Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/gS472YuNqbJechBg2iBckT3KoLM.roa
File: gS472YuNqbJechBg2iBckT3KoLM.roa (raw, json)
Hash identifier: FBUuQCDwaticAhPspr/z6ZENec/pu4iMj4JBkdQRnVA=
Subject key identifier: 81:2E:3B:D9:8B:8D:A9:B2:5E:72:10:60:DA:20:5C:91:3D:CA:A0:B3
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 019421B1CC4B16D5B11754002A4EFFD2A40C
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/gS472YuNqbJechBg2iBckT3KoLM.roa
Signing time: Wed 01 Jan 2025 11:48:07 +0000
ROA not before: Wed 01 Jan 2025 11:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5483
IP address blocks: 5.38.128.0/17 maxlen: 17
5.187.128.0/17 maxlen: 17
31.46.0.0/16 maxlen: 16
31.46.19.0/24 maxlen: 24
37.76.0.0/17 maxlen: 17
46.107.0.0/16 maxlen: 16
46.107.14.0/24 maxlen: 24
46.107.15.0/24 maxlen: 24
46.107.224.0/24 maxlen: 24
46.139.0.0/16 maxlen: 16
62.201.64.0/18 maxlen: 18
78.92.0.0/16 maxlen: 16
79.122.0.0/17 maxlen: 17
80.249.160.0/20 maxlen: 24
80.249.164.0/24 maxlen: 24
80.249.167.0/24 maxlen: 24
80.249.168.0/24 maxlen: 24
80.249.170.0/24 maxlen: 24
80.249.171.0/24 maxlen: 24
80.249.172.0/24 maxlen: 24
80.249.173.0/24 maxlen: 24
80.249.174.0/24 maxlen: 24
81.182.0.0/15 maxlen: 15
84.0.0.0/14 maxlen: 14
84.1.102.0/24 maxlen: 24
84.1.226.0/24 maxlen: 24
84.1.236.0/24 maxlen: 24
84.2.24.0/24 maxlen: 24
84.2.35.0/24 maxlen: 24
84.2.39.0/24 maxlen: 24
84.2.42.0/23 maxlen: 24
84.2.50.0/24 maxlen: 24
84.2.51.0/24 maxlen: 24
84.2.52.0/24 maxlen: 24
84.2.54.0/24 maxlen: 24
84.2.79.0/24 maxlen: 24
84.2.226.0/23 maxlen: 24
84.2.227.0/24 maxlen: 24
84.2.228.0/24 maxlen: 24
84.2.230.0/24 maxlen: 24
84.2.231.0/24 maxlen: 24
86.59.128.0/17 maxlen: 17
87.101.112.0/20 maxlen: 20
91.120.0.0/16 maxlen: 16
91.120.16.0/22 maxlen: 22
91.120.27.0/24 maxlen: 24
91.120.57.0/24 maxlen: 24
91.120.64.0/18 maxlen: 18
91.120.128.0/18 maxlen: 18
93.89.160.0/20 maxlen: 20
94.27.128.0/17 maxlen: 17
134.255.0.0/17 maxlen: 17
145.236.0.0/16 maxlen: 16
145.236.230.0/24 maxlen: 24
149.200.0.0/17 maxlen: 17
185.55.12.0/22 maxlen: 22
185.65.8.0/22 maxlen: 22
188.6.0.0/16 maxlen: 16
188.36.0.0/16 maxlen: 16
188.36.248.0/24 maxlen: 24
188.156.0.0/15 maxlen: 15
194.38.96.0/19 maxlen: 19
194.38.96.0/24 maxlen: 24
194.38.104.0/24 maxlen: 24
194.88.32.0/19 maxlen: 19
194.149.0.0/19 maxlen: 19
194.149.32.0/19 maxlen: 19
194.149.36.0/24 maxlen: 24
194.176.224.0/19 maxlen: 19
195.56.0.0/16 maxlen: 16
195.56.0.0/24 maxlen: 24
195.70.32.0/19 maxlen: 19
195.228.0.0/16 maxlen: 16
195.228.4.0/24 maxlen: 24
195.228.22.0/24 maxlen: 24
195.228.24.0/24 maxlen: 24
195.228.34.0/24 maxlen: 24
195.228.45.0/24 maxlen: 24
195.228.75.0/24 maxlen: 24
195.228.76.0/24 maxlen: 24
195.228.85.0/24 maxlen: 24
195.228.86.0/24 maxlen: 24
195.228.87.0/24 maxlen: 24
195.228.112.0/24 maxlen: 24
