Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/bA3zOzoyz-wugAvm0_KomAKKruY.roa
File: bA3zOzoyz-wugAvm0_KomAKKruY.roa (raw, json)
Hash identifier: bacPAUaKW04Eb1dYAKFtxWlzE1B4s/bmRjBJqY9XzYk=
Subject key identifier: 6C:0D:F3:3B:3A:32:CF:EC:2E:80:0B:E6:D3:F2:A8:98:02:8A:AE:E6
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0193AF813CC4CEFD8690821A69EDCEA53BCE
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/bA3zOzoyz-wugAvm0_KomAKKruY.roa
Signing time: Tue 10 Dec 2024 07:38:22 +0000
ROA not before: Tue 10 Dec 2024 07:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3258
IP address blocks: 45.8.112.0/24 maxlen: 24
45.8.113.0/24 maxlen: 24
45.8.114.0/24 maxlen: 24
45.8.222.0/24 maxlen: 32
45.11.44.0/22 maxlen: 24
45.14.64.0/22 maxlen: 24
45.14.68.0/22 maxlen: 24
45.14.70.0/24 maxlen: 24
45.14.104.0/22 maxlen: 24
45.14.105.0/24 maxlen: 24
45.14.107.0/24 maxlen: 24
45.66.128.0/22 maxlen: 24
45.66.216.0/22 maxlen: 24
45.89.216.0/22 maxlen: 24
45.89.232.0/22 maxlen: 32
45.94.40.0/22 maxlen: 32
45.128.208.0/22 maxlen: 32
45.129.8.0/22 maxlen: 24
45.134.168.0/22 maxlen: 24
45.136.176.0/22 maxlen: 24
45.142.124.0/22 maxlen: 24
45.143.128.0/22 maxlen: 24
45.143.232.0/22 maxlen: 24
45.149.156.0/22 maxlen: 24
45.153.244.0/22 maxlen: 24
45.159.48.0/22 maxlen: 24
62.106.70.0/24 maxlen: 24
79.143.140.0/22 maxlen: 24
88.214.20.0/22 maxlen: 24
88.218.192.0/22 maxlen: 32
91.200.240.0/22 maxlen: 24
92.60.40.0/22 maxlen: 24
94.124.116.0/22 maxlen: 24
109.107.137.0/24 maxlen: 24
109.107.140.0/24 maxlen: 24
141.98.196.0/22 maxlen: 24
141.98.196.0/24 maxlen: 24
141.98.197.0/24 maxlen: 24
141.98.198.0/24 maxlen: 24
147.78.240.0/21 maxlen: 24
149.62.44.0/22 maxlen: 24
176.113.68.0/22 maxlen: 32
176.119.148.0/22 maxlen: 24
176.126.114.0/24 maxlen: 24
185.184.223.0/24 maxlen: 24
185.200.64.0/22 maxlen: 24
185.207.152.0/22 maxlen: 32
193.32.148.0/22 maxlen: 24
193.111.30.0/23 maxlen: 24
194.104.152.0/22 maxlen: 24
194.169.54.0/23 maxlen: 24
195.245.241.0/24 maxlen: 24
195.245.242.0/24 maxlen: 24
2a09:1::/48 maxlen: 48
2a09:2::/48 maxlen: 48
2a09:3::/48 maxlen: 48
2a09:4::/48 maxlen: 48
2a09:5::/48 maxlen: 48
2a09:7::/36 maxlen: 48
2a09:7::/48 maxlen: 48
2a09:7:1::/48 maxlen: 48
2a09:7:2008::/48 maxlen: 48
2a0d:c7c1::/32 maxlen: 48
2a10:480::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:af:81:3c:c4:ce:fd:86:90:82:1a:69:ed:ce:a5:3b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Dec 10 07:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c0df33b3a32cfec2e800be6d3f2a898028aaee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:16:3c:07:25:fe:5f:60:a9:b1:08:a4:9c:66:
e9:f0:c6:f4:2f:11:47:af:c1:62:55:c8:82:2f:b4:
78:5a:2a:d8:6b:d8:39:7c:ea:36:e6:81:2e:c5:00:
36:18:3a:3c:6a:a2:00:5f:33:6a:ce:d3:2b:d9:19:
a4:47:3c:91:b1:d6:86:33:0d:3c:8d:a6:f2:fd:3e:
80:49:63:57:54:f7:c5:49:89:56:04:c5:3d:13:7f:
15:e7:d3:13:0f:e7:f8:54:bb:00:5f:97:eb:32:16:
9d:94:dc:83:9c:4c:c6:b2:a1:15:30:d0:16:73:78:
25:a0:5f:70:8e:cf:c7:86:4c:97:89:10:48:34:4d:
28:bc:ba:35:17:80:f5:58:7a:3c:d3:4f:63:a6:65:
9b:e8:61:da:86:e6:37:02:8d:c0:f1:74:b8:db:3b:
0a:ed:27:df:86:f6:2d:17:62:2f:97:3d:32:57:d6:
bf:27:b8:3c:c8:c1:a2:d2:3b:7c:54:20:8f:66:7b:
97:bd:54:60:27:12:54:ba:4a:89:70:d8:d9:c0:a0:
fd:ed:84:de:44:2a:87:9b:aa:9a:43:12:08:1a:79:
e4:d1:b3:89:87:98:d6:48:d4:4b:42:56:12:40:f6:
92:78:6e:12:92:23:40:b0:7a:32:2e:a8:c8:07:96:
78:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:0D:F3:3B:3A:32:CF:EC:2E:80:0B:E6:D3:F2:A8:98:02:8A:AE:E6
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/bA3zOzoyz-wugAvm0_KomAKKruY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.112.0-45.8.114.255
45.8.222.0/24
45.11.44.0/22
45.14.64.0/21
45.14.104.0/22
45.66.128.0/22
45.66.216.0/22
45.89.216.0/22
45.89.232.0/22
45.94.40.0/22
45.128.208.0/22
45.129.8.0/22
45.134.168.0/22
45.136.176.0/22
45.142.124.0/22
45.143.128.0/22
45.143.232.0/22
45.149.156.0/22
45.153.244.0/22
45.159.48.0/22
62.106.70.0/24
79.143.140.0/22
88.214.20.0/22
88.218.192.0/22
91.200.240.0/22
92.60.40.0/22
94.124.116.0/22
109.107.137.0/24
109.107.140.0/24
141.98.196.0/22
147.78.240.0/21
149.62.44.0/22
176.113.68.0/22
176.119.148.0/22
176.126.114.0/24
185.184.223.0/24
185.200.64.0/22
185.207.152.0/22
193.32.148.0/22
193.111.30.0/23
194.104.152.0/22
194.169.54.0/23
195.245.241.0-195.245.242.255
IPv6:
2a09:1::/48
2a09:2::/48
2a09:3::/48
2a09:4::/48
2a09:5::/48
2a09:7::/36
2a09:7:2008::/48
2a0d:c7c1::/32
2a10:480::/29
Signature Algorithm: sha256WithRSAEncryption
1f:d5:7f:8f:e9:d0:83:32:ce:b8:d9:d0:1f:9e:39:c3:b2:0a:
c1:dc:15:13:f0:49:28:e7:3c:6c:a1:91:ca:29:4c:7a:1d:c0:
5f:58:54:df:9a:b7:96:d8:8d:bf:14:09:8b:76:2b:d8:9b:b5:
55:e8:b3:06:2c:f1:f9:9b:41:e0:3b:42:aa:25:60:be:49:39:
59:fa:b5:9f:db:02:90:2f:f0:96:fc:8b:a7:b0:2b:4b:59:3f:
a3:f5:f1:79:06:2c:a8:b5:1f:aa:69:cd:50:4b:13:a9:94:a5:
1c:f3:57:cd:a2:8b:1f:2e:e2:8d:a6:42:77:51:14:62:48:d8:
c4:6e:43:7a:32:39:5a:46:e5:c5:eb:2b:9c:ba:70:f0:60:6b:
52:fb:58:4e:23:36:a3:50:2c:6b:9c:8f:b4:ef:f3:a7:64:ec:
ee:41:4f:75:75:67:2f:96:7a:5c:e0:aa:a0:09:30:e6:dc:6b:
16:7f:85:a3:10:f3:60:5c:5a:5f:ca:c7:76:8d:ec:3b:f0:45:
de:55:f6:fc:61:63:6e:36:2e:45:ce:51:c5:ed:e9:26:1d:fc:
ee:09:8c:dc:15:da:82:a4:5e:19:7e:cb:db:55:6e:8c:a0:b7:
e2:ab:18:92:12:a9:b8:f2:86:5b:f2:62:1e:6b:2a:f2:83:70:
ca:af:53:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:58:06 2025 by rpki-client