Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/DLMTOoacedomtvAfOo_wUgsg7ZM.roa
File: DLMTOoacedomtvAfOo_wUgsg7ZM.roa (raw, json)
Hash identifier: CuMafo/kjG1kejlU1ti10/bQ5ADJP+5OLOjwOYxRNqo=
Subject key identifier: 0C:B3:13:3A:86:9C:79:DA:26:B6:F0:1F:3A:8F:F0:52:0B:20:ED:93
Certificate issuer: /CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Certificate serial: 0194206846C856FAFC0DEEE614D4AC503E8D
Authority key identifier: 1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/DLMTOoacedomtvAfOo_wUgsg7ZM.roa
Signing time: Wed 01 Jan 2025 05:48:12 +0000
ROA not before: Wed 01 Jan 2025 05:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16086
IP address blocks: 37.33.0.0/16 maxlen: 16
37.130.160.0/19 maxlen: 19
37.136.0.0/16 maxlen: 16
37.219.0.0/16 maxlen: 16
62.44.192.0/18 maxlen: 18
62.78.96.0/19 maxlen: 19
62.78.128.0/17 maxlen: 17
62.113.160.0/19 maxlen: 19
62.165.128.0/18 maxlen: 18
62.183.128.0/17 maxlen: 17
62.197.160.0/19 maxlen: 19
62.236.0.0/15 maxlen: 15
62.241.192.0/18 maxlen: 18
78.27.64.0/18 maxlen: 18
80.64.0.0/20 maxlen: 20
81.175.128.0/17 maxlen: 17
82.128.128.0/17 maxlen: 17
82.181.0.0/16 maxlen: 16
82.203.128.0/17 maxlen: 17
83.100.0.0/17 maxlen: 17
83.102.0.0/17 maxlen: 17
84.253.192.0/18 maxlen: 18
85.23.0.0/16 maxlen: 16
85.131.0.0/17 maxlen: 17
87.92.0.0/14 maxlen: 14
87.100.128.0/17 maxlen: 17
88.148.128.0/17 maxlen: 17
89.27.0.0/17 maxlen: 17
89.166.0.0/17 maxlen: 17
91.145.64.0/18 maxlen: 18
109.108.0.0/19 maxlen: 19
159.255.224.0/19 maxlen: 19
176.93.0.0/16 maxlen: 16
178.55.0.0/16 maxlen: 16
178.75.128.0/18 maxlen: 18
185.15.212.0/22 maxlen: 22
188.67.0.0/16 maxlen: 16
188.94.64.0/21 maxlen: 21
192.107.200.0/21 maxlen: 21
192.107.208.0/20 maxlen: 20
192.107.224.0/21 maxlen: 21
193.143.70.0/23 maxlen: 23
193.143.73.0/24 maxlen: 24
193.143.79.0/24 maxlen: 24
193.143.80.0/21 maxlen: 21
193.143.88.0/23 maxlen: 23
193.143.91.0/24 maxlen: 24
193.143.93.0/24 maxlen: 24
193.143.94.0/23 maxlen: 23
194.100.0.0/16 maxlen: 16
195.10.128.0/18 maxlen: 18
212.50.128.0/19 maxlen: 19
212.86.0.0/19 maxlen: 19
212.90.64.0/19 maxlen: 19
212.146.0.0/18 maxlen: 18
212.149.128.0/17 maxlen: 17
213.139.160.0/19 maxlen: 19
213.141.96.0/19 maxlen: 19
213.186.224.0/19 maxlen: 19
213.186.224.0/24 maxlen: 24
213.216.192.0/18 maxlen: 18
213.243.128.0/18 maxlen: 18
217.78.192.0/19 maxlen: 19
2001:6e8::/29 maxlen: 29
2001:14b8::/29 maxlen: 29
2001:4078::/29 maxlen: 29
2a01:a800::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:46:c8:56:fa:fc:0d:ee:e6:14:d4:ac:50:3e:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Validity
Not Before: Jan 1 05:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0cb3133a869c79da26b6f01f3a8ff0520b20ed93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8c:e9:8d:03:8e:03:f4:e5:d0:5e:0e:ea:7d:
bc:e8:e1:96:57:65:13:90:3b:b2:b4:fe:71:bb:2d:
c2:da:d0:42:9c:02:8e:6e:bf:fb:c4:3d:ea:6c:e0:
a6:59:87:7a:85:46:67:83:73:fb:6f:23:2a:05:7c:
a1:06:e1:fd:11:99:24:14:d4:b7:86:ee:76:0f:7f:
b5:44:91:a2:19:15:5f:42:13:72:48:46:2e:cf:74:
df:79:6d:7d:b5:a5:6f:b0:0b:f3:3d:df:4e:dd:d2:
04:86:e2:70:50:6a:ca:18:78:ce:8c:30:6b:78:43:
77:d4:71:5b:f7:3b:8d:f8:03:7c:67:8c:f4:0c:b2:
91:23:85:5e:52:74:c1:f1:c7:e7:0c:2e:b1:04:9d:
8c:7f:33:1c:2a:1e:1c:b6:70:96:2e:6e:a1:3a:3c:
b9:61:d0:cd:fa:8b:14:58:b5:ec:4b:d9:3e:2b:be:
87:e1:c1:71:d2:31:ba:f7:e3:96:b8:2b:b2:70:a4:
4e:41:38:25:4e:25:87:e4:2d:fe:a1:39:b9:37:e3:
1c:80:b5:53:e0:32:30:a1:2b:8e:ad:70:c6:1a:38:
f4:91:87:5a:29:bf:84:e9:b7:1d:cb:2e:3a:d1:b4:
8c:3e:e8:0d:c6:b8:0b:a2:e2:c6:3e:43:71:bd:fe:
58:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B3:13:3A:86:9C:79:DA:26:B6:F0:1F:3A:8F:F0:52:0B:20:ED:93
X509v3 Authority Key Identifier:
keyid:1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/DLMTOoacedomtvAfOo_wUgsg7ZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/H9X-9pK0wtIr3QMfq_pxELezboE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.33.0.0/16
37.130.160.0/19
37.136.0.0/16
37.219.0.0/16
62.44.192.0/18
62.78.96.0-62.78.255.255
62.113.160.0/19
62.165.128.0/18
62.183.128.0/17
62.197.160.0/19
62.236.0.0/15
62.241.192.0/18
78.27.64.0/18
80.64.0.0/20
81.175.128.0/17
82.128.128.0/17
82.181.0.0/16
82.203.128.0/17
83.100.0.0/17
83.102.0.0/17
84.253.192.0/18
85.23.0.0/16
85.131.0.0/17
87.92.0.0/14
87.100.128.0/17
88.148.128.0/17
89.27.0.0/17
89.166.0.0/17
91.145.64.0/18
109.108.0.0/19
159.255.224.0/19
176.93.0.0/16
178.55.0.0/16
178.75.128.0/18
185.15.212.0/22
188.67.0.0/16
188.94.64.0/21
192.107.200.0-192.107.231.255
193.143.70.0/23
193.143.73.0/24
193.143.79.0-193.143.89.255
193.143.91.0/24
193.143.93.0-193.143.95.255
194.100.0.0/16
195.10.128.0/18
212.50.128.0/19
212.86.0.0/19
212.90.64.0/19
212.146.0.0/18
212.149.128.0/17
213.139.160.0/19
213.141.96.0/19
213.186.224.0/19
213.216.192.0/18
213.243.128.0/18
217.78.192.0/19
IPv6:
2001:6e8::/29
2001:14b8::/29
2001:4078::/29
2a01:a800::/29
Signature Algorithm: sha256WithRSAEncryption
00:a7:57:3d:87:94:d2:62:11:d0:0e:df:f4:7e:5c:7c:9c:1f:
90:31:7c:aa:34:7e:5a:5b:64:02:a7:1d:60:3d:f5:7e:3a:1e:
20:35:54:06:2d:31:2a:cc:8e:1d:4f:0e:9d:00:1c:23:12:eb:
30:d4:ee:73:92:da:f6:10:9d:f9:b1:45:2c:6b:92:a8:cb:e4:
ff:d5:d1:12:75:6b:01:90:6f:d1:5b:dc:51:7f:51:03:56:80:
db:31:e0:1c:b4:28:cd:40:1f:20:ca:11:78:76:0e:73:09:f7:
29:30:bd:ac:ea:de:ad:24:01:05:92:10:a4:dc:91:b9:a5:67:
c1:07:d5:f5:cd:19:71:46:29:fc:c0:14:80:31:0d:17:de:af:
95:ba:b1:66:88:1f:32:bf:ec:db:94:c5:cf:ac:3a:02:65:72:
b8:2b:ad:4f:29:ea:c6:22:eb:67:8c:d3:47:35:75:25:43:c7:
08:63:5d:25:c9:b5:cb:de:ff:4a:09:af:ca:7e:ee:35:1f:da:
94:df:c9:99:64:50:47:ba:a2:a5:97:bc:57:4e:a8:70:0f:86:
68:c7:29:8e:a3:da:7c:82:82:45:f0:f4:d9:2d:1a:46:fa:cd:
15:1b:67:ff:11:5f:29:30:c3:79:33:51:23:d9:4a:4e:b9:63:
ff:93:e8:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:52:09 2025 by rpki-client