Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/AgYnNyC9Wx8DrU_TCWrVtZS23Us.roa
File: AgYnNyC9Wx8DrU_TCWrVtZS23Us.roa (raw, json)
Hash identifier: NBzKVOiSplFobMPAfa42Gum5DwoW/4Dlq3VKA8z5m/0=
Subject key identifier: 02:06:27:37:20:BD:5B:1F:03:AD:4F:D3:09:6A:D5:B5:94:B6:DD:4B
Certificate issuer: /CN=681ce4d99ba8ebb91a794abfcbdd15bde09c99f8
Certificate serial: 08A8E3BA
Authority key identifier: 68:1C:E4:D9:9B:A8:EB:B9:1A:79:4A:BF:CB:DD:15:BD:E0:9C:99:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBzk2Zuo67kaeUq_y90VveCcmfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/AgYnNyC9Wx8DrU_TCWrVtZS23Us.roa
Signing time: Wed 09 Feb 2022 14:59:20 +0000
ROA not before: Wed 09 Feb 2022 14:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6752
IP address blocks: 80.80.84.0/22 maxlen: 22
80.80.92.0/22 maxlen: 22
185.87.36.0/22 maxlen: 22
185.33.0.0/22 maxlen: 22
194.158.64.0/22 maxlen: 22
194.158.64.0/24 maxlen: 24
194.158.64.0/19 maxlen: 19
194.158.68.0/22 maxlen: 22
194.158.72.0/23 maxlen: 23
194.158.72.0/22 maxlen: 22
194.158.76.0/22 maxlen: 22
185.87.40.0/22 maxlen: 22
185.87.44.0/22 maxlen: 22
188.241.26.0/23 maxlen: 23
91.187.64.0/19 maxlen: 19
91.187.64.0/22 maxlen: 22
91.187.68.0/22 maxlen: 22
91.187.76.0/22 maxlen: 22
91.187.72.0/22 maxlen: 22
91.187.84.0/22 maxlen: 22
91.187.80.0/22 maxlen: 22
91.187.88.0/22 maxlen: 22
89.150.4.0/22 maxlen: 22
89.150.2.0/23 maxlen: 23
89.150.8.0/22 maxlen: 22
89.150.12.0/22 maxlen: 22
91.187.92.0/22 maxlen: 22
185.194.56.0/22 maxlen: 22
46.172.224.0/19 maxlen: 19
46.172.232.0/22 maxlen: 22
185.4.52.0/22 maxlen: 22
185.132.200.0/22 maxlen: 22
109.111.96.0/22 maxlen: 22
109.111.96.0/19 maxlen: 19
109.111.100.0/22 maxlen: 22
109.111.104.0/22 maxlen: 22
109.111.108.0/22 maxlen: 22
109.111.112.0/22 maxlen: 22
109.111.116.0/22 maxlen: 22
85.94.164.0/22 maxlen: 22
109.111.124.0/22 maxlen: 22
109.111.120.0/22 maxlen: 22
85.94.160.0/19 maxlen: 19
85.94.160.0/22 maxlen: 22
85.94.168.0/22 maxlen: 22
85.94.172.0/22 maxlen: 22
85.94.176.0/22 maxlen: 22
85.94.184.0/22 maxlen: 22
85.94.180.0/22 maxlen: 22
194.158.80.0/22 maxlen: 22
194.158.84.0/22 maxlen: 22
194.158.88.0/22 maxlen: 22
194.158.92.0/22 maxlen: 22
85.94.188.0/22 maxlen: 22
46.175.156.0/24 maxlen: 24
46.175.156.0/22 maxlen: 22
