Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-pPt6INTjcEK9ulfBk4Y5Q77CP8.roa
File: 1-pPt6INTjcEK9ulfBk4Y5Q77CP8.roa (raw, json)
Hash identifier: x6GXnpQRTWMPv9dde9x8lGqYoXjI04GRDl3BySwlco8=
Subject key identifier: FA:93:ED:E8:83:53:8D:C1:0A:F6:E9:5F:06:4E:18:E5:0E:FB:08:FF
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0194ACDA4D2689E94720BC01B9CC60688557
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-pPt6INTjcEK9ulfBk4Y5Q77CP8.roa
Signing time: Tue 28 Jan 2025 12:19:35 +0000
ROA not before: Tue 28 Jan 2025 12:19:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.234.0/24 maxlen: 24
62.76.239.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.17.0/24 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
194.87.58.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
194.87.230.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.245.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.67.0/24 maxlen: 24
195.133.83.0/24 maxlen: 24
195.133.92.0/24 maxlen: 24
212.192.221.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
212.193.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ac:da:4d:26:89:e9:47:20:bc:01:b9:cc:60:68:85:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 28 12:19:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fa93ede883538dc10af6e95f064e18e50efb08ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6d:53:aa:cd:e7:81:ce:d4:66:43:c7:c2:94:
cc:88:cf:b6:af:59:3d:bb:90:43:3b:97:d9:67:0c:
dc:cd:87:b6:a2:70:16:7b:33:55:16:a3:dd:a4:e3:
d5:22:e4:fc:55:cb:a0:2a:83:12:77:1e:2a:ee:bb:
e7:05:82:4c:79:e3:b8:22:74:7a:5d:4c:05:54:f8:
c3:e4:a2:17:11:9c:4b:0d:64:7a:c2:3b:02:f7:a7:
14:0f:46:6f:48:89:e0:41:c3:89:37:94:9b:0b:e3:
52:4c:4c:45:64:ee:5b:16:f2:68:af:cf:7c:36:20:
b4:6d:3c:35:44:15:04:37:8e:bf:3e:8a:83:22:ea:
dc:71:06:e6:f8:c0:38:b0:6d:9a:04:88:2e:6f:f9:
c0:82:95:0f:3c:5a:51:1a:d6:40:6c:1e:ae:31:98:
80:3d:8b:fd:98:97:23:2f:28:4f:5e:46:a2:57:78:
c5:dc:2e:d2:72:a8:20:e6:63:21:1a:64:4f:65:88:
6b:f2:28:da:97:df:0c:ff:dc:38:2d:4a:68:83:93:
aa:41:66:1f:60:d6:0f:d5:ce:dd:75:f2:72:68:a2:
9c:74:13:1c:1a:65:88:1f:0a:c5:97:b5:fb:b0:e1:
68:fc:90:09:85:f6:34:ac:cd:7a:b8:10:02:ca:3a:
32:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:93:ED:E8:83:53:8D:C1:0A:F6:E9:5F:06:4E:18:E5:0E:FB:08:FF
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-pPt6INTjcEK9ulfBk4Y5Q77CP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.234.0/24
62.76.239.0/24
192.124.176.0/24
192.124.209.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.38.0-194.58.40.255
194.58.59.0/24
194.58.66.0/24
194.58.68.0/24
194.87.10.0/24
194.87.17.0-194.87.18.255
194.87.23.0/24
194.87.30.0/24
194.87.39.0/24
194.87.47.0/24
194.87.58.0/24
194.87.73.0/24
194.87.82.0/24
194.87.105.0/24
194.87.108.0/24
194.87.178.0/24
194.87.198.0/24
194.87.227.0/24
194.87.230.0/24
194.87.240.0/24
194.87.245.0/24
195.133.55.0/24
195.133.67.0/24
195.133.83.0/24
195.133.92.0/24
212.192.221.0/24
212.192.223.0/24
212.193.1.0-212.193.2.255
212.193.6.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:ac:05:fc:7f:db:5b:ca:9d:d5:bc:ef:7a:0c:f8:94:a2:58:
f8:ff:eb:aa:6c:e0:a3:71:2e:ea:89:da:80:7f:87:f8:45:83:
a7:c7:35:db:d8:8d:cf:97:27:fa:cb:53:7a:68:c3:a9:e5:53:
fa:a7:08:42:ee:fc:a6:32:0d:04:73:9e:57:f3:9c:05:88:90:
90:2e:6a:04:d4:c6:e6:4c:5b:ed:0b:d9:2c:92:05:f1:e2:e8:
de:5a:ba:64:4f:16:ef:94:12:7e:49:fe:0f:a8:af:1f:03:2a:
c9:e8:65:48:9a:14:0c:26:36:15:d6:6f:64:77:0a:bb:ee:1b:
64:03:b3:c5:0b:6c:fb:b3:23:f2:5d:b8:14:ef:08:13:3d:6c:
9e:67:3e:9e:b3:33:d3:3e:da:42:74:17:8e:15:88:9a:e0:1b:
f9:64:58:32:da:44:f0:5e:19:03:61:41:a9:14:42:23:13:ff:
06:9a:ad:d4:67:48:52:3a:fd:7a:31:c7:a8:ee:bd:1a:18:1b:
39:78:86:62:25:39:c5:2c:d4:5c:75:18:e3:3a:6a:c3:54:5a:
3d:e3:d7:ef:ba:e4:a8:13:88:bd:4d:5f:35:2c:ea:0e:a8:4a:
ac:7a:db:67:a8:3e:4b:84:4a:59:62:08:fa:11:a2:6d:95:c6:
48:8f:48:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:50:35 2025 by rpki-client