195.228.135.0/24 maxlen: 24
195.228.152.0/24 maxlen: 24
195.228.155.0/24 maxlen: 24
195.228.156.0/24 maxlen: 24
195.228.224.0/23 maxlen: 23
195.228.240.0/24 maxlen: 24
195.228.244.0/24 maxlen: 24
195.228.245.0/24 maxlen: 24
195.228.247.0/24 maxlen: 24
195.228.248.0/24 maxlen: 24
195.228.249.0/24 maxlen: 24
195.228.250.0/24 maxlen: 24
195.228.251.0/24 maxlen: 24
195.228.253.0/24 maxlen: 24
195.228.254.0/24 maxlen: 24
195.228.255.0/24 maxlen: 24
212.51.64.0/18 maxlen: 18
212.51.79.0/24 maxlen: 24
212.51.91.0/24 maxlen: 24
212.51.110.0/24 maxlen: 24
212.51.125.0/24 maxlen: 24
213.178.96.0/19 maxlen: 19
217.20.128.0/20 maxlen: 20
217.65.96.0/19 maxlen: 19
217.65.96.0/23 maxlen: 23
217.116.32.0/20 maxlen: 20
2001:4c48::/29 maxlen: 29
2001:4c48::/30 maxlen: 30
2001:4c48::/32 maxlen: 32
2001:4c48::/46 maxlen: 48
2001:4c4c::/30 maxlen: 30
2a00:10d0::/32 maxlen: 32
2a00:1110::/29 maxlen: 29
2a02:738::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:cc:4b:16:d5:b1:17:54:00:2a:4e:ff:d2:a4:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 11:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=812e3bd98b8da9b25e721060da205c913dcaa0b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:22:de:81:b8:46:5a:65:63:2c:56:1b:8a:6d:
5e:1f:35:eb:69:c7:e8:8a:a8:4c:ae:f5:26:1e:d8:
69:20:2e:90:40:d8:b2:9e:e8:3e:b5:1a:96:20:47:
f8:62:01:7e:29:bb:b9:26:f4:2e:11:84:e2:67:ca:
f3:24:91:12:fb:82:dc:68:46:14:ad:93:af:c5:9f:
ad:8a:81:ec:6f:ec:22:a2:28:9c:94:bb:4a:87:d5:
cc:37:2d:b6:2a:2b:af:70:a3:3d:d2:bb:24:f8:dc:
4d:cc:02:b4:15:e5:31:d6:f0:e7:fa:c7:dc:3a:36:
89:70:7d:f0:09:35:5d:80:2e:99:bb:d3:4e:ee:ab:
4f:b7:6c:17:f1:04:69:53:21:99:a5:13:cc:4e:d9:
f0:f4:28:5c:89:1f:ad:fa:2c:46:2a:d8:16:c6:aa:
0c:7c:f4:f9:ab:85:4c:16:b7:06:97:8b:cb:13:5c:
3e:ed:0e:bf:ae:4f:48:cd:86:8b:fc:ad:6e:04:66:
9f:f7:39:d6:8e:4e:cc:cd:c7:f8:4b:2a:92:54:03:
68:38:d6:11:61:52:e8:51:f7:c3:57:9a:5b:16:a8:
1d:34:f4:fb:80:76:b0:ea:2a:80:59:58:fe:58:25:
66:7b:1c:59:b3:24:c1:5c:f1:05:bb:20:3c:ea:8f:
3a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2E:3B:D9:8B:8D:A9:B2:5E:72:10:60:DA:20:5C:91:3D:CA:A0:B3
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/gS472YuNqbJechBg2iBckT3KoLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.38.128.0/17
5.187.128.0/17
31.46.0.0/16
37.76.0.0/17
46.107.0.0/16
46.139.0.0/16
62.201.64.0/18
78.92.0.0/16
79.122.0.0/17
80.249.160.0/20
81.182.0.0/15
84.0.0.0/14
86.59.128.0/17
87.101.112.0/20
91.120.0.0/16
93.89.160.0/20
94.27.128.0/17
134.255.0.0/17
145.236.0.0/16
149.200.0.0/17
185.55.12.0/22
185.65.8.0/22
188.6.0.0/16
188.36.0.0/16
188.156.0.0/15
194.38.96.0/19
194.88.32.0/19
194.149.0.0/18
194.176.224.0/19
195.56.0.0/16
195.70.32.0/19
195.228.0.0/16
212.51.64.0/18
213.178.96.0/19
217.20.128.0/20
217.65.96.0/19
217.116.32.0/20
