Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/EPVn2PQhxOWucfceQJ638KXVHwI.roa
File: EPVn2PQhxOWucfceQJ638KXVHwI.roa (raw, json)
Hash identifier: jFPnqZf1WMx5eBvCvYFa9SJ0yQpfXsd5y0NV9LC8IcU=
Subject key identifier: 10:F5:67:D8:F4:21:C4:E5:AE:71:F7:1E:40:9E:B7:F0:A5:D5:1F:02
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 0194258EB4C5683E2BA52167DAB72FAD77AB
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/EPVn2PQhxOWucfceQJ638KXVHwI.roa
Signing time: Thu 02 Jan 2025 05:48:16 +0000
ROA not before: Thu 02 Jan 2025 05:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209372
IP address blocks: 158.46.148.0/24 maxlen: 24
158.46.149.0/24 maxlen: 24
158.46.160.0/23 maxlen: 23
158.46.162.0/23 maxlen: 23
158.46.162.0/24 maxlen: 24
158.46.176.0/24 maxlen: 24
158.46.177.0/24 maxlen: 24
158.46.181.0/24 maxlen: 24
158.46.188.0/22 maxlen: 24
158.46.192.0/22 maxlen: 22
158.46.196.0/22 maxlen: 24
158.46.200.0/21 maxlen: 24
158.46.205.0/24 maxlen: 24
158.46.207.0/24 maxlen: 24
158.46.250.0/24 maxlen: 24
158.46.251.0/24 maxlen: 24
178.171.0.0/20 maxlen: 24
178.171.20.0/22 maxlen: 24
178.171.32.0/22 maxlen: 22
178.171.36.0/24 maxlen: 24
178.171.37.0/24 maxlen: 24
178.171.48.0/23 maxlen: 24
178.171.50.0/23 maxlen: 24
178.171.60.0/23 maxlen: 24
178.171.62.0/23 maxlen: 24
178.171.69.0/24 maxlen: 24
178.171.70.0/24 maxlen: 24
178.171.84.0/22 maxlen: 24
178.171.86.0/24 maxlen: 24
178.171.88.0/23 maxlen: 23
178.171.94.0/24 maxlen: 24
178.171.100.0/24 maxlen: 24
178.171.101.0/24 maxlen: 24
178.171.102.0/24 maxlen: 24
178.171.104.0/24 maxlen: 24
178.171.106.0/23 maxlen: 23
178.171.110.0/23 maxlen: 24
178.171.119.0/24 maxlen: 24
178.171.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:b4:c5:68:3e:2b:a5:21:67:da:b7:2f:ad:77:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Jan 2 05:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=10f567d8f421c4e5ae71f71e409eb7f0a5d51f02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a1:9e:28:d3:00:cd:64:26:75:c7:3f:f1:4a:
45:14:38:3e:93:65:6a:f0:40:c6:08:c4:8c:22:04:
05:19:de:8c:ca:57:4c:cf:db:9a:be:bb:17:95:af:
a5:12:a8:a7:31:b9:54:99:b1:03:0d:60:f8:2d:64:
b1:df:3b:45:23:b5:67:ec:10:dd:cc:b1:f6:0a:21:
96:70:a9:d2:6d:f6:f9:cd:1c:6d:3d:7d:f4:38:17:
19:85:fd:8f:24:4f:d0:d5:5f:ac:a2:25:ab:2a:1d:
38:bf:f0:27:46:7c:13:40:1b:26:27:9b:08:f3:b0:
6b:98:ba:8d:52:db:03:ed:86:ca:f7:5f:ae:81:35:
cc:aa:93:85:5b:7e:6b:95:01:f8:8b:c0:b7:ae:3f:
14:5d:08:a3:b4:7d:3c:42:0a:7c:f6:96:46:39:8d:
81:7f:71:36:83:65:af:1d:ef:79:f3:da:21:0b:9f:
f2:db:38:6b:26:1d:b8:f4:e5:ca:e6:c0:ef:bb:7d:
9f:dd:e2:8a:21:a8:88:67:fa:66:69:ac:09:85:0f:
16:d2:a6:a2:d4:c0:e8:b5:72:72:06:87:61:52:4a:
c3:eb:7d:03:4a:5b:2a:d2:90:c7:24:3c:3d:ea:28:
10:36:fd:25:41:0f:6d:92:ef:63:4d:0a:37:0f:2c:
06:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F5:67:D8:F4:21:C4:E5:AE:71:F7:1E:40:9E:B7:F0:A5:D5:1F:02
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/EPVn2PQhxOWucfceQJ638KXVHwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.46.148.0/23
158.46.160.0/22
158.46.176.0/23
158.46.181.0/24
158.46.188.0-158.46.207.255
158.46.250.0/23
178.171.0.0/20
178.171.20.0/22
178.171.32.0-178.171.37.255
178.171.48.0/22
178.171.60.0/22
178.171.69.0-178.171.70.255
178.171.84.0-178.171.89.255
178.171.94.0/24
178.171.100.0-178.171.102.255
178.171.104.0/24
178.171.106.0/23
178.171.110.0/23
178.171.119.0/24
178.171.123.0/24
Signature Algorithm: sha256WithRSAEncryption
82:33:07:2a:83:06:56:00:65:dc:17:b8:38:2c:9f:57:0d:58:
06:5a:09:5e:ad:f3:a4:fc:1a:2f:72:db:06:7f:92:4d:6e:03:
e6:7e:30:6a:5f:77:ec:d1:71:6c:64:c8:58:a4:73:b5:ff:8c:
86:27:92:56:1e:6f:94:1a:59:1b:d1:c5:40:67:8a:e0:a4:6a:
76:58:5c:7e:72:07:d4:33:41:fa:78:ac:15:d0:1d:fb:ba:2c:
72:14:ed:6e:a0:c7:7b:2e:78:30:3c:30:47:d8:ca:3f:6e:27:
cf:e0:61:a7:24:53:12:a4:d5:a7:6e:36:90:1b:59:82:69:8b:
01:a8:6d:26:c0:4e:54:64:62:16:e1:f3:89:17:85:2e:ee:04:
90:1b:99:01:76:f4:b2:fb:e9:89:c5:1a:48:79:51:21:46:ec:
a6:fe:96:1a:49:dd:1c:e4:bf:ba:d3:0c:9c:6a:63:c8:f3:ac:
93:e3:d2:ca:0d:51:40:0a:9b:7d:67:d2:15:ed:58:36:30:eb:
3d:5e:92:db:23:16:21:ac:da:7d:0d:91:ce:c2:32:74:a5:05:
54:a0:c3:a8:11:bf:a7:32:0d:98:f0:5d:c9:00:13:53:93:9f:
f6:04:41:5e:ee:ad:ef:d0:e6:f4:0d:9f:67:fe:ba:a9:77:2e:
2e:40:69:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:17:52 2025 by rpki-client