Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UvmE2PWWlrSBHXv4G1rFRXuN1UI.roa
File: UvmE2PWWlrSBHXv4G1rFRXuN1UI.roa (raw, json)
Hash identifier: ZaKyb8NHv0aN43TSaMezfLV0mAfVgEJ+C/KhUPWhozE=
Subject key identifier: 52:F9:84:D8:F5:96:96:B4:81:1D:7B:F8:1B:5A:C5:45:7B:8D:D5:42
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F14BC239AF5FCBA1F6DB8FACF3AC3039
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UvmE2PWWlrSBHXv4G1rFRXuN1UI.roa
Signing time: Thu 08 Dec 2022 10:33:04 +0000
ROA not before: Thu 08 Dec 2022 10:33:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50928
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 21
46.29.199.0/24 maxlen: 24
46.29.194.0/24 maxlen: 24
46.29.196.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
188.170.244.0/23 maxlen: 23
188.170.244.0/24 maxlen: 24
188.170.245.0/24 maxlen: 24
188.170.250.0/24 maxlen: 24
188.170.251.0/24 maxlen: 24
188.170.248.0/24 maxlen: 24
188.170.249.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
212.69.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.250.0/24 maxlen: 24
178.176.251.0/24 maxlen: 24
178.176.252.0/24 maxlen: 24
178.176.248.0/24 maxlen: 24
178.176.253.0/24 maxlen: 24
178.176.249.0/24 maxlen: 24
37.29.81.0/24 maxlen: 24
37.29.80.0/24 maxlen: 24
37.29.83.0/24 maxlen: 24
37.29.80.0/22 maxlen: 22
37.29.82.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
31.173.248.0/21 maxlen: 21
31.173.248.0/24 maxlen: 24
31.173.252.0/24 maxlen: 24
31.173.253.0/24 maxlen: 24
31.173.249.0/24 maxlen: 24
31.173.250.0/24 maxlen: 24
31.173.251.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:4b:c2:39:af:5f:cb:a1:f6:db:8f:ac:f3:ac:30:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 10:33:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52f984d8f59696b4811d7bf81b5ac5457b8dd542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e6:8c:ed:c7:4f:8a:46:cd:a7:23:82:f3:87:
1e:78:e1:77:f1:86:42:52:02:60:7d:d7:bb:f6:71:
21:7a:fe:40:04:8c:df:9d:a7:06:4a:09:37:cd:66:
e1:e7:8e:06:85:7f:14:3b:ac:a2:c6:09:2c:a3:76:
6a:92:f2:fe:3c:ee:74:f2:e7:3a:72:36:c2:87:98:
45:6c:2f:2c:d6:f9:91:f7:39:61:a0:7e:d2:6b:32:
d3:2b:fb:f4:41:55:0d:73:e4:93:4a:d1:a1:d0:ef:
9b:7d:be:43:cc:8c:98:54:42:aa:72:08:c0:dd:3f:
6e:89:6e:06:82:58:9c:a6:8f:89:c8:d1:51:b9:a0:
ef:83:7d:7b:cf:53:07:2c:8e:8c:2b:89:44:b6:94:
67:7a:26:91:a8:37:4d:23:b9:b5:d9:0d:2f:5c:1c:
34:0f:18:80:91:23:c7:3b:c9:b2:2a:f0:98:e5:9d:
ca:d7:03:ec:60:f8:ff:3c:b7:41:a5:5d:dd:f2:11:
3e:af:bd:ba:2a:2c:5b:a5:2b:18:be:8f:a7:dc:3a:
23:85:a2:dd:37:ad:0f:e6:14:aa:20:bd:77:15:d2:
58:3a:72:5d:d3:ce:29:e4:69:c8:af:7a:ac:35:95:
3c:96:54:c3:bb:a9:a1:3c:52:a5:37:64:2b:4b:70:
9e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F9:84:D8:F5:96:96:B4:81:1D:7B:F8:1B:5A:C5:45:7B:8D:D5:42
