Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/ytMIr8kkk9zexrtuiH3RujpubK0.roa
File: ytMIr8kkk9zexrtuiH3RujpubK0.roa (raw, json)
Hash identifier: Yt74H9VGeO3LuR7eSnF1uRObldgheO5TTjLfaYTy0XQ=
Subject key identifier: CA:D3:08:AF:C9:24:93:DC:DE:C6:BB:6E:88:7D:D1:BA:3A:6E:6C:AD
Certificate issuer: /CN=eb500c9002321f03964583710b7baa4597341213
Certificate serial: 0194732315E772C0E74EBD1995C47F3B109D
Authority key identifier: EB:50:0C:90:02:32:1F:03:96:45:83:71:0B:7B:AA:45:97:34:12:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61AMkAIyHwOWRYNxC3uqRZc0EhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/ytMIr8kkk9zexrtuiH3RujpubK0.roa
Signing time: Fri 17 Jan 2025 07:21:06 +0000
ROA not before: Fri 17 Jan 2025 07:21:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29182
IP address blocks: 5.35.96.0/23 maxlen: 23
5.35.98.0/23 maxlen: 23
31.135.8.0/23 maxlen: 23
31.135.10.0/24 maxlen: 24
31.135.11.0/24 maxlen: 24
31.135.12.0/23 maxlen: 23
31.135.14.0/23 maxlen: 23
37.230.112.0/23 maxlen: 23
37.230.114.0/23 maxlen: 23
37.230.116.0/23 maxlen: 23
37.230.118.0/23 maxlen: 23
62.181.44.0/24 maxlen: 24
62.181.53.0/24 maxlen: 24
62.181.54.0/23 maxlen: 23
78.24.216.0/21 maxlen: 21
79.143.72.0/23 maxlen: 23
79.174.12.0/23 maxlen: 23
79.174.14.0/23 maxlen: 23
83.136.232.0/23 maxlen: 23
83.136.235.0/24 maxlen: 24
86.110.194.0/24 maxlen: 24
86.110.208.0/23 maxlen: 23
86.110.212.0/24 maxlen: 24
86.110.215.0/24 maxlen: 24
86.110.220.0/24 maxlen: 24
89.169.28.0/23 maxlen: 23
89.169.30.0/23 maxlen: 23
91.107.120.0/21 maxlen: 21
91.228.224.0/23 maxlen: 23
92.63.192.0/23 maxlen: 23
92.63.194.0/23 maxlen: 23
94.250.248.0/23 maxlen: 23
94.250.250.0/23 maxlen: 23
94.250.252.0/23 maxlen: 23
94.250.254.0/23 maxlen: 23
109.172.4.0/23 maxlen: 23
109.172.6.0/23 maxlen: 23
109.172.108.0/22 maxlen: 22
109.172.112.0/23 maxlen: 23
109.172.114.0/23 maxlen: 23
149.154.64.0/23 maxlen: 23
149.154.66.0/23 maxlen: 23
149.154.68.0/23 maxlen: 23
149.154.70.0/23 maxlen: 23
176.123.168.0/23 maxlen: 23
176.123.170.0/23 maxlen: 23
176.123.172.0/23 maxlen: 23
176.123.174.0/23 maxlen: 23
178.250.156.0/23 maxlen: 23
178.250.158.0/23 maxlen: 23
185.60.132.0/23 maxlen: 23
185.60.134.0/23 maxlen: 23
185.187.115.0/24 maxlen: 24
188.120.224.0/20 maxlen: 20
188.120.240.0/21 maxlen: 21
188.120.248.0/23 maxlen: 23
188.120.248.0/24 maxlen: 24
188.120.249.0/24 maxlen: 24
188.120.250.0/23 maxlen: 23
188.120.253.0/24 maxlen: 24
188.120.254.0/23 maxlen: 23
212.57.115.0/24 maxlen: 24
212.57.116.0/24 maxlen: 24
212.57.118.0/24 maxlen: 24
212.57.122.0/24 maxlen: 24
212.57.124.0/23 maxlen: 23
212.57.126.0/23 maxlen: 23
217.28.220.0/23 maxlen: 23
217.28.222.0/23 maxlen: 23
2a01:230:1::/48 maxlen: 48
2a01:230:2::/48 maxlen: 48
2a01:230:3::/48 maxlen: 48
2a01:230:4::/48 maxlen: 48
2a01:230:5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:73:23:15:e7:72:c0:e7:4e:bd:19:95:c4:7f:3b:10:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb500c9002321f03964583710b7baa4597341213
Validity
