Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/PyMiLV0wnNJXQTQMDEPMVXWx9ZQ.roa
File: PyMiLV0wnNJXQTQMDEPMVXWx9ZQ.roa (raw, json)
Hash identifier: gY7gqfT3zhDP3uAkWWCqVVxfWQ7GvCSgS8lQh0U5EGA=
Subject key identifier: 3F:23:22:2D:5D:30:9C:D2:57:41:34:0C:0C:43:CC:55:75:B1:F5:94
Certificate issuer: /CN=3deb104463e920b45542b6af1a27d5950e86e9a0
Certificate serial: 0194221F5BFFEA7733724D75BBD798078BA1
Authority key identifier: 3D:EB:10:44:63:E9:20:B4:55:42:B6:AF:1A:27:D5:95:0E:86:E9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PesQRGPpILRVQravGifVlQ6G6aA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/PyMiLV0wnNJXQTQMDEPMVXWx9ZQ.roa
Signing time: Wed 01 Jan 2025 13:47:48 +0000
ROA not before: Wed 01 Jan 2025 13:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43925
IP address blocks: 37.34.96.0/19 maxlen: 24
37.34.96.0/22 maxlen: 24
37.34.100.0/22 maxlen: 24
37.34.105.0/24 maxlen: 24
37.34.106.0/24 maxlen: 24
37.34.107.0/24 maxlen: 24
37.34.108.0/22 maxlen: 24
37.34.112.0/20 maxlen: 24
37.34.120.0/21 maxlen: 24
79.170.224.0/21 maxlen: 24
89.45.0.0/22 maxlen: 22
89.45.0.0/23 maxlen: 23
89.45.0.0/24 maxlen: 24
89.45.2.0/23 maxlen: 23
93.113.112.0/21 maxlen: 22
93.113.115.0/24 maxlen: 24
94.139.128.0/19 maxlen: 32
178.76.76.0/22 maxlen: 22
178.76.80.0/20 maxlen: 22
178.76.96.0/19 maxlen: 21
178.76.96.0/22 maxlen: 22
178.76.100.0/22 maxlen: 22
185.32.0.0/22 maxlen: 22
185.32.0.0/23 maxlen: 23
185.32.2.0/23 maxlen: 23
2a00:f900::/32 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:5b:ff:ea:77:33:72:4d:75:bb:d7:98:07:8b:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3deb104463e920b45542b6af1a27d5950e86e9a0
Validity
Not Before: Jan 1 13:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f23222d5d309cd25741340c0c43cc5575b1f594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:14:c6:a1:9b:bd:ec:9b:d3:04:d6:46:a8:1e:
7f:aa:db:0f:55:f7:91:fb:ee:c4:25:d0:71:2f:bd:
7b:db:ff:a3:f2:b2:2a:43:1c:92:06:f2:bb:47:5b:
62:89:54:54:d0:55:58:df:b6:97:17:a7:66:d0:18:
96:ea:dc:74:7b:36:d2:7f:88:47:5a:5d:2b:4c:e5:
63:00:ea:34:14:9f:88:ed:a9:2a:6a:0c:d1:01:c7:
b1:ca:89:c0:12:cd:39:8a:6b:cd:0b:7a:6c:f4:d9:
c6:28:9a:58:f7:53:01:92:8f:70:10:a4:f6:96:44:
0b:de:01:7b:6a:f7:9d:6a:fc:e8:84:d7:90:96:04:
fd:96:40:fa:a0:62:99:47:63:3d:4e:45:4c:21:7d:
55:96:ff:87:2e:5b:6f:00:b1:fc:e3:25:84:8d:34:
6b:b1:35:4a:db:91:85:6d:f3:bd:1e:66:3b:dc:1c:
09:98:c9:55:20:56:67:46:93:08:b7:39:a8:80:77:
b7:c0:e3:02:43:ba:cd:a9:23:e6:4e:9c:70:1a:c7:
97:98:69:a9:d8:c9:e7:0c:6b:52:d9:56:4a:0e:d2:
7a:4f:b7:f1:4f:e6:ce:51:76:53:bd:90:3b:84:6f:
00:b7:c0:20:f6:bf:ba:86:e3:ec:dc:0a:52:a0:e8:
01:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:23:22:2D:5D:30:9C:D2:57:41:34:0C:0C:43:CC:55:75:B1:F5:94
X509v3 Authority Key Identifier:
keyid:3D:EB:10:44:63:E9:20:B4:55:42:B6:AF:1A:27:D5:95:0E:86:E9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PesQRGPpILRVQravGifVlQ6G6aA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/PyMiLV0wnNJXQTQMDEPMVXWx9ZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/c686b3-e7a9-4f9c-842c-119d8bf717bb/1/PesQRGPpILRVQravGifVlQ6G6aA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.34.96.0/19
79.170.224.0/21
89.45.0.0/22
93.113.112.0/21
94.139.128.0/19
178.76.76.0-178.76.127.255
185.32.0.0/22
IPv6:
2a00:f900::/32
Signature Algorithm: sha256WithRSAEncryption
ae:f6:11:08:f7:e6:2a:0b:bc:bf:16:4a:d8:0d:c0:3c:ff:c9:
a9:8f:08:da:0d:8d:df:23:fc:e0:83:5e:cb:9a:c6:fc:54:90:
b7:87:6a:22:ab:13:0b:c3:8c:9a:13:7e:11:74:77:35:90:32:
3d:77:66:6b:50:2a:bc:e8:b4:0a:57:d2:88:75:fa:05:39:c9:
3a:54:55:20:98:49:b5:db:0f:82:80:23:14:02:d6:69:0d:e1:
f0:04:02:56:2b:08:65:f3:ed:a7:9d:8a:1c:0f:db:f8:b2:91:
5e:1f:5f:96:c3:e9:b8:74:02:ea:8e:0f:fd:8b:48:c9:39:ce:
08:cf:dc:0d:23:dc:e1:41:e9:64:a3:9a:a1:b7:9a:b6:05:5d:
f7:c7:22:09:27:f1:84:7c:db:f5:ad:dc:54:c1:fd:cb:7f:42:
c4:1b:ee:64:ba:4f:39:8d:3b:c0:69:8e:07:c3:24:26:58:28:
3f:53:ef:34:a3:aa:ad:60:cd:c3:4c:2c:d8:fb:c5:0b:a9:37:
55:27:68:b8:13:42:fd:4c:b1:c9:31:de:7b:7f:18:85:c3:3f:
a5:cc:d3:5b:ce:f7:b4:67:d2:62:ae:64:9f:5a:92:21:c8:6a:
94:f0:71:b8:1c:2c:53:9f:37:93:96:02:93:a2:e3:8b:77:fd:
14:64:34:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:33:24 2025 by rpki-client