Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6uNXCygA25IhfgpCj1djvdDXVZA.roa
File: 6uNXCygA25IhfgpCj1djvdDXVZA.roa (raw, json)
Hash identifier: v43PlmhATFpihcON0UAdRcPo0LBlgcHAGAE/cQmsBoI=
Subject key identifier: EA:E3:57:0B:28:00:DB:92:21:7E:0A:42:8F:57:63:BD:D0:D7:55:90
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0195D6F70E1FF7768B90F7A38546B5288F95
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6uNXCygA25IhfgpCj1djvdDXVZA.roa
Signing time: Thu 27 Mar 2025 09:37:49 +0000
ROA not before: Thu 27 Mar 2025 09:37:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 185.126.82.0/24 maxlen: 24
185.209.38.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
185.209.74.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.210.233.0/24 maxlen: 24
185.214.108.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.220.248.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.222.28.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.3.0/24 maxlen: 24
185.227.146.0/23 maxlen: 24
185.227.147.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
193.8.112.0/23 maxlen: 24
193.8.112.0/24 maxlen: 24
193.8.114.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
194.76.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d6:f7:0e:1f:f7:76:8b:90:f7:a3:85:46:b5:28:8f:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 27 09:37:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eae3570b2800db92217e0a428f5763bdd0d75590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:06:c6:1b:5b:b0:f5:a8:28:09:1d:3f:99:5e:
01:e6:96:1b:5b:88:93:1f:bb:5d:33:39:53:a1:2c:
87:d9:a2:02:94:29:cb:0b:97:a9:cc:29:a0:ce:cc:
67:19:5b:8c:d4:88:de:82:66:3a:64:68:77:be:98:
01:6f:84:76:fe:96:f2:93:eb:dd:61:f2:be:13:3f:
28:b0:06:16:ee:56:7d:dc:5b:a8:a0:f1:5c:87:29:
7f:fd:2f:44:13:50:39:8c:1f:78:57:a5:87:90:ce:
3f:64:57:06:0d:cb:6f:fd:ec:19:e4:71:7a:fe:cb:
1f:ce:d1:cb:1a:ab:75:bc:13:26:70:b7:0c:1b:05:
e6:ce:a7:5c:c6:ef:74:70:58:a3:4a:45:31:95:85:
06:af:fe:2b:ce:f6:6f:a4:a6:a6:51:c8:4d:65:2a:
d0:e1:01:df:8f:13:c5:74:41:fb:6f:7a:3f:c2:59:
c9:1b:3a:5c:f9:cf:c2:b6:80:6b:1b:9e:dd:b2:d5:
01:9a:44:7d:2f:7d:3c:f2:b4:e8:16:e7:03:7c:d5:
33:78:f3:33:84:f6:16:4f:e7:b0:e5:6d:c9:77:67:
4b:a6:de:42:2b:ee:b6:94:cc:5e:97:8d:aa:aa:41:
6e:06:82:4a:b7:bf:26:62:8c:20:84:16:af:70:bd:
0e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E3:57:0B:28:00:DB:92:21:7E:0A:42:8F:57:63:BD:D0:D7:55:90
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6uNXCygA25IhfgpCj1djvdDXVZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.82.0/24
185.209.38.0/24
185.209.73.0-185.209.75.255
