Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/9SKnGV-gwjz0m2MAt5ROm7SCAhw.roa
File: 9SKnGV-gwjz0m2MAt5ROm7SCAhw.roa (raw, json)
Hash identifier: eYrgbGS2N4+rOcy6MxWJQ9gnWztyDgGulPf8r5WT/0A=
Subject key identifier: F5:22:A7:19:5F:A0:C2:3C:F4:9B:63:00:B7:94:4E:9B:B4:82:02:1C
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 019483C395D1BE1E8C69E9789E2447497222
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/9SKnGV-gwjz0m2MAt5ROm7SCAhw.roa
Signing time: Mon 20 Jan 2025 12:50:20 +0000
ROA not before: Mon 20 Jan 2025 12:50:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 14.102.52.0/24 maxlen: 24
14.102.53.0/24 maxlen: 24
14.102.54.0/24 maxlen: 24
14.102.55.0/24 maxlen: 24
14.102.63.0/24 maxlen: 24
14.102.84.0/24 maxlen: 24
14.102.85.0/24 maxlen: 24
14.102.86.0/24 maxlen: 24
14.102.87.0/24 maxlen: 24
62.169.128.0/24 maxlen: 24
62.169.129.0/24 maxlen: 24
62.169.130.0/24 maxlen: 24
62.169.131.0/24 maxlen: 24
62.169.132.0/24 maxlen: 24
62.169.133.0/24 maxlen: 24
62.169.135.0/24 maxlen: 24
84.51.234.0/24 maxlen: 24
84.51.235.0/24 maxlen: 24
92.51.232.0/24 maxlen: 24
92.51.233.0/24 maxlen: 24
92.51.238.0/24 maxlen: 24
92.51.239.0/24 maxlen: 24
92.51.248.0/24 maxlen: 24
92.51.249.0/24 maxlen: 24
92.51.250.0/24 maxlen: 24
92.51.251.0/24 maxlen: 24
92.51.252.0/24 maxlen: 24
92.51.253.0/24 maxlen: 24
92.51.254.0/24 maxlen: 24
103.61.197.0/24 maxlen: 24
103.61.198.0/24 maxlen: 24
103.61.199.0/24 maxlen: 24
103.125.77.0/24 maxlen: 24
103.125.78.0/24 maxlen: 24
103.125.79.0/24 maxlen: 24
103.210.198.0/24 maxlen: 24
103.210.199.0/24 maxlen: 24
103.213.212.0/24 maxlen: 24
103.213.213.0/24 maxlen: 24
103.213.214.0/24 maxlen: 24
103.213.215.0/24 maxlen: 24
103.255.76.0/24 maxlen: 24
103.255.77.0/24 maxlen: 24
167.160.16.0/24 maxlen: 24
167.160.17.0/24 maxlen: 24
167.160.29.0/24 maxlen: 24
170.62.89.0/24 maxlen: 24
170.62.90.0/24 maxlen: 24
170.62.91.0/24 maxlen: 24
170.62.92.0/24 maxlen: 24
170.62.93.0/24 maxlen: 24
170.62.94.0/24 maxlen: 24
170.62.95.0/24 maxlen: 24
170.62.100.0/24 maxlen: 24
170.62.102.0/24 maxlen: 24
170.62.103.0/24 maxlen: 24
170.62.106.0/24 maxlen: 24
170.62.107.0/24 maxlen: 24
170.62.108.0/24 maxlen: 24
170.62.110.0/24 maxlen: 24
170.62.111.0/24 maxlen: 24
170.62.160.0/24 maxlen: 24
170.62.224.0/24 maxlen: 24
170.62.225.0/24 maxlen: 24
170.62.226.0/24 maxlen: 24
170.62.227.0/24 maxlen: 24
170.62.228.0/24 maxlen: 24
170.62.229.0/24 maxlen: 24
170.62.230.0/24 maxlen: 24
170.62.231.0/24 maxlen: 24
170.62.232.0/24 maxlen: 24
170.62.233.0/24 maxlen: 24
170.62.234.0/24 maxlen: 24
170.62.235.0/24 maxlen: 24
185.34.108.0/24 maxlen: 24
185.34.109.0/24 maxlen: 24
185.34.110.0/24 maxlen: 24
185.34.111.0/24 maxlen: 24
198.55.28.0/24 maxlen: 24
198.55.29.0/24 maxlen: 24
203.188.164.0/24 maxlen: 24
203.188.167.0/24 maxlen: 24
203.188.169.0/24 maxlen: 24
203.188.170.0/24 maxlen: 24
203.188.171.0/24 maxlen: 24
203.188.172.0/24 maxlen: 24
203.188.173.0/24 maxlen: 24
212.32.74.0/24 maxlen: 24
212.56.48.0/24 maxlen: 24
212.56.49.0/24 maxlen: 24
212.56.50.0/24 maxlen: 24
