Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/qapdX9GHEa2o929_QuPaQDtsKOo.roa
File: qapdX9GHEa2o929_QuPaQDtsKOo.roa (raw, json)
Hash identifier: yXoeklRVR1pGxKI4F+grxEP1kght2DQV6MfbRtkPOyI=
Subject key identifier: A9:AA:5D:5F:D1:87:11:AD:A8:F7:6F:7F:42:E3:DA:40:3B:6C:28:EA
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 019426D8AD29E560BC8A7B956DBBC01FEEE5
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/qapdX9GHEa2o929_QuPaQDtsKOo.roa
Signing time: Thu 02 Jan 2025 11:48:41 +0000
ROA not before: Thu 02 Jan 2025 11:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42337
IP address blocks: 95.38.96.0/21 maxlen: 21
95.38.96.0/24 maxlen: 24
95.38.97.0/24 maxlen: 24
95.38.98.0/24 maxlen: 24
95.38.99.0/24 maxlen: 24
95.38.100.0/24 maxlen: 24
95.38.101.0/24 maxlen: 24
95.38.102.0/24 maxlen: 24
95.38.103.0/24 maxlen: 24
95.38.104.0/22 maxlen: 22
95.38.104.0/24 maxlen: 24
95.38.105.0/24 maxlen: 24
95.38.106.0/24 maxlen: 24
95.38.107.0/24 maxlen: 24
95.38.130.0/23 maxlen: 23
95.38.130.0/24 maxlen: 24
95.38.131.0/24 maxlen: 24
95.38.132.0/22 maxlen: 22
95.38.132.0/24 maxlen: 24
95.38.133.0/24 maxlen: 24
95.38.134.0/24 maxlen: 24
95.38.135.0/24 maxlen: 24
95.38.136.0/22 maxlen: 22
95.38.136.0/24 maxlen: 24
95.38.137.0/24 maxlen: 24
95.38.138.0/24 maxlen: 24
95.38.139.0/24 maxlen: 24
95.38.140.0/22 maxlen: 22
95.38.140.0/24 maxlen: 24
95.38.141.0/24 maxlen: 24
95.38.142.0/24 maxlen: 24
95.38.143.0/24 maxlen: 24
95.38.152.0/21 maxlen: 21
95.38.152.0/24 maxlen: 24
95.38.153.0/24 maxlen: 24
95.38.154.0/24 maxlen: 24
95.38.155.0/24 maxlen: 24
95.38.156.0/24 maxlen: 24
95.38.157.0/24 maxlen: 24
95.38.158.0/24 maxlen: 24
95.38.159.0/24 maxlen: 24
95.38.168.0/22 maxlen: 22
95.38.168.0/24 maxlen: 24
95.38.169.0/24 maxlen: 24
95.38.170.0/24 maxlen: 24
95.38.171.0/24 maxlen: 24
95.38.174.0/24 maxlen: 24
95.38.200.0/22 maxlen: 22
95.38.200.0/24 maxlen: 24
95.38.201.0/24 maxlen: 24
95.38.202.0/24 maxlen: 24
95.38.203.0/24 maxlen: 24
95.38.208.0/22 maxlen: 22
95.38.208.0/24 maxlen: 24
95.38.209.0/24 maxlen: 24
95.38.210.0/24 maxlen: 24
95.38.211.0/24 maxlen: 24
95.38.240.0/21 maxlen: 21
95.38.240.0/24 maxlen: 24
95.38.241.0/24 maxlen: 24
95.38.242.0/24 maxlen: 24
95.38.243.0/24 maxlen: 24
95.38.244.0/24 maxlen: 24
95.38.245.0/24 maxlen: 24
95.38.246.0/24 maxlen: 24
95.38.247.0/24 maxlen: 24
95.38.248.0/22 maxlen: 22
95.38.248.0/24 maxlen: 24
95.38.249.0/24 maxlen: 24
