Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/VxDJhuHNl_sc9nt8eTGT8RRIIUk.roa
File: VxDJhuHNl_sc9nt8eTGT8RRIIUk.roa (raw, json)
Hash identifier: FA06HLxFPxj5My9knQmWVdx/O5va1zQxvww4muwlGAw=
Subject key identifier: 57:10:C9:86:E1:CD:97:FB:1C:F6:7B:7C:79:31:93:F1:14:48:21:49
Certificate issuer: /CN=f571bbf1d3d3c0efe36de110392be0c7ac447a84
Certificate serial: 019426D9407E9D73A42AED35A447EC820070
Authority key identifier: F5:71:BB:F1:D3:D3:C0:EF:E3:6D:E1:10:39:2B:E0:C7:AC:44:7A:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XG78dPTwO_jbeEQOSvgx6xEeoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/VxDJhuHNl_sc9nt8eTGT8RRIIUk.roa
Signing time: Thu 02 Jan 2025 11:49:19 +0000
ROA not before: Thu 02 Jan 2025 11:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42926
IP address blocks: 31.210.64.0/18 maxlen: 24
46.45.128.0/18 maxlen: 24
46.45.185.0/24 maxlen: 24
46.45.186.0/24 maxlen: 24
46.45.187.0/24 maxlen: 24
46.45.188.0/24 maxlen: 24
77.75.32.0/21 maxlen: 24
79.98.128.0/21 maxlen: 24
94.101.80.0/20 maxlen: 24
94.101.90.0/24 maxlen: 24
176.53.0.0/17 maxlen: 24
176.53.74.0/24 maxlen: 24
176.53.96.0/24 maxlen: 24
178.211.32.0/19 maxlen: 24
185.25.100.0/24 maxlen: 24
185.25.101.0/24 maxlen: 24
185.25.102.0/24 maxlen: 24
185.25.103.0/24 maxlen: 24
185.157.40.0/22 maxlen: 24
185.184.208.0/22 maxlen: 24
213.128.64.0/19 maxlen: 24
213.128.93.0/24 maxlen: 24
213.128.94.0/24 maxlen: 24
213.128.95.0/24 maxlen: 24
2a00:56a0::/32 maxlen: 48
2a01:790::/32 maxlen: 48
2a0b:5f40::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:40:7e:9d:73:a4:2a:ed:35:a4:47:ec:82:00:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f571bbf1d3d3c0efe36de110392be0c7ac447a84
Validity
Not Before: Jan 2 11:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5710c986e1cd97fb1cf67b7c793193f114482149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:75:f1:37:35:b1:32:28:a2:d3:83:9a:3e:e3:
58:b2:55:35:69:6d:d7:72:82:84:20:03:7a:d8:f2:
7a:90:aa:f2:f7:79:a0:92:f0:86:51:9e:50:62:12:
83:a6:8e:da:20:43:be:10:2c:b8:f5:48:84:5e:cc:
3d:ec:f8:5a:0f:35:da:1f:0e:b2:e5:08:3a:d6:7b:
c4:a3:4c:74:c3:b5:e8:b1:86:77:9b:9d:8d:0b:27:
ab:46:ef:ce:93:76:ea:43:90:f1:5d:4d:50:89:34:
01:b7:bb:d6:b7:89:1e:18:be:dd:cc:f5:1d:31:c4:
5b:33:52:05:3e:c6:ed:f1:63:2d:fd:28:00:77:41:
f4:80:53:3a:49:1c:42:26:d1:6c:be:d1:7e:1f:c7:
ee:8f:cd:5f:20:e3:7c:12:3e:a4:31:ca:e2:2d:1c:
cd:45:4c:ec:30:53:5c:02:4c:8f:1b:cf:10:7e:16:
24:2f:cc:a6:c0:87:93:74:1b:dc:7a:05:84:61:37:
a9:25:53:16:51:c2:28:a2:2a:83:4b:c5:cf:b3:c4:
ca:8a:23:57:ee:da:56:7d:fa:29:58:5f:e5:5c:c3:
82:6b:32:92:86:df:56:0a:4a:38:c8:e9:66:6d:b4:
e5:e2:41:45:89:f5:7a:f4:86:46:8b:18:79:87:cc:
c0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:10:C9:86:E1:CD:97:FB:1C:F6:7B:7C:79:31:93:F1:14:48:21:49
X509v3 Authority Key Identifier:
keyid:F5:71:BB:F1:D3:D3:C0:EF:E3:6D:E1:10:39:2B:E0:C7:AC:44:7A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XG78dPTwO_jbeEQOSvgx6xEeoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/VxDJhuHNl_sc9nt8eTGT8RRIIUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/9XG78dPTwO_jbeEQOSvgx6xEeoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.64.0/18
46.45.128.0/18
77.75.32.0/21
79.98.128.0/21
94.101.80.0/20
176.53.0.0/17
178.211.32.0/19
185.25.100.0/22
185.157.40.0/22
185.184.208.0/22
213.128.64.0/19
IPv6:
2a00:56a0::/32
2a01:790::/32
2a0b:5f40::/29
Signature Algorithm: sha256WithRSAEncryption
12:7e:29:88:de:b9:9a:ed:42:39:09:5e:72:d1:e7:eb:e1:b5:
2e:6d:6e:5b:7c:d2:b5:58:ad:25:77:07:43:3a:43:01:bf:85:
cb:74:df:3d:a5:ba:1d:71:34:2c:f4:b9:f5:b5:db:63:a8:3c:
27:98:d0:a0:1c:2f:8b:c9:e5:86:61:26:27:2c:4a:5d:40:34:
1a:56:10:e9:ce:59:99:9e:01:b3:d9:06:ca:3e:da:10:8b:f3:
97:88:35:8d:e8:c8:c5:c7:6d:b3:95:6d:cc:3a:08:00:be:07:
7e:77:4c:19:e8:78:e4:91:01:23:b9:ed:f5:42:1a:91:e6:1d:
c7:04:59:9c:7b:1b:85:57:89:8d:9e:e4:96:ce:de:b8:28:51:
31:f1:05:0f:a8:4b:95:fc:d0:b1:fe:a4:97:9d:de:32:86:32:
d6:de:16:32:3a:45:31:9f:a6:f2:94:b7:83:c5:c3:4f:6b:8a:
e3:b3:6c:05:38:85:13:61:99:d2:71:72:64:d1:34:64:4f:2f:
c1:af:c8:36:12:bc:8e:12:5a:48:3d:fb:f1:19:af:60:f1:1c:
cd:38:81:12:cf:ad:af:5a:26:4b:7f:15:3d:e1:76:7c:03:ad:
5c:13:66:04:1b:9e:15:dc:45:03:23:aa:c4:f7:66:cd:68:fe:
ca:59:d5:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:31:49 2025 by rpki-client