Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ESXvgHlBplwqVwxy1J_aJRiIVDo.roa
File: ESXvgHlBplwqVwxy1J_aJRiIVDo.roa (raw, json)
Hash identifier: hgF+GioK76pLKAu0RK17jXvkA4VxT/lI+r2Ts3eISbE=
Subject key identifier: 11:25:EF:80:79:41:A6:5C:2A:57:0C:72:D4:9F:DA:25:18:88:54:3A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0194552A20C72640F6E76108382F46AA15BA
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ESXvgHlBplwqVwxy1J_aJRiIVDo.roa
Signing time: Sat 11 Jan 2025 11:40:11 +0000
ROA not before: Sat 11 Jan 2025 11:40:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201942
IP address blocks: 31.170.100.0/22 maxlen: 24
37.32.99.0/24 maxlen: 24
45.81.152.0/22 maxlen: 24
45.90.238.0/24 maxlen: 24
45.137.160.0/22 maxlen: 24
45.147.104.0/22 maxlen: 24
45.147.116.0/22 maxlen: 24
45.159.76.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
91.235.40.0/24 maxlen: 24
91.235.41.0/24 maxlen: 24
91.238.239.0/24 maxlen: 24
92.60.34.0/24 maxlen: 24
92.60.35.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
93.189.120.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
95.214.144.0/22 maxlen: 24
109.230.194.0/24 maxlen: 24
109.230.250.0/24 maxlen: 24
185.91.108.0/22 maxlen: 24
185.105.12.0/22 maxlen: 24
185.105.232.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.107.152.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.119.48.0/22 maxlen: 24
185.128.52.0/22 maxlen: 24
185.129.104.0/22 maxlen: 24
185.150.78.0/23 maxlen: 24
185.163.168.0/22 maxlen: 24
185.163.232.0/22 maxlen: 24
185.166.172.0/22 maxlen: 24
185.175.152.0/22 maxlen: 24
185.176.188.0/22 maxlen: 24
185.179.228.0/22 maxlen: 24
185.179.232.0/22 maxlen: 24
185.189.64.0/22 maxlen: 24
185.196.40.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.197.216.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
185.199.55.0/24 maxlen: 24
185.200.228.0/22 maxlen: 24
185.201.152.0/22 maxlen: 24
185.202.204.0/22 maxlen: 24
185.204.108.0/24 maxlen: 24
185.204.244.0/22 maxlen: 24
185.212.84.0/22 maxlen: 24
185.216.28.0/22 maxlen: 24
185.217.12.0/22 maxlen: 24
185.218.16.0/22 maxlen: 24
185.220.240.0/22 maxlen: 24
185.221.16.0/22 maxlen: 24
185.222.188.0/22 maxlen: 24
185.223.220.0/22 maxlen: 24
185.224.184.0/22 maxlen: 24
185.224.220.0/22 maxlen: 24
185.226.8.0/22 maxlen: 24
185.226.28.0/22 maxlen: 24
185.227.176.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.230.48.0/22 maxlen: 24
185.232.8.0/22 maxlen: 24
185.239.252.0/22 maxlen: 24
185.239.252.0/24 maxlen: 24
185.239.253.0/24 maxlen: 24
185.239.255.0/24 maxlen: 24
185.245.32.0/23 maxlen: 23
185.247.4.0/24 maxlen: 24
193.17.180.0/22 maxlen: 24