185.210.233.0/24
185.214.108.0/24
185.218.20.0/24
185.220.248.0/24
185.220.250.0/23
185.222.28.0/24
185.223.78.0/24
185.223.80.0/24
185.225.0.0/23
185.225.3.0/24
185.227.146.0/23
185.228.75.0/24
193.8.112.0-193.8.114.255
193.58.146.0/23
194.76.172.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:43:17:df:ac:5b:75:b7:10:58:8b:71:64:ca:5c:bb:37:de:
44:99:ed:6e:d8:2c:7b:0d:bf:50:a7:cd:66:e1:bc:50:11:96:
da:fc:73:72:63:8d:8f:3b:b8:28:ad:a9:0d:c1:5a:17:6b:40:
e6:95:34:96:74:91:88:a6:36:b7:6f:ab:4b:d9:51:c9:45:b3:
a6:c6:4f:b7:e8:3c:aa:c7:3f:f5:36:17:fa:07:8d:38:32:1c:
5b:b2:ec:e5:82:bc:21:31:4e:c8:4b:01:b8:46:af:47:13:4a:
5b:3c:b3:bf:8a:15:cf:d4:5d:50:81:dd:51:e1:6c:41:de:88:
5a:73:a4:5d:dd:80:72:e4:2d:11:61:cb:a5:df:d7:53:e6:28:
6e:25:ac:c7:55:bb:45:72:d1:be:ab:04:ae:27:75:fc:ee:dd:
b8:ae:f9:3e:08:15:e1:52:82:df:5f:c2:3c:98:b7:12:72:d6:
10:e2:7c:e6:01:0c:84:04:72:e4:de:de:c6:e1:e6:43:53:0e:
62:2a:0e:3c:c5:b4:6f:6d:d5:6d:3c:8e:79:6c:7c:68:cd:69:
59:dd:0d:24:e1:c7:83:72:71:c5:ea:84:67:ab:fb:c4:dd:cb:
1a:91:b3:d4:51:a6:cc:55:a8:93:20:08:03:2d:df:f2:f3:b2:
d8:46:ab:74
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAZXW9w4f93aLkPejhUa1KI+VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjUwMzI3MDkzNzQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYWUzNTcwYjI4MDBkYjkyMjE3ZTBhNDI4ZjU3NjNiZGQwZDc1NTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQbGG1uw9agoCR0/mV4B5pYbW4iT
H7tdMzlToSyH2aIClCnLC5epzCmgzsxnGVuM1IjegmY6ZGh3vpgBb4R2/pbyk+vd
YfK+Ez8osAYW7lZ93FuooPFchyl//S9EE1A5jB94V6WHkM4/ZFcGDctv/ewZ5HF6
/ssfztHLGqt1vBMmcLcMGwXmzqdcxu90cFijSkUxlYUGr/4rzvZvpKamUchNZSrQ
4QHfjxPFdEH7b3o/wlnJGzpc+c/CtoBrG57dstUBmkR9L3088rToFucDfNUzePMz
hPYWT+ew5W3Jd2dLpt5CK+62lMxel42qqkFuBoJKt78mYowghBavcL0OgQIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFOrjVwsoANuSIX4KQo9XY73Q11WQMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvNnVOWEN5Z0EyNUloZmdwQ2oxZGp2ZERYVlpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTCBggQCAAEwfAMEALl+
UgMEALnRJjAMAwQAudFJAwQCudFIAwQAudLpAwQAudZsAwQAudoUAwQAudz4AwQB
udz6AwQAud4cAwQAud9OAwQAud9QAwQBueEAAwQAueEDAwQBueOSAwQAueRLMAwD
BATBCHADBADBCHIDBAHBOpIDBADCTKwwDQYJKoZIhvcNAQELBQADggEBAMJDF9+s
W3W3EFiLcWTKXLs33kSZ7W7YLHsNv1CnzWbhvFARltr8c3JjjY87uCitqQ3BWhdr
QOaVNJZ0kYimNrdvq0vZUclFs6bGT7foPKrHP/U2F/oHjTgyHFuy7OWCvCExTshL
AbhGr0cTSls8s7+KFc/UXVCB3VHhbEHeiFpzpF3dgHLkLRFhy6Xf11PmKG4lrMdV
u0Vy0b6rBK4ndfzu3biu+T4IFeFSgt9fwjyYtxJy1hDifOYBDIQEcuTe3sbh5kNT
DmIqDjzFtG9t1W08jnlsfGjNaVndDSThx4NyccXqhGer+8TdyxqRs9RRpsxVqJMg
CAMt3/LzsthGq3Q=
-----END CERTIFICATE-----
Generated at Sat Apr 12 09:30:57 2025 by rpki-client