Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/2frFJKy2B98shnj3X1EQ12xwW-Y.roa
File: 2frFJKy2B98shnj3X1EQ12xwW-Y.roa (raw, json)
Hash identifier: 0F5dPNYVy1tZEP7++57j0UW+ShuxTmo4HNHQX5FZtQw=
Subject key identifier: D9:FA:C5:24:AC:B6:07:DF:2C:86:78:F7:5F:51:10:D7:6C:70:5B:E6
Certificate issuer: /CN=9d066cb8488dae7e4234aa7c892430dad11fe5b1
Certificate serial: 0194228D2E19B2065A2611A3965B62057F1C
Authority key identifier: 9D:06:6C:B8:48:8D:AE:7E:42:34:AA:7C:89:24:30:DA:D1:1F:E5:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQZsuEiNrn5CNKp8iSQw2tEf5bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/2frFJKy2B98shnj3X1EQ12xwW-Y.roa
Signing time: Wed 01 Jan 2025 15:47:45 +0000
ROA not before: Wed 01 Jan 2025 15:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20676
IP address blocks: 62.8.128.0/17 maxlen: 17
62.8.168.0/21 maxlen: 21
62.8.176.0/20 maxlen: 20
62.145.0.0/19 maxlen: 19
62.206.0.0/16 maxlen: 16
62.206.164.0/24 maxlen: 24
62.206.165.0/24 maxlen: 24
62.206.166.0/24 maxlen: 24
83.236.0.0/16 maxlen: 16
83.236.0.0/20 maxlen: 20
83.236.16.0/20 maxlen: 20
83.236.32.0/21 maxlen: 21
84.245.128.0/18 maxlen: 18
85.8.132.0/22 maxlen: 22
87.193.0.0/16 maxlen: 16
87.234.0.0/16 maxlen: 16
92.192.0.0/13 maxlen: 13
92.192.0.0/17 maxlen: 17
92.192.128.0/17 maxlen: 17
92.193.0.0/17 maxlen: 17
92.193.128.0/17 maxlen: 17
92.194.0.0/17 maxlen: 17
92.194.128.0/17 maxlen: 17
92.195.0.0/17 maxlen: 17
92.195.128.0/17 maxlen: 17
92.196.0.0/17 maxlen: 17
92.196.128.0/17 maxlen: 17
92.197.130.0/24 maxlen: 24
92.198.192.0/18 maxlen: 18
92.200.0.0/16 maxlen: 16
92.200.0.0/17 maxlen: 17
92.200.128.0/17 maxlen: 17
185.144.188.0/22 maxlen: 22
194.9.127.0/24 maxlen: 24
194.140.96.0/20 maxlen: 20
195.32.128.0/17 maxlen: 17
195.80.192.0/19 maxlen: 19
195.90.0.0/19 maxlen: 19
195.90.8.0/21 maxlen: 21
195.158.160.0/19 maxlen: 19
212.4.160.0/19 maxlen: 19
212.4.176.0/20 maxlen: 20
212.5.0.0/19 maxlen: 19
212.5.8.0/21 maxlen: 21
212.5.16.0/20 maxlen: 20
212.60.192.0/18 maxlen: 18
212.63.32.0/19 maxlen: 19
212.84.208.0/20 maxlen: 20
212.84.224.0/19 maxlen: 19
212.105.192.0/19 maxlen: 19
212.110.192.0/19 maxlen: 19
212.202.0.0/16 maxlen: 16
212.202.0.0/19 maxlen: 19
212.202.40.0/21 maxlen: 21
212.202.48.0/20 maxlen: 20
212.202.168.0/21 maxlen: 21
212.202.176.0/20 maxlen: 20
213.148.128.0/19 maxlen: 19
213.148.128.0/24 maxlen: 24
213.148.129.0/24 maxlen: 24
213.148.130.0/24 maxlen: 24
213.148.133.0/24 maxlen: 24
213.160.0.0/19 maxlen: 19
213.160.0.0/24 maxlen: 24
213.217.64.0/18 maxlen: 18
217.146.128.0/19 maxlen: 19
2001:658::/29 maxlen: 29
2001:1a80::/29 maxlen: 29
2001:1a80:800::/48 maxlen: 48
2001:1a80:801::/48 maxlen: 48
2001:1a80:802::/48 maxlen: 48
2001:1a81:1000::/36 maxlen: 40
2001:1a81:1000::/40 maxlen: 48
2001:1a81:2000::/36 maxlen: 40
2001:1a81:2000::/40 maxlen: 48
2001:1a81:3000::/36 maxlen: 40
2001:1a81:3000::/40 maxlen: 48
2001:1a81:4000::/36 maxlen: 40
2001:1a81:4000::/40 maxlen: 48
2001:1a81:5000::/36 maxlen: 40
2001:1a81:5000::/40 maxlen: 48
2001:1a81:6000::/36 maxlen: 40
2001:1a81:6000::/40 maxlen: 48
2001:1a81:7000::/36 maxlen: 40
