Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/8fLT4xiSlm6mU0clklwyprcdndU.roa
File: 8fLT4xiSlm6mU0clklwyprcdndU.roa (raw, json)
Hash identifier: kC4xYa6627MBAuWtF4KfMheFho22+0g+0c/+/Dm5ZxE=
Subject key identifier: F1:F2:D3:E3:18:92:96:6E:A6:53:47:25:92:5C:32:A6:B7:1D:9D:D5
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 01941FFA031328A0AFF8E81DA301FB94DF6F
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/8fLT4xiSlm6mU0clklwyprcdndU.roa
Signing time: Wed 01 Jan 2025 03:47:45 +0000
ROA not before: Wed 01 Jan 2025 03:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59504
IP address blocks: 45.142.208.0/24 maxlen: 24
45.142.209.0/24 maxlen: 24
45.142.211.0/24 maxlen: 24
45.151.136.0/22 maxlen: 22
45.151.136.0/24 maxlen: 24
45.151.137.0/24 maxlen: 24
80.76.40.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
84.54.37.0/24 maxlen: 24
84.54.39.0/24 maxlen: 24
95.215.108.0/23 maxlen: 23
95.215.109.0/24 maxlen: 24
95.215.110.0/23 maxlen: 23
185.42.26.0/24 maxlen: 24
185.118.64.0/22 maxlen: 22
185.118.64.0/24 maxlen: 24
185.118.65.0/24 maxlen: 24
185.118.66.0/23 maxlen: 23
185.118.66.0/24 maxlen: 24
185.118.67.0/24 maxlen: 24
185.156.176.0/22 maxlen: 22
185.156.176.0/24 maxlen: 24
185.156.177.0/24 maxlen: 24
185.156.178.0/23 maxlen: 23
185.156.178.0/24 maxlen: 24
185.156.179.0/24 maxlen: 24
185.177.113.0/24 maxlen: 24
185.177.115.0/24 maxlen: 24
185.197.72.0/24 maxlen: 24
185.197.73.0/24 maxlen: 24
185.220.32.0/24 maxlen: 24
185.220.33.0/24 maxlen: 24
185.220.34.0/24 maxlen: 24
185.220.35.0/24 maxlen: 24
185.230.140.0/23 maxlen: 23
185.230.142.0/24 maxlen: 24
185.246.116.0/24 maxlen: 24
185.246.117.0/24 maxlen: 24
185.246.119.0/24 maxlen: 24
185.254.188.0/24 maxlen: 24
185.254.189.0/24 maxlen: 24
185.254.190.0/24 maxlen: 24
193.38.232.0/23 maxlen: 23
193.38.234.0/24 maxlen: 24
194.113.104.0/24 maxlen: 24
194.113.104.114/32 maxlen: 32
194.113.107.0/24 maxlen: 24
2a05:fb41::/32 maxlen: 32
2a05:fb42::/32 maxlen: 32
2a05:fb44::/32 maxlen: 32
2a05:fb45::/32 maxlen: 32
2a07:14c0::/48 maxlen: 48
2a07:14c0:1::/48 maxlen: 48
2a07:14c0:1000::/36 maxlen: 36
2a07:14c0:3000::/36 maxlen: 36
2a07:14c0:4000::/36 maxlen: 36
2a07:14c0:5000::/36 maxlen: 36
2a07:14c0:6000::/36 maxlen: 36
2a07:14c0:d000::/36 maxlen: 36
2a07:14c1::/32 maxlen: 32
2a07:14c2::/32 maxlen: 32
2a07:14c6::/32 maxlen: 32
2a07:14c7::/32 maxlen: 32
2a0a:4780::/32 maxlen: 32
2a0a:4781::/32 maxlen: 32
2a0a:4782::/32 maxlen: 32
2a0a:4783::/32 maxlen: 32
2a0a:4784::/32 maxlen: 32
2a0a:4785::/32 maxlen: 32
2a0c:2103::/32 maxlen: 32
2a0c:5241::/32 maxlen: 32
2a0c:5245::/32 maxlen: 32
2a0c:5247:7000::/36 maxlen: 36