2a02:8060::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145286074 (0x8a8e3ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=681ce4d99ba8ebb91a794abfcbdd15bde09c99f8
Validity
Not Before: Feb 9 14:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0206273720bd5b1f03ad4fd3096ad5b594b6dd4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ed:7b:49:8b:bd:36:6b:73:17:67:a9:1e:d0:
88:31:0a:48:b7:7f:60:c3:ad:5c:7d:8f:13:36:56:
52:39:d9:a3:74:0a:2f:24:df:31:67:1a:54:53:3a:
76:34:f3:99:b9:15:31:fd:ab:e7:1a:83:c4:37:2b:
9a:a4:68:6c:58:0f:07:64:60:57:3b:de:68:fa:64:
04:db:05:4f:aa:9b:bc:d0:e2:a5:9b:af:db:b4:fd:
f9:3b:6a:26:6e:a3:7b:a2:f2:83:58:3c:71:a7:3d:
5b:57:f6:c9:34:60:77:bc:bc:37:17:10:f1:ee:6e:
82:96:19:ec:a0:e1:23:e4:4f:20:5d:ca:b6:89:65:
e0:da:a7:73:64:cc:46:5f:99:a0:34:1c:2a:3f:3e:
a2:51:3f:36:20:57:26:bf:24:7d:34:a4:f5:f7:26:
22:c4:30:a3:01:a5:89:1e:cf:11:20:8f:4f:5d:b0:
a5:b5:04:dc:93:76:da:49:19:71:b9:9b:b5:b2:8f:
51:48:56:2a:11:3f:4a:18:35:1f:c1:15:74:75:67:
ed:22:75:c9:f0:48:02:b3:57:0d:1a:89:33:6c:a5:
bb:bd:21:a8:7e:20:73:cb:7a:c9:18:08:63:e7:e3:
ca:fd:f2:57:72:f8:32:9d:35:8e:95:fb:67:71:d7:
70:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:06:27:37:20:BD:5B:1F:03:AD:4F:D3:09:6A:D5:B5:94:B6:DD:4B
X509v3 Authority Key Identifier:
keyid:68:1C:E4:D9:9B:A8:EB:B9:1A:79:4A:BF:CB:DD:15:BD:E0:9C:99:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBzk2Zuo67kaeUq_y90VveCcmfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/AgYnNyC9Wx8DrU_TCWrVtZS23Us.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/6b9ee8-924b-4a31-a464-9f99c1477fbe/1/aBzk2Zuo67kaeUq_y90VveCcmfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.172.224.0/19
46.175.156.0/22
80.80.84.0/22
80.80.92.0/22
85.94.160.0/19
89.150.2.0-89.150.15.255
91.187.64.0/19
109.111.96.0/19
185.4.52.0/22
185.33.0.0/22
185.87.36.0-185.87.47.255
185.132.200.0/22
185.194.56.0/22
188.241.26.0/23
194.158.64.0/19
IPv6:
2a02:8060::/31
Signature Algorithm: sha256WithRSAEncryption
25:72:a1:81:24:d8:17:93:05:81:83:85:96:a7:54:ad:39:bf:
3c:5a:43:da:ab:f2:24:e1:31:de:94:e1:57:91:ba:af:00:03:
b6:86:e1:18:a4:ef:85:c6:1c:27:e8:d9:d9:b2:03:4b:de:8f:
26:c4:43:cb:86:de:4b:79:a3:a5:64:ed:c0:6e:97:02:58:f6:
54:be:06:8b:00:74:30:e9:cd:b2:11:f8:c7:6f:66:d2:0f:93:
d6:f2:e6:63:7c:12:0e:bc:64:e4:49:2d:21:22:8e:54:2b:d3:
