Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/J_w-klg8Fz7usxtg6f6kBplmW2Q.roa
File: J_w-klg8Fz7usxtg6f6kBplmW2Q.roa (raw, json)
Hash identifier: wSUiP/GQT3afkhYb4zAVk2weNrXx80BBBUvY2crSbB8=
Subject key identifier: 27:FC:3E:92:58:3C:17:3E:EE:B3:1B:60:E9:FE:A4:06:99:66:5B:64
Certificate issuer: /CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Certificate serial: 0194266B9C8C4620110D5A0C8E4C74874DBE
Authority key identifier: A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/J_w-klg8Fz7usxtg6f6kBplmW2Q.roa
Signing time: Thu 02 Jan 2025 09:49:34 +0000
ROA not before: Thu 02 Jan 2025 09:49:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35467
IP address blocks: 31.186.160.0/21 maxlen: 22
37.0.16.0/21 maxlen: 22
81.92.176.0/20 maxlen: 21
83.136.192.0/21 maxlen: 24
91.106.224.0/21 maxlen: 23
93.95.144.0/21 maxlen: 22
145.87.224.0/19 maxlen: 20
185.35.32.0/22 maxlen: 23
185.55.108.0/22 maxlen: 23
185.250.160.0/22 maxlen: 24
212.52.224.0/19 maxlen: 22
217.27.224.0/20 maxlen: 24
217.27.224.0/21 maxlen: 22
217.27.232.0/21 maxlen: 24
2a02:5b0::/32 maxlen: 48
2a02:5b0::/40 maxlen: 40
2a02:5b0:700::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:9c:8c:46:20:11:0d:5a:0c:8e:4c:74:87:4d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Validity
Not Before: Jan 2 09:49:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27fc3e92583c173eeeb31b60e9fea40699665b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fe:77:24:c3:6c:11:2d:71:a3:45:e5:2e:fd:
9e:f1:68:33:fa:3f:93:5f:ab:99:80:c4:62:d2:12:
04:f2:1f:e6:45:21:7e:71:44:fb:0d:49:cd:23:f7:
0c:fb:48:ce:8a:07:8c:04:24:9e:fc:c5:75:69:b3:
dc:3e:6a:57:7b:fc:ed:f4:48:04:63:e6:99:b8:2e:
74:dd:fe:98:92:6b:32:b9:9f:11:13:8c:2d:53:cc:
73:f8:a2:81:11:ea:5b:16:20:4a:b8:17:dc:47:42:
17:e3:3d:16:54:de:f1:0c:26:0d:14:11:5b:29:27:
50:9d:11:68:5c:f2:55:95:0a:68:fb:d0:1c:ee:26:
54:a1:8a:2d:15:81:d6:6f:7a:da:a8:c6:53:2e:71:
15:31:02:51:8d:54:a8:76:e4:ba:48:b3:a8:26:66:
3d:c8:87:e1:b2:4f:15:69:a0:ee:25:6c:e0:8c:99:
25:08:93:06:23:dd:23:7f:6a:47:fa:63:eb:0c:4b:
19:75:14:5d:dc:90:ba:3b:03:7d:0d:95:8f:9a:13:
2b:c3:7e:17:19:5d:a1:3d:49:bf:f1:de:ba:fd:52:
ef:d0:8a:32:5e:f0:eb:20:62:0a:5e:f2:8e:84:17:
4f:4d:f4:ad:f5:2b:07:33:0b:a5:da:04:79:60:27:
f1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:FC:3E:92:58:3C:17:3E:EE:B3:1B:60:E9:FE:A4:06:99:66:5B:64
X509v3 Authority Key Identifier:
keyid:A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/J_w-klg8Fz7usxtg6f6kBplmW2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.160.0/21
37.0.16.0/21
81.92.176.0/20
83.136.192.0/21
91.106.224.0/21
