Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/K5gtziJAPvHaaXwCsRKH4Jx0wUY.roa
File: K5gtziJAPvHaaXwCsRKH4Jx0wUY.roa (raw, json)
Hash identifier: 3Wk0bAAtu9VuXaRVOy7xn6qc+Qd7I9EN1KTaV5T2Zpc=
Subject key identifier: 2B:98:2D:CE:22:40:3E:F1:DA:69:7C:02:B1:12:87:E0:9C:74:C1:46
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 018A2C5A240E9F9A1F5C0042393E93EC43D9
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/K5gtziJAPvHaaXwCsRKH4Jx0wUY.roa
Signing time: Fri 25 Aug 2023 11:00:19 +0000
ROA not before: Fri 25 Aug 2023 11:00:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58065
IP address blocks: 192.40.94.0/24 maxlen: 24
151.237.188.0/24 maxlen: 24
37.72.186.0/24 maxlen: 24
107.150.64.0/24 maxlen: 24
107.150.70.0/24 maxlen: 24
107.150.71.0/24 maxlen: 24
107.150.65.0/24 maxlen: 24
107.150.67.0/24 maxlen: 24
5.157.11.0/24 maxlen: 24
107.150.75.0/24 maxlen: 24
5.157.6.0/24 maxlen: 24
104.160.17.0/24 maxlen: 24
104.160.16.0/24 maxlen: 24
104.160.19.0/24 maxlen: 24
104.160.18.0/24 maxlen: 24
107.150.90.0/24 maxlen: 24
5.157.24.0/24 maxlen: 24
107.150.88.0/24 maxlen: 24
107.150.89.0/24 maxlen: 24
5.157.19.0/24 maxlen: 24
107.150.91.0/24 maxlen: 24
5.157.21.0/24 maxlen: 24
5.157.23.0/24 maxlen: 24
5.157.26.0/24 maxlen: 24
107.150.94.0/24 maxlen: 24
5.157.29.0/24 maxlen: 24
107.150.93.0/24 maxlen: 24
5.157.32.0/24 maxlen: 24
5.157.34.0/24 maxlen: 24
5.157.33.0/24 maxlen: 24
5.157.37.0/24 maxlen: 24
5.157.41.0/24 maxlen: 24
5.157.43.0/24 maxlen: 24
5.157.51.0/24 maxlen: 24
5.157.53.0/24 maxlen: 24
5.157.55.0/24 maxlen: 24
23.92.115.0/24 maxlen: 24
23.92.119.0/24 maxlen: 24
130.185.153.0/24 maxlen: 24
162.212.168.0/24 maxlen: 24
162.212.170.0/24 maxlen: 24
162.212.172.0/24 maxlen: 24
162.212.169.0/24 maxlen: 24
162.212.171.0/24 maxlen: 24
162.212.173.0/24 maxlen: 24
162.212.175.0/24 maxlen: 24
162.212.174.0/24 maxlen: 24
2a02:5740:14::/48 maxlen: 48
2a02:5740:26::/48 maxlen: 48
2a02:5740:4::/48 maxlen: 48
2a02:5740:9::/48 maxlen: 48
2a02:5740:10::/48 maxlen: 48
2a02:5740:21::/48 maxlen: 48
2a02:5740:24::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:5a:24:0e:9f:9a:1f:5c:00:42:39:3e:93:ec:43:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: Aug 25 11:00:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b982dce22403ef1da697c02b11287e09c74c146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:88:f8:81:10:fc:50:81:06:10:2a:7a:ec:e3:
dc:d4:7c:35:70:67:eb:a1:03:f0:24:6a:2f:f5:4b:
77:97:1f:f2:29:3e:33:68:16:81:cb:51:33:81:f4:
da:90:8b:6f:98:15:05:06:51:6c:36:f6:7d:ef:ac:
1b:24:21:c3:4f:0d:47:f6:5c:c4:f3:bb:f0:2d:07:
da:83:26:48:01:65:ee:33:89:ff:26:f5:43:29:2e:
61:a0:fb:bf:97:c2:8a:bd:4c:75:4e:09:8f:c3:d9:
80:cc:65:ec:0b:aa:a3:86:9d:d6:20:5c:6f:fb:20:
95:15:e7:2b:88:42:c3:b9:fb:28:1a:93:cc:b8:8d:
c7:07:9a:c3:6e:8a:90:a2:1a:f6:ab:01:25:18:4a:
6a:73:00:dd:ed:cc:db:41:d5:4f:c7:eb:b7:cf:bf:
b1:f1:a6:08:7a:32:80:ee:0a:53:72:27:3b:a4:b2:
6e:15:63:0b:b6:3a:3a:b7:ea:83:ea:ea:af:e3:87:
f1:7f:72:e7:a6:a9:58:75:f0:1f:e8:54:31:3c:a1:
5a:4b:1d:db:fc:4c:8f:f5:64:68:81:9c:26:3b:a3:
dd:f4:97:c7:09:7e:e6:d3:f3:90:cb:68:d9:34:80:
e8:60:97:9f:23:6d:5f:44:ed:da:5a:0a:bc:41:1e:
ca:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:98:2D:CE:22:40:3E:F1:DA:69:7C:02:B1:12:87:E0:9C:74:C1:46
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/K5gtziJAPvHaaXwCsRKH4Jx0wUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.6.0/24
5.157.11.0/24
5.157.19.0/24
5.157.21.0/24
5.157.23.0-5.157.24.255
5.157.26.0/24
5.157.29.0/24
5.157.32.0-5.157.34.255
5.157.37.0/24
5.157.41.0/24
5.157.43.0/24
5.157.51.0/24
5.157.53.0/24
5.157.55.0/24
23.92.115.0/24
23.92.119.0/24
37.72.186.0/24
104.160.16.0/22
107.150.64.0/23
107.150.67.0/24
107.150.70.0/23
107.150.75.0/24
107.150.88.0/22
107.150.93.0-107.150.94.255
130.185.153.0/24
151.237.188.0/24
162.212.168.0/21
192.40.94.0/24
IPv6:
2a02:5740:4::/48
2a02:5740:9::/48
2a02:5740:10::/48
2a02:5740:14::/48
2a02:5740:21::/48
2a02:5740:24::/48
2a02:5740:26::/48
Signature Algorithm: sha256WithRSAEncryption
62:63:83:7e:26:9a:90:b7:a3:1e:81:87:91:05:c1:86:08:c9:
9a:b5:11:0c:34:7f:d6:36:3c:ee:b5:70:31:38:7a:b0:3d:38:
a5:33:2c:45:2b:df:aa:f1:6c:0b:ad:70:fc:2a:18:c9:b8:8c:
f3:f2:f7:3d:b8:c8:e6:d3:fe:e5:fe:b4:23:32:17:38:8f:6e:
ad:4e:a6:7e:05:6c:70:ad:aa:62:6b:f6:bd:8b:db:9f:58:54:
39:84:4b:8e:56:a3:50:d8:f6:43:d6:46:73:25:12:41:cb:c7:
3b:58:5a:38:c0:24:09:b5:3c:d2:87:9d:65:5e:28:79:8f:5d:
ce:82:7b:28:2b:12:c3:7e:96:b1:30:aa:c1:8c:ee:a2:a0:62:
f7:ec:10:16:b2:05:12:bf:a2:eb:ff:1d:3c:76:32:87:37:30:
41:9d:76:46:bd:52:c9:45:3f:db:36:88:da:8f:a7:dd:dc:72:
57:1e:f4:60:a1:60:60:7a:c5:fe:db:19:4f:52:01:aa:91:d2:
08:d9:27:a9:90:e2:d5:8a:f9:e6:00:2b:9a:b5:23:f3:01:a5:
56:a2:be:9f:44:3b:75:5a:14:ea:e5:00:b7:ba:eb:34:4a:72:
bf:96:00:14:06:05:16:38:08:52:80:cc:eb:1a:07:aa:6f:d0:
2d:eb:b8:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 09:34:26 2025 by rpki-client