IPv6:
2001:4c48::/29
2a00:10d0::/32
2a00:1110::/29
2a02:738::/32
Signature Algorithm: sha256WithRSAEncryption
28:f5:f7:3d:0b:85:60:a8:44:86:b4:00:34:bd:90:56:d8:a3:
ae:02:32:bd:b3:f1:4d:83:a7:79:ff:e9:64:7a:b5:af:31:60:
45:63:7a:8e:70:5e:29:35:45:02:d8:28:c1:46:b3:a3:2b:00:
6c:e0:64:fc:2b:52:6c:2d:4b:22:44:cb:f2:56:b5:b8:d8:0f:
bb:b2:11:70:8a:f5:70:42:62:89:2c:d1:e9:63:7f:65:be:62:
44:cd:ba:93:b0:ef:b8:85:7f:0a:e5:58:c7:39:cc:e3:d9:39:
f5:10:b8:09:33:cc:64:b5:b3:de:33:b8:e8:a4:52:a6:71:44:
32:2a:db:bd:58:1d:6b:ec:39:88:8f:b1:36:87:fa:d3:c4:dd:
bc:a9:83:65:30:9e:f9:12:2c:bb:4a:fd:c1:3d:97:8f:99:9c:
d6:0a:ab:5d:40:01:ac:9f:81:59:98:68:22:35:e6:4e:5f:28:
b8:68:20:ef:b4:ac:37:ce:c4:2a:0c:5e:16:df:af:68:8b:f0:
de:6b:98:08:0a:7c:f6:cf:7f:1e:c3:9d:d2:13:1c:38:e1:5d:
09:9b:59:a2:21:8e:bb:51:95:ed:25:73:57:c2:93:e4:69:84:
27:a8:85:5c:fc:17:79:1e:8f:e8:5d:80:61:53:77:03:5d:00:
d9:28:9e:a3
-----BEGIN CERTIFICATE-----
MIIF8zCCBNugAwIBAgISAZQhscxLFtWxF1QAKk7/0qQMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwMmRhYzYwNWY0NjU5NzE4YzBhMTVlMWY3MzJjYmQ0ZjQ4
YWFlN2IwHhcNMjUwMTAxMTE0ODA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTJlM2JkOThiOGRhOWIyNWU3MjEwNjBkYTIwNWM5MTNkY2FhMGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCLegbhGWmVjLFYbim1eHzXracfo
iqhMrvUmHthpIC6QQNiynug+tRqWIEf4YgF+Kbu5JvQuEYTiZ8rzJJES+4LcaEYU
rZOvxZ+tioHsb+wioiiclLtKh9XMNy22KiuvcKM90rsk+NxNzAK0FeUx1vDn+sfc
OjaJcH3wCTVdgC6Zu9NO7qtPt2wX8QRpUyGZpRPMTtnw9ChciR+t+ixGKtgWxqoM
fPT5q4VMFrcGl4vLE1w+7Q6/rk9IzYaL/K1uBGaf9znWjk7Mzcf4SyqSVANoONYR
YVLoUffDV5pbFqgdNPT7gHaw6iqAWVj+WCVmexxZsyTBXPEFuyA86o86DwIDAQAB
o4IC/zCCAvswHQYDVR0OBBYEFIEuO9mLjamyXnIQYNogXJE9yqCzMB8GA1UdIwQY
MBaAFPAtrGBfRllxjAoV4fcyy9T0iq57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYt
MjkyYWU0NmU2MzAyLzEvZ1M0NzJZdU5xYkplY2hCZzJpQmNrVDNLb0xNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYtMjkyYWU0NmU2MzAy
LzEvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBEwYIKwYBBQUHAQcBAf8EggECMIH/MIHYBAIAATCB0QME
BwUmgAMEBwW7gAMDAB8uAwQHJUwAAwMALmsDAwAuiwMEBj7JQAMDAE5cAwQHT3oA
AwQEUPmgAwMBUbYDAwJUAAMEB1Y7gAMEBFdlcAMDAFt4AwQEXVmgAwQHXhuAAwQH
hv8AAwMAkewDBAeVyAADBAK5NwwDBAK5QQgDAwC8BgMDALwkAwMBvJwDBAXCJmAD
BAXCWCADBAbClQADBAXCsOADAwDDOAMEBcNGIAMDAMPkAwQG1DNAAwQF1bJgAwQE
2RSAAwQF2UFgAwQE2XQgMCIEAgACMBwDBQMgAUxIAwUAKgAQ0AMFAyoAERADBQAq
Agc4MA0GCSqGSIb3DQEBCwUAA4IBAQAo9fc9C4VgqESGtAA0vZBW2KOuAjK9s/FN
g6d5/+lkerWvMWBFY3qOcF4pNUUC2CjBRrOjKwBs4GT8K1JsLUsiRMvyVrW42A+7
shFwivVwQmKJLNHpY39lvmJEzbqTsO+4hX8K5VjHOczj2Tn1ELgJM8xktbPeM7jo
pFKmcUQyKtu9WB1r7DmIj7E2h/rTxN28qYNlMJ75Eiy7Sv3BPZePmZzWCqtdQAGs
n4FZmGgiNeZOXyi4aCDvtKw3zsQqDF4W369oi/Dea5gICnz2z38ew53SExw44V0J
m1miIY67UZXtJXNXwpPkaYQnqIVc/Bd5Ho/oXYBhU3cDXQDZKJ6j
-----END CERTIFICATE-----
Generated at Tue Apr 8 06:02:02 2025 by rpki-client