Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/RX6hdm4DjAMn5prjCEZcThrBkPQ.roa
File: RX6hdm4DjAMn5prjCEZcThrBkPQ.roa (raw, json)
Hash identifier: vW4o4wQmP3pga2fu8ZhKh/TSLZ+JcoaM1R4BxL4z2fY=
Subject key identifier: 45:7E:A1:76:6E:03:8C:03:27:E6:9A:E3:08:46:5C:4E:1A:C1:90:F4
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 0194BD767C77511F4D09CC5E6EA7F909FC89
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/RX6hdm4DjAMn5prjCEZcThrBkPQ.roa
Signing time: Fri 31 Jan 2025 17:44:06 +0000
ROA not before: Fri 31 Jan 2025 17:44:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201453
IP address blocks: 185.74.192.0/24 maxlen: 24
185.112.76.0/24 maxlen: 24
185.112.78.0/24 maxlen: 24
185.163.166.0/24 maxlen: 24
185.163.167.0/24 maxlen: 24
185.178.80.0/22 maxlen: 22
185.178.80.0/24 maxlen: 24
185.178.81.0/24 maxlen: 24
185.178.82.0/24 maxlen: 24
185.178.83.0/24 maxlen: 24
185.183.16.0/24 maxlen: 24
185.183.17.0/24 maxlen: 24
185.183.18.0/24 maxlen: 24
185.194.24.0/24 maxlen: 24
185.194.26.0/24 maxlen: 24
185.194.27.0/24 maxlen: 24
185.219.216.0/22 maxlen: 22
185.225.148.0/24 maxlen: 24
2a05:4ac0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bd:76:7c:77:51:1f:4d:09:cc:5e:6e:a7:f9:09:fc:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: Jan 31 17:44:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=457ea1766e038c0327e69ae308465c4e1ac190f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:cb:23:c8:96:5b:07:e6:16:e4:e7:6a:d8:44:
41:35:78:74:0c:ff:3b:7a:fc:e0:c8:0e:bc:ed:10:
e4:f8:17:2e:74:50:09:70:79:1b:67:39:d7:5f:72:
f8:f3:41:56:7c:f5:45:cc:78:b3:72:d7:16:70:06:
cb:f0:0b:3b:42:31:e8:90:e8:42:90:dd:89:09:a2:
cf:86:c8:80:a1:fd:2f:94:4a:ce:d6:f0:a5:5d:ac:
2b:1e:82:a0:2d:ec:b4:39:25:b3:7a:23:35:8a:c2:
ad:1e:69:53:ce:75:dd:a2:62:25:35:13:b6:c3:d0:
7a:3a:21:86:64:ad:96:35:b1:85:58:5f:2d:38:b9:
08:b9:04:a2:3a:86:c8:24:15:80:66:e1:be:39:eb:
2f:40:4f:cd:2b:ef:a1:77:2e:b0:3a:04:09:11:67:
43:d3:4c:1f:53:65:3a:73:e0:17:2c:c5:f3:b2:9c:
f7:92:d8:76:24:ae:c2:83:9b:ca:cd:dc:fd:17:44:
0a:8a:db:a2:ee:fd:c4:4c:06:f3:7a:fa:7c:d9:4c:
d8:30:d8:19:15:dd:f8:c8:43:90:4e:0a:bb:97:00:
bc:90:25:43:c0:78:67:94:12:b0:69:25:e6:6c:0a:
b4:3f:73:f7:d0:89:87:e8:93:d7:7a:8e:eb:56:58:
77:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:7E:A1:76:6E:03:8C:03:27:E6:9A:E3:08:46:5C:4E:1A:C1:90:F4
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/RX6hdm4DjAMn5prjCEZcThrBkPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.192.0/24
185.112.76.0/24
185.112.78.0/24
185.163.166.0/23
185.178.80.0/22
185.183.16.0-185.183.18.255
185.194.24.0/24
185.194.26.0/23
185.219.216.0/22
185.225.148.0/24
IPv6:
2a05:4ac0::/32
