Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/C9lavlWXSnv3uk9ImfqfR8xKee4.roa
File: C9lavlWXSnv3uk9ImfqfR8xKee4.roa (raw, json)
Hash identifier: C3QFSuupqUcZvoxhDLvrsW4rmvhvHhXHLD+9GGbY+Ps=
Subject key identifier: 0B:D9:5A:BE:55:97:4A:7B:F7:BA:4F:48:99:FA:9F:47:CC:4A:79:EE
Certificate issuer: /CN=09e5518e68467b4290c3509268b6d6d664962c86
Certificate serial: 01942521F920CE9223AFA9C644CEF1FFD39B
Authority key identifier: 09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/C9lavlWXSnv3uk9ImfqfR8xKee4.roa
Signing time: Thu 02 Jan 2025 03:49:30 +0000
ROA not before: Thu 02 Jan 2025 03:49:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31515
IP address blocks: 161.30.0.0/16 maxlen: 16
161.30.5.0/24 maxlen: 24
161.30.7.0/24 maxlen: 24
161.30.8.0/24 maxlen: 24
161.30.9.0/24 maxlen: 24
161.30.10.0/24 maxlen: 24
161.30.12.0/22 maxlen: 22
161.30.16.0/22 maxlen: 22
161.30.20.0/24 maxlen: 24
161.30.22.0/23 maxlen: 23
161.30.28.0/24 maxlen: 24
161.30.29.0/24 maxlen: 24
161.30.33.0/24 maxlen: 24
161.30.40.0/23 maxlen: 23
161.30.42.0/23 maxlen: 24
161.30.44.0/23 maxlen: 24
161.30.112.0/23 maxlen: 23
161.30.114.0/23 maxlen: 23
161.30.115.0/24 maxlen: 24
161.30.116.0/23 maxlen: 23
161.30.118.0/24 maxlen: 24
161.30.119.0/24 maxlen: 24
161.30.120.0/24 maxlen: 24
161.30.121.0/24 maxlen: 24
161.30.124.0/23 maxlen: 23
161.30.126.0/23 maxlen: 23
161.30.128.0/23 maxlen: 23
161.30.129.0/24 maxlen: 24
161.30.130.0/24 maxlen: 24
161.30.155.0/24 maxlen: 24
161.30.164.0/24 maxlen: 24
161.30.165.0/24 maxlen: 24
161.30.169.0/24 maxlen: 24
161.30.171.0/24 maxlen: 24
161.30.176.0/20 maxlen: 20
161.30.193.0/24 maxlen: 24
161.30.194.0/23 maxlen: 23
161.30.201.0/24 maxlen: 24
161.30.202.0/24 maxlen: 24
161.30.203.0/24 maxlen: 24
161.30.220.0/24 maxlen: 24
161.30.221.0/24 maxlen: 24
161.30.236.0/22 maxlen: 24
161.30.236.0/24 maxlen: 24
161.30.237.0/24 maxlen: 24
161.30.238.0/24 maxlen: 24
161.30.239.0/24 maxlen: 24
161.30.240.0/24 maxlen: 24
161.30.246.0/24 maxlen: 24
161.30.250.0/24 maxlen: 24
161.30.251.0/24 maxlen: 24
2a11:ae00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:f9:20:ce:92:23:af:a9:c6:44:ce:f1:ff:d3:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e5518e68467b4290c3509268b6d6d664962c86
Validity
Not Before: Jan 2 03:49:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0bd95abe55974a7bf7ba4f4899fa9f47cc4a79ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:90:d4:02:b0:ff:ed:34:85:29:5b:2a:e0:1b:
bf:ee:51:4f:32:24:75:06:96:21:c1:61:b0:bc:04:
67:90:6c:fd:7e:3a:a7:e4:45:1d:94:a1:bc:ca:26:
c4:71:90:c8:09:2f:21:71:1d:9f:6a:02:c8:14:62:
3b:44:90:4c:76:ad:fb:17:07:5c:9a:10:a9:d3:01:
91:ad:43:d7:89:c2:4f:c3:7a:b6:6a:f4:e0:5d:4b:
4e:c5:8a:1d:3f:2c:b7:84:2f:83:59:32:76:b2:9a:
3b:69:54:39:61:b3:70:b9:3f:9b:28:3b:f7:1d:10:
e9:e1:1e:98:bc:70:33:67:92:ab:31:12:be:cb:25:
6d:f2:19:3e:9c:3e:f6:37:dd:35:5d:2e:10:fb:6d:
29:ae:ab:39:f7:ed:51:6e:4c:05:6b:a8:0a:98:85:
0b:9e:0d:6e:8b:51:c7:ca:7b:ae:e5:da:bf:41:ac:
dd:f0:26:1d:7a:63:c1:23:41:77:b7:0e:63:b7:a0:
50:97:d5:84:8f:60:d6:ef:45:8b:06:b4:f3:2f:1a:
44:40:50:87:fa:2b:77:7b:bd:d9:ed:1e:73:e8:f7:
