Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/Vb_RpJ-2VDeLhxtyu1EnKEq8cTI.roa
File: Vb_RpJ-2VDeLhxtyu1EnKEq8cTI.roa (raw, json)
Hash identifier: H3HLjc2fYtCp8h81NRRKqe5UGP2PQxcS5tkL3rkueM8=
Subject key identifier: 55:BF:D1:A4:9F:B6:54:37:8B:87:1B:72:BB:51:27:28:4A:BC:71:32
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 01948CEB2027C547F3889CE983AABAC55F75
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/Vb_RpJ-2VDeLhxtyu1EnKEq8cTI.roa
Signing time: Wed 22 Jan 2025 07:30:06 +0000
ROA not before: Wed 22 Jan 2025 07:30:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7018
IP address blocks: 5.182.186.0/24 maxlen: 24
5.182.187.0/24 maxlen: 24
5.182.193.0/24 maxlen: 24
5.182.194.0/24 maxlen: 24
5.182.195.0/24 maxlen: 24
5.182.198.0/24 maxlen: 24
31.132.54.0/23 maxlen: 23
36.255.212.0/24 maxlen: 24
36.255.214.0/24 maxlen: 24
36.255.215.0/24 maxlen: 24
45.248.54.0/24 maxlen: 24
63.246.129.0/24 maxlen: 24
63.246.130.0/24 maxlen: 24
63.246.131.0/24 maxlen: 24
63.246.132.0/24 maxlen: 24
63.246.133.0/24 maxlen: 24
63.246.137.0/24 maxlen: 24
63.246.144.0/24 maxlen: 24
63.246.148.0/24 maxlen: 24
63.246.150.0/24 maxlen: 24
63.246.151.0/24 maxlen: 24
63.246.152.0/24 maxlen: 24
63.246.158.0/24 maxlen: 24
63.246.159.0/24 maxlen: 24
78.31.204.0/24 maxlen: 24
78.31.206.0/24 maxlen: 24
94.154.170.0/24 maxlen: 24
103.216.197.0/24 maxlen: 24
103.216.199.0/24 maxlen: 24
149.126.13.0/24 maxlen: 24
162.218.88.0/24 maxlen: 24
162.218.89.0/24 maxlen: 24
162.218.91.0/24 maxlen: 24
185.52.137.0/24 maxlen: 24
185.171.126.0/24 maxlen: 24
185.201.40.0/24 maxlen: 24
185.201.41.0/24 maxlen: 24
185.201.43.0/24 maxlen: 24
212.60.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8c:eb:20:27:c5:47:f3:88:9c:e9:83:aa:ba:c5:5f:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jan 22 07:30:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55bfd1a49fb654378b871b72bb5127284abc7132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ba:f7:5e:84:0f:be:13:cd:73:dc:c6:f6:ca:
85:05:59:ef:32:89:a0:d1:99:74:fb:84:c2:06:10:
87:24:d7:3d:a6:a4:e9:21:d9:cc:c3:05:9e:20:10:
de:19:39:0c:2b:91:66:e8:b7:f1:ab:78:f9:78:3a:
37:2e:aa:84:d1:f6:a4:b9:7b:59:6a:82:4a:95:90:
8f:c1:20:16:2b:35:0b:da:ae:6a:4d:34:aa:54:7c:
cd:64:81:95:9e:40:da:04:b3:03:08:e1:82:0c:e1:
64:26:58:b8:fc:2a:81:fe:63:25:f1:91:63:ed:5a:
55:79:11:6d:eb:eb:9d:ba:66:bb:b6:fe:af:19:e8:
a4:1c:4e:04:38:50:82:50:ee:e0:84:89:ee:30:b8:
59:a9:9a:b1:24:3e:21:7a:b3:08:f2:31:dc:9d:8d:
07:30:b8:0f:65:5c:d8:e4:6b:c9:74:f5:43:f5:d8:
9f:2e:7a:ac:1e:fc:d3:b9:b0:93:9e:d2:cf:76:54:
11:9b:0b:ca:88:28:44:d0:ce:e2:6b:e7:6c:c6:1f:
85:b5:bd:5f:a4:3b:46:81:45:a8:37:12:23:3d:2c:
e4:61:de:9c:26:b7:e3:49:d9:88:76:36:c6:a2:0d:
7f:c6:2d:fa:d9:f2:d6:ef:22:c8:ab:ea:bf:34:b0:
7e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:BF:D1:A4:9F:B6:54:37:8B:87:1B:72:BB:51:27:28:4A:BC:71:32
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/Vb_RpJ-2VDeLhxtyu1EnKEq8cTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.186.0/23
5.182.193.0-5.182.195.255
5.182.198.0/24
31.132.54.0/23
36.255.212.0/24
36.255.214.0/23
45.248.54.0/24
63.246.129.0-63.246.133.255
63.246.137.0/24
63.246.144.0/24
63.246.148.0/24
63.246.150.0-63.246.152.255
63.246.158.0/23
78.31.204.0/24
78.31.206.0/24
94.154.170.0/24
103.216.197.0/24
103.216.199.0/24
149.126.13.0/24
162.218.88.0/23
162.218.91.0/24
185.52.137.0/24
185.171.126.0/24
185.201.40.0/23
185.201.43.0/24
212.60.14.0/24
Signature Algorithm: sha256WithRSAEncryption
78:65:58:77:36:18:12:0a:d1:3e:4e:66:a5:42:d0:63:48:da:
73:2c:6c:d0:f6:f8:1e:e8:b7:e6:e2:2d:5d:2c:85:c7:e6:c5:
aa:ea:d6:fd:2c:79:a9:c4:05:ce:3a:eb:62:5d:71:a1:4a:24:
6b:a2:79:dd:8e:5a:a0:04:2e:6e:12:23:3b:ad:c9:bd:84:0c:
94:cf:f2:bf:ad:52:71:fc:b6:cf:3b:1c:e9:ae:53:90:6e:f9:
34:7c:a6:46:27:a0:ab:95:14:82:19:53:94:68:72:a4:81:e2:
92:c0:e0:81:6c:8d:f3:85:50:2b:16:66:cc:a3:ce:e0:68:b2:
81:a2:50:6d:bb:9c:50:12:8b:94:4c:6d:4e:bf:6b:a3:94:b8:
0a:c1:6e:48:39:42:7b:0c:8d:92:e8:3c:b9:b8:72:1c:76:9c:
52:eb:71:fe:25:08:9c:81:4d:70:d9:30:b5:b4:3a:c5:b7:8d:
58:5a:55:aa:96:4b:46:df:3d:46:db:24:d4:79:8c:71:90:b7:
9f:25:26:98:97:49:4a:cc:8c:21:ec:b5:36:20:61:f0:23:8a:
13:02:54:40:5d:6c:1f:c0:4c:2b:53:0f:4d:58:4c:1a:72:36:
b8:09:a8:f1:92:a1:2d:91:a9:24:44:da:5f:16:1e:f7:18:92:
b8:73:f1:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:45:38 2025 by rpki-client