Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/oMLAPnf-8o6hPlUDMAC7aaxCwKI.roa
File: oMLAPnf-8o6hPlUDMAC7aaxCwKI.roa (raw, json)
Hash identifier: 7+vt6cIV4PMTQBVRV5C6CHoorgZOKgPkkF0RsTwszng=
Subject key identifier: A0:C2:C0:3E:77:FE:F2:8E:A1:3E:55:03:30:00:BB:69:AC:42:C0:A2
Certificate issuer: /CN=37ed49efac9795987771acdc77a0e228904277ad
Certificate serial: 0194258F58DBBC4FC32DD4972EC52785DD91
Authority key identifier: 37:ED:49:EF:AC:97:95:98:77:71:AC:DC:77:A0:E2:28:90:42:77:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N-1J76yXlZh3cazcd6DiKJBCd60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/oMLAPnf-8o6hPlUDMAC7aaxCwKI.roa
Signing time: Thu 02 Jan 2025 05:48:58 +0000
ROA not before: Thu 02 Jan 2025 05:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62240
IP address blocks: 81.22.193.0/24 maxlen: 24
89.221.203.0/24 maxlen: 24
89.221.204.0/24 maxlen: 24
89.221.206.0/24 maxlen: 24
92.61.64.0/24 maxlen: 24
92.61.65.0/24 maxlen: 24
92.61.70.0/24 maxlen: 24
92.61.71.0/24 maxlen: 24
109.172.8.0/24 maxlen: 24
109.172.9.0/24 maxlen: 24
109.172.16.0/24 maxlen: 24
109.172.17.0/24 maxlen: 24
109.172.18.0/24 maxlen: 24
109.172.19.0/24 maxlen: 24
109.172.20.0/24 maxlen: 24
109.172.21.0/24 maxlen: 24
109.172.22.0/24 maxlen: 24
109.172.23.0/24 maxlen: 24
109.172.30.0/24 maxlen: 24
109.172.31.0/24 maxlen: 24
109.172.36.0/24 maxlen: 24
109.172.37.0/24 maxlen: 24
109.172.38.0/24 maxlen: 24
109.172.39.0/24 maxlen: 24
109.172.54.0/24 maxlen: 24
109.172.55.0/24 maxlen: 24
109.172.78.0/24 maxlen: 24
109.172.79.0/24 maxlen: 24
109.172.96.0/24 maxlen: 24
109.172.97.0/24 maxlen: 24
109.172.98.0/24 maxlen: 24
109.172.99.0/24 maxlen: 24
109.172.100.0/24 maxlen: 24
109.172.101.0/24 maxlen: 24
109.172.116.0/24 maxlen: 24
109.172.117.0/24 maxlen: 24
109.172.120.0/24 maxlen: 24
109.172.121.0/24 maxlen: 24
109.172.122.0/24 maxlen: 24
109.172.123.0/24 maxlen: 24
109.172.124.0/24 maxlen: 24
109.172.125.0/24 maxlen: 24
109.172.126.0/24 maxlen: 24
109.172.127.0/24 maxlen: 24
178.130.16.0/24 maxlen: 24
178.130.17.0/24 maxlen: 24
178.130.18.0/24 maxlen: 24
178.130.19.0/24 maxlen: 24
178.130.20.0/24 maxlen: 24
178.130.21.0/24 maxlen: 24
178.130.22.0/24 maxlen: 24
178.130.23.0/24 maxlen: 24
178.130.46.0/24 maxlen: 24
178.130.47.0/24 maxlen: 24
178.130.48.0/24 maxlen: 24
178.130.49.0/24 maxlen: 24
178.130.50.0/24 maxlen: 24
178.130.51.0/24 maxlen: 24
178.130.52.0/24 maxlen: 24
178.130.53.0/24 maxlen: 24
178.130.54.0/24 maxlen: 24
178.130.55.0/24 maxlen: 24
178.130.56.0/24 maxlen: 24
178.130.57.0/24 maxlen: 24
178.130.58.0/24 maxlen: 24
178.130.59.0/24 maxlen: 24
178.130.60.0/24 maxlen: 24
178.130.61.0/24 maxlen: 24
178.130.62.0/24 maxlen: 24
