Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/BtPYtcz-P13eLfIl5S_nsWFCZcA.roa
File: BtPYtcz-P13eLfIl5S_nsWFCZcA.roa (raw, json)
Hash identifier: AdPKPf1Ykq5fdfCWoieMMbPOpxIJgz/ZCBQ0i5sRkO8=
Subject key identifier: 06:D3:D8:B5:CC:FE:3F:5D:DE:2D:F2:25:E5:2F:E7:B1:61:42:65:C0
Certificate issuer: /CN=f48b3f0c6a87c045bdcffabd900db8892be702e1
Certificate serial: 019460158B174634C7D9ED95B95CF8F74A62
Authority key identifier: F4:8B:3F:0C:6A:87:C0:45:BD:CF:FA:BD:90:0D:B8:89:2B:E7:02:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Is_DGqHwEW9z_q9kA24iSvnAuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/BtPYtcz-P13eLfIl5S_nsWFCZcA.roa
Signing time: Mon 13 Jan 2025 14:33:31 +0000
ROA not before: Mon 13 Jan 2025 14:33:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5539
IP address blocks: 82.118.32.0/19 maxlen: 19
185.54.120.0/22 maxlen: 22
185.54.188.0/22 maxlen: 22
193.149.32.0/19 maxlen: 19
194.97.64.0/19 maxlen: 19
194.97.128.0/19 maxlen: 19
195.24.96.0/19 maxlen: 19
195.30.0.0/16 maxlen: 16
195.30.50.0/24 maxlen: 24
2001:608::/32 maxlen: 32
2001:608:a04::/48 maxlen: 48
2001:67c:158c::/48 maxlen: 48
2001:4150::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:60:15:8b:17:46:34:c7:d9:ed:95:b9:5c:f8:f7:4a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f48b3f0c6a87c045bdcffabd900db8892be702e1
Validity
Not Before: Jan 13 14:33:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=06d3d8b5ccfe3f5dde2df225e52fe7b1614265c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2a:4a:88:b3:0c:ad:83:fa:58:09:27:65:95:
5d:11:5d:af:be:b1:8d:ea:51:c3:18:43:4e:a8:89:
4e:6f:7d:a5:7b:ef:de:23:11:79:ed:41:60:3f:23:
07:d7:35:17:fa:11:d9:12:98:57:0d:bc:ef:27:2f:
e7:01:9d:86:38:9b:66:79:50:13:af:84:93:f5:2d:
de:16:c9:73:8b:64:14:38:a2:5c:5e:2d:44:63:4b:
2e:07:13:15:54:bb:90:d4:44:f3:fa:b1:a0:bc:f7:
87:5f:b8:85:73:b9:cc:8d:17:d6:25:f6:db:c7:3d:
5f:a4:1b:13:f9:f3:46:e3:09:05:13:08:6a:b3:a5:
9f:b0:ac:af:b6:b6:64:17:46:89:5e:ed:72:5a:8f:
d4:7a:5f:1a:99:bd:c5:f1:16:2c:d7:81:b1:da:e0:
7d:aa:30:cc:68:75:79:3a:12:33:0c:e9:5a:6f:4d:
14:ac:ea:75:a0:ac:83:9a:4b:0b:db:ae:66:ec:f1:
0d:51:92:31:a3:93:2f:e6:23:71:85:e7:50:34:38:
9f:bb:83:26:eb:46:ae:cd:56:72:2f:77:ab:d8:e4:
d6:56:f7:b1:7a:3b:8c:b2:1a:24:94:8d:f9:7a:e3:
22:68:47:28:2d:6f:14:6c:8a:f9:90:64:c5:53:d6:
85:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D3:D8:B5:CC:FE:3F:5D:DE:2D:F2:25:E5:2F:E7:B1:61:42:65:C0
X509v3 Authority Key Identifier:
keyid:F4:8B:3F:0C:6A:87:C0:45:BD:CF:FA:BD:90:0D:B8:89:2B:E7:02:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Is_DGqHwEW9z_q9kA24iSvnAuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/BtPYtcz-P13eLfIl5S_nsWFCZcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/9Is_DGqHwEW9z_q9kA24iSvnAuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.32.0/19
