Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/MMY7e9orpXneAd1jpUcoqhrPNGs.roa
File: MMY7e9orpXneAd1jpUcoqhrPNGs.roa (raw, json)
Hash identifier: xlAsoBQdjoIMWnYsFAQRaRtmSO+WE//QF5drnQ0y98I=
Subject key identifier: 30:C6:3B:7B:DA:2B:A5:79:DE:01:DD:63:A5:47:28:AA:1A:CF:34:6B
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01961B6DA27CFC6E004BC822F1CDAB5A9EE7
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/MMY7e9orpXneAd1jpUcoqhrPNGs.roa
Signing time: Wed 09 Apr 2025 16:41:31 +0000
ROA not before: Wed 09 Apr 2025 16:41:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137409
IP address blocks: 14.102.61.0/24 maxlen: 24
14.102.62.0/24 maxlen: 24
14.102.84.0/24 maxlen: 24
14.102.86.0/24 maxlen: 24
45.150.180.0/24 maxlen: 24
62.169.128.0/24 maxlen: 24
66.56.87.0/24 maxlen: 24
103.61.196.0/24 maxlen: 24
103.138.78.0/24 maxlen: 24
167.160.28.0/24 maxlen: 24
170.62.238.0/24 maxlen: 24
192.253.209.0/24 maxlen: 24
192.253.211.0/24 maxlen: 24
198.55.31.0/24 maxlen: 24
203.188.166.0/24 maxlen: 24
203.188.174.0/24 maxlen: 24
203.188.175.0/24 maxlen: 24
203.188.176.0/24 maxlen: 24
203.188.177.0/24 maxlen: 24
203.188.178.0/24 maxlen: 24
203.188.179.0/24 maxlen: 24
203.188.180.0/24 maxlen: 24
203.188.184.0/24 maxlen: 24
203.188.185.0/24 maxlen: 24
203.188.186.0/24 maxlen: 24
203.188.187.0/24 maxlen: 24
203.188.188.0/24 maxlen: 24
203.188.189.0/24 maxlen: 24
203.188.190.0/24 maxlen: 24
203.188.191.0/24 maxlen: 24
212.32.51.0/24 maxlen: 24
212.32.70.0/24 maxlen: 24
212.32.71.0/24 maxlen: 24
212.32.73.0/24 maxlen: 24
212.32.76.0/24 maxlen: 24
212.32.77.0/24 maxlen: 24
212.32.78.0/24 maxlen: 24
212.32.79.0/24 maxlen: 24
212.56.55.0/24 maxlen: 24
213.254.163.0/24 maxlen: 24
213.254.172.0/24 maxlen: 24
213.254.173.0/24 maxlen: 24
213.254.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1b:6d:a2:7c:fc:6e:00:4b:c8:22:f1:cd:ab:5a:9e:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Apr 9 16:41:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=30c63b7bda2ba579de01dd63a54728aa1acf346b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5e:b6:d6:76:48:9d:f0:8e:53:28:09:a6:39:
d9:2c:1e:93:bd:15:b1:ec:91:37:02:3b:82:bb:ff:
1b:5d:b1:e4:0d:db:b8:49:f1:84:06:d7:08:2c:e4:
3b:94:f8:ba:1e:5a:49:31:93:0e:e3:03:c6:81:cd:
17:91:5b:59:81:e4:35:13:1a:15:ac:76:ab:c8:87:
e9:a9:5b:63:dd:ed:78:3d:77:cf:4a:9c:5e:75:bd:
3a:60:40:61:be:a2:91:5a:43:d3:e7:54:40:4f:ac:
30:55:aa:13:15:22:b1:5b:54:43:81:fe:12:f6:d1:
91:43:0e:39:e1:af:df:a8:93:51:56:9a:e4:fd:b1:
5c:af:b4:1e:59:d4:ca:a1:d2:24:47:e3:ca:17:ee:
5c:d3:e5:a8:a0:57:2b:35:1f:fb:d6:f0:81:e3:9e:
ad:da:ba:a4:fa:37:5f:19:fe:1d:51:8f:4c:3e:65:
fe:87:c0:4c:53:48:4b:33:4e:2b:f5:11:58:b1:c2:
ce:cb:82:7e:ed:5a:a6:7a:c1:7f:a9:dc:7f:92:13:
c3:a7:e3:89:5c:9c:83:55:fe:80:65:ba:0e:28:d1:
f8:36:f8:c4:27:10:fc:64:8f:ee:0f:03:7d:2b:22:
d7:8f:26:b7:61:a6:dd:5e:ed:38:82:55:b9:2b:a7:
42:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C6:3B:7B:DA:2B:A5:79:DE:01:DD:63:A5:47:28:AA:1A:CF:34:6B
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/MMY7e9orpXneAd1jpUcoqhrPNGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.61.0-14.102.62.255
14.102.84.0/24
14.102.86.0/24
45.150.180.0/24
62.169.128.0/24
66.56.87.0/24
103.61.196.0/24
103.138.78.0/24
167.160.28.0/24
170.62.238.0/24
192.253.209.0/24
192.253.211.0/24
198.55.31.0/24
203.188.166.0/24
203.188.174.0-203.188.180.255
203.188.184.0/21
212.32.51.0/24
212.32.70.0/23
212.32.73.0/24
212.32.76.0/22
212.56.55.0/24
213.254.163.0/24
213.254.172.0/23
213.254.175.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:80:58:24:5d:ab:11:d0:a3:a8:86:d4:72:31:9e:73:36:03:
57:36:9f:a8:85:d1:e4:14:de:1b:0a:f1:32:eb:01:0a:99:e6:
24:ae:6d:ab:f7:44:fc:ef:33:97:c2:a4:c0:78:66:cd:af:08:
67:6c:9b:af:34:e6:94:bc:03:1e:fb:c8:bc:b0:40:fc:a0:c7:
41:8f:af:61:1c:80:22:58:a6:c0:3e:83:4f:ea:f6:9f:92:8f:
20:18:b4:64:c2:d0:b1:9e:0f:00:74:5b:8b:4a:1f:29:91:a2:
7c:25:b4:13:15:98:69:f4:a8:f7:ec:23:d5:38:54:9c:72:89:
af:3b:be:13:d7:06:cb:d6:96:2d:e2:4b:41:e4:f2:e9:6c:12:
4a:a9:ee:5b:df:3e:3a:14:6f:23:7e:a2:bf:ca:f4:c5:15:9d:
e2:99:1d:c8:d1:84:3f:20:03:5c:c6:96:6a:93:b1:33:bf:95:
ec:ee:42:23:20:7a:a0:c1:22:55:7f:21:21:01:80:61:fb:48:
2c:dc:2b:ef:cb:12:17:45:c6:67:a3:9d:14:ba:2e:ee:99:91:
66:42:05:de:ac:5c:93:da:20:18:37:e1:a4:05:cf:a9:ed:43:
90:b3:b6:d2:7e:b4:0b:04:f7:90:5c:fc:03:45:46:28:4a:a8:
eb:d6:0c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:41 2025 by rpki-client on console.sobornost.net