cf:f6:6b:b9:ab:7b:d7:24:c2:b0:27:13:a2:d0:88:
47:2f:ea:d0:39:40:d3:23:a7:91:d5:6e:5f:34:34:
b0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:D9:5A:BE:55:97:4A:7B:F7:BA:4F:48:99:FA:9F:47:CC:4A:79:EE
X509v3 Authority Key Identifier:
keyid:09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/C9lavlWXSnv3uk9ImfqfR8xKee4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/CeVRjmhGe0KQw1CSaLbW1mSWLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.30.0.0/16
IPv6:
2a11:ae00::/32
Signature Algorithm: sha256WithRSAEncryption
ac:75:4f:04:6d:1f:a6:ae:34:45:82:47:b2:38:67:23:d9:3e:
b7:1b:fb:ee:54:f3:01:11:0e:b1:15:0a:7a:73:34:54:60:49:
90:40:1c:46:1f:df:03:92:a1:25:6b:86:5a:e7:09:b4:6a:25:
62:bb:03:19:f7:ab:f5:c1:b2:41:6d:5a:41:be:07:84:26:2b:
0d:fa:14:e1:15:38:af:f4:d0:e6:79:c4:13:1d:a9:e0:93:8a:
e1:d6:b6:19:82:87:ce:a3:74:94:0f:bc:15:04:47:b4:81:20:
cb:e4:45:43:8e:ad:f2:6a:67:3d:f7:e6:1f:8f:75:6d:0a:20:
52:17:f5:8f:9b:b2:a0:6b:f9:f2:c5:de:78:46:95:83:9a:17:
94:62:43:77:fb:54:ec:79:80:2c:1f:f2:8e:00:cc:b6:74:74:
aa:d4:c2:72:b9:ba:94:03:78:85:25:f3:b4:92:30:95:e9:99:
7b:6d:f0:74:ca:94:70:b2:e7:d4:f4:9c:ff:20:79:1b:d9:ad:
d4:5a:79:a7:47:e8:cc:46:fe:ad:64:f7:f2:33:1c:87:4c:d9:
db:b4:4c:eb:02:28:15:db:11:bd:8c:3c:81:5a:d9:7b:d9:c9:
6b:73:a4:ec:7c:20:6a:a0:d0:5a:ab:ee:be:19:cd:f2:45:3b:
63:2c:14:25
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAZQlIfkgzpIjr6nGRM7x/9ObMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZTU1MThlNjg0NjdiNDI5MGMzNTA5MjY4YjZkNmQ2NjQ5
NjJjODYwHhcNMjUwMTAyMDM0OTMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYmQ5NWFiZTU1OTc0YTdiZjdiYTRmNDg5OWZhOWY0N2NjNGE3OWVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJDUArD/7TSFKVsq4Bu/7lFPMiR1
BpYhwWGwvARnkGz9fjqn5EUdlKG8yibEcZDICS8hcR2fagLIFGI7RJBMdq37Fwdc
mhCp0wGRrUPXicJPw3q2avTgXUtOxYodPyy3hC+DWTJ2spo7aVQ5YbNwuT+bKDv3
HRDp4R6YvHAzZ5KrMRK+yyVt8hk+nD72N901XS4Q+20prqs59+1RbkwFa6gKmIUL
ng1ui1HHynuu5dq/Qazd8CYdemPBI0F3tw5jt6BQl9WEj2DW70WLBrTzLxpEQFCH
+it3e73Z7R5z6PfP9mu5q3vXJMKwJxOi0IhHL+rQOUDTI6eR1W5fNDSw4wIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFAvZWr5Vl0p797pPSJn6n0fMSnnuMB8GA1UdIwQY
MBaAFAnlUY5oRntCkMNQkmi21tZkliyGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2VWUmptaEdlMEtRdzFDU2FMYlcxbVNXTElZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC8zMDI4MmMtM2M4Mi00NzMwLWI5NWUt
ZTc0NTk0ODk4M2VkLzEvQzlsYXZsV1hTbnYzdWs5SW1mcWZSOHhLZWU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC8zMDI4MmMtM2M4Mi00NzMwLWI5NWUtZTc0NTk0ODk4M2Vk
LzEvQ2VWUmptaEdlMEtRdzFDU2FMYlcxbVNXTElZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDALBAIAATAFAwMAoR4wDQQC
AAIwBwMFACoRrgAwDQYJKoZIhvcNAQELBQADggEBAKx1TwRtH6auNEWCR7I4ZyPZ
Prcb++5U8wERDrEVCnpzNFRgSZBAHEYf3wOSoSVrhlrnCbRqJWK7Axn3q/XBskFt
WkG+B4QmKw36FOEVOK/00OZ5xBMdqeCTiuHWthmCh86jdJQPvBUER7SBIMvkRUOO
rfJqZz335h+PdW0KIFIX9Y+bsqBr+fLF3nhGlYOaF5RiQ3f7VOx5gCwf8o4AzLZ0
dKrUwnK5upQDeIUl87SSMJXpmXtt8HTKlHCy59T0nP8geRvZrdRaeadH6MxG/q1k
9/IzHIdM2du0TOsCKBXbEb2MPIFa2XvZyWtzpOx8IGqg0Fqr7r4ZzfJFO2MsFCU=
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:09:42 2025 by rpki-client