Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/62f25f-8b1b-415b-9fc8-cc935cd73632/1/ppQ6By3CT5q_MfQmc3W2cOrYYME.roa
File: ppQ6By3CT5q_MfQmc3W2cOrYYME.roa (raw, json)
Hash identifier: 4gJ96x0hdM1YSAgq0bPa2tEWjzZ2Ifp4c6peJQDYI0A=
Subject key identifier: A6:94:3A:07:2D:C2:4F:9A:BF:31:F4:26:73:75:B6:70:EA:D8:60:C1
Certificate issuer: /CN=4aae42a27e7bc2cc3507efa7e3cbc29d32eea133
Certificate serial: 019427B528056E63B8C8C4AEEB98FF9EB48F
Authority key identifier: 4A:AE:42:A2:7E:7B:C2:CC:35:07:EF:A7:E3:CB:C2:9D:32:EE:A1:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sq5Con57wsw1B--n48vCnTLuoTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/62f25f-8b1b-415b-9fc8-cc935cd73632/1/ppQ6By3CT5q_MfQmc3W2cOrYYME.roa
Signing time: Thu 02 Jan 2025 15:49:30 +0000
ROA not before: Thu 02 Jan 2025 15:49:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62282
IP address blocks: 31.14.176.0/22 maxlen: 22
62.77.152.0/21 maxlen: 21
79.98.24.0/21 maxlen: 21
80.208.224.0/21 maxlen: 21
80.209.224.0/20 maxlen: 20
89.40.0.0/20 maxlen: 20
89.47.160.0/21 maxlen: 21
89.47.172.0/24 maxlen: 24
89.47.173.0/24 maxlen: 24
89.47.174.0/24 maxlen: 24
89.47.175.0/24 maxlen: 24
94.176.232.0/21 maxlen: 21
109.235.64.0/21 maxlen: 21
176.223.128.0/20 maxlen: 20
185.5.52.0/22 maxlen: 22
185.69.52.0/22 maxlen: 22
185.81.164.0/22 maxlen: 22
194.135.80.0/20 maxlen: 20
195.181.240.0/21 maxlen: 21
212.24.96.0/20 maxlen: 20
212.237.232.0/22 maxlen: 22
2a02:7b40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:28:05:6e:63:b8:c8:c4:ae:eb:98:ff:9e:b4:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aae42a27e7bc2cc3507efa7e3cbc29d32eea133
Validity
Not Before: Jan 2 15:49:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6943a072dc24f9abf31f4267375b670ead860c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:20:1e:15:fe:31:c9:f8:c4:21:63:ef:12:77:
50:94:f6:9c:06:18:f3:f7:63:e0:8c:29:df:df:1f:
16:f8:dd:28:6f:59:94:ca:dc:58:98:2d:3f:d2:7f:
b2:d1:a4:d6:93:12:e9:fc:65:cd:f2:5d:be:1d:ce:
a7:89:94:59:67:de:4e:d8:f0:0a:e9:5e:84:f6:4f:
0b:18:23:f3:90:7b:03:1b:37:6d:eb:8d:84:79:ac:
e0:e9:14:fd:72:c0:60:27:9f:fa:b2:5e:82:11:f6:
e8:a5:6b:f2:96:ae:26:6d:f4:0e:c5:3b:5e:98:7e:
b7:0d:ea:a5:7d:80:a7:f9:71:e1:6e:5e:9b:7d:84:
1a:4b:7a:80:aa:2f:65:75:3a:4c:ec:5a:e9:c1:39:
f4:06:fd:6e:34:c9:fb:d1:4f:9c:75:aa:2f:71:2b:
78:cc:cf:e3:39:db:46:23:a4:f9:b9:30:c2:4b:8f:
20:ff:a9:8a:4d:2e:17:91:07:a6:34:87:32:c2:7a:
09:26:19:cf:8e:34:92:e6:52:ff:f8:b0:96:0e:d3:
cd:3e:34:7b:1d:aa:e7:b7:b2:b3:3c:f6:f1:af:07:
51:ea:d4:7e:e8:e1:6f:01:5f:cf:ba:18:5e:a2:18:
13:9d:3e:1c:26:1c:f6:97:0e:14:f0:65:3e:aa:ae:
74:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:94:3A:07:2D:C2:4F:9A:BF:31:F4:26:73:75:B6:70:EA:D8:60:C1
X509v3 Authority Key Identifier:
keyid:4A:AE:42:A2:7E:7B:C2:CC:35:07:EF:A7:E3:CB:C2:9D:32:EE:A1:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sq5Con57wsw1B--n48vCnTLuoTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/62f25f-8b1b-415b-9fc8-cc935cd73632/1/ppQ6By3CT5q_MfQmc3W2cOrYYME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/62f25f-8b1b-415b-9fc8-cc935cd73632/1/Sq5Con57wsw1B--n48vCnTLuoTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.176.0/22
62.77.152.0/21
79.98.24.0/21
80.208.224.0/21
80.209.224.0/20
89.40.0.0/20
89.47.160.0/21
89.47.172.0/22
94.176.232.0/21
109.235.64.0/21
176.223.128.0/20
185.5.52.0/22
185.69.52.0/22
185.81.164.0/22
194.135.80.0/20
195.181.240.0/21
212.24.96.0/20
212.237.232.0/22
IPv6:
2a02:7b40::/32
Signature Algorithm: sha256WithRSAEncryption
29:46:1d:a3:dc:65:f9:ef:d6:d4:31:3e:bc:63:5d:44:11:67:
6e:de:b2:07:c7:7f:b2:9c:ef:43:2a:93:4b:e7:0c:28:97:ef:
f2:5e:e0:85:71:49:9b:9b:49:55:61:8a:78:81:8d:5a:c4:42:
ea:03:fe:de:52:e1:1a:e2:19:82:b6:06:d9:9b:f8:23:e7:38:
bb:77:a6:a7:c8:e8:a3:5f:90:e8:95:53:0a:1c:29:44:fe:28:
51:ff:9a:60:50:97:35:0b:81:40:5e:8a:b5:12:56:83:14:bf:
b8:ed:18:de:33:bf:65:8e:5c:bb:5e:b7:d2:a2:6b:7d:2c:56:
e5:6e:96:4d:98:17:17:06:2b:8f:19:4c:e2:7c:d0:e7:3a:62:
44:ec:8f:e3:7f:76:12:c7:68:01:da:05:2a:d9:50:0e:69:ba:
f3:6f:f3:32:87:c9:98:cb:b6:c9:3b:b2:76:4c:54:14:10:19:
67:99:b7:4c:8f:8c:4f:20:f7:b4:aa:c9:38:d0:83:16:37:d0:
29:20:1d:dc:9c:f8:90:bc:35:04:ec:26:a2:d8:d8:2e:84:09:
cb:d9:a1:3e:39:37:cb:77:5c:f4:62:d5:65:26:53:f6:d7:88:
0c:84:c3:e5:c0:0a:fc:a6:71:c0:5f:8f:5d:b9:ed:67:3f:da:
26:af:73:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:52:31 2025 by rpki-client