Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/raoBBqDiQJAGp9MNSZqW61jTog8.roa
File: raoBBqDiQJAGp9MNSZqW61jTog8.roa (raw, json)
Hash identifier: 0virzTB4TZ15R2pjXulbAwoXygqY3QlS1UoSHYmY/e8=
Subject key identifier: AD:AA:01:06:A0:E2:40:90:06:A7:D3:0D:49:9A:96:EB:58:D3:A2:0F
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0733B615
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/raoBBqDiQJAGp9MNSZqW61jTog8.roa
Signing time: Thu 16 Jun 2022 05:01:44 +0000
ROA not before: Thu 16 Jun 2022 05:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.130.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120829461 (0x733b615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jun 16 05:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adaa0106a0e2409006a7d30d499a96eb58d3a20f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cb:32:8d:d5:55:fa:51:e0:a1:18:3e:4c:2a:
47:cd:98:d3:12:7f:77:08:36:19:5d:39:1e:c7:ca:
16:b1:b9:c6:9a:f7:83:bc:67:ea:7e:fd:b4:f7:d8:
e9:23:9c:ad:16:bd:e3:01:c6:f4:6b:6b:02:c8:93:
6c:1c:3c:8c:e8:71:95:76:c4:54:cd:6f:85:1d:80:
df:f1:1a:56:4a:f1:9f:3e:9a:5b:9c:a0:b2:ed:69:
2e:13:28:98:34:f1:b0:0b:7a:97:f4:d5:03:08:b9:
4a:45:a2:50:1d:5a:96:22:b7:dd:bf:be:2e:85:dd:
c2:ea:7b:71:c7:8c:25:f3:d4:9b:0a:3a:31:69:22:
31:0f:dd:49:20:73:e3:a5:22:ad:cf:0e:b3:b0:9e:
3e:ad:44:2c:58:c3:f2:92:79:86:17:9d:04:22:47:
45:a4:0a:1f:d4:44:9f:c1:c1:89:8d:3d:09:5c:bd:
92:b4:3d:29:4d:55:86:d2:4f:17:bc:f8:c7:03:bf:
fe:6b:69:14:94:80:3e:18:43:c0:44:84:de:ef:a3:
e2:ac:62:f3:bd:31:58:ab:74:7f:36:40:00:4a:35:
46:b1:fd:2d:22:59:a7:8a:b4:ab:3a:0f:45:bb:00:
af:51:00:70:18:16:a1:13:e5:91:bb:a2:c1:f2:06:
30:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:AA:01:06:A0:E2:40:90:06:A7:D3:0D:49:9A:96:EB:58:D3:A2:0F
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/raoBBqDiQJAGp9MNSZqW61jTog8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.234.0/24
78.159.128.0/22
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.33.0/24
91.92.35.0/24
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0/24
93.152.209.0-93.152.210.255
93.152.212.0/22
93.152.220.0/23
93.152.224.0-93.152.226.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.90.0/24
185.96.252.0/23
185.96.255.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:bf:66:a2:ed:0a:96:4f:1f:7b:3b:9f:69:02:a8:7c:79:e8:
d1:4b:77:13:98:dd:c7:ff:d3:c0:c9:84:e3:b7:d5:a2:e8:42:
7a:9a:40:47:0e:d6:e1:94:f4:56:93:82:07:be:3b:0b:68:e8:
a0:76:d2:c0:28:62:92:cf:02:b0:ea:00:99:14:b5:0e:2c:4c:
e6:d0:d2:60:5b:60:02:ae:6d:9e:d0:a6:0f:37:5c:bf:5e:59:
6f:09:ab:c8:09:77:28:35:c1:ca:53:4f:87:e2:b0:30:1a:90:
87:fb:b5:d7:ac:cd:1a:3f:00:75:f8:8b:a0:a4:fa:65:63:46:
08:d8:2a:95:5f:ac:83:20:2b:60:47:28:07:83:e4:10:92:e6:
1e:61:12:47:51:5d:fb:18:7f:7d:d6:9f:56:4a:e6:c6:8a:d6:
c4:8c:c2:5f:9d:b7:03:48:2f:41:74:4b:54:0d:d1:df:dd:0f:
37:11:18:ca:ad:f1:31:f1:d1:45:77:3d:84:b5:25:8b:69:2f:
da:49:5e:e7:5b:ea:1f:fc:4a:fe:38:a7:09:c8:c8:5a:92:32:
aa:29:0b:fd:e6:d4:58:2c:99:f2:03:d6:05:08:a4:d7:9e:e1:
54:48:86:2c:e0:62:3c:01:af:9a:9b:a6:49:dc:fb:51:56:16:
ac:21:b9:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 00:34:00 2025 by rpki-client