93.95.144.0/21
145.87.224.0/19
185.35.32.0/22
185.55.108.0/22
185.250.160.0/22
212.52.224.0/19
217.27.224.0/20
IPv6:
2a02:5b0::/32
Signature Algorithm: sha256WithRSAEncryption
37:0b:18:a9:22:35:7c:6e:9c:bb:01:16:38:98:eb:d2:1e:1e:
13:c0:f6:22:ef:26:48:a7:6d:3a:61:67:7d:7b:79:26:46:63:
68:27:03:12:89:72:db:9a:c3:87:0c:2b:7d:f0:49:34:1d:37:
1d:58:cc:eb:1d:5b:98:5f:d8:60:36:21:b4:42:fa:68:65:a4:
2f:e4:52:bd:52:a5:14:1f:8c:77:e2:0e:09:b2:ea:a1:10:d9:
0d:1e:64:29:ee:b1:81:83:e7:5f:a1:15:e4:74:45:cf:9f:78:
cf:0e:73:29:89:b7:ae:e0:01:1c:4c:7d:fe:2c:4a:05:12:6c:
b1:e8:a0:cd:84:5e:8a:52:12:ea:76:81:d6:db:10:c9:0e:95:
e9:14:da:5e:74:6b:ee:6a:45:31:fa:14:3f:98:37:bd:b6:d1:
eb:7d:34:f7:11:d2:f4:8d:78:1b:23:04:b2:fb:b1:2b:d9:3c:
1b:ac:53:c5:82:a9:2a:33:52:c0:60:9c:03:c9:63:5b:84:bf:
93:f2:90:ae:b7:11:3a:55:21:cc:a4:24:e5:fc:77:03:b3:8c:
13:c6:96:f5:ea:0a:b1:d8:b8:11:ee:cb:22:db:88:90:bf:d2:
0b:c5:19:8f:66:7e:5e:3d:a4:6e:3a:28:e9:28:e3:bb:87:ac:
96:5e:31:45
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgISAZQma5yMRiARDVoMjkx0h02+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZWI5ZWI1NTQ3YzdmNWYxYWFmYzBhZGExNDA4MDU0MTk2
MTg3MjYwHhcNMjUwMTAyMDk0OTM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2ZjM2U5MjU4M2MxNzNlZWViMzFiNjBlOWZlYTQwNjk5NjY1YjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtP53JMNsES1xo0XlLv2e8Wgz+j+T
X6uZgMRi0hIE8h/mRSF+cUT7DUnNI/cM+0jOigeMBCSe/MV1abPcPmpXe/zt9EgE
Y+aZuC503f6YkmsyuZ8RE4wtU8xz+KKBEepbFiBKuBfcR0IX4z0WVN7xDCYNFBFb
KSdQnRFoXPJVlQpo+9Ac7iZUoYotFYHWb3raqMZTLnEVMQJRjVSoduS6SLOoJmY9
yIfhsk8VaaDuJWzgjJklCJMGI90jf2pH+mPrDEsZdRRd3JC6OwN9DZWPmhMrw34X
GV2hPUm/8d66/VLv0IoyXvDrIGIKXvKOhBdPTfSt9SsHMwul2gR5YCfx7wIDAQAB
o4ICWjCCAlYwHQYDVR0OBBYEFCf8PpJYPBc+7rMbYOn+pAaZZltkMB8GA1UdIwQY
MBaAFKTrnrVUfH9fGq/AraFAgFQZYYcmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQt
MGQyMjIzMmMzNGEwLzEvSl93LWtsZzhGejd1c3h0ZzZmNmtCcGxtVzJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQtMGQyMjIzMmMzNGEw
LzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBOBAIAATBIAwQDH7qgAwQD
JQAQAwQEUVywAwQDU4jAAwQDW2rgAwQDXV+QAwQFkVfgAwQCuSMgAwQCuTdsAwQC
ufqgAwQF1DTgAwQE2RvgMA0EAgACMAcDBQAqAgWwMA0GCSqGSIb3DQEBCwUAA4IB
AQA3CxipIjV8bpy7ARY4mOvSHh4TwPYi7yZIp206YWd9e3kmRmNoJwMSiXLbmsOH
DCt98Ek0HTcdWMzrHVuYX9hgNiG0QvpoZaQv5FK9UqUUH4x34g4JsuqhENkNHmQp
7rGBg+dfoRXkdEXPn3jPDnMpibeu4AEcTH3+LEoFEmyx6KDNhF6KUhLqdoHW2xDJ
DpXpFNpedGvuakUx+hQ/mDe9ttHrfTT3EdL0jXgbIwSy+7Er2TwbrFPFgqkqM1LA
YJwDyWNbhL+T8pCutxE6VSHMpCTl/HcDs4wTxpb16gqx2LgR7ssi24iQv9ILxRmP
Zn5ePaRuOijpKOO7h6yWXjFF
-----END CERTIFICATE-----
Generated at Fri Apr 25 15:33:54 2025 by rpki-client