212.56.51.0/24 maxlen: 24
212.78.245.0/24 maxlen: 24
212.78.246.0/24 maxlen: 24
212.78.247.0/24 maxlen: 24
212.78.248.0/24 maxlen: 24
212.78.249.0/24 maxlen: 24
212.78.250.0/24 maxlen: 24
212.78.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:83:c3:95:d1:be:1e:8c:69:e9:78:9e:24:47:49:72:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Jan 20 12:50:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f522a7195fa0c23cf49b6300b7944e9bb482021c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:87:41:08:86:89:6b:6e:55:68:38:c9:78:ca:
06:17:9d:a5:30:89:1f:4e:5a:14:48:72:91:0b:f1:
1e:91:85:40:ce:09:f9:64:ab:43:c1:ae:62:31:24:
1d:8b:b5:ab:50:17:cf:6f:50:9e:36:41:94:e2:4f:
0c:60:d0:3c:40:07:9c:9c:5d:dc:44:34:1d:8a:7c:
0c:7d:31:50:62:06:9a:ae:45:54:86:88:79:22:82:
85:35:47:89:5c:8c:50:5b:0f:22:fc:c1:03:5a:96:
f7:66:de:33:b6:2f:41:b0:9f:fe:e9:2d:95:44:89:
12:2e:da:63:76:9f:27:25:e8:f7:43:e0:3b:39:00:
da:b8:27:7d:e2:3e:68:c9:83:1d:94:72:0e:70:c8:
95:ef:c4:9d:e7:ba:e6:d4:aa:aa:01:85:d0:4e:c5:
fe:ed:7c:c7:6a:de:7b:86:c7:0c:02:40:82:ca:fd:
1c:e3:78:0d:08:17:43:77:50:c5:ad:aa:2b:87:f8:
53:fa:5a:7c:69:98:12:94:80:c5:2e:e3:53:10:55:
f3:10:da:e3:6f:64:0c:be:c1:f3:a0:d7:2d:ad:a7:
64:3c:c7:66:94:41:c6:2b:08:09:63:5f:14:4a:78:
92:0a:12:9a:af:d1:bf:71:f5:65:3a:b2:03:ad:16:
91:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:22:A7:19:5F:A0:C2:3C:F4:9B:63:00:B7:94:4E:9B:B4:82:02:1C
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/9SKnGV-gwjz0m2MAt5ROm7SCAhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.52.0/22
14.102.63.0/24
14.102.84.0/22
62.169.128.0-62.169.133.255
62.169.135.0/24
84.51.234.0/23
92.51.232.0/23
92.51.238.0/23
92.51.248.0-92.51.254.255
103.61.197.0-103.61.199.255
103.125.77.0-103.125.79.255
103.210.198.0/23
103.213.212.0/22
103.255.76.0/23
167.160.16.0/23
167.160.29.0/24
170.62.89.0-170.62.95.255
170.62.100.0/24
170.62.102.0/23
170.62.106.0-170.62.108.255
170.62.110.0/23
170.62.160.0/24
170.62.224.0-170.62.235.255
185.34.108.0/22
198.55.28.0/23
203.188.164.0/24
203.188.167.0/24
203.188.169.0-203.188.173.255
212.32.74.0/24
212.56.48.0/22
212.78.245.0-212.78.251.255
Signature Algorithm: sha256WithRSAEncryption
1f:18:6f:e0:a5:e0:e8:76:88:eb:45:af:e1:9a:ca:93:fd:60:
ba:28:a4:ee:6f:22:71:40:4f:77:16:91:ae:ef:63:91:70:a6:
eb:34:d8:3c:78:d2:9c:43:44:b8:3f:99:8a:13:47:94:f3:96:
38:a6:d2:ef:15:df:fe:eb:86:aa:5a:91:ef:af:26:49:b5:ad:
e9:91:b2:45:e8:aa:bf:0c:ca:fd:56:1c:e2:7d:e0:65:54:3f:
68:f6:c5:d3:7c:65:7b:54:e0:e3:d0:6a:33:3b:05:0d:2c:b2:
9a:4f:7a:a1:de:d3:e0:c2:2a:cb:44:1d:bd:ad:75:44:72:46:
6b:47:64:08:64:0b:e7:59:31:de:d2:70:cc:23:ca:4e:8f:ea:
22:44:84:f9:65:fc:95:f1:24:3d:11:fe:91:4a:c3:dc:f3:3a:
70:b4:43:e3:06:ab:b6:93:a9:c8:ea:ab:d2:9e:ac:9c:ab:5d:
4c:c8:ef:62:52:83:77:7a:da:b2:e3:33:b0:6b:c3:07:7b:75:
89:90:81:4b:72:7e:dc:9e:fd:87:89:9a:cb:e5:1d:02:85:82:
8c:59:60:fd:31:c6:2c:ef:d0:51:88:ad:9d:24:38:8a:64:db:
61:ae:08:c2:88:c3:d0:87:96:01:7a:ea:48:ff:e1:74:4c:26:
21:d6:00:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:27 2025 by rpki-client on console.sobornost.net