Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/JhQlKC5OqrHGY3z0FZFBPXAYjdY.roa
File: JhQlKC5OqrHGY3z0FZFBPXAYjdY.roa (raw, json)
Hash identifier: m2doxTa1KqsZwL6qrg14BFMDQuhoaIjjpYqWwvbiYaA=
Subject key identifier: 26:14:25:28:2E:4E:AA:B1:C6:63:7C:F4:15:91:41:3D:70:18:8D:D6
Certificate issuer: /CN=d31dd1a514d3a7e3dfdb8bfb75d7d24ed98d479f
Certificate serial: 01942143FAE7FC6898D96A743FF913ABB169
Authority key identifier: D3:1D:D1:A5:14:D3:A7:E3:DF:DB:8B:FB:75:D7:D2:4E:D9:8D:47:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0x3RpRTTp-Pf24v7ddfSTtmNR58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/JhQlKC5OqrHGY3z0FZFBPXAYjdY.roa
Signing time: Wed 01 Jan 2025 09:48:10 +0000
ROA not before: Wed 01 Jan 2025 09:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15580
IP address blocks: 91.206.86.0/24 maxlen: 24
185.55.192.0/24 maxlen: 24
193.8.188.0/24 maxlen: 24
193.58.216.0/24 maxlen: 24
193.58.222.0/23 maxlen: 23
193.58.222.0/24 maxlen: 24
193.58.223.0/24 maxlen: 24
193.194.6.0/23 maxlen: 23
193.194.10.0/23 maxlen: 23
193.194.10.0/24 maxlen: 24
193.194.11.0/24 maxlen: 24
193.194.12.0/22 maxlen: 22
194.127.0.0/18 maxlen: 18
194.127.0.0/24 maxlen: 24
194.127.1.0/24 maxlen: 24
194.127.2.0/24 maxlen: 24
194.127.3.0/24 maxlen: 24
194.127.4.0/24 maxlen: 24
194.127.5.0/24 maxlen: 24
194.127.9.0/24 maxlen: 24
194.127.9.64/27 maxlen: 27
194.127.9.224/27 maxlen: 27
194.127.10.0/24 maxlen: 24
194.127.11.0/24 maxlen: 24
194.127.12.0/24 maxlen: 24
194.127.13.0/24 maxlen: 24
194.127.14.0/24 maxlen: 24
194.127.15.0/24 maxlen: 24
194.127.16.0/24 maxlen: 24
194.127.17.0/24 maxlen: 24
194.127.19.0/24 maxlen: 24
194.127.20.0/24 maxlen: 24
194.127.21.0/24 maxlen: 24
194.127.22.0/24 maxlen: 24
194.127.23.0/24 maxlen: 24
194.127.24.0/23 maxlen: 23
194.127.26.0/23 maxlen: 23
194.127.26.0/24 maxlen: 24
194.127.27.0/24 maxlen: 24
194.127.28.0/24 maxlen: 24
194.127.29.0/24 maxlen: 24
194.127.30.0/24 maxlen: 24
194.127.31.0/24 maxlen: 24
194.127.32.0/22 maxlen: 24
194.127.64.0/24 maxlen: 24
194.127.65.0/24 maxlen: 24
194.127.66.0/24 maxlen: 24
194.127.67.0/24 maxlen: 24
194.127.72.0/24 maxlen: 24
194.127.73.0/24 maxlen: 24
194.127.74.0/24 maxlen: 24
194.127.75.0/24 maxlen: 24
194.127.76.0/24 maxlen: 24
194.127.80.0/20 maxlen: 20
194.127.81.0/24 maxlen: 24
194.127.88.0/24 maxlen: 24
194.127.89.0/24 maxlen: 24
2a01:6f8::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:fa:e7:fc:68:98:d9:6a:74:3f:f9:13:ab:b1:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d31dd1a514d3a7e3dfdb8bfb75d7d24ed98d479f
Validity
