Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/m3FPA0gDGVnI8PjPCwmDJXS3am4.roa
File: m3FPA0gDGVnI8PjPCwmDJXS3am4.roa (raw, json)
Hash identifier: iJU0JEqNybrVIOi6Wb4fvKKuySMZyuaXFdEyadAN0OM=
Subject key identifier: 9B:71:4F:03:48:03:19:59:C8:F0:F8:CF:0B:09:83:25:74:B7:6A:6E
Certificate issuer: /CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Certificate serial: 01953890B674C526E585A9B2C499238048CD
Authority key identifier: 03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/m3FPA0gDGVnI8PjPCwmDJXS3am4.roa
Signing time: Mon 24 Feb 2025 15:26:02 +0000
ROA not before: Mon 24 Feb 2025 15:26:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216435
IP address blocks: 2a10:500::/32 maxlen: 48
2a10:500::/40 maxlen: 48
2a10:500:100::/40 maxlen: 40
2a10:500:200::/40 maxlen: 40
2a10:500:f00::/40 maxlen: 40
2a10:500:1000::/40 maxlen: 40
2a10:500:1100::/40 maxlen: 40
2a10:500:1200::/40 maxlen: 40
2a10:500:1300::/40 maxlen: 40
2a10:500:1400::/40 maxlen: 40
2a10:500:1500::/40 maxlen: 40
2a10:500:1600::/40 maxlen: 40
2a10:500:1700::/40 maxlen: 40
2a10:500:1800::/40 maxlen: 40
2a10:500:1900::/40 maxlen: 40
2a10:500:1a00::/40 maxlen: 40
2a10:500:1b00::/40 maxlen: 40
2a10:500:1c00::/40 maxlen: 40
2a10:500:1d00::/40 maxlen: 40
2a10:500:1e00::/40 maxlen: 40
2a10:500:1f00::/40 maxlen: 40
2a10:500:2000::/40 maxlen: 40
2a10:500:2100::/40 maxlen: 40
2a10:500:2200::/40 maxlen: 40
2a10:500:2300::/40 maxlen: 40
2a10:500:2400::/40 maxlen: 40
2a10:500:2500::/40 maxlen: 40
2a10:500:2600::/40 maxlen: 40
2a10:500:3600::/40 maxlen: 40
2a10:500:4800::/40 maxlen: 40
2a10:500:4900::/40 maxlen: 40
2a10:500:4d00::/40 maxlen: 40
2a10:500:5600::/40 maxlen: 40
2a10:500:5c00::/40 maxlen: 40
2a10:500:6000::/40 maxlen: 40
2a10:500:6700::/40 maxlen: 40
2a10:500:7a00::/40 maxlen: 40
2a10:500:7c00::/40 maxlen: 40
2a10:500:7e00::/40 maxlen: 40
2a10:500:8b00::/40 maxlen: 40
2a10:500:8d00::/40 maxlen: 40
2a10:500:8e00::/40 maxlen: 40
2a10:500:9400::/40 maxlen: 40
2a10:500:9500::/40 maxlen: 40
2a10:500:9600::/40 maxlen: 40
2a10:500:9800::/40 maxlen: 40
2a10:500:9e00::/40 maxlen: 40
2a10:500:b100::/40 maxlen: 40
2a10:500:c300::/40 maxlen: 40
2a10:500:ce00::/40 maxlen: 40
2a10:500:de00::/40 maxlen: 40
2a10:500:f000::/40 maxlen: 40
2a10:500:fdff::/48 maxlen: 48
2a10:500:fe00::/40 maxlen: 40
2a10:500:fe01::/48 maxlen: 48
2a10:502::/32 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:38:90:b6:74:c5:26:e5:85:a9:b2:c4:99:23:80:48:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Validity
Not Before: Feb 24 15:26:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9b714f0348031959c8f0f8cf0b09832574b76a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:0c:59:8a:5f:49:c0:03:06:d6:ed:cc:39:d5:
fc:10:03:23:e0:35:55:b0:d1:5b:a3:eb:12:02:df:
82:5b:5a:9d:2e:24:a6:68:31:1d:6f:9b:62:f8:e4:
cc:13:5d:70:df:a5:a7:e2:6d:f7:f1:ec:7e:e3:6b:
46:e9:1b:58:25:56:75:53:9f:5d:4e:26:83:1a:b7:
d7:ac:25:50:26:10:1c:c9:9f:7e:90:17:51:61:d4:
48:c6:88:9f:e2:41:09:89:7e:57:86:53:76:3a:c9:
64:23:62:1a:c0:4a:1b:c6:a1:ee:7f:e6:6b:9f:e5:
76:15:ea:c4:f7:d1:26:dd:4a:85:72:64:7a:7c:f8:
97:27:d9:1f:75:45:68:2f:e4:76:f6:d4:5f:53:b6:
dd:09:3f:6b:8e:30:60:d0:d7:27:60:ec:7d:c5:07:
