Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/_gWQgKE0bY9_7freoJxtrJ2w0xI.roa
File: _gWQgKE0bY9_7freoJxtrJ2w0xI.roa (raw, json)
Hash identifier: lyZvspWopfSYHlsUsVAXJUaSCR6kqNz/Phgdo2ttp4c=
Subject key identifier: FE:05:90:80:A1:34:6D:8F:7F:ED:FA:DE:A0:9C:6D:AC:9D:B0:D3:12
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E2BD0726D66A5E01A26CC6ECCDCB38C6
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/_gWQgKE0bY9_7freoJxtrJ2w0xI.roa
Signing time: Mon 05 Dec 2022 14:42:29 +0000
ROA not before: Mon 05 Dec 2022 14:42:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31205
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
188.170.247.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
85.26.226.0/24 maxlen: 24
85.26.224.0/24 maxlen: 24
85.26.229.0/24 maxlen: 24
85.26.227.0/24 maxlen: 24
85.26.230.0/24 maxlen: 24
85.26.228.0/24 maxlen: 24
85.26.231.0/24 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.240.0/22 maxlen: 22
78.25.92.0/23 maxlen: 23
78.25.94.0/23 maxlen: 23
178.176.244.0/22 maxlen: 22
91.193.212.0/22 maxlen: 24
37.29.86.0/23 maxlen: 23
188.170.240.0/22 maxlen: 22
31.173.240.0/23 maxlen: 23
195.5.128.0/19 maxlen: 24
31.173.242.0/23 maxlen: 23
128.204.64.0/18 maxlen: 24
31.173.244.0/22 maxlen: 22
95.137.0.0/17 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
83.149.50.0/24 maxlen: 24
83.149.48.0/24 maxlen: 24
83.149.51.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
83.149.49.0/24 maxlen: 24
178.176.48.0/24 maxlen: 24
83.169.252.0/22 maxlen: 22
83.169.248.0/22 maxlen: 22
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
46.232.202.0/23 maxlen: 23
46.232.200.0/23 maxlen: 23
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:bd:07:26:d6:6a:5e:01:a2:6c:c6:ec:cd:cb:38:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 14:42:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe059080a1346d8f7fedfadea09c6dac9db0d312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5f:84:04:36:15:27:b1:5e:dc:fc:38:6d:ae:
31:05:cd:70:62:32:67:44:14:8e:ae:30:18:cd:49:
a7:65:a2:43:0e:07:47:e9:bb:78:d4:ac:ab:68:4a:
70:d3:1f:6d:bd:b9:7f:0d:87:c9:a7:63:1f:c8:0c:
8e:9f:45:ab:26:67:e2:f1:85:a5:99:1c:68:0e:85:
ff:9c:02:2a:dc:bb:e1:89:02:0b:9a:4f:93:1d:0d:
08:72:51:1c:71:af:0c:ce:7c:56:53:2a:e4:eb:90:
23:93:d7:b0:4a:ea:88:d3:bf:72:3f:ee:4b:6b:d3:
aa:66:f8:12:73:25:40:02:95:1c:96:d0:fa:42:7a:
62:25:b4:a3:a1:11:74:a6:83:1b:d4:71:28:da:9b:
47:b5:a5:21:2d:0f:6d:3d:ac:72:b0:88:8e:d9:54:
ab:1b:e4:63:08:c6:43:5d:ba:fd:06:19:e1:da:6e:
4d:a1:eb:07:a5:20:ca:df:2d:fc:0c:16:7a:a9:65:
ec:9f:79:1c:ff:9d:06:09:e6:1e:62:58:a2:2c:0a:
46:cc:96:ef:8a:4a:74:c7:95:87:a6:67:d7:eb:69:
1d:d8:d3:b0:a1:50:70:e5:af:09:ae:c7:d6:da:44:
61:dd:14:82:89:9d:c2:76:cd:cc:61:f0:69:0f:ae:
79:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:05:90:80:A1:34:6D:8F:7F:ED:FA:DE:A0:9C:6D:AC:9D:B0:D3:12
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/_gWQgKE0bY9_7freoJxtrJ2w0xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.240.0/21
37.29.86.0/23
46.232.200.0/22
78.25.92.0/22
83.149.48.0/22
83.169.248.0/21
85.26.224.0/24
85.26.226.0-85.26.231.255
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.48.0/24
178.176.240.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.240.0/22
188.170.247.0/24
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
6b:7a:6e:56:ce:4d:35:a5:1a:0d:3b:77:08:2a:02:30:59:4b:
72:2b:fe:59:57:8e:31:f5:6e:df:c4:10:dd:5d:8e:9d:ce:9a:
73:85:b6:98:c5:e3:8e:3c:8e:5d:1f:fe:75:7e:e0:5a:c2:ef:
35:5f:bb:5c:a6:cb:5f:d1:e5:29:08:2e:fe:d5:18:48:e6:a3:
f0:d3:b6:3c:d2:94:d4:6c:7b:04:79:61:59:7b:15:83:84:50:
bc:b9:0b:fd:fe:e7:2a:c9:c5:2f:73:d0:0d:53:00:37:cb:1e:
09:23:4f:ff:e9:a2:72:99:c1:79:4e:95:f8:3a:2f:46:5a:6a:
ad:3e:0e:70:ab:29:4a:90:ff:83:43:13:d8:67:ea:e5:33:33:
62:2b:94:13:20:22:e2:a3:f3:8e:de:d5:03:57:5d:8c:0f:9d:
4f:67:ca:24:90:68:c0:d5:df:b2:c8:b1:ee:92:49:6a:ab:a1:
09:40:12:28:48:dc:74:fa:db:b2:39:cc:d3:bd:b1:43:3f:c6:
a7:f5:a1:53:43:76:08:ba:e9:54:c2:54:72:a2:12:e3:0b:9a:
ba:8f:ab:c6:86:09:ac:a2:b2:2a:f9:50:13:41:9e:dd:06:d9:
74:ee:12:ac:5d:c1:35:d6:ce:1e:35:7a:af:85:de:a8:f9:90:
2d:62:65:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:51:09 2025 by rpki-client