Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/9RWsRpHe3o61FOM9kyJe7TohoII.roa
File: 9RWsRpHe3o61FOM9kyJe7TohoII.roa (raw, json)
Hash identifier: 9rAJ1AvJc4c3sr5Elvm4i+mUUemyIJum4cOk0RIq+g4=
Subject key identifier: F5:15:AC:46:91:DE:DE:8E:B5:14:E3:3D:93:22:5E:ED:3A:21:A0:82
Certificate issuer: /CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Certificate serial: 0195ACF54438881CE6967CE428D1B526B4B5
Authority key identifier: 4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/9RWsRpHe3o61FOM9kyJe7TohoII.roa
Signing time: Wed 19 Mar 2025 05:51:49 +0000
ROA not before: Wed 19 Mar 2025 05:51:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 54994
IP address blocks: 140.150.0.0/24 maxlen: 24
140.150.1.0/24 maxlen: 24
140.150.2.0/24 maxlen: 24
140.150.3.0/24 maxlen: 24
140.150.4.0/24 maxlen: 24
140.150.5.0/24 maxlen: 24
140.150.6.0/24 maxlen: 24
140.150.7.0/24 maxlen: 24
140.150.10.0/24 maxlen: 24
140.150.11.0/24 maxlen: 24
140.150.12.0/24 maxlen: 24
140.150.14.0/24 maxlen: 24
140.150.15.0/24 maxlen: 24
140.150.18.0/24 maxlen: 24
140.150.19.0/24 maxlen: 24
140.150.20.0/24 maxlen: 24
140.150.21.0/24 maxlen: 24
140.150.22.0/24 maxlen: 24
140.150.23.0/24 maxlen: 24
140.150.24.0/24 maxlen: 24
140.150.25.0/24 maxlen: 24
140.150.26.0/24 maxlen: 24
140.150.27.0/24 maxlen: 24
140.150.28.0/24 maxlen: 24
140.150.29.0/24 maxlen: 24
140.150.30.0/24 maxlen: 24
140.150.31.0/24 maxlen: 24
140.150.32.0/24 maxlen: 24
140.150.33.0/24 maxlen: 24
140.150.34.0/24 maxlen: 24
140.150.35.0/24 maxlen: 24
140.150.36.0/24 maxlen: 24
140.150.37.0/24 maxlen: 24
140.150.38.0/24 maxlen: 24
140.150.40.0/24 maxlen: 24
140.150.41.0/24 maxlen: 24
140.150.42.0/24 maxlen: 24
140.150.43.0/24 maxlen: 24
140.150.44.0/24 maxlen: 24
140.150.46.0/24 maxlen: 24
140.150.47.0/24 maxlen: 24
146.103.64.0/24 maxlen: 24
146.103.65.0/24 maxlen: 24
146.103.66.0/24 maxlen: 24
146.103.67.0/24 maxlen: 24
146.103.68.0/24 maxlen: 24
146.103.71.0/24 maxlen: 24
146.103.73.0/24 maxlen: 24
146.103.74.0/24 maxlen: 24
146.103.75.0/24 maxlen: 24
146.103.76.0/24 maxlen: 24
146.103.77.0/24 maxlen: 24
146.103.78.0/24 maxlen: 24
146.103.79.0/24 maxlen: 24
146.103.80.0/24 maxlen: 24
146.103.81.0/24 maxlen: 24
146.103.82.0/24 maxlen: 24
146.103.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ac:f5:44:38:88:1c:e6:96:7c:e4:28:d1:b5:26:b4:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Validity
Not Before: Mar 19 05:51:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f515ac4691dede8eb514e33d93225eed3a21a082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ac:6e:49:0c:07:0e:74:81:e6:25:d6:d0:73:
ad:7f:5a:38:0c:94:ce:2d:28:4e:47:90:43:1d:50:
9d:78:56:5f:70:55:2d:21:8f:4d:d1:20:18:34:a0:
51:20:51:b9:d4:81:38:c3:19:61:81:2b:2a:51:40:
df:e8:59:c3:5c:6f:4e:fa:30:89:b8:78:bd:e9:88:
24:73:89:57:74:11:0b:df:f7:59:42:1d:27:b7:7e:
e3:f1:e5:5d:21:70:34:f7:1e:00:bc:29:cc:d8:91:
5a:ed:88:c1:cd:cc:8e:e7:d0:67:f4:e8:c3:7f:cb:
8c:cd:85:8c:af:c4:54:22:95:fd:28:56:74:81:bb:
29:c4:6d:db:23:67:33:53:9e:fb:96:1f:7e:4c:ff:
c0:34:74:fe:bb:11:7d:02:e0:f8:92:63:88:b0:a6:
e7:95:25:54:f3:d2:8e:88:c3:27:c0:51:77:19:3f:
b3:95:6e:ca:05:ab:ba:66:4d:2f:38:6f:90:44:cf:
8a:5d:22:5d:e4:97:42:f2:0b:20:2a:f1:f0:6e:71:
3f:89:b2:49:e8:c5:40:d4:57:d0:c9:23:e7:15:e2:
9f:20:1b:de:ea:2e:7c:4b:55:e4:d0:13:e4:97:70:
db:16:eb:ff:d9:ed:54:16:1e:bf:ac:6a:c0:57:41:
ce:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:15:AC:46:91:DE:DE:8E:B5:14:E3:3D:93:22:5E:ED:3A:21:A0:82
X509v3 Authority Key Identifier:
keyid:4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/9RWsRpHe3o61FOM9kyJe7TohoII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/S5Mx-nvkcNwXnhbDBumMbHMaV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.0.0/21
140.150.10.0-140.150.12.255
140.150.14.0/23
140.150.18.0-140.150.38.255
140.150.40.0-140.150.44.255
140.150.46.0/23
146.103.64.0-146.103.68.255
146.103.71.0/24
146.103.73.0-146.103.83.255
Signature Algorithm: sha256WithRSAEncryption
99:40:0a:d6:60:e1:08:b2:27:a8:a8:bc:2d:1e:24:37:b6:0c:
11:bc:a6:b3:03:b1:ea:ad:68:ef:c5:1a:b6:8b:7a:bd:02:6f:
4c:7d:f0:0d:80:65:76:13:1a:3a:77:d2:b0:11:02:df:e3:6e:
eb:b9:1d:e3:c8:42:54:44:60:45:f6:68:8f:f1:c9:2c:d5:e4:
a2:c4:f9:7f:49:15:a5:24:2a:80:3e:66:01:55:79:fe:98:ab:
4c:6e:a3:28:3d:c1:0d:db:36:0d:2e:47:41:9d:43:82:35:27:
bc:20:af:64:0b:46:46:45:b5:03:87:f6:4b:c1:6b:f9:af:16:
14:6a:b5:d6:de:65:91:26:34:10:d8:e2:1a:4f:de:eb:0e:81:
80:a8:06:25:82:09:4a:61:9b:46:1d:97:aa:ec:f7:1b:11:66:
d7:39:48:54:86:63:30:66:e8:c5:ce:08:97:6a:f6:da:32:04:
c8:41:ab:58:6b:83:85:1d:85:a3:b2:e6:87:5f:9f:4a:02:e4:
e7:22:78:5d:3b:17:82:e0:20:b1:58:ba:c5:50:d4:17:67:c9:
49:7b:12:ce:39:f3:de:4b:5d:3a:4f:33:12:09:2b:7c:6e:8e:
f3:c6:fd:81:16:86:0a:7a:d8:f4:7f:72:3b:64:14:85:1b:c9:
d7:83:1b:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:15:48 2025 by rpki-client