Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/P3MJ_eYY4k-tFI-j5K08QP1faKU.roa
File: P3MJ_eYY4k-tFI-j5K08QP1faKU.roa (raw, json)
Hash identifier: HyeCjXO0RuH20z2ePzLIXrenAVkt8MMhmjn0aFvKdRM=
Subject key identifier: 3F:73:09:FD:E6:18:E2:4F:AD:14:8F:A3:E4:AD:3C:40:FD:5F:68:A5
Certificate issuer: /CN=c8f6f5dec09bc7a1203045699ba058295d38e346
Certificate serial: 03DC7445
Authority key identifier: C8:F6:F5:DE:C0:9B:C7:A1:20:30:45:69:9B:A0:58:29:5D:38:E3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPb13sCbx6EgMEVpm6BYKV0440Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/P3MJ_eYY4k-tFI-j5K08QP1faKU.roa
Signing time: Sat 01 Jan 2022 00:57:08 +0000
ROA not before: Sat 01 Jan 2022 00:57:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25408
IP address blocks: 109.167.243.0/24 maxlen: 24
109.167.192.0/24 maxlen: 24
109.167.192.0/18 maxlen: 18
77.244.16.0/20 maxlen: 20
77.244.31.0/24 maxlen: 24
194.24.240.0/24 maxlen: 24
194.24.241.0/24 maxlen: 24
84.52.64.0/18 maxlen: 18
84.52.79.0/24 maxlen: 24
195.177.122.0/24 maxlen: 24
195.177.121.0/24 maxlen: 24
195.177.120.0/24 maxlen: 24
195.177.120.0/22 maxlen: 22
195.177.123.0/24 maxlen: 24
185.202.212.0/22 maxlen: 22
185.202.214.0/23 maxlen: 23
109.167.128.0/18 maxlen: 18
91.202.220.0/22 maxlen: 22
62.182.89.0/24 maxlen: 24
62.182.88.0/21 maxlen: 21
194.246.112.0/24 maxlen: 24
195.64.141.0/24 maxlen: 24
195.64.140.0/23 maxlen: 23
194.246.113.0/24 maxlen: 24
2a00:1c78::/29 maxlen: 29
2a00:1c78::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64779333 (0x3dc7445)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f6f5dec09bc7a1203045699ba058295d38e346
Validity
Not Before: Jan 1 00:57:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f7309fde618e24fad148fa3e4ad3c40fd5f68a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:92:09:6b:2f:2b:b4:44:a9:e2:36:b7:29:62:
6e:b4:9e:7f:ce:4c:49:92:7e:da:bc:b4:e9:82:6f:
7b:4d:da:68:21:b2:48:68:23:75:07:05:5b:36:c1:
9b:cc:98:e6:5d:1d:50:71:78:c3:11:f0:02:6b:9d:
5e:66:66:ca:ac:72:0c:ff:99:61:c3:69:87:6e:c9:
0b:e4:9a:04:4b:50:24:7c:20:5a:69:0a:a9:7d:cc:
0f:4e:4c:1b:de:8a:d0:f7:ea:81:48:10:b6:78:f3:
93:50:ad:a4:82:be:c7:b8:f7:db:65:f8:dc:73:2f:
56:59:ad:b0:19:d2:7e:00:3e:df:d5:f7:5e:f4:92:
eb:64:dc:3d:95:67:d5:3c:33:ec:71:2f:83:43:8b:
a4:bf:9c:41:91:65:26:0b:f2:ca:30:1e:14:69:4c:
92:31:99:19:e1:76:c4:f0:59:86:4a:0c:34:64:52:
7f:90:d1:25:dc:f4:79:25:95:59:4f:06:5a:de:1b:
4a:9b:96:9a:d1:b9:d8:f3:4e:cf:8c:43:39:74:38:
65:b0:90:ff:cb:b1:aa:f1:0b:a4:2f:41:78:f0:29:
45:f3:bc:a0:dc:de:83:5f:22:45:08:05:31:53:e4:
11:ae:a3:40:61:a7:c9:34:96:3d:46:e5:0a:51:ea:
e3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:73:09:FD:E6:18:E2:4F:AD:14:8F:A3:E4:AD:3C:40:FD:5F:68:A5
X509v3 Authority Key Identifier:
keyid:C8:F6:F5:DE:C0:9B:C7:A1:20:30:45:69:9B:A0:58:29:5D:38:E3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPb13sCbx6EgMEVpm6BYKV0440Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/P3MJ_eYY4k-tFI-j5K08QP1faKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/yPb13sCbx6EgMEVpm6BYKV0440Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.88.0/21
77.244.16.0/20
84.52.64.0/18
91.202.220.0/22
109.167.128.0/17
185.202.212.0/22
194.24.240.0/23
194.246.112.0/23
195.64.140.0/23
195.177.120.0/22
IPv6:
2a00:1c78::/29
Signature Algorithm: sha256WithRSAEncryption
37:d8:14:d4:74:0d:50:26:75:dd:a2:e3:33:8a:15:11:1f:40:
8f:f4:db:ca:a0:af:f8:cf:ae:e3:81:a3:11:24:00:d1:e3:63:
08:98:97:7c:17:58:47:04:dc:a7:88:e5:b5:e8:4f:b1:7b:79:
8f:76:02:f3:ce:13:2b:1c:b2:e6:a5:d6:f5:e2:48:89:02:6f:
da:00:b8:18:f4:ff:0b:a6:fa:ae:b2:0f:c7:8a:05:20:76:39:
03:69:a2:cc:b4:16:09:75:be:dd:a6:f4:bf:d2:a2:21:05:05:
a8:dd:bc:a0:14:9a:8d:45:94:38:70:44:18:17:69:0e:0d:15:
03:e5:2c:9e:88:b1:56:0e:bd:21:9b:2b:59:34:b6:db:d3:ae:
ad:b9:a3:23:aa:3f:19:7c:4d:97:7c:b3:b7:b8:fd:ae:29:33:
e3:9d:e1:44:9d:8d:94:4a:66:6d:a8:4b:e7:0d:2a:29:74:29:
fd:31:45:ab:c7:25:e3:84:27:2b:40:8a:ed:fe:22:ea:41:d3:
e9:fa:fc:c3:7b:18:6e:b5:a0:ae:f3:ce:71:49:4c:3c:a2:05:
fe:f8:b1:0d:2f:26:2a:16:fb:90:3a:2e:25:58:c7:45:4f:a5:
f4:a9:da:8a:f6:b6:98:50:17:e1:6e:07:e3:9e:f7:1e:31:34:
5d:6d:77:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 18:30:20 2025 by rpki-client