185.54.120.0/22
185.54.188.0/22
193.149.32.0/19
194.97.64.0/19
194.97.128.0/19
195.24.96.0/19
195.30.0.0/16
IPv6:
2001:608::/32
2001:67c:158c::/48
2001:4150::/32
Signature Algorithm: sha256WithRSAEncryption
31:c6:8f:ec:42:a2:35:cb:87:c2:73:fd:1d:de:cb:57:e3:55:
fe:e4:02:be:ad:e3:91:9d:1c:54:90:ff:46:22:cd:a3:f7:ba:
43:5f:4e:86:f0:80:d4:03:d7:4e:84:f5:f9:e1:95:fa:5b:5e:
70:73:29:73:27:21:04:b6:56:b0:8a:a6:98:9f:a1:d1:58:d9:
5f:b5:5b:2d:bd:73:19:0c:2a:f9:f0:02:2d:60:c0:bb:6c:35:
43:f0:56:09:98:8b:a0:34:a6:6e:53:6f:d2:2a:fb:c2:ec:37:
65:d1:6d:47:3e:d3:04:13:f0:a5:38:10:12:b7:25:0a:46:b2:
d7:50:78:c7:71:49:02:43:2f:24:88:71:99:a2:c1:e0:b7:bc:
85:5f:ca:fc:d0:ab:97:4c:87:e1:44:4a:6c:ed:4d:ff:61:04:
67:25:2a:dd:2c:38:0a:c6:cf:83:2d:e0:0e:c9:0c:e8:be:01:
1c:9c:77:64:c6:34:f2:87:1a:25:20:68:8c:a9:9f:04:39:c3:
fe:09:c0:db:7b:e8:20:91:30:cf:a9:d5:53:f5:a1:de:62:28:
1d:45:5d:0a:46:7f:52:98:42:a7:d0:92:37:51:86:a7:43:21:
93:00:b5:54:85:31:8b:00:0b:0f:1e:0d:0f:b5:36:8d:dd:76:
45:5a:89:52
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAZRgFYsXRjTH2e2VuVz490piMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0OGIzZjBjNmE4N2MwNDViZGNmZmFiZDkwMGRiODg5MmJl
NzAyZTEwHhcNMjUwMTEzMTQzMzMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNmQzZDhiNWNjZmUzZjVkZGUyZGYyMjVlNTJmZTdiMTYxNDI2NWMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoSpKiLMMrYP6WAknZZVdEV2vvrGN
6lHDGENOqIlOb32le+/eIxF57UFgPyMH1zUX+hHZEphXDbzvJy/nAZ2GOJtmeVAT
r4ST9S3eFslzi2QUOKJcXi1EY0suBxMVVLuQ1ETz+rGgvPeHX7iFc7nMjRfWJfbb
xz1fpBsT+fNG4wkFEwhqs6WfsKyvtrZkF0aJXu1yWo/Uel8amb3F8RYs14Gx2uB9
qjDMaHV5OhIzDOlab00UrOp1oKyDmksL265m7PENUZIxo5Mv5iNxhedQNDifu4Mm
60auzVZyL3er2OTWVvexejuMshoklI35euMiaEcoLW8UbIr5kGTFU9aFrQIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFAbT2LXM/j9d3i3yJeUv57FhQmXAMB8GA1UdIwQY
MBaAFPSLPwxqh8BFvc/6vZANuIkr5wLhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUlzX0RHcUh3RVc5el9xOWtBMjRpU3ZuQXVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8yZTI3NDctYWQ3NC00ZDMxLTkyNTYt
ZDM1ZWRiOWZkZDIxLzEvQnRQWXRjei1QMTNlTGZJbDVTX25zV0ZDWmNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8yZTI3NDctYWQ3NC00ZDMxLTkyNTYtZDM1ZWRiOWZkZDIx
LzEvOUlzX0RHcUh3RVc5el9xOWtBMjRpU3ZuQXVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjA1BAIAATAvAwQFUnYgAwQC
uTZ4AwQCuTa8AwQFwZUgAwQFwmFAAwQFwmGAAwQFwxhgAwMAwx4wHQQCAAIwFwMF
ACABBggDBwAgAQZ8FYwDBQAgAUFQMA0GCSqGSIb3DQEBCwUAA4IBAQAxxo/sQqI1
y4fCc/0d3stX41X+5AK+reORnRxUkP9GIs2j97pDX06G8IDUA9dOhPX54ZX6W15w
cylzJyEEtlawiqaYn6HRWNlftVstvXMZDCr58AItYMC7bDVD8FYJmIugNKZuU2/S
KvvC7Ddl0W1HPtMEE/ClOBAStyUKRrLXUHjHcUkCQy8kiHGZosHgt7yFX8r80KuX
TIfhREps7U3/YQRnJSrdLDgKxs+DLeAOyQzovgEcnHdkxjTyhxolIGiMqZ8EOcP+
CcDbe+ggkTDPqdVT9aHeYigdRV0KRn9SmEKn0JI3UYanQyGTALVUhTGLAAsPHg0P
tTaN3XZFWolS
-----END CERTIFICATE-----
Generated at Fri Apr 25 08:59:09 2025 by rpki-client