Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/qJBvxpD7n70pwcXNsgqdSFQCwU0.roa
File: qJBvxpD7n70pwcXNsgqdSFQCwU0.roa (raw, json)
Hash identifier: kY14YD94l5CclyQ8uKmXazP+0TkN3037Xr92PjRqrpA=
Subject key identifier: A8:90:6F:C6:90:FB:9F:BD:29:C1:C5:CD:B2:0A:9D:48:54:02:C1:4D
Certificate issuer: /CN=3a5dc2ba5942e04fdd8ba99516a1b93b1e4f9624
Certificate serial: 01942521FB8848713D2232D144CB721FD26F
Authority key identifier: 3A:5D:C2:BA:59:42:E0:4F:DD:8B:A9:95:16:A1:B9:3B:1E:4F:96:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/qJBvxpD7n70pwcXNsgqdSFQCwU0.roa
Signing time: Thu 02 Jan 2025 03:49:31 +0000
ROA not before: Thu 02 Jan 2025 03:49:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48503
IP address blocks: 31.10.3.0/24 maxlen: 24
62.122.0.0/22 maxlen: 22
62.122.4.0/22 maxlen: 22
62.122.104.0/23 maxlen: 23
62.122.106.0/23 maxlen: 23
62.122.108.0/24 maxlen: 24
62.122.109.0/24 maxlen: 24
79.133.184.0/22 maxlen: 22
79.133.188.0/22 maxlen: 22
79.137.170.0/24 maxlen: 24
79.137.171.0/24 maxlen: 24
79.137.176.0/23 maxlen: 23
79.137.178.0/23 maxlen: 23
81.91.180.0/22 maxlen: 22
81.91.184.0/22 maxlen: 22
81.91.188.0/24 maxlen: 24
81.211.130.0/24 maxlen: 24
81.211.133.0/24 maxlen: 24
81.211.150.0/24 maxlen: 24
81.211.172.0/24 maxlen: 24
81.211.193.0/24 maxlen: 24
81.211.194.0/24 maxlen: 24
81.211.195.0/24 maxlen: 24
81.211.196.0/24 maxlen: 24
81.211.197.0/24 maxlen: 24
81.211.198.0/24 maxlen: 24
81.211.199.0/24 maxlen: 24
81.211.201.0/24 maxlen: 24
81.211.202.0/24 maxlen: 24
81.211.203.0/24 maxlen: 24
81.211.204.0/24 maxlen: 24
81.211.206.0/24 maxlen: 24
81.211.207.0/24 maxlen: 24
81.211.208.0/24 maxlen: 24
81.211.211.0/24 maxlen: 24
81.211.212.0/24 maxlen: 24
81.211.213.0/24 maxlen: 24
81.211.250.0/24 maxlen: 24
81.211.251.0/24 maxlen: 24
81.211.253.0/24 maxlen: 24
85.193.96.0/21 maxlen: 21
85.193.104.0/21 maxlen: 21
85.193.112.0/21 maxlen: 21
85.193.120.0/21 maxlen: 21
89.208.123.0/24 maxlen: 24
89.223.112.0/22 maxlen: 22
89.223.116.0/22 maxlen: 22
91.103.104.0/24 maxlen: 24
91.103.105.0/24 maxlen: 24
91.234.208.0/24 maxlen: 24
91.234.209.0/24 maxlen: 24
93.157.176.0/23 maxlen: 23
93.157.178.0/23 maxlen: 23
93.157.180.0/24 maxlen: 24
93.157.181.0/24 maxlen: 24
93.157.182.0/24 maxlen: 24
93.157.183.0/24 maxlen: 24
95.163.145.0/24 maxlen: 24
176.64.0.0/21 maxlen: 21
176.64.8.0/21 maxlen: 21
176.64.16.0/21 maxlen: 21
176.64.24.0/21 maxlen: 21
176.64.32.0/24 maxlen: 24
176.64.33.0/24 maxlen: 24