95.38.250.0/24 maxlen: 24
95.38.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:ad:29:e5:60:bc:8a:7b:95:6d:bb:c0:1f:ee:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Jan 2 11:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a9aa5d5fd18711ada8f76f7f42e3da403b6c28ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cd:9f:18:da:b9:e0:1f:42:55:c4:eb:91:df:
e6:87:e0:fa:55:b0:87:63:22:06:ce:c5:cf:45:14:
0e:0d:2d:b6:8d:a9:19:cb:85:b5:12:73:38:fa:41:
9e:fe:da:de:ca:0f:3a:f7:26:62:74:b3:c3:8a:3d:
66:89:f6:fe:48:df:99:98:03:28:2e:6e:ae:c0:b1:
47:70:f6:eb:67:a5:2a:2a:47:5f:3b:45:eb:ab:c0:
81:29:f0:c4:4c:dd:f0:16:c2:56:cb:0a:3c:ea:af:
d3:bd:7b:95:a4:f4:74:46:73:de:c7:4a:f8:8a:de:
1e:a1:d4:16:05:b2:38:cf:cd:d3:4d:15:2c:47:4a:
82:ca:a4:73:3b:a2:4f:3b:b4:5c:3f:d4:a1:56:0d:
ba:ca:11:6c:1a:a2:a3:86:70:e6:83:bd:d3:05:06:
bb:b2:dd:4e:62:ca:89:14:e8:c1:75:83:46:b2:25:
d0:82:18:7f:b8:8e:c2:bb:3f:26:60:86:44:8f:97:
54:f4:21:05:db:ee:69:4e:d7:bb:b5:f5:24:9a:68:
c2:72:a8:a8:85:c5:a8:9b:ea:47:bc:bd:51:d0:69:
86:20:8e:6f:70:a2:42:ab:10:3c:f5:cd:c9:4b:c6:
49:bb:6f:db:92:70:e6:fd:2e:d2:87:96:b8:21:4e:
fb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:AA:5D:5F:D1:87:11:AD:A8:F7:6F:7F:42:E3:DA:40:3B:6C:28:EA
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/qapdX9GHEa2o929_QuPaQDtsKOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.96.0-95.38.107.255
95.38.130.0-95.38.143.255
95.38.152.0/21
95.38.168.0/22
95.38.174.0/24
95.38.200.0/22
95.38.208.0/22
95.38.240.0-95.38.251.255
Signature Algorithm: sha256WithRSAEncryption
8e:97:c0:24:5d:93:4c:71:82:e2:69:e7:21:f5:91:72:2c:d2:
ac:74:4c:db:7d:00:7f:0d:e6:4b:7e:a1:03:a6:dd:4d:01:b3:
f2:94:33:07:93:5d:5e:b7:bc:62:a7:eb:c9:05:a2:48:ab:ec:
a7:65:e1:55:68:99:35:10:8d:b4:e5:b9:2e:c7:d1:a0:9a:8a:
74:b5:f1:fd:81:d2:2d:39:b0:04:16:d9:6a:8e:28:fb:a1:50:
76:cf:a4:55:a9:bd:17:74:f8:54:6f:b7:bb:f5:b2:53:9f:08:
f7:66:c7:d9:88:ce:bb:04:62:54:7c:97:4b:07:0c:17:df:93:
1b:0e:bc:bc:ef:a5:bc:92:4e:92:c9:b9:e8:b9:47:8a:ba:0c:
74:17:2b:26:b8:c4:c0:9d:52:a6:10:2c:0a:d2:76:fe:07:53:
cb:99:b9:de:0d:5d:6c:8e:f5:18:b3:c4:cb:b3:64:4e:bb:16:
57:2c:ab:2b:54:36:05:3f:54:a8:0d:08:6c:b7:ca:8e:59:eb:
3e:11:23:a8:ad:ac:93:47:77:94:cb:77:03:c4:97:b8:1a:1a:
e3:3a:59:a7:46:c3:15:e9:93:e3:00:f8:9b:08:37:72:c1:72:
41:5b:38:00:4c:61:c1:96:b3:df:58:36:95:ef:57:53:8e:0c:
7f:ea:be:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 07:41:12 2025 by rpki-client