Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/kyDTd5WzvSGbrFV1my2CLP621cs.roa
File: kyDTd5WzvSGbrFV1my2CLP621cs.roa (raw, json)
Hash identifier: y+8O3SF1AvQj+6gdClzA8SkGTER5qtYxuk5EKM//j/s=
Subject key identifier: 93:20:D3:77:95:B3:BD:21:9B:AC:55:75:9B:2D:82:2C:FE:B6:D5:CB
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 087811DD
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/kyDTd5WzvSGbrFV1my2CLP621cs.roa
Signing time: Sat 01 Jan 2022 04:02:33 +0000
ROA not before: Sat 01 Jan 2022 04:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31133
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
81.24.128.0/20 maxlen: 24
79.171.8.0/21 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
46.232.200.0/21 maxlen: 24
37.29.0.0/17 maxlen: 24
62.64.0.0/19 maxlen: 24
37.28.160.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
46.229.128.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142086621 (0x87811dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 04:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9320d37795b3bd219bac55759b2d822cfeb6d5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7f:ea:6f:63:0f:fe:ac:27:77:d3:b2:7d:1e:
f2:00:ea:e2:83:47:a0:d8:7a:24:25:26:89:8f:27:
05:4f:7a:60:42:ed:8f:50:4a:da:dc:be:6e:a0:66:
14:be:13:77:de:31:92:8d:e8:7a:af:f0:92:0f:9e:
00:4f:8e:f2:d5:be:2e:10:a1:2d:a9:d0:67:4d:e9:
b6:b1:c5:34:09:9f:87:0a:8c:e4:4a:48:1d:d5:99:
77:0f:ed:29:5c:33:38:fe:f2:f8:27:78:35:05:01:
01:59:4b:51:c3:da:cb:e8:53:fe:ea:96:9a:32:46:
e8:ed:01:9c:c2:b6:8c:8f:00:8b:4f:61:2e:14:16:
fd:e3:9a:d0:48:16:31:7d:15:d4:3c:52:1b:b8:4e:
36:54:04:b2:b5:79:49:49:5c:28:dc:e2:43:79:ed:
1c:43:2d:38:dc:85:97:6f:82:1b:4f:d9:23:58:bc:
f4:71:02:bb:88:31:80:43:0a:58:7e:ea:b3:d1:11:
c3:16:ce:70:92:67:54:b1:0d:f9:32:24:0a:34:d0:
37:1b:dc:30:c2:20:70:d5:10:11:25:9d:dd:6e:fc:
07:7e:a0:84:2f:58:cc:98:5d:32:b7:f4:92:25:72:
0e:01:9a:27:f4:0a:07:f2:f6:28:bb:23:32:05:7e:
61:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:20:D3:77:95:B3:BD:21:9B:AC:55:75:9B:2D:82:2C:FE:B6:D5:CB
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/kyDTd5WzvSGbrFV1my2CLP621cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:1f:4c:58:cf:c4:a7:a1:ab:b8:c7:fd:7b:ef:ab:97:5a:b9:
23:79:7d:82:a5:66:08:ce:9c:9f:dd:a5:b9:bd:8c:43:e9:8e:
6a:b1:32:5d:6e:cf:99:a7:c8:2e:82:4d:58:09:9f:1d:73:ce:
9d:db:2a:5f:9f:86:7a:cb:63:36:65:91:75:1c:0d:58:f2:29:
60:18:86:00:3c:0a:a7:1e:4a:bd:a9:b9:d9:72:e2:f7:86:63:
14:24:42:88:60:7f:16:f9:57:c5:ed:f2:28:8e:c2:31:be:88:
5e:b8:27:55:74:b0:61:89:61:fa:60:07:d7:38:a0:b0:80:6c:
03:13:de:34:1a:ba:cc:87:9b:56:e6:03:88:2b:09:14:51:96:
f0:1b:78:7d:a2:2a:8d:7e:be:95:81:34:d7:c2:45:e3:9c:ad:
88:c0:37:58:e7:0d:28:99:12:0a:b6:f0:8b:5d:4d:6f:92:01:
df:5b:9c:76:89:09:e6:a0:23:5f:29:80:6f:18:ae:36:5b:c5:
c2:95:cb:1d:9a:62:6c:4e:b7:55:bf:ae:7f:2f:f7:e6:c7:69:
e9:a0:21:e1:45:c6:62:52:fb:b9:27:58:ec:d3:b0:38:1c:01:
e9:33:8f:07:dc:dc:e8:6f:61:7e:31:8f:7c:77:e7:23:84:d5:
c9:02:25:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:31:20 2025 by rpki-client