Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/W5H45AmTTmSgxXtGtBP-MlDsnZ0.roa
File: W5H45AmTTmSgxXtGtBP-MlDsnZ0.roa (raw, json)
Hash identifier: sP/+1DNgDYviRXFyzuS3IGJ771PLqJSQ86EjpygiOC8=
Subject key identifier: 5B:91:F8:E4:09:93:4E:64:A0:C5:7B:46:B4:13:FE:32:50:EC:9D:9D
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 01867AC8AE088CAC1AFC7C27B8797A20C58F
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/W5H45AmTTmSgxXtGtBP-MlDsnZ0.roa
Signing time: Wed 22 Feb 2023 20:20:17 +0000
ROA not before: Wed 22 Feb 2023 20:20:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9125
IP address blocks: 93.93.192.0/21 maxlen: 21
93.93.199.0/24 maxlen: 24
92.42.253.0/24 maxlen: 24
92.42.252.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
89.23.93.0/24 maxlen: 24
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.65.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
89.23.74.0/24 maxlen: 24
178.254.134.0/24 maxlen: 24
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.144.0/20 maxlen: 20
178.254.145.0/24 maxlen: 24
178.254.140.0/22 maxlen: 22
178.254.165.0/24 maxlen: 24
178.254.163.0/24 maxlen: 24
178.254.172.0/24 maxlen: 24
178.254.169.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.183.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.184.0/23 maxlen: 24
178.254.128.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.116.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
178.254.188.0/22 maxlen: 24
178.254.187.0/24 maxlen: 24
185.157.44.0/24 maxlen: 24
109.111.254.0/24 maxlen: 24
217.169.208.0/20 maxlen: 20
217.169.208.0/22 maxlen: 22
217.169.212.0/22 maxlen: 22
217.169.219.0/24 maxlen: 24
217.169.216.0/22 maxlen: 22
217.169.220.0/22 maxlen: 22
5.172.38.0/24 maxlen: 24
5.172.34.0/23 maxlen: 24
5.172.33.0/24 maxlen: 24
5.172.36.0/22 maxlen: 24
109.111.226.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.232.0/22 maxlen: 22
109.111.229.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.227.0/24 maxlen: 24
109.111.240.0/24 maxlen: 24
109.111.236.0/22 maxlen: 22
109.111.246.0/24 maxlen: 24
109.111.243.0/24 maxlen: 24
109.111.244.0/24 maxlen: 24
109.111.250.0/24 maxlen: 24
109.111.252.0/23 maxlen: 24
109.111.247.0/24 maxlen: 24
109.111.248.0/24 maxlen: 24
2a02:b58::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7a:c8:ae:08:8c:ac:1a:fc:7c:27:b8:79:7a:20:c5:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Feb 22 20:20:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b91f8e409934e64a0c57b46b413fe3250ec9d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:47:e3:38:9b:21:26:f3:4c:f0:00:a7:0f:73:
94:87:8f:01:c7:35:0b:29:80:5a:11:ec:27:30:a6:
48:90:a0:e9:16:ca:de:22:52:64:c5:e1:08:f9:0f:
f5:60:f5:86:fc:7c:65:95:e3:4f:59:1d:66:71:5b:
1f:14:03:78:f4:74:b2:3c:d8:25:fb:e3:70:e7:03:
d6:a1:f4:47:a9:a2:60:04:8b:ca:cb:0e:d9:f0:5a:
81:9d:e9:dd:88:3d:01:76:64:50:e8:5d:4d:62:38:
40:52:f2:e0:8a:94:a9:44:47:06:36:c3:c9:12:45:
04:07:b3:9f:cc:78:31:b1:10:fd:cf:e3:1c:eb:29:
d2:6a:a7:dc:c1:1d:d3:2b:13:33:ac:78:4f:a9:58:
3c:f3:1a:86:b7:81:b5:b5:36:d0:9d:f7:7a:be:3c:
2b:1c:b5:0d:ae:9d:cd:eb:f1:85:f5:6c:0e:7e:e3:
bf:bc:88:9b:66:72:3e:07:f5:3f:d2:a1:03:7d:b0:
4d:d7:fb:9a:87:a5:b0:b8:df:8d:92:4d:94:fa:80:
e9:c0:c6:e9:22:57:c8:14:8b:20:f8:30:8c:45:16:
68:be:71:2b:3a:89:f9:86:de:0f:c5:07:2d:4a:89:
03:62:f5:8d:71:70:7b:45:92:14:bd:d9:8e:89:16:
6c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:91:F8:E4:09:93:4E:64:A0:C5:7B:46:B4:13:FE:32:50:EC:9D:9D
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/W5H45AmTTmSgxXtGtBP-MlDsnZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.33.0-5.172.39.255
89.23.65.0/24
89.23.68.0-89.23.70.255
89.23.74.0/23
89.23.93.0/24
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0-109.111.240.255
109.111.243.0-109.111.244.255
109.111.246.0-109.111.248.255
109.111.250.0/24
109.111.252.0-109.111.254.255
178.254.128.0/19
178.254.163.0/24
178.254.165.0/24
178.254.169.0/24
178.254.172.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0-178.254.185.255
178.254.187.0-178.254.191.255
185.157.44.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
08:ff:76:da:cb:4f:99:b4:55:21:fc:63:fd:01:7c:fa:a2:9c:
71:3d:d6:88:81:0e:5a:ea:f4:7d:5d:30:d9:1a:fd:24:f2:bd:
b0:ce:ae:69:6c:88:c5:c7:89:fb:a2:7b:a5:78:92:12:6c:25:
3e:c4:8d:52:6e:f6:39:32:e8:ba:00:c1:db:f1:85:0e:39:c3:
66:2a:42:00:93:85:ab:d3:50:e5:1a:d4:e4:2c:16:32:15:a3:
89:84:93:94:dc:28:5e:c1:2d:09:52:a5:f7:d5:c4:25:bb:e0:
4f:5e:78:0d:27:51:9e:f8:ae:37:b9:9a:57:78:70:9f:ac:58:
88:43:09:45:8b:09:ed:b6:ed:57:d1:0f:cc:e1:cc:d0:a8:83:
82:47:20:6d:7f:a1:9b:bc:c6:bc:84:43:43:c6:b6:43:a7:3b:
7e:12:b2:48:93:e7:4d:68:25:56:fb:96:86:81:d4:78:f3:4a:
58:79:a3:ba:76:f5:de:9c:74:0a:77:7a:62:57:7e:13:14:d9:
e7:6b:f6:83:b6:22:7e:9b:e2:9d:24:1e:84:61:87:72:6f:8a:
b9:15:64:b6:bb:f2:8c:70:a9:d3:14:9d:08:13:c3:18:30:34:
a4:17:28:d2:4a:5d:53:b1:bb:3a:12:7c:5a:57:79:ff:fa:22:
51:7b:ed:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 21:58:53 2025 by rpki-client