07:d8:a5:7c:ed:e4:5d:a5:cf:90:45:ab:26:45:84:
cf:f4:a7:f8:b7:fb:33:4a:bb:46:4f:5c:0a:cd:9c:
7b:9d:42:44:5f:c6:9e:a8:0a:3c:37:30:66:9a:36:
21:41:88:07:ac:66:b7:7c:99:ad:c8:89:b2:12:e5:
dd:ee:70:2c:a0:94:ff:e7:62:b6:6c:13:a2:94:23:
1e:c5:c4:55:37:1a:e4:5d:f4:da:4b:0a:de:ee:c6:
d1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:71:4F:03:48:03:19:59:C8:F0:F8:CF:0B:09:83:25:74:B7:6A:6E
X509v3 Authority Key Identifier:
keyid:03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/m3FPA0gDGVnI8PjPCwmDJXS3am4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:500::/32
2a10:502::/32
Signature Algorithm: sha256WithRSAEncryption
39:8a:4f:52:13:ea:28:8d:34:ca:a7:15:cf:3a:59:4e:ec:8f:
96:a9:0b:80:4a:a2:87:55:b5:ff:1d:ca:b9:3c:3b:52:9f:da:
5f:be:f9:b4:6d:e9:c4:4f:fc:bf:5a:c6:d0:30:fd:56:fe:35:
ea:31:53:e9:75:87:c2:3f:3c:f7:7a:4e:1b:68:9b:59:12:8a:
8b:67:af:03:ec:39:2e:37:ed:82:de:09:76:fe:4c:30:85:5b:
1e:c7:49:a7:b2:c2:8e:0a:31:af:f4:39:6f:01:c2:64:a3:c5:
10:17:5b:07:c9:80:73:83:00:97:7e:a5:a4:82:d8:f0:e8:2f:
d9:6d:bc:4f:28:9a:03:82:24:e9:9b:06:e5:79:00:8b:d6:06:
2f:68:b0:ef:c1:95:b1:60:78:2c:c5:6b:39:af:28:48:9e:af:
e0:eb:85:99:c9:d8:d4:8d:da:48:cb:52:ba:e1:d2:9a:05:37:
b9:14:ee:3c:d3:e7:ca:0f:09:71:0a:16:5d:8f:ca:9d:8c:f2:
67:aa:87:39:7f:69:52:9c:4d:71:c8:ed:64:68:f8:3e:cb:f1:
2e:c6:6a:fa:68:80:cd:a0:27:9a:ca:9e:b6:73:25:34:7d:4f:
11:b6:9e:f9:0f:45:b0:84:e6:3c:bc:7d:c9:c7:78:2a:53:29:
7d:10:d6:00
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZU4kLZ0xSblhamyxJkjgEjNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzN2I0ODQ0OWJhMWNhZTE1YmRlMmMyZjA4NmQ5NDIxOGUw
NzIwYmIwHhcNMjUwMjI0MTUyNjAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjcxNGYwMzQ4MDMxOTU5YzhmMGY4Y2YwYjA5ODMyNTc0Yjc2YTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmAxZil9JwAMG1u3MOdX8EAMj4DVV
sNFbo+sSAt+CW1qdLiSmaDEdb5ti+OTME11w36Wn4m338ex+42tG6RtYJVZ1U59d
TiaDGrfXrCVQJhAcyZ9+kBdRYdRIxoif4kEJiX5XhlN2OslkI2IawEobxqHuf+Zr
n+V2FerE99Em3UqFcmR6fPiXJ9kfdUVoL+R29tRfU7bdCT9rjjBg0NcnYOx9xQcH
2KV87eRdpc+QRasmRYTP9Kf4t/szSrtGT1wKzZx7nUJEX8aeqAo8NzBmmjYhQYgH
rGa3fJmtyImyEuXd7nAsoJT/52K2bBOilCMexcRVNxrkXfTaSwre7sbRvwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFJtxTwNIAxlZyPD4zwsJgyV0t2puMB8GA1UdIwQY
MBaAFAN7SESbocrhW94sLwhtlCGOByC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTN0SVJKdWh5dUZiM2l3dkNHMlVJWTRISUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS81ZmY3OGUtZGIxNC00YjA1LTljYzYt
NzQwM2UxMzY3NWFiLzEvbTNGUEEwZ0RHVm5JOFBqUEN3bURKWFMzYW00LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS81ZmY3OGUtZGIxNC00YjA1LTljYzYtNzQwM2UxMzY3NWFi
LzEvQTN0SVJKdWh5dUZiM2l3dkNHMlVJWTRISUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKhAFAAMF
ACoQBQIwDQYJKoZIhvcNAQELBQADggEBADmKT1IT6iiNNMqnFc86WU7sj5apC4BK
oodVtf8dyrk8O1Kf2l+++bRt6cRP/L9axtAw/Vb+NeoxU+l1h8I/PPd6Thtom1kS
iotnrwPsOS437YLeCXb+TDCFWx7HSaeywo4KMa/0OW8BwmSjxRAXWwfJgHODAJd+
paSC2PDoL9ltvE8omgOCJOmbBuV5AIvWBi9osO/BlbFgeCzFazmvKEier+DrhZnJ
2NSN2kjLUrrh0poFN7kU7jzT58oPCXEKFl2Pyp2M8meqhzl/aVKcTXHI7WRo+D7L
8S7GavpogM2gJ5rKnrZzJTR9TxG2nvkPRbCE5jy8fcnHeCpTKX0Q1gA=
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:25:42 2025 by rpki-client