Signature Algorithm: sha256WithRSAEncryption
71:bc:03:2e:ef:19:48:5d:71:4d:80:48:c8:49:4d:63:b0:f9:
4a:35:88:70:fc:37:51:ed:4f:02:bb:a0:85:5d:bd:8e:74:8c:
c1:6e:a3:93:fe:a6:89:a6:78:1e:7d:fe:ec:04:cd:c2:9c:88:
01:e9:67:07:38:bc:8e:e5:09:58:24:80:f1:2a:2e:84:f3:9a:
3c:89:e7:67:ab:80:65:f2:62:d6:1d:9e:88:ba:86:28:a3:8f:
65:41:e1:4f:59:b6:b1:a7:74:17:7e:13:47:7d:0a:76:ac:fc:
2c:66:d7:f0:e8:0e:e5:bf:fd:ea:29:68:a8:34:0d:95:97:04:
64:6e:1c:b3:60:7a:67:c5:a9:02:52:b1:58:86:4a:b9:77:ee:
fe:b2:59:07:d4:60:52:66:51:1e:f5:b4:94:8a:ca:65:9d:75:
c5:3a:d3:0b:a0:1a:65:8d:de:3a:a1:cc:04:b1:b9:14:b8:4b:
11:43:47:8f:0a:bc:12:c9:81:a5:ab:e7:7f:2d:c0:99:62:dc:
59:91:50:c7:47:19:d5:80:4d:8a:c0:da:56:59:af:eb:e1:c0:
4a:ef:3c:6b:72:97:d8:04:9c:54:7a:86:e0:dd:22:c1:e5:53:
e7:d5:a0:54:0a:d7:71:c8:c7:7f:9c:fe:5e:84:ec:3b:15:33:
d1:38:5a:70
-----BEGIN CERTIFICATE-----
MIIFSjCCBDKgAwIBAgISAZS9dnx3UR9NCcxebqf5CfyJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiYTMxODY1OTc3NDJhOTI2Y2QyNjUwNGUxZWQ3NmY4NTQz
ZmRiMjYwHhcNMjUwMTMxMTc0NDA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTdlYTE3NjZlMDM4YzAzMjdlNjlhZTMwODQ2NWM0ZTFhYzE5MGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+csjyJZbB+YW5Odq2ERBNXh0DP87
evzgyA687RDk+BcudFAJcHkbZznXX3L480FWfPVFzHizctcWcAbL8As7QjHokOhC
kN2JCaLPhsiAof0vlErO1vClXawrHoKgLey0OSWzeiM1isKtHmlTznXdomIlNRO2
w9B6OiGGZK2WNbGFWF8tOLkIuQSiOobIJBWAZuG+OesvQE/NK++hdy6wOgQJEWdD
00wfU2U6c+AXLMXzspz3kth2JK7Cg5vKzdz9F0QKitui7v3ETAbzevp82UzYMNgZ
Fd34yEOQTgq7lwC8kCVDwHhnlBKwaSXmbAq0P3P30ImH6JPXeo7rVlh34QIDAQAB
o4ICVjCCAlIwHQYDVR0OBBYEFEV+oXZuA4wDJ+aa4whGXE4awZD0MB8GA1UdIwQY
MBaAFGujGGWXdCqSbNJlBOHtdvhUP9smMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTZNWVpaZDBLcEpzMG1VRTRlMTItRlFfMnlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi85ZDU5MTAtOWY1ZS00NDZjLThkM2Mt
YmMwMDdmMmRhYzI0LzEvUlg2aGRtNERqQU1uNXByakNFWmNUaHJCa1BRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi85ZDU5MTAtOWY1ZS00NDZjLThkM2MtYmMwMDdmMmRhYzI0
LzEvYTZNWVpaZDBLcEpzMG1VRTRlMTItRlFfMnlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGwGCCsGAQUFBwEHAQH/BF0wWzBKBAIAATBEAwQAuUrAAwQA
uXBMAwQAuXBOAwQBuaOmAwQCubJQMAwDBAS5txADBAC5txIDBAC5whgDBAG5whoD
BAK529gDBAC54ZQwDQQCAAIwBwMFACoFSsAwDQYJKoZIhvcNAQELBQADggEBAHG8
Ay7vGUhdcU2ASMhJTWOw+Uo1iHD8N1HtTwK7oIVdvY50jMFuo5P+pommeB59/uwE
zcKciAHpZwc4vI7lCVgkgPEqLoTzmjyJ52ergGXyYtYdnoi6hiijj2VB4U9ZtrGn
dBd+E0d9Cnas/Cxm1/DoDuW//eopaKg0DZWXBGRuHLNgemfFqQJSsViGSrl37v6y
WQfUYFJmUR71tJSKymWddcU60wugGmWN3jqhzASxuRS4SxFDR48KvBLJgaWr538t
wJli3FmRUMdHGdWATYrA2lZZr+vhwErvPGtyl9gEnFR6huDdIsHlU+fVoFQK13HI
x3+c/l6E7DsVM9E4WnA=
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:51:51 2025 by rpki-client