Not Before: Jan 17 07:21:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cad308afc92493dcdec6bb6e887dd1ba3a6e6cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ca:00:92:2f:41:32:b5:7f:37:a6:1d:5b:21:
21:1c:73:c5:50:33:ca:bf:d7:9b:43:b3:83:85:8f:
4e:33:cb:e9:85:19:8f:d9:4f:f9:73:a9:f4:54:c5:
65:d9:71:45:07:53:e9:7f:22:6f:eb:29:fa:55:9c:
8d:ed:62:ef:36:43:04:bd:8e:82:12:52:1b:83:31:
0f:a0:a3:8b:25:4a:8f:9b:9b:0c:a0:df:3b:f5:9f:
ee:d0:cb:86:c6:e1:47:07:6b:cb:d3:5f:b6:ea:c6:
ac:20:ee:8c:c9:34:58:d8:3d:e2:c0:5a:2e:5b:d9:
f5:50:75:74:8b:cc:a0:d2:20:32:1e:b8:7c:d1:4d:
85:cb:2b:9e:fb:55:e9:8e:a9:6a:14:fc:31:d6:dc:
95:fa:d2:48:f0:d2:7b:bf:dc:89:ad:6d:e1:55:00:
bb:80:ee:23:88:dd:c8:a5:a3:5d:8a:04:75:72:31:
cc:92:b3:75:75:f0:e4:6f:61:03:8a:81:b0:c2:19:
6b:a7:79:85:63:ba:70:93:97:4f:67:d7:a5:cd:f7:
11:f4:0e:df:8d:85:5f:16:fd:fe:b3:16:27:c8:03:
ca:ad:a6:e5:ae:b3:77:3b:19:ee:ed:79:36:3c:15:
09:32:ea:29:f7:ec:e2:4c:2b:3f:a1:75:b0:0d:ce:
61:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D3:08:AF:C9:24:93:DC:DE:C6:BB:6E:88:7D:D1:BA:3A:6E:6C:AD
X509v3 Authority Key Identifier:
keyid:EB:50:0C:90:02:32:1F:03:96:45:83:71:0B:7B:AA:45:97:34:12:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61AMkAIyHwOWRYNxC3uqRZc0EhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/ytMIr8kkk9zexrtuiH3RujpubK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/61AMkAIyHwOWRYNxC3uqRZc0EhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.35.96.0/22
31.135.8.0/21
37.230.112.0/21
62.181.44.0/24
62.181.53.0-62.181.55.255
78.24.216.0/21
79.143.72.0/23
79.174.12.0/22
83.136.232.0/23
83.136.235.0/24
86.110.194.0/24
86.110.208.0/23
86.110.212.0/24
86.110.215.0/24
86.110.220.0/24
89.169.28.0/22
91.107.120.0/21
91.228.224.0/23
92.63.192.0/22
94.250.248.0/21
109.172.4.0/22
109.172.108.0-109.172.115.255
149.154.64.0/21
176.123.168.0/21
178.250.156.0/22
185.60.132.0/22
185.187.115.0/24
188.120.224.0-188.120.251.255
188.120.253.0-188.120.255.255
212.57.115.0-212.57.116.255
212.57.118.0/24
212.57.122.0/24
212.57.124.0/22
217.28.220.0/22
IPv6:
2a01:230:1::-2a01:230:5:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8f:b4:7b:08:73:57:ca:34:fc:50:be:72:7c:05:82:5e:7e:8b:
ba:13:79:0e:4b:ac:34:4d:59:23:1f:c1:1d:c2:24:ec:8e:8a:
22:80:4e:1f:d7:1f:4f:74:a9:82:31:ab:6c:f1:bb:ad:98:63:
11:9d:a0:8f:8b:87:d7:89:2f:ea:d5:a2:81:57:8c:71:09:7b:
a4:58:75:10:54:a4:50:27:72:22:79:51:93:04:7f:f9:64:81:
de:0d:ea:6d:97:72:11:08:04:37:f2:3e:70:ac:ee:39:8f:5e:
76:ed:7d:cb:bd:3c:71:54:54:8d:56:f1:8f:a1:96:dc:ae:25:
05:70:ce:83:e8:64:6a:4c:98:f1:ae:20:2f:28:e3:4e:84:5a:
c9:2d:e9:08:cc:6b:1e:1a:27:37:69:21:f0:4a:d6:70:db:e5:
7e:b6:80:d5:86:bd:11:b0:8a:04:b1:85:71:76:15:18:e8:2b:
f9:68:69:8c:cf:48:02:7f:da:33:c0:65:07:74:c0:bc:fd:24:
6c:62:50:c1:5d:26:72:23:c4:48:b1:b0:77:c9:dc:87:4d:1d:
a9:a7:7b:6f:d2:ef:ca:d4:b3:d0:c1:7c:19:ad:dd:89:c5:e2:
fe:5e:7e:08:c0:76:5c:cf:e3:0f:03:ad:35:1f:f8:6a:62:6e:
10:bf:13:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:44:07 2025 by rpki-client