Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/m61Skl38qNd_z8iy_icAt6gZ-a0.roa
File: m61Skl38qNd_z8iy_icAt6gZ-a0.roa (raw, json)
Hash identifier: agPnne36nNKEttk3MarLpGi1Y49vXcfn+4zgZdtH3ck=
Subject key identifier: 9B:AD:52:92:5D:FC:A8:D7:7F:CF:C8:B2:FE:27:00:B7:A8:19:F9:AD
Certificate issuer: /CN=f256a9edb2d9ade204d82313cce98b6623a9d8ac
Certificate serial: 0194214456B1479F50C808AC12C3270FE555
Authority key identifier: F2:56:A9:ED:B2:D9:AD:E2:04:D8:23:13:CC:E9:8B:66:23:A9:D8:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lap7bLZreIE2CMTzOmLZiOp2Kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/m61Skl38qNd_z8iy_icAt6gZ-a0.roa
Signing time: Wed 01 Jan 2025 09:48:34 +0000
ROA not before: Wed 01 Jan 2025 09:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61053
IP address blocks: 91.211.244.0/22 maxlen: 22
91.225.104.0/22 maxlen: 22
93.115.11.0/24 maxlen: 24
94.176.188.0/24 maxlen: 24
94.176.189.0/24 maxlen: 24
185.34.52.0/22 maxlen: 22
185.80.128.0/22 maxlen: 22
185.111.180.0/24 maxlen: 24
185.111.181.0/24 maxlen: 24
185.111.182.0/24 maxlen: 24
185.111.183.0/24 maxlen: 24
185.169.140.0/22 maxlen: 22
185.172.156.0/24 maxlen: 24
185.172.157.0/24 maxlen: 24
185.172.158.0/24 maxlen: 24
185.172.159.0/24 maxlen: 24
185.233.204.0/22 maxlen: 22
2a05:7cc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:56:b1:47:9f:50:c8:08:ac:12:c3:27:0f:e5:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f256a9edb2d9ade204d82313cce98b6623a9d8ac
Validity
Not Before: Jan 1 09:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9bad52925dfca8d77fcfc8b2fe2700b7a819f9ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bf:00:a0:8c:d2:c6:43:3f:01:0d:48:08:ae:
b6:5a:b9:8a:65:1a:1a:5a:2e:57:57:a2:87:33:cb:
63:a2:b8:6d:64:76:83:54:fc:4c:b8:f5:86:9c:4b:
1e:02:57:4d:ec:31:71:00:67:44:a5:1b:41:dc:ca:
33:7c:03:5e:31:23:bc:d3:83:35:6d:68:8a:ec:4e:
d4:19:4b:3e:2d:4b:e9:31:5a:89:c7:17:60:e4:3d:
71:3f:b2:e8:55:f3:60:87:64:c4:a1:68:1a:f3:fa:
02:d7:c3:1d:ac:3b:bf:d5:60:ea:18:1d:27:ad:5b:
0e:5a:71:c0:b7:5f:18:a2:48:8a:39:2a:eb:04:d0:
68:66:ec:6c:1f:21:8e:64:14:b2:24:02:80:55:dd:
1f:e8:26:cb:f2:ef:80:44:15:69:5d:d4:03:c0:c9:
4d:99:a1:ad:bf:5f:ab:2d:1b:28:e4:79:0f:ee:73:
8c:12:01:2e:c5:84:90:3e:3f:28:6d:41:63:a5:0b:
b9:cf:1e:f4:4a:6a:1d:2c:08:e2:a4:9f:e7:66:96:
b5:5d:34:87:66:8b:f8:ca:01:4e:bb:38:20:91:97:
c4:ad:7f:86:0f:63:dc:fe:8c:c8:f6:80:23:65:e7:
48:9b:cc:f2:fd:de:59:3e:91:54:a6:3d:77:be:ff:
eb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:AD:52:92:5D:FC:A8:D7:7F:CF:C8:B2:FE:27:00:B7:A8:19:F9:AD
X509v3 Authority Key Identifier:
keyid:F2:56:A9:ED:B2:D9:AD:E2:04:D8:23:13:CC:E9:8B:66:23:A9:D8:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lap7bLZreIE2CMTzOmLZiOp2Kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/m61Skl38qNd_z8iy_icAt6gZ-a0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/8lap7bLZreIE2CMTzOmLZiOp2Kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.244.0/22
91.225.104.0/22
93.115.11.0/24
94.176.188.0/23
185.34.52.0/22
185.80.128.0/22
185.111.180.0/22
185.169.140.0/22
185.172.156.0/22
185.233.204.0/22
IPv6:
2a05:7cc0::/29
Signature Algorithm: sha256WithRSAEncryption
20:0d:dc:b2:b5:27:1c:7f:df:74:98:6e:5b:87:33:f2:f1:dc:
d8:dc:ab:1b:e4:70:1e:e9:22:82:01:8a:44:1c:3d:4d:38:61:
0f:d4:da:be:51:11:d0:06:7d:cf:37:9d:4d:e7:8a:2b:c9:75:
7d:75:29:68:b6:9a:89:25:08:cf:97:70:04:b7:5d:95:bd:4f:
db:a9:80:6c:6f:f5:c2:ea:a5:24:8c:9f:f7:b0:19:50:8a:b6:
55:56:89:09:b6:31:7b:a2:0c:7f:5a:2c:db:5e:f3:41:51:72:
48:63:4f:03:92:57:66:1c:3c:01:cb:3c:0b:ed:f5:78:f2:c8:
8a:77:13:c3:1d:e8:29:a1:1b:e4:44:34:07:88:e5:6d:ac:8d:
3a:de:65:66:f3:9d:66:eb:f9:33:92:af:65:d7:b2:19:d6:96:
9d:45:2c:10:ed:cf:0a:77:57:01:ac:93:bc:06:f4:f1:39:8e:
bc:06:b0:61:34:b6:c0:ac:68:d3:39:48:74:c2:db:88:8b:1c:
99:c3:fa:17:31:41:e1:c1:eb:f1:43:87:c9:25:54:3b:29:c7:
3a:64:b6:1b:f1:95:ef:9d:48:91:4c:f4:f5:bc:f7:5b:31:55:
eb:9f:b6:a9:b9:f7:ca:f9:5d:d6:7d:10:fa:50:21:c2:7e:fb:
05:6e:2a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:14:05 2025 by rpki-client