Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/6bb5b1-1e6a-4455-9d75-e64c885f62ce/1/oW7xXBoOfOplj3IQ3tHAFq1-5Ro.roa
File: oW7xXBoOfOplj3IQ3tHAFq1-5Ro.roa (raw, json)
Hash identifier: FvAVYSvPEbqL+jm0fRgeU20CKG+6Yq/KWe4x3D/uqak=
Subject key identifier: A1:6E:F1:5C:1A:0E:7C:EA:65:8F:72:10:DE:D1:C0:16:AD:7E:E5:1A
Certificate issuer: /CN=9f96ae2770265af32e7d4be86bab07a07c2d3353
Certificate serial: 019420D5ADCB38F4FC6354CB906EAC8EE0D7
Authority key identifier: 9F:96:AE:27:70:26:5A:F3:2E:7D:4B:E8:6B:AB:07:A0:7C:2D:33:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n5auJ3AmWvMufUvoa6sHoHwtM1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/6bb5b1-1e6a-4455-9d75-e64c885f62ce/1/oW7xXBoOfOplj3IQ3tHAFq1-5Ro.roa
Signing time: Wed 01 Jan 2025 07:47:42 +0000
ROA not before: Wed 01 Jan 2025 07:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21413
IP address blocks: 31.187.67.0/24 maxlen: 24
31.187.77.0/24 maxlen: 24
31.187.79.0/24 maxlen: 24
37.247.64.0/19 maxlen: 24
46.227.216.0/21 maxlen: 24
77.235.160.0/19 maxlen: 24
80.243.32.0/19 maxlen: 24
83.221.224.0/19 maxlen: 24
85.190.176.0/21 maxlen: 24
87.121.192.0/20 maxlen: 24
87.121.224.0/20 maxlen: 24
89.187.200.0/21 maxlen: 24
93.159.96.0/19 maxlen: 24
94.100.64.0/20 maxlen: 24
176.126.88.0/22 maxlen: 22
185.90.128.0/22 maxlen: 24
185.175.209.0/24 maxlen: 24
193.98.112.0/21 maxlen: 21
212.99.192.0/19 maxlen: 24
2a00:1ca0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:ad:cb:38:f4:fc:63:54:cb:90:6e:ac:8e:e0:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f96ae2770265af32e7d4be86bab07a07c2d3353
Validity
Not Before: Jan 1 07:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a16ef15c1a0e7cea658f7210ded1c016ad7ee51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:56:f4:9f:2b:c5:24:55:a3:04:27:71:d9:6a:
cf:81:ad:bf:5b:7c:15:e2:ee:39:a9:fd:58:2d:fe:
c9:d0:ed:54:64:59:0c:5c:6d:82:cd:cc:7d:37:a3:
d4:b4:8b:5a:19:f4:c8:2f:9a:6d:18:f8:c2:00:cf:
fa:3d:ec:90:9f:7b:90:48:e7:8d:91:14:02:1f:7d:
20:70:c7:d8:93:da:1f:b4:eb:03:d5:ad:ae:b5:51:
66:11:3c:66:01:fd:6f:ec:d4:c6:57:6b:24:3c:78:
d4:cc:4a:39:b6:c4:54:c1:08:f1:29:3f:a1:fc:31:
2c:45:9e:d4:45:41:5e:9c:95:4c:44:96:5e:6f:19:
8d:f1:18:44:99:17:ba:6c:8c:51:55:a3:ba:c4:27:
cc:98:57:87:f2:33:c6:39:f7:19:7a:fd:b0:19:75:
8e:ff:d3:0d:a1:75:e8:b0:3b:e8:38:a6:f1:a8:f8:
18:1f:09:a6:7d:af:99:bb:03:b1:47:91:a1:e7:aa:
6a:2a:7f:a2:6c:6f:c9:e2:e5:3f:f7:7e:9e:90:a3:
e4:b7:ca:20:43:5b:15:f8:e5:76:5f:39:50:15:36:
45:78:a4:01:38:54:e6:ed:e5:4c:5f:6d:77:42:68:
88:5e:74:f2:f9:ec:0c:fb:aa:78:07:46:16:5d:e6:
b7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6E:F1:5C:1A:0E:7C:EA:65:8F:72:10:DE:D1:C0:16:AD:7E:E5:1A
X509v3 Authority Key Identifier:
keyid:9F:96:AE:27:70:26:5A:F3:2E:7D:4B:E8:6B:AB:07:A0:7C:2D:33:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n5auJ3AmWvMufUvoa6sHoHwtM1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/6bb5b1-1e6a-4455-9d75-e64c885f62ce/1/oW7xXBoOfOplj3IQ3tHAFq1-5Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/6bb5b1-1e6a-4455-9d75-e64c885f62ce/1/n5auJ3AmWvMufUvoa6sHoHwtM1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.187.67.0/24
31.187.77.0/24
31.187.79.0/24
37.247.64.0/19
46.227.216.0/21
77.235.160.0/19
80.243.32.0/19
83.221.224.0/19
85.190.176.0/21
87.121.192.0/20
87.121.224.0/20
89.187.200.0/21
93.159.96.0/19
94.100.64.0/20
176.126.88.0/22
185.90.128.0/22
185.175.209.0/24
193.98.112.0/21
212.99.192.0/19
IPv6:
2a00:1ca0::/32
Signature Algorithm: sha256WithRSAEncryption
89:41:3f:da:54:38:54:bc:22:27:02:4c:8e:a2:a5:74:d5:5d:
ad:b6:01:16:17:fc:0b:75:e7:d3:04:6a:f8:e6:0a:4b:43:5c:
6a:4b:9b:22:84:14:03:a4:ee:a2:28:29:37:00:a9:85:7b:4f:
b8:2c:da:b6:78:70:20:ad:54:c4:29:67:6e:46:b2:97:cd:0b:
40:e1:dc:c2:9b:b7:cd:f3:eb:88:12:86:1d:2e:4f:18:87:af:
f1:a5:20:93:44:96:9d:61:af:3d:d0:1b:ef:07:0c:ce:02:e4:
f6:88:d5:db:dd:37:40:10:b7:8d:fc:37:81:8a:f1:e0:82:5d:
f1:62:55:5c:a9:10:61:34:00:29:2a:9f:f3:b9:91:7c:cb:17:
bf:53:1a:70:1e:2a:5b:be:94:5e:87:4c:f4:82:66:ed:6f:70:
33:5e:fa:57:08:6f:c9:fc:eb:29:44:ef:6c:b6:e6:c9:1d:5f:
61:69:ad:83:bb:a4:8f:76:1b:01:cc:72:68:ce:f9:57:c2:8f:
e8:d0:5c:88:3e:6c:6c:a9:da:6b:e9:c1:8a:fd:1f:22:8e:ac:
f2:25:e3:78:81:97:57:61:51:b6:cb:13:29:c4:05:56:dd:0f:
f8:7f:8d:9b:f4:98:02:e0:9f:b5:58:b6:a5:ac:f0:5b:b1:fc:
a9:94:00:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:01:46 2025 by rpki-client