2001:1a81:7000::/40 maxlen: 48
2a09:7100::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:2e:19:b2:06:5a:26:11:a3:96:5b:62:05:7f:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d066cb8488dae7e4234aa7c892430dad11fe5b1
Validity
Not Before: Jan 1 15:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d9fac524acb607df2c8678f75f5110d76c705be6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:62:cb:28:aa:97:69:51:23:3d:fc:79:59:f1:
d1:2a:09:ec:8e:14:6e:6b:f5:65:5b:2e:d9:c1:61:
78:e0:87:fa:87:58:fa:8f:4c:30:00:ca:fd:3d:7a:
77:2d:40:44:a2:e6:07:9a:dc:fe:1f:22:5d:0c:be:
7d:16:12:da:44:30:c6:67:66:27:14:cb:8a:7d:db:
a9:6b:14:49:f1:79:55:41:24:bc:ac:a0:87:8b:ee:
de:f6:e1:b2:87:bd:04:0d:90:c3:2d:28:13:6b:ec:
1f:94:d5:11:4d:cd:8e:47:c6:4d:4c:d0:bd:7c:dc:
07:00:6d:58:b6:e3:a8:21:e9:4f:88:e5:2b:0b:ca:
ab:2b:4c:68:33:58:a8:30:fa:df:0d:3d:85:36:b9:
c6:2c:3a:9b:e6:50:36:46:56:b0:fd:e9:24:db:84:
01:b1:a6:2f:2e:c2:8d:58:2d:88:b2:76:f9:b3:30:
a6:b3:b9:64:a3:06:c8:54:bf:5f:11:4b:d8:8f:a7:
d4:5a:f4:38:e9:bc:da:70:ab:80:12:e0:8e:f0:e6:
bf:fc:88:0f:cc:27:19:01:2e:15:34:b8:53:40:63:
bd:be:78:b9:cf:eb:58:71:b5:08:6a:41:94:2f:5e:
09:ec:0e:52:84:95:2c:2e:f5:1a:e5:b8:5d:9d:dd:
da:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:FA:C5:24:AC:B6:07:DF:2C:86:78:F7:5F:51:10:D7:6C:70:5B:E6
X509v3 Authority Key Identifier:
keyid:9D:06:6C:B8:48:8D:AE:7E:42:34:AA:7C:89:24:30:DA:D1:1F:E5:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQZsuEiNrn5CNKp8iSQw2tEf5bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/2frFJKy2B98shnj3X1EQ12xwW-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/nQZsuEiNrn5CNKp8iSQw2tEf5bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.8.128.0/17
62.145.0.0/19
62.206.0.0/16
83.236.0.0/16
84.245.128.0/18
85.8.132.0/22
87.193.0.0/16
87.234.0.0/16
92.192.0.0-92.200.255.255
185.144.188.0/22
194.9.127.0/24
194.140.96.0/20
195.32.128.0/17
195.80.192.0/19
195.90.0.0/19
195.158.160.0/19
212.4.160.0/19
212.5.0.0/19
212.60.192.0/18
212.63.32.0/19
212.84.208.0-212.84.255.255
212.105.192.0/19
212.110.192.0/19
212.202.0.0/16
213.148.128.0/19
213.160.0.0/19
213.217.64.0/18
217.146.128.0/19
IPv6:
2001:658::/29
2001:1a80::/29
2a09:7100::/29
Signature Algorithm: sha256WithRSAEncryption
19:b9:2a:2d:07:5f:21:87:c5:5f:53:e5:75:bc:cc:2e:8b:0b:
18:93:ee:89:67:fd:80:69:75:a1:f9:cf:7a:2d:4e:9a:f4:bf:
3c:66:1f:86:c3:a2:a0:33:fc:d9:1d:b8:8a:82:2d:bd:1c:5f:
6f:ef:4a:cc:53:35:88:6f:5f:87:4b:0f:76:9f:ce:05:e8:98:
81:69:85:c7:c1:c2:68:78:48:98:7b:c9:f2:02:85:82:4e:4b:
89:15:7c:13:b2:c0:7e:f2:91:d8:43:a2:45:13:89:2f:93:5d:
00:a7:e6:49:a3:f1:87:45:e7:39:b7:0c:3e:ae:f6:2b:03:e3:
1d:29:13:48:09:d5:cc:5c:1b:5e:03:71:d9:d7:ca:aa:10:ad:
82:e3:b3:cb:55:ac:56:50:24:71:ac:b9:85:8f:78:9e:8a:9e:
c6:c4:04:35:36:8c:ae:9d:4f:14:5c:35:93:fc:3e:d6:ad:fd:
1f:22:5d:ac:d2:dc:de:22:d7:ba:00:78:f8:63:48:b0:cc:bc:
9e:8a:99:a6:a4:03:c8:fa:1c:c8:44:3b:6d:58:3a:ed:44:95:
88:a1:7a:17:33:35:60:da:6f:10:e3:3a:fb:7b:c4:57:2e:db:
fd:0e:23:46:21:12:5d:7e:75:36:7e:79:cc:3f:44:01:a1:be:
e3:5a:39:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:11:38 2025 by rpki-client