a:a8:
cb:12:da:28:35:01:9f:7f:1b:9e:79:a2:d9:82:39:
9d:b1:16:b7:53:ca:ee:c0:95:ac:69:06:ab:c9:57:
da:d1:6a:b0:b5:e3:47:95:0f:f5:2d:38:4b:c8:0d:
7f:d6:1d:ae:b9:60:59:5b:ab:a3:0b:2c:30:5d:b1:
07:0a:28:92:b4:22:31:a0:8c:58:02:18:7a:04:4f:
28:bc:89:0c:ef:cc:cd:12:b7:d6:df:9e:9b:8e:0d:
8d:b6:0f:af:60:82:3e:1c:1e:8e:39:12:60:8e:89:
46:c0:8f:de:12:e7:b5:22:1a:12:d1:82:db:03:32:
f3:f6:b1:b3:b4:67:a4:10:62:07:f9:73:66:39:58:
bc:d9:c5:ff:75:60:43:14:6d:e1:ca:08:94:9e:b1:
fb:88:ca:f9:c1:ad:44:a5:67:40:13:53:0c:2c:5b:
28:ee:18:1d:1b:ab:3b:b4:74:89:53:bf:1a:e6:f2:
df:e0:ce:a4:59:2e:30:00:dc:d6:9c:d2:ca:88:3f:
8f:11:2d:40:36:8c:b4:7d:e5:e7:f1:d8:76:4c:1b:
83:d2:d4:4e:a0:6e:88:1a:21:bc:70:96:fd:f9:57:
b7:4d:00:28:79:d1:52:07:40:1c:36:92:f0:07:a7:
d6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A7:C3:79:7E:A3:B5:FC:41:4E:53:B2:8F:04:5E:4D:7F:B9:4F:08
X509v3 Authority Key Identifier:
keyid:DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/Z6fDeX6jtfxBTlOyjwReTX-5Twg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/2-jMj1rx5zYtRU892RqClSkZ22E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.251.176.0/20
84.247.4.0/22
84.247.40.0/22
86.104.20.0/22
86.104.248.0/22
86.106.152.0/22
88.135.96.0/20
89.40.220.0/23
91.227.240.0/23
94.24.24.0/22
109.94.144.0/20
141.136.16.0/20
176.223.172.0/22
185.200.204.0/22
192.109.205.0/24
193.17.225.0/24
195.128.136.0/24
213.159.136.0/21
Signature Algorithm: sha256WithRSAEncryption
75:d8:d5:d4:01:e5:69:65:16:94:65:21:3f:99:c1:c9:94:9f:
7e:57:08:f8:22:d3:4f:dc:f6:92:7b:d3:3b:8a:42:82:a0:13:
5b:d8:33:9f:54:01:f6:38:01:67:4a:a0:e8:bc:47:41:5e:ab:
44:89:aa:f9:1f:1c:27:8f:42:c2:69:69:8e:5c:3e:24:8a:c8:
d1:2e:ad:d1:33:8f:30:70:1c:72:33:1b:81:92:34:f0:b1:ff:
6a:f5:45:87:80:6a:72:bf:e8:a6:be:14:d3:d9:e8:ca:b3:1a:
40:4e:15:8b:bc:19:1d:4f:dd:ad:36:0f:4d:2f:91:d0:c9:2a:
8c:ae:98:37:a9:b0:f2:60:79:1d:09:e3:cf:9b:18:a1:f3:8f:
f8:d4:42:e3:4a:cb:f2:2b:77:93:73:04:b7:e2:0d:b9:f6:b2:
bd:bc:30:3a:77:3a:9b:c9:33:3d:76:87:fd:4e:60:34:fa:59:
e8:52:73:df:e2:0a:21:49:5c:52:2c:3a:35:dd:a3:66:da:fb:
0e:a3:5d:ff:ec:94:35:53:8c:52:7b:2d:1c:3c:80:0d:48:cb:
fa:68:85:2e:0a:62:0d:33:72:76:a4:7c:2e:1a:a8:cb:0f:8e:
b7:f1:2d:86:fa:30:72:b2:cc:d3:08:e8:b1:b9:81:10:a5:15:
cf:68:ed:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 06:45:31 2025 by rpki-client