Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/PncNRAiiyAjzUmMAY1g-TMH_PlY.roa
File: PncNRAiiyAjzUmMAY1g-TMH_PlY.roa (raw, json)
Hash identifier: jkf5oBMM4hzU6Y2fcZAqLDjWNwYbYhJT3Uz0jBAr+0c=
Subject key identifier: 3E:77:0D:44:08:A2:C8:08:F3:52:63:00:63:58:3E:4C:C1:FF:3E:56
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01942444862F9A849F113A0766B8F4026AEF
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/PncNRAiiyAjzUmMAY1g-TMH_PlY.roa
Signing time: Wed 01 Jan 2025 23:47:38 +0000
ROA not before: Wed 01 Jan 2025 23:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 45.136.184.0/22 maxlen: 24
62.106.75.0/24 maxlen: 24
62.133.34.0/24 maxlen: 24
77.75.225.0/24 maxlen: 24
185.255.54.0/24 maxlen: 24
2a0b:4080::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:86:2f:9a:84:9f:11:3a:07:66:b8:f4:02:6a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 23:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3e770d4408a2c808f352630063583e4cc1ff3e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bc:21:41:7b:6f:73:4e:45:47:59:0c:d5:20:
21:f8:b6:e8:4e:94:b0:fe:98:69:db:17:e8:7a:6a:
96:a1:e2:58:b9:ef:18:94:45:61:0b:36:ab:58:60:
00:4d:f0:1d:3b:37:f1:ea:90:f7:c2:4b:f1:e6:b3:
c9:ed:24:13:78:0b:70:fb:ef:d0:e2:a8:d8:3b:c6:
9f:72:32:6c:bd:35:03:89:5f:2b:3b:d6:bb:a0:ff:
2a:95:3e:88:23:f0:82:ac:33:52:21:0b:23:37:a7:
cc:36:0e:49:61:6b:8f:6b:09:9b:12:a6:e1:7a:c4:
43:29:10:72:ab:39:69:57:46:bd:0e:1e:ad:ef:60:
cc:2c:07:63:dc:64:67:85:da:bd:f2:2e:6f:92:0b:
7f:71:41:20:72:64:96:f5:66:d4:e0:46:93:f6:7c:
d9:b3:75:a8:bd:5a:ee:f0:93:ef:32:61:f4:2c:ba:
fc:ee:49:ee:32:43:5f:43:b5:09:92:24:12:fd:2e:
07:8b:ff:e5:d6:bb:11:f0:95:0a:1b:dd:34:e6:7a:
ab:17:2d:62:3b:8b:63:88:a4:09:c0:4e:f2:99:4a:
08:7d:77:93:75:2f:5f:68:d1:7b:2c:f3:e3:cb:15:
54:88:00:20:c7:d4:75:72:ee:96:b4:a8:4c:34:61:
62:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:77:0D:44:08:A2:C8:08:F3:52:63:00:63:58:3E:4C:C1:FF:3E:56
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/PncNRAiiyAjzUmMAY1g-TMH_PlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.184.0/22
62.106.75.0/24
62.133.34.0/24
77.75.225.0/24
185.255.54.0/24
IPv6:
2a0b:4080::/32
Signature Algorithm: sha256WithRSAEncryption
74:49:05:2a:d3:7d:5c:41:fa:4e:86:4d:63:bc:c4:e3:2a:ce:
5d:c2:1c:f3:cf:98:c3:b1:0a:3c:43:69:aa:21:ba:42:40:e7:
ee:a1:22:47:f7:11:c2:71:0b:fe:56:7d:eb:a6:b8:1b:89:c9:
46:88:e4:27:5b:34:c9:65:a5:f0:6c:95:90:7e:72:d1:1d:51:
ee:da:67:24:6a:7b:1a:dc:e9:a7:cd:97:5d:28:b8:7b:e7:20:
a7:cb:03:63:25:bc:49:06:c5:b2:b1:8a:c7:dc:5e:3a:c2:e9:
37:ea:bb:17:fe:5a:01:86:d3:03:61:61:00:63:da:67:fa:9f:
41:01:17:10:2b:d2:12:ad:22:4e:78:97:35:59:ee:d7:88:7f:
56:b8:9e:5b:e2:fa:39:de:95:7d:be:01:2c:e3:ee:6d:a2:c2:
94:76:df:6d:93:d6:9a:1b:3f:8a:7d:9d:98:f7:4f:d4:ac:1e:
25:c3:ee:2d:dc:aa:28:fe:75:81:59:50:89:2f:4d:79:38:d7:
3d:cc:85:62:76:d7:f9:e9:65:14:44:74:f9:cb:ee:d8:28:a0:
b3:34:81:7e:b5:ff:a7:55:93:9f:8a:0f:f0:5c:d6:13:f0:04:
ce:84:15:59:d4:ff:36:19:46:1a:b3:43:10:95:ba:a8:76:4d:
81:41:01:a3
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAZQkRIYvmoSfEToHZrj0AmrvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NzZlYjJjYzQ2MmU2ZTRiZjBkZTY5YjlmNjM0ODc1ZGVi
YmFhZTIwHhcNMjUwMTAxMjM0NzM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTc3MGQ0NDA4YTJjODA4ZjM1MjYzMDA2MzU4M2U0Y2MxZmYzZTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAobwhQXtvc05FR1kM1SAh+LboTpSw
/php2xfoemqWoeJYue8YlEVhCzarWGAATfAdOzfx6pD3wkvx5rPJ7SQTeAtw++/Q
4qjYO8afcjJsvTUDiV8rO9a7oP8qlT6II/CCrDNSIQsjN6fMNg5JYWuPawmbEqbh
esRDKRByqzlpV0a9Dh6t72DMLAdj3GRnhdq98i5vkgt/cUEgcmSW9WbU4EaT9nzZ
s3WovVru8JPvMmH0LLr87knuMkNfQ7UJkiQS/S4Hi//l1rsR8JUKG9005nqrFy1i
O4tjiKQJwE7ymUoIfXeTdS9faNF7LPPjyxVUiAAgx9R1cu6WtKhMNGFi7wIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFD53DUQIosgI81JjAGNYPkzB/z5WMB8GA1UdIwQY
MBaAFKV26yzEYubkvw3mm59jSHXeu6riMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEt
MjU0YWNkOTJiNGUxLzEvUG5jTlJBaWl5QWp6VW1NQVkxZy1UTUhfUGxZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEtMjU0YWNkOTJiNGUx
LzEvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCLYi4AwQA
PmpLAwQAPoUiAwQATUvhAwQAuf82MA0EAgACMAcDBQAqC0CAMA0GCSqGSIb3DQEB
CwUAA4IBAQB0SQUq031cQfpOhk1jvMTjKs5dwhzzz5jDsQo8Q2mqIbpCQOfuoSJH
9xHCcQv+Vn3rprgbiclGiOQnWzTJZaXwbJWQfnLRHVHu2mckansa3OmnzZddKLh7
5yCnywNjJbxJBsWysYrH3F46wuk36rsX/loBhtMDYWEAY9pn+p9BARcQK9ISrSJO
eJc1We7XiH9WuJ5b4vo53pV9vgEs4+5tosKUdt9tk9aaGz+KfZ2Y90/UrB4lw+4t
3Koo/nWBWVCJL015ONc9zIVidtf56WUURHT5y+7YKKCzNIF+tf+nVZOfig/wXNYT
8ATOhBVZ1P82GUYas0MQlbqodk2BQQGj
-----END CERTIFICATE-----
Generated at Fri Apr 4 23:55:47 2025 by rpki-client