Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/DrEVnl_Ykn70BF2dDk8nNsnafnk.roa
File: DrEVnl_Ykn70BF2dDk8nNsnafnk.roa (raw, json)
Hash identifier: DyicDcDpSxUVN86uLjb/ckkTBO6IskAUo4EXniFnwpA=
Subject key identifier: 0E:B1:15:9E:5F:D8:92:7E:F4:04:5D:9D:0E:4F:27:36:C9:DA:7E:79
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 0194258F3202565108F5F964A72DF3179956
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/DrEVnl_Ykn70BF2dDk8nNsnafnk.roa
Signing time: Thu 02 Jan 2025 05:48:48 +0000
ROA not before: Thu 02 Jan 2025 05:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8784
IP address blocks: 83.169.64.0/18 maxlen: 18
83.169.64.0/23 maxlen: 23
83.169.66.0/24 maxlen: 24
83.169.67.0/24 maxlen: 24
83.169.69.0/24 maxlen: 24
83.169.70.0/23 maxlen: 23
83.169.70.0/24 maxlen: 24
83.169.71.0/24 maxlen: 24
83.169.73.0/24 maxlen: 24
83.169.80.0/24 maxlen: 24
83.169.81.0/24 maxlen: 24
83.169.83.0/24 maxlen: 24
83.169.84.0/24 maxlen: 24
83.169.85.0/24 maxlen: 24
83.169.89.0/24 maxlen: 24
83.169.92.0/24 maxlen: 24
83.169.99.0/24 maxlen: 24
83.169.100.0/22 maxlen: 22
83.169.100.0/24 maxlen: 24
83.169.102.0/24 maxlen: 24
83.169.103.0/24 maxlen: 24
83.169.114.0/23 maxlen: 23
83.169.114.0/24 maxlen: 24
83.169.115.0/24 maxlen: 24
83.169.116.0/22 maxlen: 22
83.169.116.0/24 maxlen: 24
83.169.117.0/24 maxlen: 24
83.169.118.0/24 maxlen: 24
83.169.119.0/24 maxlen: 24
83.169.120.0/22 maxlen: 22
83.169.120.0/24 maxlen: 24
83.169.121.0/24 maxlen: 24
83.169.122.0/24 maxlen: 24
83.169.123.0/24 maxlen: 24
83.169.124.0/24 maxlen: 24
83.169.125.0/24 maxlen: 24
178.22.152.0/21 maxlen: 21
194.117.208.0/20 maxlen: 20
194.117.208.0/24 maxlen: 24
194.117.211.0/24 maxlen: 24
194.117.216.0/24 maxlen: 24
194.117.219.0/24 maxlen: 24
194.153.214.0/24 maxlen: 24
195.46.192.0/19 maxlen: 19
195.46.193.0/24 maxlen: 24
195.46.195.0/24 maxlen: 24
195.46.198.0/24 maxlen: 24
195.46.199.0/24 maxlen: 24
195.46.204.0/24 maxlen: 24
195.46.209.0/24 maxlen: 24
195.46.210.0/24 maxlen: 24
195.46.213.0/24 maxlen: 24
195.46.214.0/24 maxlen: 24
195.46.216.0/24 maxlen: 24
195.46.219.0/24 maxlen: 24
195.46.223.0/24 maxlen: 24
212.37.192.0/19 maxlen: 19
213.139.96.0/19 maxlen: 19
213.139.111.0/24 maxlen: 24
213.139.112.0/24 maxlen: 24
213.139.117.0/24 maxlen: 24
213.139.123.0/24 maxlen: 24
2001:4b90::/32 maxlen: 32
2a02:d50::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:32:02:56:51:08:f5:f9:64:a7:2d:f3:17:99:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: Jan 2 05:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0eb1159e5fd8927ef4045d9d0e4f2736c9da7e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2a:49:3a:14:e2:51:33:af:c3:f4:6d:77:7e:
20:5e:4c:98:f7:4b:b6:3e:7c:7c:13:6e:6a:c2:fa:
6c:9f:44:59:c8:6d:9e:75:59:ef:2c:58:32:8b:bb:
4c:ac:5d:f1:74:c1:7c:8b:dc:29:c0:02:67:7b:de:
dd:d1:a6:de:85:80:02:68:1f:37:c9:1b:0c:cb:43:
09:3f:17:77:ea:2c:f4:92:b0:07:8c:c5:59:25:22:
1d:95:5c:e9:f7:88:50:94:15:6c:76:a4:33:5a:cf:
3d:96:04:ea:de:19:ac:0d:f0:46:53:9f:19:f5:05:
57:37:c8:65:61:68:bb:55:10:f4:7a:92:b2:12:4e:
d5:90:91:8c:98:45:7e:2d:42:66:a6:e9:31:e5:d1:
96:ee:78:6a:79:8b:49:9d:9e:5f:1f:9c:73:a8:15:
8d:0e:35:00:48:21:62:ab:27:16:67:f2:e3:dd:25:
b3:9f:b0:bf:41:1a:56:b6:42:2a:39:a2:3e:d4:de:
05:79:d3:1e:e6:9e:78:d1:cd:cf:6e:ed:fe:c6:2c:
de:92:ba:29:d8:b9:b6:2e:3d:93:9d:09:cd:b6:1d:
c8:18:9d:be:87:2c:0a:5e:42:b8:ab:ae:36:04:c7:
e8:48:8c:4d:77:d5:73:e0:76:cb:24:77:d7:60:ec:
aa:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B1:15:9E:5F:D8:92:7E:F4:04:5D:9D:0E:4F:27:36:C9:DA:7E:79
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/DrEVnl_Ykn70BF2dDk8nNsnafnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.169.64.0/18
178.22.152.0/21
194.117.208.0/20
194.153.214.0/24
195.46.192.0/19
212.37.192.0/19
213.139.96.0/19
IPv6:
2001:4b90::/32
2a02:d50::/32
Signature Algorithm: sha256WithRSAEncryption
95:5a:cc:e9:b9:ab:48:81:f2:35:58:ca:14:66:76:00:60:10:
fd:1d:e5:b1:2f:3c:27:2e:44:91:21:dc:15:4a:0a:51:f7:69:
2d:17:d6:6b:3f:49:27:a3:70:66:fc:b0:43:90:6b:b2:fe:a8:
1a:1e:30:aa:66:76:76:eb:aa:dc:cf:46:b9:27:3f:4f:3c:4f:
a9:21:1f:fa:ff:1b:a5:83:08:27:b1:8c:08:cf:0f:33:0c:08:
11:f7:10:3f:f0:68:9f:38:fa:9a:17:98:58:41:15:18:27:ef:
01:25:f2:ce:89:f5:6c:5a:7c:9d:17:2c:c9:19:92:62:d1:9d:
87:02:0f:58:1d:ef:39:36:59:62:98:45:72:3c:3a:25:41:5d:
a0:aa:82:91:fe:4a:27:82:27:58:11:bd:b1:8a:05:82:f9:7e:
77:52:84:db:fc:65:24:29:01:eb:0c:e1:ee:32:68:9d:5d:af:
5c:b7:32:23:5a:1a:ff:6c:79:60:13:93:f4:b3:36:c1:a5:b1:
40:b7:b8:be:8e:8b:3e:59:a1:0c:cc:df:cc:61:9f:b5:06:91:
94:5a:3e:03:35:93:cb:a6:61:94:a9:74:9c:fe:ab:7d:e3:13:
d5:b6:cb:e5:a2:46:eb:1a:25:53:41:72:9c:25:be:50:51:06:
e1:c2:39:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:58:36 2025 by rpki-client