Not Before: Jan 1 09:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=261425282e4eaab1c6637cf41591413d70188dd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e1:a8:c2:3b:ce:22:8d:c8:05:bc:16:4c:ad:
fe:5a:d8:11:ff:c3:dd:7c:ef:5c:91:26:3c:92:6d:
25:31:84:18:da:d8:86:a5:2e:7b:ef:68:f6:8d:f1:
65:57:ee:f8:19:33:0e:93:f2:4a:75:56:c2:12:18:
6f:c6:a3:b3:6c:00:4e:8c:2f:92:b7:7c:a0:27:76:
5f:7b:91:42:3e:9c:ae:4b:c0:a8:15:0e:a3:70:a4:
c9:44:e9:7e:ef:2c:9c:17:df:e2:c2:eb:4a:6b:16:
2a:ff:8e:27:cb:98:9c:dc:21:05:75:f2:07:46:ca:
f3:10:90:04:52:d0:23:52:23:26:4e:22:5f:36:84:
77:cd:00:a1:ec:62:6e:42:7c:79:c2:63:e5:c5:5b:
d9:7a:83:d9:6a:d5:86:0d:6b:6e:13:d6:0b:a2:1b:
07:f6:83:e7:a2:94:49:9b:bb:5a:85:31:35:76:c3:
28:12:0e:04:18:c6:67:00:89:2c:86:f9:1c:f4:74:
b1:b0:05:07:4f:db:41:de:60:5f:66:52:b0:21:4d:
dd:9d:82:12:b7:d6:85:42:30:81:6c:58:6c:32:b9:
81:11:5f:49:57:c1:e8:4b:87:11:03:99:4f:30:2e:
73:64:64:d7:2b:c8:99:de:1e:53:47:0b:52:c1:57:
41:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:14:25:28:2E:4E:AA:B1:C6:63:7C:F4:15:91:41:3D:70:18:8D:D6
X509v3 Authority Key Identifier:
keyid:D3:1D:D1:A5:14:D3:A7:E3:DF:DB:8B:FB:75:D7:D2:4E:D9:8D:47:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0x3RpRTTp-Pf24v7ddfSTtmNR58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/JhQlKC5OqrHGY3z0FZFBPXAYjdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/0x3RpRTTp-Pf24v7ddfSTtmNR58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.86.0/24
185.55.192.0/24
193.8.188.0/24
193.58.216.0/24
193.58.222.0/23
193.194.6.0/23
193.194.10.0-193.194.15.255
194.127.0.0-194.127.67.255
194.127.72.0-194.127.76.255
194.127.80.0/20
IPv6:
2a01:6f8::/32
Signature Algorithm: sha256WithRSAEncryption
0a:62:43:ae:59:3f:2f:22:7d:06:cd:b9:06:03:db:3c:28:d7:
52:19:88:cc:4e:b8:1a:26:ec:46:b4:7f:4d:fd:58:5b:84:eb:
79:42:28:b3:cb:ff:0a:1e:5e:db:f4:35:b2:88:19:75:93:25:
2e:bf:25:e2:14:8f:22:be:1b:96:19:fb:55:7f:7e:9b:5e:3a:
0c:e0:b6:5b:82:eb:56:89:c0:0c:a6:64:c2:3d:a6:65:a5:c7:
dc:42:66:d6:f6:3e:3b:a4:21:20:71:3e:83:24:82:0c:a2:1b:
fd:9d:7a:9c:96:00:64:b7:42:12:2f:17:af:8b:dc:6c:ea:2a:
f5:fb:53:65:dc:60:c7:07:46:b1:16:a4:1f:ee:22:c0:91:7b:
05:05:0e:06:fa:c7:4f:d6:a2:f3:2f:35:9b:4f:52:96:f8:04:
8a:dc:b3:61:fb:0b:7a:41:56:7c:b0:4a:cc:53:ae:7d:3b:7f:
24:a9:f5:8f:2d:62:4f:75:01:b5:80:f0:e4:bf:4b:87:48:34:
ca:f3:60:7b:d3:ad:07:72:f7:34:4a:1c:ff:c8:07:64:01:d4:
a0:a8:d3:54:81:c2:ff:3c:5e:1a:0e:99:f3:c8:bc:c4:aa:df:
b4:75:85:87:af:88:cc:c4:bb:c9:ba:60:29:ad:ef:c5:a6:6a:
b1:1e:91:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:22:26 2025 by rpki-client