Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/vIJrj75gZXSeJTed1CGI6o-Z5nA.roa
File: vIJrj75gZXSeJTed1CGI6o-Z5nA.roa (raw, json)
Hash identifier: T+o0LnzwgxW5JkSyu3hg3ocAmMnSSVFEWIqTX+78bsI=
Subject key identifier: BC:82:6B:8F:BE:60:65:74:9E:25:37:9D:D4:21:88:EA:8F:99:E6:70
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 019421B1CF8A0F19A820135249C4451310C9
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/vIJrj75gZXSeJTed1CGI6o-Z5nA.roa
Signing time: Wed 01 Jan 2025 11:48:08 +0000
ROA not before: Wed 01 Jan 2025 11:48:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15555
IP address blocks: 62.201.96.0/21 maxlen: 21
80.249.160.0/20 maxlen: 20
81.182.245.0/24 maxlen: 24
81.183.232.0/23 maxlen: 23
81.183.238.0/23 maxlen: 23
84.1.30.0/23 maxlen: 23
84.1.32.0/23 maxlen: 23
84.1.118.0/23 maxlen: 23
84.2.40.0/23 maxlen: 23
84.2.41.0/24 maxlen: 24
84.2.44.0/23 maxlen: 23
84.2.46.0/23 maxlen: 23
84.2.56.0/23 maxlen: 23
84.2.224.0/21 maxlen: 21
84.2.226.0/24 maxlen: 24
188.6.167.0/24 maxlen: 24
188.6.250.0/23 maxlen: 23
188.6.252.0/23 maxlen: 23
188.36.224.0/23 maxlen: 23
188.36.227.0/24 maxlen: 24
188.36.228.0/24 maxlen: 24
194.149.58.0/24 maxlen: 24
195.228.80.0/23 maxlen: 23
195.228.82.0/23 maxlen: 23
195.228.156.0/23 maxlen: 23
195.228.163.0/24 maxlen: 24
195.228.203.0/24 maxlen: 24
195.228.224.0/23 maxlen: 23
195.228.236.0/24 maxlen: 24
195.228.240.0/20 maxlen: 20
195.228.240.0/24 maxlen: 24
195.228.243.0/24 maxlen: 24
195.228.244.0/24 maxlen: 24
195.228.248.0/24 maxlen: 24
195.228.249.0/24 maxlen: 24
195.228.250.0/24 maxlen: 24
195.228.251.0/24 maxlen: 24
195.228.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:cf:8a:0f:19:a8:20:13:52:49:c4:45:13:10:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 11:48:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bc826b8fbe6065749e25379dd42188ea8f99e670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c7:c6:ba:03:e8:51:bf:dd:64:a8:2e:26:3c:
8f:11:97:0b:d9:a4:54:79:8d:25:36:85:5f:97:83:
56:9f:13:1b:e7:ca:b1:7a:86:bf:4e:1c:33:fa:09:
32:86:71:9d:de:5b:58:4d:c0:9d:3d:ef:fc:6f:e0:
bc:bb:db:01:06:e0:a5:9e:26:0d:0d:bd:62:47:3c:
ae:12:92:63:a9:15:78:88:14:f7:b1:e8:b1:03:3c:
5b:49:71:51:a7:8a:a7:a7:c1:7a:04:aa:ae:0f:d7:
84:98:d1:fd:1b:a9:ef:9a:39:2b:8e:9c:f7:4b:04:
ad:7c:59:56:bd:25:7f:4c:59:27:ea:8d:04:bd:cf:
ea:86:3b:ed:35:1c:9f:bb:a0:cc:d7:a2:88:f7:b4:
ba:c0:0f:4f:08:19:1c:d0:64:32:59:b6:c0:7d:21:
4a:18:aa:5f:39:6b:a9:67:de:83:a3:d8:8e:34:c0:
7e:39:d4:a3:35:71:a6:af:b2:56:52:ce:87:47:b5:
77:6f:dc:b5:72:29:95:eb:b0:94:7a:cc:32:cf:b2:
0c:f8:f1:7b:dc:44:f8:9e:04:bc:b9:db:76:51:dc:
18:27:c0:8c:0c:f3:91:2b:40:a1:a3:4c:be:ae:0e:
d4:c3:4f:8f:80:28:ab:24:b0:75:63:33:be:28:54:
bf:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:82:6B:8F:BE:60:65:74:9E:25:37:9D:D4:21:88:EA:8F:99:E6:70
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/vIJrj75gZXSeJTed1CGI6o-Z5nA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.96.0/21
80.249.160.0/20
81.182.245.0/24
81.183.232.0/23
81.183.238.0/23
84.1.30.0-84.1.33.255
84.1.118.0/23
84.2.40.0/23
84.2.44.0/22
84.2.56.0/23
84.2.224.0/21
188.6.167.0/24
188.6.250.0-188.6.253.255
188.36.224.0/23
188.36.227.0-188.36.228.255
194.149.58.0/24
195.228.80.0/22
195.228.156.0/23
195.228.163.0/24
195.228.203.0/24
195.228.224.0/23
195.228.236.0/24
195.228.240.0/20
Signature Algorithm: sha256WithRSAEncryption
0a:39:71:08:8c:60:16:34:d0:15:e1:a9:15:11:0b:e4:08:50:
b8:87:1d:8c:73:ca:d4:bc:35:85:2c:b1:52:5f:f8:99:9e:fa:
da:56:b6:1b:61:aa:67:42:99:15:90:20:f4:78:6a:6e:c5:52:
38:7a:4c:16:de:e3:c8:4a:b0:f7:32:d5:df:51:a4:eb:8c:9e:
5f:19:c3:a5:c8:e5:81:f7:df:f3:47:b1:b0:59:5a:b2:a9:f9:
18:31:b6:6f:2e:7b:fa:c3:02:88:ad:46:3b:df:ac:5d:88:de:
27:64:2d:ee:32:5a:ae:a9:e2:9b:72:db:0e:24:2e:17:fe:d9:
fe:b4:3c:f3:3a:b2:e7:51:1f:0e:ca:d5:a0:9e:99:1d:ce:04:
36:05:4a:15:6a:4e:97:b8:56:60:c5:b1:5c:29:81:57:13:73:
46:69:57:3d:c6:90:86:36:d1:63:c3:5f:61:b5:47:6a:d1:f9:
25:7c:32:b4:6a:30:9a:4f:22:62:57:9b:a2:f1:c8:8e:47:58:
d1:51:35:46:ab:4d:8f:0c:5c:e4:56:8e:e1:37:b8:a2:eb:d7:
66:c3:83:48:ee:88:45:cb:46:f0:05:b5:46:f3:3d:fd:74:f1:
b6:b5:3e:4d:87:98:43:48:90:6b:cd:35:7c:40:61:c0:a1:97:
cc:7f:8e:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:14 2025 by rpki-client