176.64.34.0/24 maxlen: 24
176.64.35.0/24 maxlen: 24
185.44.84.0/23 maxlen: 23
185.44.86.0/23 maxlen: 23
185.212.244.0/24 maxlen: 24
185.212.245.0/24 maxlen: 24
185.212.246.0/24 maxlen: 24
185.212.247.0/24 maxlen: 24
185.223.188.0/22 maxlen: 22
185.229.84.0/22 maxlen: 22
185.229.120.0/24 maxlen: 24
185.229.121.0/24 maxlen: 24
185.234.24.0/22 maxlen: 22
185.234.24.0/23 maxlen: 23
185.234.26.0/23 maxlen: 23
185.234.60.0/22 maxlen: 22
185.234.60.0/23 maxlen: 23
185.234.62.0/23 maxlen: 23
185.250.28.0/23 maxlen: 23
185.250.30.0/23 maxlen: 23
188.124.232.0/22 maxlen: 22
188.124.236.0/22 maxlen: 22
188.124.244.0/23 maxlen: 23
188.124.246.0/23 maxlen: 23
193.41.130.0/24 maxlen: 24
193.41.131.0/24 maxlen: 24
194.0.188.0/24 maxlen: 24
194.0.189.0/24 maxlen: 24
194.0.244.0/24 maxlen: 24
194.0.245.0/24 maxlen: 24
195.189.48.0/23 maxlen: 23
195.189.48.0/24 maxlen: 24
195.189.49.0/24 maxlen: 24
195.189.50.0/24 maxlen: 24
195.189.51.0/24 maxlen: 24
212.96.64.0/24 maxlen: 24
212.96.65.0/24 maxlen: 24
212.96.66.0/24 maxlen: 24
212.96.67.0/24 maxlen: 24
212.96.68.0/24 maxlen: 24
212.96.69.0/24 maxlen: 24
212.96.70.0/23 maxlen: 23
212.96.72.0/23 maxlen: 23
212.96.74.0/23 maxlen: 23
212.96.76.0/24 maxlen: 24
212.96.77.0/24 maxlen: 24
212.96.78.0/24 maxlen: 24
212.96.79.0/24 maxlen: 24
212.96.80.0/23 maxlen: 23
212.96.82.0/24 maxlen: 24
212.96.83.0/24 maxlen: 24
212.96.84.0/24 maxlen: 24
212.96.85.0/24 maxlen: 24
212.96.86.0/23 maxlen: 23
212.96.88.0/24 maxlen: 24
212.96.90.0/24 maxlen: 24
212.96.91.0/24 maxlen: 24
212.96.92.0/24 maxlen: 24
212.96.93.0/24 maxlen: 24
212.96.94.0/24 maxlen: 24
212.96.95.0/24 maxlen: 24
217.171.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:fb:88:48:71:3d:22:32:d1:44:cb:72:1f:d2:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a5dc2ba5942e04fdd8ba99516a1b93b1e4f9624
Validity
Not Before: Jan 2 03:49:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a8906fc690fb9fbd29c1c5cdb20a9d485402c14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:45:2b:50:6f:6e:7d:d2:e3:c8:6e:42:dd:b2:
9c:9a:e8:30:1e:39:48:af:f5:38:49:14:97:ba:51:
81:54:bb:15:da:12:d9:35:a0:3f:ba:cb:41:7c:17:
b0:f1:89:3a:85:94:d1:5b:b5:b4:ed:82:9a:2a:2e:
02:73:e8:87:b5:d2:90:0c:c5:6a:0a:60:0f:16:28:
3e:32:0b:9d:d4:e9:7c:2e:cc:83:4c:79:73:81:2a:
c8:2b:09:1a:cf:e7:0d:e7:b3:31:a3:8f:47:7e:6c:
e3:4a:a5:db:16:15:61:f4:4d:ef:bd:ee:23:52:0a:
25:45:fc:a7:6c:cf:fd:8a:47:79:6d:ed:2a:4a:5b:
bc:0e:8f:34:04:84:ef:c0:9c:a1:80:2d:c2:0d:bc:
e7:7c:13:5c:ea:fd:74:85:0c:ce:37:d7:72:6e:ed:
7a:24:92:d7:41:91:01:80:60:61:5d:c1:b4:d0:c7:
7d:c7:68:86:a3:3b:0b:60:15:51:d4:ec:2f:f5:04:
f6:90:3b:fe:84:77:8d:67:61:07:e8:5d:5d:10:30:
0d:d0:4b:68:d7:fc:8a:cc:65:8c:71:a5:48:4f:9d:
ab:8c:46:20:c3:bd:f2:c6:9c:ec:91:6d:54:c1:4a:
72:20:be:d0:39:0b:c6:14:13:7a:17:7d:58:c2:7c:
db:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:90:6F:C6:90:FB:9F:BD:29:C1:C5:CD:B2:0A:9D:48:54:02:C1:4D
X509v3 Authority Key Identifier:
keyid:3A:5D:C2:BA:59:42:E0:4F:DD:8B:A9:95:16:A1:B9:3B:1E:4F:96:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/qJBvxpD7n70pwcXNsgqdSFQCwU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/Ol3CullC4E_di6mVFqG5Ox5PliQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.3.0/24
62.122.0.0/21
62.122.104.0-62.122.109.255
79.133.184.0/21
79.137.170.0/23
79.137.176.0/22
81.91.180.0-81.91.188.255
81.211.130.0/24
81.211.133.0/24
81.211.150.0/24
81.211.172.0/24
81.211.193.0-81.211.199.255
81.211.201.0-81.211.204.255
81.211.206.0-81.211.208.255
81.211.211.0-81.211.213.255
81.211.250.0/23
81.211.253.0/24
85.193.96.0/19
89.208.123.0/24
89.223.112.0/21
91.103.104.0/23
91.234.208.0/23
93.157.176.0/21
95.163.145.0/24
176.64.0.0-176.64.35.255
185.44.84.0/22
185.212.244.0/22
185.223.188.0/22
185.229.84.0/22
185.229.120.0/23
185.234.24.0/22
185.234.60.0/22
185.250.28.0/22
188.124.232.0/21
188.124.244.0/22
193.41.130.0/23
194.0.188.0/23
194.0.244.0/23
195.189.48.0/22
212.96.64.0-212.96.88.255
212.96.90.0-212.96.95.255
217.171.144.0/24
Signature Algorithm: sha256WithRSAEncryption
25:61:9a:ce:c1:ed:ee:91:51:90:fc:87:85:08:ed:c2:4e:71:
0c:12:f7:89:d8:d9:68:bf:19:a6:2f:88:88:7a:b6:de:d2:df:
92:03:28:28:f6:41:15:21:17:21:a0:64:cc:bf:5e:88:43:66:
74:54:ca:d4:66:f9:8a:c3:1e:b8:41:c3:1f:d7:9f:2d:42:64:
67:88:95:af:d2:74:6a:7e:06:67:fc:96:cd:9d:e8:a4:83:33:
fb:f8:8d:88:82:f8:c4:16:dc:a9:c7:a9:ac:34:16:86:51:e5:
6a:a9:4b:fd:f7:43:b8:b8:0f:70:1a:d5:8b:71:8c:13:ff:c1:
97:96:3e:7e:7b:40:b5:d6:55:ea:ec:90:5a:81:1a:68:1a:b1:
45:b6:ba:10:f0:73:89:ea:19:48:27:b5:d3:7d:87:72:8c:f1:
6d:5f:b0:f4:cc:08:0e:51:be:8a:ff:59:08:59:fd:b5:db:a8:
8d:3c:a5:a2:75:c0:73:7f:85:da:e6:a3:10:79:cd:92:bc:dc:
51:32:cd:f1:50:90:79:1c:3f:1a:ed:36:fc:fa:cb:7e:4e:01:
83:64:9d:f4:fc:19:a0:82:27:a9:cc:14:ee:d8:94:69:9b:27:
67:95:a8:2f:4a:f7:25:d8:66:d2:74:3a:d4:ae:76:ab:e4:21:
14:90:15:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 14:09:14 2025 by rpki-client