52:92:66:3c:84:98:0a:c7:86:85:4d:23:3a:e2:43:db:c3:9e:
98:6a:a6:d3:40:dd:0a:97:9f:63:5d:6b:d8:2e:f0:6c:b0:99:
1a:62:7d:fd:ad:4e:36:5d:98:1c:c0:98:84:39:52:b0:fc:1c:
22:81:09:aa:c4:2e:63:72:03:a7:9b:0a:0e:9e:9a:ac:8d:05:
6a:da:3a:69:88:07:d9:5a:fe:d5:2d:f0:9d:04:74:b2:17:a6:
f6:cd:06:be:bf:29:ad:30:f9:93:59:c8:1f:20:11:cc:5c:e9:
f7:9c:74:de:e0:22:a3:5f:f4:35:75:2c:c3:6b:fc:75:e9:4f:
02:6c:3d:a9:de:44:be:65:86:0a:a4:d3:2a:39:e0:54:bd:ff:
d3:8a:2a:a4
-----BEGIN CERTIFICATE-----
MIIFZTCCBE2gAwIBAgIECKjjujANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ODFjZTRkOTliYThlYmI5MWE3OTRhYmZjYmRkMTViZGUwOWM5OWY4MB4XDTIyMDIw
OTE0NTkyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDIwNjI3MzcyMGJk
NWIxZjAzYWQ0ZmQzMDk2YWQ1YjU5NGI2ZGQ0YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALHte0mLvTZrcxdnqR7QiDEKSLd/YMOtXH2PEzZWUjnZo3QK
LyTfMWcaVFM6djTzmbkVMf2r5xqDxDcrmqRobFgPB2RgVzveaPpkBNsFT6qbvNDi
pZuv27T9+TtqJm6je6Lyg1g8cac9W1f2yTRgd7y8NxcQ8e5ugpYZ7KDhI+RPIF3K
toll4Nqnc2TMRl+ZoDQcKj8+olE/NiBXJr8kfTSk9fcmIsQwowGliR7PESCPT12w
pbUE3JN22kkZcbmbtbKPUUhWKhE/Shg1H8EVdHVn7SJ1yfBIArNXDRqJM2ylu70h
qH4gc8t6yRgIY+fjyv3yV3L4Mp01jpX7Z3HXcGkCAwEAAaOCAn8wggJ7MB0GA1Ud
DgQWBBQCBic3IL1bHwOtT9MJatW1lLbdSzAfBgNVHSMEGDAWgBRoHOTZm6jruRp5
Sr/L3RW94JyZ+DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FCemsyWnVvNjdrYWVVcV95OTBWdmVDY21mZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvNmI5ZWU4LTkyNGItNGEzMS1hNDY0LTlmOTljMTQ3N2ZiZS8x
L0FnWW5OeUM5V3g4RHJVX1RDV3JWdFpTMjNVcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
NmI5ZWU4LTkyNGItNGEzMS1hNDY0LTlmOTljMTQ3N2ZiZS8xL2FCemsyWnVvNjdr
YWVVcV95OTBWdmVDY21mZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
lAYIKwYBBQUHAQcBAf8EgYQwgYEwcAQCAAEwagMEBS6s4AMEAi6vnAMEAlBQVAME
AlBQXAMEBVVeoDAMAwQBWZYCAwQEWZYAAwQFW7tAAwQFbW9gAwQCuQQ0AwQCuSEA
MAwDBAK5VyQDBAS5VyADBAK5hMgDBAK5wjgDBAG88RoDBAXCnkAwDQQCAAIwBwMF
ASoCgGAwDQYJKoZIhvcNAQELBQADggEBACVyoYEk2BeTBYGDhZanVK05vzxaQ9qr
8iThMd6U4VeRuq8AA7aG4Rik74XGHCfo2dmyA0vejybEQ8uG3kt5o6Vk7cBulwJY
9lS+BosAdDDpzbIR+MdvZtIPk9by5mN8Eg68ZORJLSEijlQr01KSZjyEmArHhoVN
IzriQ9vDnphqptNA3QqXn2Nda9gu8GywmRpiff2tTjZdmBzAmIQ5UrD8HCKBCarE
LmNyA6ebCg6emqyNBWraOmmIB9la/tUt8J0EdLIXpvbNBr6/Ka0w+ZNZyB8gEcxc
6fecdN7gIqNf9DV1LMNr/HXpTwJsPaneRL5lhgqk0yo54FS9/9OKKqQ=
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:10:11 2025 by rpki-client