Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/fiFWRyHYhcG7zoXstH_HKuXGgKs.roa
File: fiFWRyHYhcG7zoXstH_HKuXGgKs.roa (raw, json)
Hash identifier: vVAQWzW1PmnkJugWp23Z7ZXYC4iac5CDPLM+6TZi81E=
Subject key identifier: 7E:21:56:47:21:D8:85:C1:BB:CE:85:EC:B4:7F:C7:2A:E5:C6:80:AB
Certificate issuer: /CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Certificate serial: 0187E0C5F7E34F158980CADED3E5C1AB7979
Authority key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/fiFWRyHYhcG7zoXstH_HKuXGgKs.roa
Signing time: Wed 03 May 2023 08:41:23 +0000
ROA not before: Wed 03 May 2023 08:41:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 89.46.152.0/21 maxlen: 32
84.39.224.0/21 maxlen: 32
93.114.0.0/20 maxlen: 32
93.114.11.0/24 maxlen: 24
93.114.10.0/24 maxlen: 24
92.43.84.0/22 maxlen: 32
95.215.36.0/22 maxlen: 32
202.181.20.0/22 maxlen: 32
91.197.252.0/22 maxlen: 32
58.97.128.0/21 maxlen: 32
78.138.1.0/24 maxlen: 32
78.138.2.0/24 maxlen: 32
138.124.144.0/22 maxlen: 32
89.249.51.0/24 maxlen: 32
89.249.56.0/22 maxlen: 32
94.177.56.0/23 maxlen: 32
185.240.252.0/24 maxlen: 32
185.240.255.0/24 maxlen: 32
89.19.42.0/23 maxlen: 24
93.113.124.0/23 maxlen: 32
89.19.40.0/22 maxlen: 32
93.180.224.0/20 maxlen: 32
45.116.168.0/22 maxlen: 32
93.180.192.0/20 maxlen: 32
185.125.192.0/22 maxlen: 32
176.119.8.0/21 maxlen: 32
45.95.48.0/22 maxlen: 32
45.142.92.0/22 maxlen: 32
45.142.96.0/22 maxlen: 32
185.223.56.0/24 maxlen: 32
203.166.156.0/23 maxlen: 32
188.119.116.0/22 maxlen: 32
188.95.152.0/21 maxlen: 32
94.176.112.0/20 maxlen: 32
91.132.184.0/22 maxlen: 32
185.38.102.0/24 maxlen: 32
150.129.92.0/22 maxlen: 32
45.149.148.0/22 maxlen: 32
203.109.52.0/22 maxlen: 32
89.38.132.0/23 maxlen: 32
203.109.60.0/22 maxlen: 32
58.97.232.0/21 maxlen: 32
83.229.76.0/22 maxlen: 24
119.13.192.0/19 maxlen: 32
58.97.240.0/20 maxlen: 32
119.13.208.0/20 maxlen: 32
83.229.104.0/22 maxlen: 32
121.91.80.0/21 maxlen: 32
78.138.25.0/24 maxlen: 32
185.90.243.0/24 maxlen: 32
91.245.235.0/24 maxlen: 32
78.138.40.0/24 maxlen: 32
78.138.47.0/24 maxlen: 32
78.138.48.0/24 maxlen: 32
78.138.50.0/24 maxlen: 32
45.94.244.0/22 maxlen: 32
45.138.232.0/22 maxlen: 32
209.20.160.0/19 maxlen: 32
185.131.220.0/24 maxlen: 32
93.115.12.0/23 maxlen: 32
77.81.104.0/21 maxlen: 32
89.34.78.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e0:c5:f7:e3:4f:15:89:80:ca:de:d3:e5:c1:ab:79:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Validity
Not Before: May 3 08:41:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e21564721d885c1bbce85ecb47fc72ae5c680ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:58:14:bb:39:93:10:11:81:d7:8f:04:14:13:
c4:b1:9e:cc:0a:5a:81:c7:fa:09:e9:37:45:81:48:
11:2e:26:a1:a3:a7:b1:c6:03:fd:a1:8d:bb:cd:92:
f0:be:44:68:56:43:99:83:d6:cc:54:91:f0:bd:70:
62:15:83:df:60:7b:a4:97:f1:1e:c1:12:f7:83:8c:
9f:bb:90:fa:bf:e6:8f:13:98:7c:44:72:b6:77:a7:
a3:bf:69:02:d1:6f:70:1c:0f:81:1b:05:ba:ae:52:
bb:2d:e7:e7:a3:b5:71:8e:a5:5c:fe:4d:22:d9:89:
6c:15:e1:05:f4:86:2f:2a:38:32:f4:94:2b:4a:00:
18:08:0f:b4:4c:fb:a9:fd:ea:8f:ba:67:13:60:c8:
cb:4c:33:1b:ed:08:c0:dd:e4:8d:fa:8e:ee:37:8e:
ca:dd:92:8b:8a:1e:bf:ef:57:7b:cc:a9:a3:8d:df:
45:5a:a8:f5:53:69:c6:4c:55:c8:a7:9f:45:b8:f9:
dd:49:96:03:57:41:b2:0d:25:05:12:42:be:e0:87:
b6:a3:6d:77:f1:20:f2:b5:c4:20:cb:3a:b5:b2:61:
3a:67:8e:cf:c4:fe:9d:e0:f4:54:93:06:89:1b:f3:
35:6b:30:b1:e6:64:07:34:40:ad:f6:35:8c:e5:66:
fc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:21:56:47:21:D8:85:C1:BB:CE:85:EC:B4:7F:C7:2A:E5:C6:80:AB
X509v3 Authority Key Identifier:
keyid:1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/fiFWRyHYhcG7zoXstH_HKuXGgKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.244.0/22
45.95.48.0/22
45.116.168.0/22
45.138.232.0/22
45.142.92.0-45.142.99.255
45.149.148.0/22
58.97.128.0/21
58.97.232.0-58.97.255.255
77.81.104.0/21
78.138.1.0-78.138.2.255
78.138.25.0/24
78.138.40.0/24
78.138.47.0-78.138.48.255
78.138.50.0/24
83.229.76.0/22
83.229.104.0/22
84.39.224.0/21
89.19.40.0/22
89.34.78.0/23
89.38.132.0/23
89.46.152.0/21
89.249.51.0/24
89.249.56.0/22
91.132.184.0/22
91.197.252.0/22
91.245.235.0/24
92.43.84.0/22
93.113.124.0/23
93.114.0.0/20
93.115.12.0/23
93.180.192.0/20
93.180.224.0/20
94.176.112.0/20
94.177.56.0/23
95.215.36.0/22
119.13.192.0/19
121.91.80.0/21
138.124.144.0/22
150.129.92.0/22
176.119.8.0/21
185.38.102.0/24
185.90.243.0/24
185.125.192.0/22
185.131.220.0/24
185.223.56.0/24
185.240.252.0/24
185.240.255.0/24
188.95.152.0/21
188.119.116.0/22
202.181.20.0/22
203.109.52.0/22
203.109.60.0/22
203.166.156.0/23
209.20.160.0/19
Signature Algorithm: sha256WithRSAEncryption
25:51:87:16:16:48:be:fa:c7:8f:87:e2:68:42:79:7e:95:42:
cb:00:d6:4a:13:9a:c8:54:77:58:6c:13:31:b8:0e:d6:f1:49:
03:65:b1:3f:6e:4d:de:49:24:61:18:2f:9d:6b:6f:0e:11:2f:
79:ba:7a:61:79:f7:eb:46:50:6f:d5:b1:ce:af:80:04:03:ea:
1a:59:6f:e3:00:eb:a8:07:66:59:97:72:63:d5:f7:74:6a:73:
3a:88:6c:8d:aa:46:bb:e9:17:7b:f2:94:fb:15:df:3b:3a:09:
a3:3b:be:19:c3:65:68:05:95:af:46:52:23:2e:81:3a:d4:ed:
2f:74:60:4e:7f:be:c0:9e:0e:45:b8:af:64:42:f7:b9:74:b8:
9a:39:22:01:11:c6:fa:85:6d:f3:c7:e3:09:8b:49:24:e0:4b:
dc:a5:df:e7:5c:81:c7:34:9e:cb:08:6f:0b:53:d8:cc:d7:5a:
21:ff:97:eb:bd:de:43:8e:ac:4d:68:cb:94:06:f1:bc:73:ac:
b6:22:16:ec:9c:b4:23:07:8c:36:e0:b2:0e:1a:92:5c:de:63:
43:b4:43:99:ba:d3:ba:ad:f2:b8:ec:cd:fd:74:1a:0c:cb:75:
8f:0c:5c:87:fc:8a:fb:d8:72:4b:cc:09:26:68:37:fa:68:09:
ba:5b:69:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:32:02 2025 by rpki-client