Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ANr2iNZ-PeXY8nr5E5jLKTplYIo.roa
File: ANr2iNZ-PeXY8nr5E5jLKTplYIo.roa (raw, json)
Hash identifier: scg+YXRH1n7KwVSN1YMjrYWP3aCZhybLcs7ry6K2B18=
Subject key identifier: 00:DA:F6:88:D6:7E:3D:E5:D8:F2:7A:F9:13:98:CB:29:3A:65:60:8A
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018505AE3E05690AE34A627C07900E59214B
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ANr2iNZ-PeXY8nr5E5jLKTplYIo.roa
Signing time: Mon 12 Dec 2022 09:33:03 +0000
ROA not before: Mon 12 Dec 2022 09:33:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31224
IP address blocks: 195.16.96.0/19 maxlen: 24
178.176.104.0/21 maxlen: 21
83.149.32.0/22 maxlen: 22
83.149.36.0/22 maxlen: 22
83.149.34.0/24 maxlen: 24
83.149.37.0/24 maxlen: 24
83.149.39.0/24 maxlen: 24
85.26.192.0/22 maxlen: 22
193.201.228.0/22 maxlen: 24
178.178.88.0/22 maxlen: 22
178.178.92.0/22 maxlen: 22
31.173.96.0/24 maxlen: 24
31.173.97.0/24 maxlen: 24
31.173.102.0/24 maxlen: 24
31.173.99.0/24 maxlen: 24
31.173.103.0/24 maxlen: 24
31.173.100.0/24 maxlen: 24
31.173.100.0/23 maxlen: 23
31.173.101.0/24 maxlen: 24
178.176.112.0/24 maxlen: 24
178.176.113.0/24 maxlen: 24
83.169.216.0/24 maxlen: 24
188.162.0.0/16 maxlen: 24
31.173.123.0/24 maxlen: 24
31.173.122.0/24 maxlen: 24
31.173.121.0/24 maxlen: 24
31.173.125.0/24 maxlen: 24
31.173.120.0/24 maxlen: 24
31.173.124.0/24 maxlen: 24
31.173.127.0/24 maxlen: 24
31.173.126.0/24 maxlen: 24
78.25.88.0/22 maxlen: 22
46.229.132.0/22 maxlen: 22
195.5.128.0/19 maxlen: 24
128.204.68.0/24 maxlen: 24
128.204.69.0/24 maxlen: 24
37.29.44.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:ae:3e:05:69:0a:e3:4a:62:7c:07:90:0e:59:21:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 09:33:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00daf688d67e3de5d8f27af91398cb293a65608a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e7:11:cf:c4:c1:53:66:d3:4b:34:32:3b:9d:
0d:89:1d:d6:23:5c:b1:e9:c8:0c:76:4e:87:e9:32:
bb:97:da:99:84:04:60:8f:51:bc:a6:59:61:3c:82:
ae:b0:1f:49:fd:c2:93:03:bf:eb:b4:83:eb:63:a8:
b7:3e:6e:18:28:0b:9e:3d:90:93:2b:fd:ff:56:ed:
cb:dd:0b:32:72:15:59:15:eb:da:c3:48:36:36:5d:
d6:3a:47:13:da:a7:de:c4:52:8e:18:d2:94:d8:49:
ac:09:c2:9c:a0:8e:5a:17:19:58:68:b0:5e:36:0e:
f1:74:4e:ef:2c:d6:ff:d5:4f:89:08:cc:c7:09:c7:
3b:ab:c0:f1:04:ec:b4:60:bd:26:f0:6d:75:1d:3c:
22:14:25:5e:46:c5:44:4d:60:98:0c:54:7e:1b:50:
d3:22:63:bd:00:b7:f5:0c:e3:0c:bd:d4:b9:0b:be:
2d:ed:54:c1:15:cd:2c:e1:8c:f6:2f:51:bb:29:a0:
b7:a6:f1:c9:98:26:51:66:e3:59:06:10:e4:7a:b0:
62:1b:83:55:c6:03:8a:2e:71:e1:e1:e1:5c:ab:be:
f4:e2:17:ae:fd:44:1c:61:ed:2e:39:96:f0:32:a7:
2f:43:6b:65:1b:98:f6:7c:a8:0a:ff:e3:45:14:b4:
a4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:DA:F6:88:D6:7E:3D:E5:D8:F2:7A:F9:13:98:CB:29:3A:65:60:8A
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ANr2iNZ-PeXY8nr5E5jLKTplYIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.96.0/23
31.173.99.0-31.173.103.255
31.173.120.0/21
37.29.44.0/22
46.229.132.0/22
78.25.88.0/22
83.149.32.0/21
83.169.216.0/24
85.26.192.0/22
128.204.68.0/23
178.176.104.0-178.176.113.255
178.178.88.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
Signature Algorithm: sha256WithRSAEncryption
0b:ce:07:b8:84:09:6b:a3:6a:f2:8c:8c:c5:95:03:c9:64:8d:
9d:a3:31:50:18:6d:07:84:46:c5:55:7b:16:3c:a2:19:bc:5b:
46:b6:32:0c:5e:47:9e:f2:91:8b:d1:d6:bd:b1:6a:ba:e0:ec:
63:bd:8a:a4:a9:ca:42:2d:c3:a6:62:f2:1c:54:0a:69:9b:69:
ac:6e:ab:63:fe:43:6d:91:41:a2:5f:4a:21:83:27:ab:4e:5d:
c3:54:7c:62:20:c4:7a:55:d9:2b:03:1d:30:e5:ba:8d:76:3e:
8d:7f:be:51:d8:09:78:97:06:51:2f:1c:3e:fd:da:ed:63:8f:
aa:e5:41:47:3b:57:1b:f9:9c:65:97:ed:71:07:39:5c:d7:70:
ec:9d:91:98:a2:30:04:82:ee:9b:19:c0:d2:16:7e:a2:5f:be:
11:46:4a:fc:1f:f2:ad:db:9e:5d:72:4c:7e:75:a1:2f:3f:28:
0d:1b:64:b1:ef:d1:8b:16:21:5b:66:c2:c7:3b:b9:d2:a6:68:
a3:97:23:a6:42:07:8e:55:7c:a5:a5:78:88:42:a1:c9:bc:79:
1a:f0:e9:e4:67:c9:66:27:a9:20:eb:7c:22:9d:4c:6c:ed:ef:
96:90:92:6b:3f:0d:25:4d:31:bf:40:91:9c:f7:35:9e:32:51:
12:08:26:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:25:50 2025 by rpki-client