Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/aGej-2Xn-0H3gid3-EKfSgIa8L4.roa
File: aGej-2Xn-0H3gid3-EKfSgIa8L4.roa (raw, json)
Hash identifier: uAa0y65WEPCLaCnEfOqkgftad4tarTh8Qj0piwmVCwQ=
Subject key identifier: 68:67:A3:FB:65:E7:FB:41:F7:82:27:77:F8:42:9F:4A:02:1A:F0:BE
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01872378ED90472D3ADBE782EC959B3D8D6E
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/aGej-2Xn-0H3gid3-EKfSgIa8L4.roa
Signing time: Mon 27 Mar 2023 14:29:00 +0000
ROA not before: Mon 27 Mar 2023 14:29:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31208
IP address blocks: 178.178.84.0/22 maxlen: 22
178.178.82.0/24 maxlen: 24
178.178.80.0/23 maxlen: 23
178.178.130.0/24 maxlen: 24
178.178.129.0/24 maxlen: 24
178.178.132.0/24 maxlen: 24
178.178.131.0/24 maxlen: 24
178.178.128.0/24 maxlen: 24
178.176.230.0/23 maxlen: 23
37.28.186.0/24 maxlen: 24
188.170.50.0/24 maxlen: 24
37.28.184.0/24 maxlen: 24
37.28.185.0/24 maxlen: 24
188.170.49.0/24 maxlen: 24
188.170.48.0/24 maxlen: 24
188.170.55.0/24 maxlen: 24
188.170.52.0/24 maxlen: 24
188.170.57.0/24 maxlen: 24
188.170.54.0/24 maxlen: 24
37.28.187.0/24 maxlen: 24
188.170.56.0/24 maxlen: 24
188.170.53.0/24 maxlen: 24
188.170.63.0/24 maxlen: 24
188.170.60.0/24 maxlen: 24
188.170.62.0/24 maxlen: 24
188.170.59.0/24 maxlen: 24
188.170.61.0/24 maxlen: 24
37.29.74.0/24 maxlen: 24
37.29.73.0/24 maxlen: 24
37.29.75.0/24 maxlen: 24
37.29.72.0/24 maxlen: 24
128.204.73.0/24 maxlen: 24
128.204.72.0/24 maxlen: 24
178.176.56.0/24 maxlen: 24
178.176.58.0/24 maxlen: 24
178.176.57.0/24 maxlen: 24
178.176.62.0/24 maxlen: 24
178.176.59.0/24 maxlen: 24
178.176.61.0/24 maxlen: 24
178.176.63.0/24 maxlen: 24
178.176.60.0/24 maxlen: 24
83.149.41.0/24 maxlen: 24
83.149.44.0/23 maxlen: 23
83.149.42.0/23 maxlen: 23
83.149.40.0/24 maxlen: 24
83.149.46.0/23 maxlen: 23
83.169.212.0/24 maxlen: 24
83.169.209.0/24 maxlen: 24
83.169.210.0/24 maxlen: 24
83.169.208.0/24 maxlen: 24
83.169.213.0/24 maxlen: 24
83.169.211.0/24 maxlen: 24
83.169.215.0/24 maxlen: 24
83.169.214.0/24 maxlen: 24
178.178.135.0/24 maxlen: 24
178.178.137.0/24 maxlen: 24
178.178.134.0/24 maxlen: 24
178.178.133.0/24 maxlen: 24
178.178.136.0/24 maxlen: 24
178.178.143.0/24 maxlen: 24
178.178.142.0/24 maxlen: 24
46.229.136.0/22 maxlen: 22
46.229.140.0/24 maxlen: 24
46.229.143.0/24 maxlen: 24
46.229.141.0/24 maxlen: 24
46.229.142.0/24 maxlen: 24
2a03:d000:3000::/36 maxlen: 36
2a03:d000:3000::/40 maxlen: 40
2a03:d000:3100::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:78:ed:90:47:2d:3a:db:e7:82:ec:95:9b:3d:8d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Mar 27 14:29:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6867a3fb65e7fb41f7822777f8429f4a021af0be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:68:66:d6:59:ce:53:b6:84:87:65:a2:12:bd:
22:16:b5:bb:95:ec:67:45:94:73:c5:00:e6:7e:2e:
41:53:29:35:df:f3:a0:63:48:f1:86:62:e5:45:0f:
a2:ee:0d:16:f7:27:a7:44:ad:d0:d2:2d:64:29:1b:
06:42:5e:bd:49:20:18:d2:55:27:f7:d0:fe:d9:a7:
db:7a:2d:1f:60:5c:6a:11:46:e7:13:a9:8a:a4:28:
59:33:e3:46:59:12:0a:f2:4f:2e:81:b9:7e:f6:aa:
6c:12:1a:6e:94:99:77:9b:fc:4f:ea:d1:eb:7d:08:
32:58:67:73:e6:d1:0b:4a:58:69:c8:f3:57:ec:1b:
44:c7:c2:3c:a5:b9:ea:4a:1f:c5:85:f7:b5:2b:a2:
3d:71:7d:34:82:63:7e:b8:8f:da:34:da:d8:b0:f2:
57:60:75:cc:70:42:63:bc:1b:4c:2f:92:15:a9:fc:
70:a1:d4:e1:92:6c:c7:1f:7d:a6:9d:a1:ac:d9:c2:
38:2e:e4:d5:10:e7:ee:56:14:c6:64:47:e5:31:bd:
19:8e:4e:74:0a:dc:c2:be:0a:48:b9:f8:f2:ef:e8:
1e:c3:69:50:82:2d:5e:28:16:58:94:03:d2:5a:3d:
0b:31:42:cd:fe:f2:dc:de:87:b9:95:f4:7b:52:90:
bb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:67:A3:FB:65:E7:FB:41:F7:82:27:77:F8:42:9F:4A:02:1A:F0:BE
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/aGej-2Xn-0H3gid3-EKfSgIa8L4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.184.0/22
37.29.72.0/22
46.229.136.0/21
83.149.40.0/21
83.169.208.0/21
128.204.72.0/23
178.176.56.0/21
178.176.230.0/23
178.178.80.0-178.178.82.255
178.178.84.0/22
178.178.128.0-178.178.137.255
178.178.142.0/23
188.170.48.0-188.170.50.255
188.170.52.0-188.170.57.255
188.170.59.0-188.170.63.255
IPv6:
2a03:d000:3000::/36
Signature Algorithm: sha256WithRSAEncryption
1a:8d:53:de:b6:7d:2f:bc:bb:15:3a:f9:e3:b4:07:42:12:f8:
1e:00:58:1e:76:83:06:01:e0:29:7a:31:19:f4:c8:ca:f0:69:
5b:f7:f0:00:cb:be:85:29:eb:e4:94:4a:2e:c0:82:dd:52:cd:
f2:58:b4:3d:8a:c7:a0:ee:47:65:56:78:96:d2:34:80:a0:98:
9b:aa:0c:91:a6:b4:2a:fb:e8:3d:c9:6a:a3:48:1c:be:5a:47:
1f:df:f1:3e:01:ab:9e:e2:45:1d:d5:53:a1:bf:ae:96:1a:1b:
64:9d:e9:82:d7:52:55:a4:25:9c:42:94:11:2c:3f:73:d6:10:
12:54:08:7b:ce:b0:58:2d:39:07:51:08:66:e1:cd:e4:85:a9:
4e:14:f5:55:c3:e7:76:a4:02:c4:db:14:da:d4:26:ea:20:16:
6c:93:38:be:fa:2b:ce:4e:51:33:2f:47:b4:e9:81:43:fc:18:
7d:72:01:7a:cb:e6:4d:4f:84:fb:10:a1:20:99:12:08:6c:5e:
99:3f:d5:d5:fd:8f:36:12:e5:2e:b9:22:8a:e8:cd:62:d9:32:
03:0c:b4:c4:82:04:16:4e:22:ad:fc:8a:c9:25:ce:50:a2:31:
b5:d1:09:e6:e7:1b:4a:87:a0:77:0a:18:04:59:96:46:68:19:
7c:8a:29:1d
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgISAYcjeO2QRy062+eC7JWbPY1uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjMwMzI3MTQyOTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODY3YTNmYjY1ZTdmYjQxZjc4MjI3NzdmODQyOWY0YTAyMWFmMGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+mhm1lnOU7aEh2WiEr0iFrW7lexn
RZRzxQDmfi5BUyk13/OgY0jxhmLlRQ+i7g0W9yenRK3Q0i1kKRsGQl69SSAY0lUn
99D+2afbei0fYFxqEUbnE6mKpChZM+NGWRIK8k8ugbl+9qpsEhpulJl3m/xP6tHr
fQgyWGdz5tELSlhpyPNX7BtEx8I8pbnqSh/Fhfe1K6I9cX00gmN+uI/aNNrYsPJX
YHXMcEJjvBtML5IVqfxwodThkmzHH32mnaGs2cI4LuTVEOfuVhTGZEflMb0Zjk50
CtzCvgpIufjy7+gew2lQgi1eKBZYlAPSWj0LMULN/vLc3oe5lfR7UpC7UwIDAQAB
o4ICmjCCApYwHQYDVR0OBBYEFGhno/tl5/tB94Ind/hCn0oCGvC+MB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvYUdlai0yWG4tMEgzZ2lkMy1FS2ZTZ0lhOEw0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGvBggrBgEFBQcBBwEB/wSBnzCBnDCBiQQCAAEwgYIDBAIl
HLgDBAIlHUgDBAMu5YgDBANTlSgDBANTqdADBAGAzEgDBAOysDgDBAGysOYwDAME
BLKyUAMEALKyUgMEArKyVDAMAwQHsrKAAwQBsrKIAwQBsrKOMAwDBAS8qjADBAC8
qjIwDAMEAryqNAMEAbyqODAMAwQAvKo7AwQGvKoAMA4EAgACMAgDBgQqA9AAMDAN
BgkqhkiG9w0BAQsFAAOCAQEAGo1T3rZ9L7y7FTr547QHQhL4HgBYHnaDBgHgKXox
GfTIyvBpW/fwAMu+hSnr5JRKLsCC3VLN8li0PYrHoO5HZVZ4ltI0gKCYm6oMkaa0
KvvoPclqo0gcvlpHH9/xPgGrnuJFHdVTob+ulhobZJ3pgtdSVaQlnEKUESw/c9YQ
ElQIe86wWC05B1EIZuHN5IWpThT1VcPndqQCxNsU2tQm6iAWbJM4vvorzk5RMy9H
tOmBQ/wYfXIBesvmTU+E+xChIJkSCGxemT/V1f2PNhLlLrkiiujNYtkyAwy0xIIE
Fk4irfyKySXOUKIxtdEJ5ucbSoegdwoYBFmWRmgZfIopHQ==
-----END CERTIFICATE-----
Generated at Tue Apr 8 04:41:07 2025 by rpki-client