Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/7V8XCbCI3q72iUFxj9Gv98F93nY.roa
File: 7V8XCbCI3q72iUFxj9Gv98F93nY.roa (raw, json)
Hash identifier: iMTKMwMOhuaTsVxAgLuJwU8QWula7hk0yx/tOH0GKqQ=
Subject key identifier: ED:5F:17:09:B0:88:DE:AE:F6:89:41:71:8F:D1:AF:F7:C1:7D:DE:76
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0195CED7E48EAC11C11CA56120E1C60B44D8
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/7V8XCbCI3q72iUFxj9Gv98F93nY.roa
Signing time: Tue 25 Mar 2025 19:46:50 +0000
ROA not before: Tue 25 Mar 2025 19:46:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43357
IP address blocks: 45.82.76.0/24 maxlen: 32
45.82.77.0/24 maxlen: 32
45.130.20.0/22 maxlen: 32
45.131.155.0/24 maxlen: 32
45.147.50.0/24 maxlen: 32
45.147.51.0/24 maxlen: 32
80.66.198.0/24 maxlen: 32
88.218.193.0/24 maxlen: 32
92.60.40.0/24 maxlen: 24
176.113.68.0/24 maxlen: 32
176.113.69.0/24 maxlen: 32
185.184.220.0/24 maxlen: 32
185.184.222.0/24 maxlen: 32
185.194.52.0/22 maxlen: 24
185.248.85.0/24 maxlen: 24
185.254.75.0/24 maxlen: 32
194.36.25.0/24 maxlen: 24
2a03:d9c0:3000::/48 maxlen: 48
2a03:d9c0:3001::/48 maxlen: 128
2a07:fe00:1::/48 maxlen: 48
2a09:7:2007::/48 maxlen: 48
2a0b:89c1:3::/48 maxlen: 48
2a0c:59c0:18::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ce:d7:e4:8e:ac:11:c1:1c:a5:61:20:e1:c6:0b:44:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Mar 25 19:46:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed5f1709b088deaef68941718fd1aff7c17dde76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:68:3a:f2:8b:2b:ff:1f:da:dc:79:19:0e:7b:
a2:14:23:bf:e3:71:41:f9:3b:ea:e2:1e:fa:71:a7:
ab:8b:b5:fc:55:ec:d6:60:f5:2d:fe:87:e9:d2:10:
0f:af:12:b0:3d:28:a0:d1:dd:89:fe:3a:5b:9d:c3:
0a:31:b0:b5:10:60:22:cd:62:13:49:d5:7e:51:44:
49:ad:0c:79:86:80:ed:4f:60:06:24:a4:b6:5d:5d:
74:fe:3e:bc:a3:26:a9:34:68:19:bc:0c:4a:91:43:
e6:ca:d1:ef:3d:6e:0b:9a:1d:6d:bf:ce:5a:18:21:
ce:f3:8a:36:97:7a:6a:30:da:6a:a8:f6:ee:15:eb:
f2:8f:22:a2:8c:f0:cd:26:ff:9a:0a:5d:83:e0:0e:
0d:5c:82:88:8a:41:e4:30:6e:cf:2a:cb:2d:68:e3:
54:44:42:dd:d8:79:e2:92:71:59:2a:c2:80:00:0d:
fd:b5:10:90:29:75:31:1a:c7:57:75:4f:76:fe:19:
6a:d0:b8:18:7c:65:4c:4c:43:7e:23:39:04:08:31:
9c:6f:d2:c9:97:7b:14:fa:12:03:2a:6b:53:51:d1:
e8:bf:a3:c8:0a:d2:a4:32:a8:9c:bc:1c:c5:6b:da:
02:7e:fd:80:d2:d6:f0:a5:6b:31:3a:8d:c8:99:dc:
17:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:5F:17:09:B0:88:DE:AE:F6:89:41:71:8F:D1:AF:F7:C1:7D:DE:76
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/7V8XCbCI3q72iUFxj9Gv98F93nY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.76.0/23
45.130.20.0/22
45.131.155.0/24
45.147.50.0/23
80.66.198.0/24
88.218.193.0/24
92.60.40.0/24
176.113.68.0/23
185.184.220.0/24
185.184.222.0/24