178.130.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:58:db:bc:4f:c3:2d:d4:97:2e:c5:27:85:dd:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ed49efac9795987771acdc77a0e228904277ad
Validity
Not Before: Jan 2 05:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a0c2c03e77fef28ea13e55033000bb69ac42c0a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c6:23:e5:84:b4:d3:4e:51:98:5f:d6:5a:63:
c1:56:d1:cb:5b:12:50:36:23:47:1c:67:58:e4:1e:
db:39:bc:f7:b4:b2:71:1a:0a:1c:33:d4:ae:ac:00:
32:30:b7:8a:75:ad:90:a0:37:11:91:dc:2c:5c:f1:
36:6f:c5:3e:a1:34:c8:56:be:f5:3c:e8:63:1f:fd:
f9:e4:05:8b:8f:72:2b:bc:f8:3d:db:93:4e:41:b0:
c5:5a:31:57:52:9a:ff:a3:30:99:6f:f0:30:c1:5d:
3a:d5:ef:ee:8a:47:68:27:0c:96:d1:c4:4e:56:bc:
93:14:e2:a3:26:b1:23:85:74:d9:b4:df:15:c7:75:
86:39:ad:3b:15:4b:38:e7:1f:cf:b9:b6:1f:57:0c:
4d:3a:4d:68:3d:1a:70:1e:22:80:04:76:95:a5:21:
4d:61:8f:29:ec:61:b1:73:00:9c:0c:80:77:2c:27:
38:33:ef:f7:2b:79:75:f3:4b:bf:c5:12:56:46:fb:
f9:14:89:bf:f8:ce:c0:3e:87:e7:6f:8b:31:c2:e9:
fa:48:c6:85:f2:a9:a6:c3:c2:fe:e2:0d:f5:88:eb:
df:83:9a:cf:2b:aa:60:f6:21:3e:e0:88:ee:e9:8f:
01:14:97:d9:3a:26:ba:5c:c2:62:7a:7a:bd:a7:a9:
b4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C2:C0:3E:77:FE:F2:8E:A1:3E:55:03:30:00:BB:69:AC:42:C0:A2
X509v3 Authority Key Identifier:
keyid:37:ED:49:EF:AC:97:95:98:77:71:AC:DC:77:A0:E2:28:90:42:77:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N-1J76yXlZh3cazcd6DiKJBCd60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/oMLAPnf-8o6hPlUDMAC7aaxCwKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/N-1J76yXlZh3cazcd6DiKJBCd60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.193.0/24
89.221.203.0-89.221.204.255
89.221.206.0/24
92.61.64.0/23
92.61.70.0/23
109.172.8.0/23
109.172.16.0/21
109.172.30.0/23
109.172.36.0/22
109.172.54.0/23
109.172.78.0/23
109.172.96.0-109.172.101.255
109.172.116.0/23
109.172.120.0/21
178.130.16.0/21
178.130.46.0-178.130.63.255
Signature Algorithm: sha256WithRSAEncryption
94:84:c4:4d:8b:89:e8:97:8a:71:7c:70:bd:97:c9:de:0e:c7:
3f:cd:69:c5:09:63:70:66:67:7f:c4:25:04:f8:e3:72:99:e5:
cd:93:a9:08:7b:b9:b4:9d:ef:d1:1d:d9:ab:76:6f:58:0b:d8:
c2:b1:10:a3:05:44:bb:c8:a5:63:90:d4:b2:f7:a0:dd:c5:67:
a0:8d:45:e3:0c:81:a9:fa:23:8f:81:b5:d0:d5:6e:ad:8e:5a:
ae:b3:da:6f:ea:76:12:53:13:15:c7:c1:06:71:b2:b6:40:d4:
34:8e:6f:82:f8:d9:95:d8:4e:d8:fd:7b:3f:5d:9c:27:96:e7:
2b:59:18:ce:60:ce:78:c1:59:a9:ed:38:38:b1:94:d2:c1:47:
c3:23:36:48:9b:53:81:63:5e:13:47:42:8e:7b:45:00:8e:3f:
d4:b6:01:11:1f:1f:d1:10:67:21:ba:9f:dd:fe:a0:c1:b0:f1:
90:61:bf:f1:a1:61:c7:a8:a7:50:92:75:f8:a7:27:8d:f7:62:
52:76:0f:f0:f4:ff:ea:c1:a9:ba:7b:39:45:d8:06:b8:9a:61:
0e:38:f5:e2:c6:36:83:f7:8d:71:1a:a4:b0:b7:b7:6a:f5:c2:
a9:b4:17:c7:8b:56:57:cb:e9:fc:21:c8:6a:97:8b:4f:c1:6a:
00:1d:0f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:16:50 2025 by rpki-client