![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/30b225-a165-4fc3-9342-b337f7e90915/1/Nf_JExUbs9RFEM2a1whdbLwlSBA.roa
File: Nf_JExUbs9RFEM2a1whdbLwlSBA.roa (raw, json)
Hash identifier: kza+A0nsGlXWA1/Y8HacMPTYrIxphAMnbu1OgWnrJ/Y=
Subject key identifier: 35:FF:C9:13:15:1B:B3:D4:45:10:CD:9A:D7:08:5D:6C:BC:25:48:10
Certificate issuer: /CN=b146b28951a21163dc9651b54c23936fccacf47b
Certificate serial: 44BD2FA0
Authority key identifier: B1:46:B2:89:51:A2:11:63:DC:96:51:B5:4C:23:93:6F:CC:AC:F4:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUayiVGiEWPcllG1TCOTb8ys9Hs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/30b225-a165-4fc3-9342-b337f7e90915/1/Nf_JExUbs9RFEM2a1whdbLwlSBA.roa
Signing time: Sat 01 Jan 2022 14:57:20 +0000
ROA not before: Sat 01 Jan 2022 14:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 93.176.64.0/18 maxlen: 18
93.176.87.0/24 maxlen: 24
5.179.94.0/24 maxlen: 24
5.56.144.0/20 maxlen: 20
89.221.160.0/20 maxlen: 20
87.116.0.0/18 maxlen: 18
87.116.31.0/24 maxlen: 24
83.151.128.0/18 maxlen: 18
83.136.88.0/21 maxlen: 21
83.136.95.0/24 maxlen: 24
83.151.144.0/23 maxlen: 23
77.233.224.0/19 maxlen: 19
130.185.128.0/20 maxlen: 20
217.195.176.0/20 maxlen: 20
217.195.189.0/24 maxlen: 24
82.192.160.0/19 maxlen: 19
37.49.128.0/20 maxlen: 20
82.192.179.0/24 maxlen: 24
37.49.141.0/24 maxlen: 24
37.49.142.0/24 maxlen: 24
195.140.132.0/22 maxlen: 22
185.20.240.0/22 maxlen: 22
5.179.80.0/20 maxlen: 20
92.62.192.0/20 maxlen: 20
62.116.192.0/19 maxlen: 19
217.116.208.0/20 maxlen: 20
2a02:18a::/32 maxlen: 32
2a02:189::/32 maxlen: 32
2a02:188::/29 maxlen: 29
2a02:18d::/32 maxlen: 32
2a02:18c::/32 maxlen: 32
2a02:18f::/32 maxlen: 32
2a02:18e::/32 maxlen: 32
2a02:18b::/32 maxlen: 32
2a02:188::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1153249184 (0x44bd2fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b146b28951a21163dc9651b54c23936fccacf47b
Validity
Not Before: Jan 1 14:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35ffc913151bb3d44510cd9ad7085d6cbc254810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f2:c3:a1:82:13:1b:88:60:98:50:db:20:b3:
5d:86:33:fd:91:1f:54:a4:38:ba:27:91:54:a3:67:
b7:6c:0f:76:da:2d:a7:25:ec:5d:23:f2:c8:ba:98:
51:ca:76:6f:a2:5c:28:d7:34:6e:9f:35:20:36:72:
db:36:15:b2:04:ba:51:c2:bc:35:ee:90:34:87:1a:
e8:7e:1d:ac:31:ce:23:2e:3a:e9:b1:13:d0:79:6e:
71:19:2e:f4:01:2b:fc:64:a4:6b:8e:03:71:39:15:
6e:b2:1b:1c:0d:0b:a1:c2:89:1e:ed:1f:d9:ec:29:
31:c6:68:55:8f:7f:93:0e:5d:a6:c1:a7:a6:cf:53:
55:5f:63:2d:5d:4e:b9:4f:64:c7:d9:d3:84:33:c1:
8e:47:f5:91:a3:9a:6b:72:ae:1c:bd:de:ec:6e:b3:
e9:fc:75:5b:33:cf:b4:f3:86:f3:68:95:b7:21:bb:
41:d5:8f:05:71:c2:f0:7d:48:02:9f:98:77:75:fa:
34:2f:bf:f4:d8:ef:52:ce:7e:52:d4:75:14:be:1e:
45:73:29:2f:85:d7:17:1e:d2:c3:6e:a4:4a:5e:23:
97:93:f5:75:0a:fe:58:7d:5c:2c:14:e4:c5:53:8b:
fa:45:9c:8f:b3:85:20:5a:db:7b:12:73:73:7b:c5:
84:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:FF:C9:13:15:1B:B3:D4:45:10:CD:9A:D7:08:5D:6C:BC:25:48:10
X509v3 Authority Key Identifier:
keyid:B1:46:B2:89:51:A2:11:63:DC:96:51:B5:4C:23:93:6F:CC:AC:F4:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUayiVGiEWPcllG1TCOTb8ys9Hs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/30b225-a165-4fc3-9342-b337f7e90915/1/Nf_JExUbs9RFEM2a1whdbLwlSBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/30b225-a165-4fc3-9342-b337f7e90915/1/sUayiVGiEWPcllG1TCOTb8ys9Hs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.144.0/20
5.179.80.0/20
37.49.128.0/20
62.116.192.0/19
77.233.224.0/19
82.192.160.0/19
83.136.88.0/21
83.151.128.0/18
87.116.0.0/18
89.221.160.0/20
92.62.192.0/20
93.176.64.0/18
130.185.128.0/20
185.20.240.0/22
195.140.132.0/22
217.116.208.0/20
217.195.176.0/20
IPv6:
2a02:188::/29
Signature Algorithm: sha256WithRSAEncryption
37:34:4d:fb:dd:5b:84:89:02:9d:78:82:8e:fc:34:74:30:a8:
41:91:cb:42:80:21:ff:c6:3f:5b:fc:82:f8:50:4c:84:ca:5c:
dc:9e:d7:07:bd:2b:02:6c:42:ed:e6:38:53:25:c0:68:46:b2:
43:c1:a3:b4:ca:79:f9:e0:92:8a:b5:5b:4b:96:90:9d:ae:c3:
38:b6:c6:ec:65:d9:2e:9f:b5:eb:06:87:17:e7:b8:2e:18:ac:
b6:e0:08:12:11:92:30:f1:fb:75:12:fe:ef:e4:ae:0e:d3:e4:
cc:29:2c:1a:95:f9:0f:45:79:d4:41:1e:49:f6:76:be:70:83:
79:11:c6:05:1b:8b:78:7a:67:ab:62:bc:b6:27:76:e7:f7:be:
d1:06:5c:0f:77:cf:c4:ba:15:00:bc:cf:0f:e8:60:95:47:9b:
9a:8e:dd:33:2a:af:f9:f4:15:76:7a:a9:01:c1:a4:b0:dd:36:
e4:ab:98:9e:cd:ac:07:b7:5c:3f:f4:dd:f3:23:2f:26:05:fa:
9f:bf:a2:b9:48:25:c3:6f:6a:0c:70:82:47:1b:1e:ae:7f:1e:
d3:13:bb:5b:a9:b0:cf:78:27:e4:83:f1:2d:27:62:eb:e8:de:
15:50:7b:7e:df:97:d4:65:c2:24:29:09:08:f1:2f:ab:a1:07:
e5:43:c0:cf
-----BEGIN CERTIFICATE-----
MIIFXzCCBEegAwIBAgIERL0voDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTQ2YjI4OTUxYTIxMTYzZGM5NjUxYjU0YzIzOTM2ZmNjYWNmNDdiMB4XDTIyMDEw
MTE0NTcyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzVmZmM5MTMxNTFi
YjNkNDQ1MTBjZDlhZDcwODVkNmNiYzI1NDgxMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANbyw6GCExuIYJhQ2yCzXYYz/ZEfVKQ4uieRVKNnt2wPdtot
pyXsXSPyyLqYUcp2b6JcKNc0bp81IDZy2zYVsgS6UcK8Ne6QNIca6H4drDHOIy46
6bET0HlucRku9AEr/GSka44DcTkVbrIbHA0LocKJHu0f2ewpMcZoVY9/kw5dpsGn
ps9TVV9jLV1OuU9kx9nThDPBjkf1kaOaa3KuHL3e7G6z6fx1WzPPtPOG82iVtyG7
QdWPBXHC8H1IAp+Yd3X6NC+/9NjvUs5+UtR1FL4eRXMpL4XXFx7Sw26kSl4jl5P1
dQr+WH1cLBTkxVOL+kWcj7OFIFrbexJzc3vFhBUCAwEAAaOCAnkwggJ1MB0GA1Ud
DgQWBBQ1/8kTFRuz1EUQzZrXCF1svCVIEDAfBgNVHSMEGDAWgBSxRrKJUaIRY9yW
UbVMI5NvzKz0ezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NVYXlpVkdpRVdQY2xsRzFUQ09UYjh5czlIcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTgvMzBiMjI1LWExNjUtNGZjMy05MzQyLWIzMzdmN2U5MDkxNS8x
L05mX0pFeFViczlSRkVNMmExd2hkYkx3bFNCQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTgv
MzBiMjI1LWExNjUtNGZjMy05MzQyLWIzMzdmN2U5MDkxNS8xL3NVYXlpVkdpRVdQ
Y2xsRzFUQ09UYjh5czlIcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
jgYIKwYBBQUHAQcBAf8EfzB9MGwEAgABMGYDBAQFOJADBAQFs1ADBAQlMYADBAU+
dMADBAVN6eADBAVSwKADBANTiFgDBAZTl4ADBAZXdAADBARZ3aADBARcPsADBAZd
sEADBASCuYADBAK5FPADBALDjIQDBATZdNADBATZw7AwDQQCAAIwBwMFAyoCAYgw
DQYJKoZIhvcNAQELBQADggEBADc0TfvdW4SJAp14go78NHQwqEGRy0KAIf/GP1v8
gvhQTITKXNye1we9KwJsQu3mOFMlwGhGskPBo7TKefngkoq1W0uWkJ2uwzi2xuxl
2S6ftesGhxfnuC4YrLbgCBIRkjDx+3US/u/krg7T5MwpLBqV+Q9FedRBHkn2dr5w
g3kRxgUbi3h6Z6tivLYnduf3vtEGXA93z8S6FQC8zw/oYJVHm5qO3TMqr/n0FXZ6
qQHBpLDdNuSrmJ7NrAe3XD/03fMjLyYF+p+/orlIJcNvagxwgkcbHq5/HtMTu1up
sM94J+SD8S0nYuvo3hVQe37fl9RlwiQpCQjxL6uhB+VDwM8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:12 2024 by rpki-client on console-ams.rpki-client.org