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UvmE2PWWlrSBHXv4G1rFRXuN1UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.248.0/21
37.29.80.0/22
46.29.192.0/21
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.248.0-178.176.253.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.244.0/23
188.170.248.0/22
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
29:0d:93:45:cd:6b:a5:68:2a:51:77:60:d6:5a:71:bf:ef:85:
b6:6e:e4:22:91:b6:b0:cb:b8:26:0b:4e:9a:68:f5:89:d2:59:
10:89:91:77:72:72:9d:05:4c:dd:fb:66:44:49:1e:38:05:d4:
bb:81:9f:d7:3d:ef:9b:f4:82:3c:37:d0:f5:e1:c6:2c:f3:76:
ac:84:3b:61:82:ec:3a:26:a6:85:62:f9:62:00:14:57:42:27:
ae:b8:b9:17:27:92:6c:99:11:cb:43:19:ce:30:24:64:30:4e:
47:75:8a:10:10:d7:81:2f:a1:cf:72:42:72:13:6e:56:60:d9:
69:5e:c9:43:c3:cb:30:1d:10:8d:2d:50:bf:13:f1:47:fd:b0:
32:ff:dc:2d:a2:88:9a:1c:37:35:ab:2c:a9:5b:01:73:14:f7:
bf:ce:be:1d:69:ff:f6:ed:bf:38:6f:e8:6a:45:14:60:a6:f8:
8b:31:7a:a7:39:9c:9b:41:82:c0:57:92:ad:f3:01:ac:b8:98:
46:c0:d8:13:78:73:67:8d:94:f7:8a:4e:3d:51:a8:5c:55:40:
69:53:09:54:e2:90:b2:8c:56:77:45:06:08:64:50:bd:93:a3:
0b:57:dd:36:4c:8d:8c:61:30:1b:af:fd:6e:b9:82:a6:91:a3:
01:c9:ce:28
-----BEGIN CERTIFICATE-----
MIIFqjCCBJKgAwIBAgISAYTxS8I5r1/Lofbbj6zzrDA5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA4MTAzMzA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmY5ODRkOGY1OTY5NmI0ODExZDdiZjgxYjVhYzU0NTdiOGRkNTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+aM7cdPikbNpyOC84ceeOF38YZC
UgJgfde79nEhev5ABIzfnacGSgk3zWbh544GhX8UO6yixgkso3ZqkvL+PO508uc6
cjbCh5hFbC8s1vmR9zlhoH7SazLTK/v0QVUNc+STStGh0O+bfb5DzIyYVEKqcgjA
3T9uiW4Gglicpo+JyNFRuaDvg317z1MHLI6MK4lEtpRneiaRqDdNI7m12Q0vXBw0
DxiAkSPHO8myKvCY5Z3K1wPsYPj/PLdBpV3d8hE+r726KixbpSsYvo+n3DojhaLd
N60P5hSqIL13FdJYOnJd084p5GnIr3qsNZU8llTDu6mhPFKlN2QrS3CeqQIDAQAB
o4ICtjCCArIwHQYDVR0OBBYEFFL5hNj1lpa0gR17+BtaxUV7jdVCMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvVXZtRTJQV1dsclNCSFh2NEcxckZSWHVOMVVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHLBggrBgEFBQcBBwEB/wSBuzCBuDCBtQQCAAEwga4DBAMf
rfgDBAIlHVADBAMuHcADBAZtfEADAwBtvAMEBoDMQAMEA7IXkDAMAwQDsrD4AwQB
srD8AwQCuQMgAwQCudKMAwQDvF6oAwMAvKIDBAG8qvQDBAK8qvgDBALByeQDBAXD
BYADBAXDEGADBAHDTnQDBADDlW8DBAXD5kADBAXUDqADBAXULEADBAXURWADBAXU
d6ADBAXVmqADBAXVqCADBAbV80ADBATZc1AwDQYJKoZIhvcNAQELBQADggEBACkN
k0XNa6VoKlF3YNZacb/vhbZu5CKRtrDLuCYLTppo9YnSWRCJkXdycp0FTN37ZkRJ
HjgF1LuBn9c975v0gjw30PXhxizzdqyEO2GC7DompoVi+WIAFFdCJ664uRcnkmyZ
EctDGc4wJGQwTkd1ihAQ14Evoc9yQnITblZg2WleyUPDyzAdEI0tUL8T8Uf9sDL/
3C2iiJocNzWrLKlbAXMU97/Ovh1p//btvzhv6GpFFGCm+Isxeqc5nJtBgsBXkq3z
Aay4mEbA2BN4c2eNlPeKTj1RqFxVQGlTCVTikLKMVndFBghkUL2TowtX3TZMjYxh
MBuv/W65gqaRowHJzig=
-----END CERTIFICATE-----
Generated at Tue Apr 8 04:23:39 2025 by rpki-client