Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/CbuZAj1dPAfXmlzci4IedDRYdI4.roa
File: CbuZAj1dPAfXmlzci4IedDRYdI4.roa (raw, json)
Hash identifier: lbGR/KQd69NrN+4ngJ+jL//5VrHPvFUw0sXDB1VBPiU=
Subject key identifier: 09:BB:99:02:3D:5D:3C:07:D7:9A:5C:DC:8B:82:1E:74:34:58:74:8E
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 0194228D7AC4B76B97153091F3061D37BDA9
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/CbuZAj1dPAfXmlzci4IedDRYdI4.roa
Signing time: Wed 01 Jan 2025 15:48:04 +0000
ROA not before: Wed 01 Jan 2025 15:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202
IP address blocks: 149.250.0.0/16 maxlen: 16
192.109.236.0/24 maxlen: 24
195.203.0.0/17 maxlen: 17
195.203.128.0/17 maxlen: 17
195.203.152.0/23 maxlen: 23
195.203.156.0/22 maxlen: 22
217.27.0.0/23 maxlen: 23
217.27.2.0/23 maxlen: 23
217.27.4.0/24 maxlen: 24
217.27.6.0/24 maxlen: 24
217.27.7.0/24 maxlen: 24
2a03:5000:1::/48 maxlen: 48
2a03:5000:2::/48 maxlen: 48
2a03:5000:11::/48 maxlen: 48
2a03:5000:12::/48 maxlen: 48
2a03:5000:20::/48 maxlen: 48
2a03:5000:21::/48 maxlen: 48
2a03:5000:22::/48 maxlen: 48
2a03:5000:30::/48 maxlen: 48
2a03:5000:31::/48 maxlen: 48
2a03:5000:32::/48 maxlen: 48
2a03:5000:41::/48 maxlen: 48
2a03:5000:42::/48 maxlen: 48
2a03:5000:51::/48 maxlen: 48
2a03:5000:52::/48 maxlen: 48
2a03:5000:61::/48 maxlen: 48
2a03:5000:62::/48 maxlen: 48
2a03:5000:71::/48 maxlen: 48
2a03:5000:72::/48 maxlen: 48
2a03:5000:81::/48 maxlen: 48
2a03:5000:82::/48 maxlen: 48
2a03:5000:91::/48 maxlen: 48
2a03:5000:92::/48 maxlen: 48
2a03:5000:101::/48 maxlen: 48
2a03:5000:102::/48 maxlen: 48
2a03:5000:111::/48 maxlen: 48
2a03:5000:112::/48 maxlen: 48
2a03:5000:121::/48 maxlen: 48
2a03:5000:122::/48 maxlen: 48
2a03:5000:131::/48 maxlen: 48
2a03:5000:132::/48 maxlen: 48
2a03:5000:141::/48 maxlen: 48
2a03:5000:142::/48 maxlen: 48
2a03:5000:151::/48 maxlen: 48
2a03:5000:152::/48 maxlen: 48
2a03:5000:161::/48 maxlen: 48
2a03:5000:162::/48 maxlen: 48
2a03:5000:171::/48 maxlen: 48
2a03:5000:172::/48 maxlen: 48
2a03:5000:181::/48 maxlen: 48
2a03:5000:182::/48 maxlen: 48
2a03:5000:191::/48 maxlen: 48
2a03:5000:192::/48 maxlen: 48
2a03:5000:201::/48 maxlen: 48
2a03:5000:202::/48 maxlen: 48
2a03:5000:211::/48 maxlen: 48
2a03:5000:212::/48 maxlen: 48
2a03:5000:221::/48 maxlen: 48
2a03:5000:222::/48 maxlen: 48
2a03:5000:231::/48 maxlen: 48
2a03:5000:232::/48 maxlen: 48
2a03:5000:241::/48 maxlen: 48
2a03:5000:242::/48 maxlen: 48
2a03:5000:251::/48 maxlen: 48
2a03:5000:252::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:7a:c4:b7:6b:97:15:30:91:f3:06:1d:37:bd:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Jan 1 15:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=09bb99023d5d3c07d79a5cdc8b821e743458748e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:27:70:fb:ea:5e:32:99:5b:e7:bf:f6:cb:a4:
74:2c:45:ac:8c:2c:60:47:11:47:81:29:28:d8:32:
0f:2e:15:20:d3:6c:ae:49:b5:7d:1e:74:38:dd:00:
2e:28:26:e1:f8:bb:c2:24:77:e0:ad:53:36:8a:41:
00:17:c2:33:e3:3c:b2:3c:e6:65:be:8e:8c:d9:f3:
87:2e:b4:49:ee:b2:91:47:15:8e:f0:bf:08:58:6c:
2c:ba:55:ab:f8:7c:04:09:ed:dd:fc:33:93:dd:bf:
a1:48:f8:0c:a2:52:8b:68:56:06:db:66:c9:93:08:
1d:89:09:cb:26:b2:d6:76:7a:9c:1d:55:5f:a5:cf:
82:d6:0b:5a:34:63:7a:e1:b3:e3:51:29:46:59:8f:
2e:21:0e:32:89:28:40:29:65:0c:5a:be:76:d0:bf:
24:0b:a5:a5:ed:8f:2d:4c:a5:37:b4:2a:7e:9f:4a:
50:28:49:91:c9:f4:6e:7d:89:b8:f5:aa:57:29:ce:
2d:7d:8c:2c:57:ba:7a:e6:36:b3:87:eb:ef:be:4f:
8b:f3:12:27:20:82:43:32:a4:90:6a:6e:70:f1:e1:
b7:5b:93:05:27:86:a1:d5:06:3e:17:e9:11:e0:11:
ec:88:d4:ce:35:db:40:c0:55:b5:5d:de:2f:b0:a7:
e0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BB:99:02:3D:5D:3C:07:D7:9A:5C:DC:8B:82:1E:74:34:58:74:8E
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/CbuZAj1dPAfXmlzci4IedDRYdI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.250.0.0/16
192.109.236.0/24
195.203.0.0/16
217.27.0.0-217.27.4.255
217.27.6.0/23
IPv6:
2a03:5000:1::-2a03:5000:2:ffff:ffff:ffff:ffff:ffff
2a03:5000:11::-2a03:5000:12:ffff:ffff:ffff:ffff:ffff
2a03:5000:20::-2a03:5000:22:ffff:ffff:ffff:ffff:ffff
2a03:5000:30::-2a03:5000:32:ffff:ffff:ffff:ffff:ffff
2a03:5000:41::-2a03:5000:42:ffff:ffff:ffff:ffff:ffff
2a03:5000:51::-2a03:5000:52:ffff:ffff:ffff:ffff:ffff
2a03:5000:61::-2a03:5000:62:ffff:ffff:ffff:ffff:ffff
2a03:5000:71::-2a03:5000:72:ffff:ffff:ffff:ffff:ffff
2a03:5000:81::-2a03:5000:82:ffff:ffff:ffff:ffff:ffff
2a03:5000:91::-2a03:5000:92:ffff:ffff:ffff:ffff:ffff
2a03:5000:101::-2a03:5000:102:ffff:ffff:ffff:ffff:ffff
2a03:5000:111::-2a03:5000:112:ffff:ffff:ffff:ffff:ffff
2a03:5000:121::-2a03:5000:122:ffff:ffff:ffff:ffff:ffff
2a03:5000:131::-2a03:5000:132:ffff:ffff:ffff:ffff:ffff
2a03:5000:141::-2a03:5000:142:ffff:ffff:ffff:ffff:ffff
2a03:5000:151::-2a03:5000:152:ffff:ffff:ffff:ffff:ffff
2a03:5000:161::-2a03:5000:162:ffff:ffff:ffff:ffff:ffff
2a03:5000:171::-2a03:5000:172:ffff:ffff:ffff:ffff:ffff
2a03:5000:181::-2a03:5000:182:ffff:ffff:ffff:ffff:ffff
2a03:5000:191::-2a03:5000:192:ffff:ffff:ffff:ffff:ffff
2a03:5000:201::-2a03:5000:202:ffff:ffff:ffff:ffff:ffff
2a03:5000:211::-2a03:5000:212:ffff:ffff:ffff:ffff:ffff
2a03:5000:221::-2a03:5000:222:ffff:ffff:ffff:ffff:ffff
2a03:5000:231::-2a03:5000:232:ffff:ffff:ffff:ffff:ffff
2a03:5000:241::-2a03:5000:242:ffff:ffff:ffff:ffff:ffff
2a03:5000:251::-2a03:5000:252:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5f:c5:ee:71:fc:65:be:3c:9a:69:43:1f:02:14:92:17:7f:2a:
df:cf:57:41:5e:2e:f1:de:02:2f:ad:e1:f5:96:d1:d2:80:91:
9d:c3:9b:d1:78:79:42:e8:4d:0e:8c:28:8d:e7:d4:96:7f:35:
40:9e:32:c4:8a:97:a5:ed:ae:db:9c:7f:af:b1:2b:7f:d9:19:
01:ce:8f:52:58:94:a2:fc:f0:80:6a:09:56:bf:ef:8c:5a:1d:
ba:fe:a1:47:44:7d:17:96:0f:fe:bb:5e:ff:0a:a6:1d:f7:2f:
90:8d:ef:d7:3c:f0:a5:6b:62:0f:b2:41:6c:5c:50:cf:e0:35:
a0:6d:d5:7f:c9:ac:e5:bb:5b:6e:c3:8d:ec:af:ec:58:dd:bc:
0f:bb:d6:15:f0:da:02:e9:45:e0:75:81:9e:e6:5f:d7:fb:cb:
67:f3:6d:44:b0:8c:6f:89:d2:b9:44:42:ba:76:60:a7:bb:86:
1a:30:ba:24:32:fe:78:74:31:8f:47:f6:43:f7:71:37:bf:cc:
d8:b0:59:1b:17:4a:c0:fa:b7:c6:04:c8:70:ba:ea:a5:59:24:
21:52:06:ff:f5:c3:df:61:37:39:3b:fa:ea:67:e6:b5:48:89:
a5:21:31:a1:72:dd:87:fe:ca:4d:9d:90:60:48:6d:65:62:61:
0b:fb:a2:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:45:16 2025 by rpki-client