185.194.52.0/22
185.248.85.0/24
185.254.75.0/24
194.36.25.0/24
IPv6:
2a03:d9c0:3000::/47
2a07:fe00:1::/48
2a09:7:2007::/48
2a0b:89c1:3::/48
2a0c:59c0:18::/48
Signature Algorithm: sha256WithRSAEncryption
66:63:b3:38:2f:5b:3f:7f:58:16:6d:66:b7:7c:e5:a8:70:56:
0a:32:cd:ba:c4:64:58:b3:53:6e:e7:a4:67:7e:25:da:be:31:
9b:07:17:da:a7:b7:6d:1f:cc:11:d4:84:c2:fa:ca:e7:21:c2:
c3:8a:b7:25:1c:67:3a:a4:d1:71:2b:e4:f6:8c:59:51:68:c3:
52:27:00:17:72:50:c7:f4:6c:c3:96:cb:93:a9:85:d4:8b:a4:
8b:d8:8e:cb:84:a1:f3:80:df:76:91:9d:42:8a:2f:9e:9d:53:
1a:db:f3:ee:31:e8:ff:96:97:2c:0e:ae:2d:18:a4:e4:60:06:
b6:4a:72:05:f5:84:33:94:1a:2c:f4:83:0e:85:81:92:55:96:
a3:28:e8:58:26:b6:2b:c0:03:39:b8:fa:e8:51:37:76:a0:e5:
a2:55:07:4c:b4:84:c3:39:83:be:9b:5e:5f:a9:7a:aa:2b:b5:
2b:74:6b:9c:c9:8e:44:63:14:d6:65:06:76:7e:f1:cd:d8:eb:
0f:e4:41:1b:65:d0:09:be:28:79:5e:43:76:68:32:73:c9:c1:
99:35:46:65:51:29:4c:e6:c1:ab:57:0e:c5:41:26:1a:27:2a:
fb:ea:5e:6e:d9:7b:0d:02:28:9d:cb:5a:f6:06:31:d4:ee:6e:
94:69:80:75
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgISAZXO1+SOrBHBHKVhIOHGC0TYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NzZlYjJjYzQ2MmU2ZTRiZjBkZTY5YjlmNjM0ODc1ZGVi
YmFhZTIwHhcNMjUwMzI1MTk0NjUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDVmMTcwOWIwODhkZWFlZjY4OTQxNzE4ZmQxYWZmN2MxN2RkZTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGg68osr/x/a3HkZDnuiFCO/43FB
+Tvq4h76caeri7X8VezWYPUt/ofp0hAPrxKwPSig0d2J/jpbncMKMbC1EGAizWIT
SdV+UURJrQx5hoDtT2AGJKS2XV10/j68oyapNGgZvAxKkUPmytHvPW4Lmh1tv85a
GCHO84o2l3pqMNpqqPbuFevyjyKijPDNJv+aCl2D4A4NXIKIikHkMG7PKsstaONU
RELd2HniknFZKsKAAA39tRCQKXUxGsdXdU92/hlq0LgYfGVMTEN+IzkECDGcb9LJ
l3sU+hIDKmtTUdHov6PICtKkMqicvBzFa9oCfv2A0tbwpWsxOo3ImdwXQQIDAQAB
o4ICjzCCAoswHQYDVR0OBBYEFO1fFwmwiN6u9olBcY/Rr/fBfd52MB8GA1UdIwQY
MBaAFKV26yzEYubkvw3mm59jSHXeu6riMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEt
MjU0YWNkOTJiNGUxLzEvN1Y4WENiQ0kzcTcyaVVGeGo5R3Y5OEY5M25ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEtMjU0YWNkOTJiNGUx
LzEvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGkBggrBgEFBQcBBwEB/wSBlDCBkTBaBAIAATBUAwQBLVJM
AwQCLYIUAwQALYObAwQBLZMyAwQAUELGAwQAWNrBAwQAXDwoAwQBsHFEAwQAubjc
AwQAubjeAwQCucI0AwQAufhVAwQAuf5LAwQAwiQZMDMEAgACMC0DBwEqA9nAMAAD
BwAqB/4AAAEDBwAqCQAHIAcDBwAqC4nBAAMDBwAqDFnAABgwDQYJKoZIhvcNAQEL
BQADggEBAGZjszgvWz9/WBZtZrd85ahwVgoyzbrEZFizU27npGd+Jdq+MZsHF9qn
t20fzBHUhML6yuchwsOKtyUcZzqk0XEr5PaMWVFow1InABdyUMf0bMOWy5OphdSL
pIvYjsuEofOA33aRnUKKL56dUxrb8+4x6P+WlywOri0YpORgBrZKcgX1hDOUGiz0
gw6FgZJVlqMo6FgmtivAAzm4+uhRN3ag5aJVB0y0hMM5g76bXl+peqortSt0a5zJ
jkRjFNZlBnZ+8c3Y6w/kQRtl0Am+KHleQ3ZoMnPJwZk1RmVRKUzmwatXDsVBJhon
KvvqXm7Zew0CKJ3LWvYGMdTubpRpgHU=
-----END CERTIFICATE-----
Generated at Mon Apr 7 13:52:24 2025 by rpki-client