2a0c:5247:c000::/36 maxlen: 36
2a0c:5247:d000::/36 maxlen: 36
2a0c:5247:e000::/36 maxlen: 36
2a0c:5247:f000::/36 maxlen: 36
2a0d:60c0::/32 maxlen: 32
2a0d:60c1::/32 maxlen: 32
2a0d:60c3::/32 maxlen: 32
2a0d:7740::/32 maxlen: 32
2a0d:7747::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:03:13:28:a0:af:f8:e8:1d:a3:01:fb:94:df:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Jan 1 03:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1f2d3e31892966ea6534725925c32a6b71d9dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:03:48:74:77:3e:5a:ef:ae:6b:d6:b4:55:71:
1d:9d:3c:cb:fc:18:97:8a:44:db:68:d6:59:9b:5f:
6f:99:c2:f4:64:7b:7c:6c:79:74:33:1c:48:d4:78:
e5:96:01:ec:58:12:d8:92:db:cd:85:af:ed:65:7d:
e4:a2:d1:0b:05:27:e8:d6:e9:38:83:1c:2c:89:ce:
97:93:dc:9a:59:2f:03:d8:c6:b5:5f:3d:1f:f5:c0:
b9:79:d0:d6:5b:aa:57:5c:44:7b:28:da:56:a8:1e:
a8:a7:85:64:a8:e9:96:64:81:21:a9:1f:f3:d4:7d:
3a:c6:f9:ee:a0:9b:d9:de:58:a7:b9:4a:3a:b7:70:
05:5b:00:4d:fe:6d:c6:38:84:f0:e8:c6:62:64:b2:
e5:69:14:03:59:6c:4b:6c:3d:8f:4b:74:5e:ba:09:
4b:66:d1:1b:2b:8d:7c:aa:92:41:9c:79:ca:c6:8b:
45:28:58:a5:78:b5:c9:03:d3:fa:48:ab:b3:36:20:
39:82:bc:bb:0c:c8:33:90:e1:85:64:11:ec:6f:1c:
bf:09:1d:aa:93:cf:b5:2d:4e:51:ed:40:e6:8c:0d:
ca:58:3f:2f:ae:85:32:18:5e:e9:f9:53:15:64:b7:
7c:dc:c6:61:a8:ac:1d:96:55:fb:bd:ba:d1:0f:18:
ac:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F2:D3:E3:18:92:96:6E:A6:53:47:25:92:5C:32:A6:B7:1D:9D:D5
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/8fLT4xiSlm6mU0clklwyprcdndU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.208.0/23
45.142.211.0/24
45.151.136.0/22
80.76.40.0/24
83.171.240.0/24
84.54.37.0/24
84.54.39.0/24
95.215.108.0/22
185.42.26.0/24
185.118.64.0/22
185.156.176.0/22
185.177.113.0/24
185.177.115.0/24
185.197.72.0/23
185.220.32.0/22
185.230.140.0-185.230.142.255
185.246.116.0/23
185.246.119.0/24
185.254.188.0-185.254.190.255
193.38.232.0-193.38.234.255
194.113.104.0/24
194.113.107.0/24
IPv6:
2a05:fb41::-2a05:fb42:ffff:ffff:ffff:ffff:ffff:ffff
2a05:fb44::/31
2a07:14c0::/47
2a07:14c0:1000::/36
2a07:14c0:3000::-2a07:14c0:6fff:ffff:ffff:ffff:ffff:ffff
2a07:14c0:d000::/36
2a07:14c1::-2a07:14c2:ffff:ffff:ffff:ffff:ffff:ffff
2a07:14c6::/31
2a0a:4780::-2a0a:4785:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:2103::/32
2a0c:5241::/32
2a0c:5245::/32
2a0c:5247:7000::/36
2a0c:5247:c000::/34
2a0d:60c0::/31
2a0d:60c3::/32
2a0d:7740::/32
2a0d:7747::/32
Signature Algorithm: sha256WithRSAEncryption
2a:e5:b0:80:76:08:d7:3d:be:d8:f9:83:a1:2b:fd:27:ab:46:
fd:4c:d2:46:cb:5d:e7:83:96:f1:32:2c:05:67:38:58:70:63:
ed:ac:22:b1:68:e7:6e:6b:f2:e9:14:fc:cb:b5:3e:d5:71:5f:
f7:69:9a:38:12:7b:d8:35:76:5a:5d:ae:d3:fe:90:c4:cc:57:
ed:61:07:f4:67:de:52:21:ec:47:eb:9e:c2:d2:e9:75:88:1f:
9c:f7:ae:3e:73:f2:e5:68:d7:5a:5b:30:17:9e:af:d8:f6:12:
cc:fa:06:cc:f8:e0:c4:64:f0:d7:d1:29:93:92:dc:ab:f0:12:
5f:25:80:cb:8d:49:a1:b8:9c:70:d1:da:e9:ae:c5:ee:7c:1f:
5a:6a:4b:b1:4c:4b:21:ad:3e:21:64:24:23:4c:e8:61:91:14:
f7:a2:29:ce:c1:b6:9a:d3:1d:e9:22:fa:39:e7:a1:99:fa:44:
a8:5c:dc:3b:fe:87:d3:36:fc:e0:41:c2:f6:18:fc:8c:9d:1f:
8c:68:84:eb:3e:cc:08:3b:e9:a3:79:5c:a5:d4:7b:4e:3d:18:
1e:d5:bb:3e:6c:f3:5a:41:a3:f5:2f:e5:ec:0d:c1:97:81:44:
06:5f:d3:1e:aa:7b:fb:c7:f5:20:af:df:e6:2e:1d:71:ae:75:
c2:9e:30:9f
-----BEGIN CERTIFICATE-----
MIIGTzCCBTegAwIBAgISAZQf+gMTKKCv+OgdowH7lN9vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NTllYzJhNWZkNTM5MDljNTIzOWY0Y2M4ZDZkMzI5YTI3
NzliYjEwHhcNMjUwMTAxMDM0NzQ1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMWYyZDNlMzE4OTI5NjZlYTY1MzQ3MjU5MjVjMzJhNmI3MWQ5ZGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngNIdHc+Wu+ua9a0VXEdnTzL/BiX
ikTbaNZZm19vmcL0ZHt8bHl0MxxI1HjllgHsWBLYktvNha/tZX3kotELBSfo1uk4
gxwsic6Xk9yaWS8D2Ma1Xz0f9cC5edDWW6pXXER7KNpWqB6op4VkqOmWZIEhqR/z
1H06xvnuoJvZ3linuUo6t3AFWwBN/m3GOITw6MZiZLLlaRQDWWxLbD2PS3ReuglL
ZtEbK418qpJBnHnKxotFKFileLXJA9P6SKuzNiA5gry7DMgzkOGFZBHsbxy/CR2q
k8+1LU5R7UDmjA3KWD8vroUyGF7p+VMVZLd83MZhqKwdllX7vbrRDxisNwIDAQAB
o4IDWzCCA1cwHQYDVR0OBBYEFPHy0+MYkpZuplNHJZJcMqa3HZ3VMB8GA1UdIwQY
MBaAFERZ7Cpf1TkJxSOfTMjW0ymid5uxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTkt
NmI0MzcyNjAyMDk2LzEvOGZMVDR4aVNsbTZtVTBjbGtsd3lwcmNkbmRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTktNmI0MzcyNjAyMDk2
LzEvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBbwYIKwYBBQUHAQcBAf8EggFeMIIBWjCBowQCAAEwgZwD
BAEtjtADBAAtjtMDBAItl4gDBABQTCgDBABTq/ADBABUNiUDBABUNicDBAJf12wD
BAC5KhoDBAK5dkADBAK5nLADBAC5sXEDBAC5sXMDBAG5xUgDBAK53CAwDAMEArnm
jAMEALnmjgMEAbn2dAMEALn2dzAMAwQCuf68AwQAuf6+MAwDBAPBJugDBADBJuoD
BADCcWgDBADCcWswgbEEAgACMIGqMA4DBQAqBftBAwUAKgX7QgMFASoF+0QDBwEq
BxTAAAADBgQqBxTAEDAQAwYEKgcUwDADBgQqBxTAYAMGBCoHFMDQMA4DBQAqBxTB
AwUAKgcUwgMFASoHFMYwDgMFByoKR4ADBQEqCkeEAwUAKgwhAwMFACoMUkEDBQAq
DFJFAwYEKgxSR3ADBgYqDFJHwAMFASoNYMADBQAqDWDDAwUAKg13QAMFACoNd0cw
DQYJKoZIhvcNAQELBQADggEBACrlsIB2CNc9vtj5g6Er/SerRv1M0kbLXeeDlvEy
LAVnOFhwY+2sIrFo525r8ukU/Mu1PtVxX/dpmjgSe9g1dlpdrtP+kMTMV+1hB/Rn
3lIh7EfrnsLS6XWIH5z3rj5z8uVo11pbMBeer9j2Esz6Bsz44MRk8NfRKZOS3Kvw
El8lgMuNSaG4nHDR2umuxe58H1pqS7FMSyGtPiFkJCNM6GGRFPeiKc7BtprTHeki
+jnnoZn6RKhc3Dv+h9M2/OBBwvYY/IydH4xohOs+zAg76aN5XKXUe049GB7Vuz5s
81pBo/Uv5ewNwZeBRAZf0x6qe/vH9SCv3+YuHXGudcKeMJ8=
-----END CERTIFICATE-----
Generated at Sat Apr 5 22:11:56 2025 by rpki-client