193.17.180.0/24 maxlen: 24
193.17.182.0/24 maxlen: 24
193.26.152.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
193.105.66.0/24 maxlen: 24
193.162.15.0/24 maxlen: 24
194.35.40.0/24 maxlen: 24
194.38.56.0/22 maxlen: 24
194.41.116.0/22 maxlen: 24
194.41.118.0/24 maxlen: 24
195.182.13.0/24 maxlen: 24
212.80.208.0/22 maxlen: 24
212.115.44.0/22 maxlen: 24
213.232.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:55:2a:20:c7:26:40:f6:e7:61:08:38:2f:46:aa:15:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 11 11:40:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1125ef807941a65c2a570c72d49fda251888543a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c2:8e:1c:85:21:ed:66:66:dc:e7:d3:32:57:
86:16:81:0f:3d:bc:67:64:7a:48:68:a3:6d:d0:cb:
c5:e7:87:a1:54:55:8d:ba:dd:9f:9f:e4:de:09:ed:
e8:e7:15:c4:a7:3b:bc:b3:c1:3e:84:33:7b:bc:7b:
39:73:4a:9d:f3:20:17:1d:29:49:6a:ca:43:33:a7:
76:fe:ed:62:5d:ce:b7:0a:08:dd:bd:5b:d7:45:f7:
77:fa:d0:ee:92:ab:fc:dc:d8:2a:5f:c2:f5:e0:81:
cf:0a:fc:86:0c:d1:5e:87:7c:38:a4:8e:2d:36:5e:
d4:bf:43:99:5e:78:a3:83:61:48:09:99:82:68:32:
fe:14:2d:a0:13:39:ef:b6:90:73:71:49:1d:5b:92:
3e:b9:82:10:48:b8:53:e1:7d:8b:52:e5:84:c1:1d:
89:30:f2:f7:70:a8:c2:88:2d:c9:7e:75:72:6b:c9:
df:10:0e:76:84:a1:28:6b:be:ad:8f:3a:90:4c:79:
cc:7a:4a:44:b5:33:7a:e9:a5:31:3f:7b:de:26:3f:
1d:d2:17:e1:dd:30:d8:7c:1c:35:c4:2d:6e:48:67:
58:93:4d:82:22:6c:ba:20:46:dd:51:bd:14:03:5a:
98:4f:49:b2:90:6b:8e:82:50:79:a8:cf:eb:3f:99:
2e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:25:EF:80:79:41:A6:5C:2A:57:0C:72:D4:9F:DA:25:18:88:54:3A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ESXvgHlBplwqVwxy1J_aJRiIVDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
37.32.99.0/24
45.81.152.0/22
45.90.238.0/24
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
91.238.239.0/24
92.60.34.0/23
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.163.168.0/22
185.163.232.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.199.55.0/24
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.108.0/24
185.204.244.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.221.16.0/22
185.222.188.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.230.48.0/22
185.232.8.0/22
185.239.252.0/22
185.245.32.0/23
185.247.4.0/24
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
193.105.66.0/24
193.162.15.0/24
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
195.182.13.0/24
212.80.208.0/22
212.115.44.0/22
213.232.232.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:b3:37:2d:94:50:67:4b:87:bd:d7:e0:b5:0d:c9:47:ab:6a:
db:64:03:72:31:37:ac:22:aa:c1:fc:b9:57:16:a3:c5:be:e7:
20:31:f8:5d:96:30:46:de:6c:a5:69:e4:6a:b3:9d:42:e5:4d:
ae:0e:52:fc:ee:59:99:3d:2f:21:3a:1c:33:2d:65:1f:43:89:
e4:90:89:f5:c2:b0:4e:5f:6d:a6:d2:23:14:c7:76:24:88:7e:
e2:bf:1b:3c:12:3d:4b:21:2b:dd:b8:60:26:89:eb:3d:6c:d6:
b9:0d:a8:98:1a:8a:e9:1e:e8:d9:25:72:ef:29:b6:1f:1f:e9:
d4:de:bc:7d:b5:53:65:74:42:aa:35:4d:08:c9:8d:3f:1b:10:
e5:1f:bb:cb:1e:20:40:c8:15:8c:c8:b9:75:14:8a:78:72:f6:
60:37:46:2c:a1:1f:9b:b0:ba:be:68:9e:e0:33:24:63:09:92:
78:4e:8f:c0:af:1a:2a:75:a9:fd:ac:e1:e0:66:50:eb:8b:6c:
59:4a:15:37:1a:66:00:da:b0:e6:cf:c2:71:cd:0a:66:86:59:
c5:1d:c5:5e:e8:fc:ac:22:70:09:01:a5:bf:f3:3d:dc:a0:56:
3c:81:a8:71:cf:f2:f9:bc:9f:43:d1:4f:c1:db:0f:e9:18:6a:
fe:b6:f0:40
-----BEGIN CERTIFICATE-----
MIIG1zCCBb+gAwIBAgISAZRVKiDHJkD252EIOC9GqhW6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjUwMTExMTE0MDExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTI1ZWY4MDc5NDFhNjVjMmE1NzBjNzJkNDlmZGEyNTE4ODg1NDNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4MKOHIUh7WZm3OfTMleGFoEPPbxn
ZHpIaKNt0MvF54ehVFWNut2fn+TeCe3o5xXEpzu8s8E+hDN7vHs5c0qd8yAXHSlJ
aspDM6d2/u1iXc63CgjdvVvXRfd3+tDukqv83NgqX8L14IHPCvyGDNFeh3w4pI4t
Nl7Uv0OZXnijg2FICZmCaDL+FC2gEznvtpBzcUkdW5I+uYIQSLhT4X2LUuWEwR2J
MPL3cKjCiC3JfnVya8nfEA52hKEoa76tjzqQTHnMekpEtTN66aUxP3veJj8d0hfh
3TDYfBw1xC1uSGdYk02CImy6IEbdUb0UA1qYT0mykGuOglB5qM/rP5kuVwIDAQAB
o4ID4zCCA98wHQYDVR0OBBYEFBEl74B5QaZcKlcMctSf2iUYiFQ6MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvRVNYdmdIbEJwbHdxVnd4eTFKX2FKUmlJVkRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIB9wYIKwYBBQUHAQcBAf8EggHmMIIB4jCCAd4EAgABMIIB
1gMEAh+qZAMEACUgYwMEAi1RmAMEAC1a7gMEAi2JoAMEAi2TaAMEAi2TdAMEAi2f
TAMEAlEV5AMEAlVzwAMEAliHQAMEAVvrKAMEAFvu7wMEAVw8IgMEAl1c5AMEAF29
eAMEAF29ewMEAl/WkAMEAG3mwgMEAG3m+gMEArlbbAMEArlpDAMEArlp6AMEArlq
fAMEArlrmAMEArl2NAMEArl3MAMEArmANAMEArmBaAMEAbmWTgMEArmjqAMEArmj
6AMEArmmrAMEArmvmAMEArmwvDAMAwQCubPkAwQCubPoAwQCub1AAwQCucQoAwQC
ucXYAwQCuccsAwQAucc3AwQCucjkAwQCucmYAwQCucrMAwQAucxsAwQCucz0AwQC
udRUAwQCudgcAwQCudkMAwQCudoQAwQCudzwAwQCud0QAwQCud68AwQCud/cAwQC
ueC4AwQCueDcAwQCueIIAwQCueIcAwQCueOwAwQAuePMAwQCueYwAwQCuegIAwQC
ue/8AwQBufUgAwQAufcEAwQCwRG0AwQCwRqYAwQCwSNYAwQAwWlCAwQAwaIPAwQA
wiMoAwQCwiY4AwQCwil0AwQAw7YNAwQC1FDQAwQC1HMsAwQA1ejoMA0GCSqGSIb3
DQEBCwUAA4IBAQBcszctlFBnS4e91+C1DclHq2rbZANyMTesIqrB/LlXFqPFvucg
MfhdljBG3mylaeRqs51C5U2uDlL87lmZPS8hOhwzLWUfQ4nkkIn1wrBOX22m0iMU
x3YkiH7ivxs8Ej1LISvduGAmies9bNa5DaiYGorpHujZJXLvKbYfH+nU3rx9tVNl
dEKqNU0IyY0/GxDlH7vLHiBAyBWMyLl1FIp4cvZgN0YsoR+bsLq+aJ7gMyRjCZJ4
To/Arxoqdan9rOHgZlDri2xZShU3GmYA2rDmz8JxzQpmhlnFHcVe6PysInAJAaW/
8z3coFY8gahxz/L5vJ9D0U/B2w/pGGr+tvBA
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:00:03 2025 by rpki-client