Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/OmVcM8s_BNfAmjyCg7tU6TW5mBY.roa
File: OmVcM8s_BNfAmjyCg7tU6TW5mBY.roa (raw, json)
Hash identifier: UIADWAyfDSAeZPtURkWNBZf2s2/bvLj75EEotdRddso=
Subject key identifier: 3A:65:5C:33:CB:3F:04:D7:C0:9A:3C:82:83:BB:54:E9:35:B9:98:16
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F243CC8F078CCDD622717483E7FCF422
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/OmVcM8s_BNfAmjyCg7tU6TW5mBY.roa
Signing time: Thu 08 Dec 2022 15:04:00 +0000
ROA not before: Thu 08 Dec 2022 15:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6854
IP address blocks: 212.69.96.0/19 maxlen: 24
212.14.160.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
80.253.0.0/20 maxlen: 20
195.16.96.0/19 maxlen: 24
212.119.160.0/19 maxlen: 24
62.64.16.0/20 maxlen: 20
62.64.24.0/21 maxlen: 21
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 19
195.5.128.0/19 maxlen: 24
83.229.128.0/17 maxlen: 17
212.44.64.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:43:cc:8f:07:8c:cd:d6:22:71:74:83:e7:fc:f4:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 15:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a655c33cb3f04d7c09a3c8283bb54e935b99816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e2:ae:49:e1:b0:32:57:8f:6d:bf:27:1c:7f:
a7:7e:84:e7:1c:e1:a9:cc:e4:e6:4c:18:3d:9a:b5:
91:fc:cb:47:1d:46:9e:96:39:77:b1:a1:62:e4:e6:
28:e0:98:d1:f3:43:8b:54:5a:01:1c:f1:4e:1a:fa:
18:96:c0:14:35:65:ac:7f:6f:30:6f:f0:7b:4b:73:
e5:27:05:7a:4c:d7:51:b5:b4:3e:8c:29:5a:2f:ae:
ce:75:b7:50:c1:39:54:b0:db:05:e3:5b:02:c2:d0:
b2:82:9b:e8:b7:2e:c5:04:07:24:3e:0b:17:de:07:
9c:b1:2c:e7:d9:40:21:98:e1:b4:84:58:b3:9d:04:
9e:2d:ed:3a:0d:97:2c:37:f2:9b:2c:76:ef:26:4d:
b3:b4:aa:d3:c8:68:bb:56:92:ef:1f:b0:ce:ac:ee:
4f:32:3b:4d:80:47:df:04:d8:52:62:fe:1e:99:04:
7d:da:f5:fc:18:db:3c:22:da:d2:b0:f8:92:fd:f5:
2d:fe:e8:a9:63:61:9e:4e:15:ec:c8:d9:38:db:20:
f0:c9:30:20:52:8e:81:28:ae:79:05:cc:1f:d3:98:
6d:25:95:b0:49:0e:56:be:c3:0d:07:d2:3f:1b:7f:
db:61:98:01:c2:f5:87:3d:ef:19:0c:8c:0f:5b:b4:
a3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:65:5C:33:CB:3F:04:D7:C0:9A:3C:82:83:BB:54:E9:35:B9:98:16
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/OmVcM8s_BNfAmjyCg7tU6TW5mBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.64.16.0/20
80.253.0.0/20
83.222.192.0/19
83.229.128.0/17
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
35:87:f9:53:4f:a8:55:6f:54:9d:c8:99:6b:ee:cf:56:c1:aa:
8a:cd:99:26:65:c2:6f:d3:4b:da:76:c5:96:2a:ec:e6:ac:9e:
b5:03:e6:40:a5:97:97:f3:07:7c:8e:1c:f9:d6:29:ca:5c:35:
b6:32:97:75:ef:99:3f:3a:e3:45:18:c3:91:0d:26:44:5f:17:
fc:59:e9:96:5c:7b:78:09:16:a4:cb:34:92:dd:be:4d:00:03:
42:03:cc:1d:a4:1a:b6:0d:f6:9b:51:31:ff:b6:a2:38:d6:19:
55:da:c6:00:f0:51:ac:16:fa:2f:f3:34:28:df:9b:ee:a3:88:
85:2b:35:ee:3b:43:af:be:9a:56:6e:7a:2f:82:e8:7a:74:03:
94:e1:69:f1:24:77:c0:5f:66:9b:8c:5c:85:b1:5f:f1:7d:a9:
4f:c5:4e:e2:60:05:c6:7f:65:cf:41:fd:98:2c:94:ea:f8:aa:
de:7c:ed:7d:8d:e1:c9:f1:07:3d:03:58:fd:75:0e:47:64:86:
49:c9:34:51:04:f9:92:5c:cd:fa:2c:f9:30:6c:e4:28:6e:8e:
5a:25:0d:5c:77:e9:77:32:ce:2b:4d:cc:bf:b6:67:e8:3c:19:
5d:2b:2d:cb:31:3d:e7:0f:b9:a9:0c:a6:95:6b:93:d7:21:64:
db:e7:31:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:38:28 2025 by rpki-client