Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/cBn4FAkywJTkEk0XpoENY9Brh7Q.roa
File: cBn4FAkywJTkEk0XpoENY9Brh7Q.roa (raw, json)
Hash identifier: R66rT2DAfIs1shOc9ZvQCM+nDiDZVASs/IKZXZypQBs=
Subject key identifier: 70:19:F8:14:09:32:C0:94:E4:12:4D:17:A6:81:0D:63:D0:6B:87:B4
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 0188FC23608AD6A83BFFE2E3AB183C3B1929
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/cBn4FAkywJTkEk0XpoENY9Brh7Q.roa
Signing time: Tue 27 Jun 2023 09:15:56 +0000
ROA not before: Tue 27 Jun 2023 09:15:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58065
IP address blocks: 192.40.94.0/24 maxlen: 24
151.237.188.0/24 maxlen: 24
37.72.186.0/24 maxlen: 24
107.150.64.0/24 maxlen: 24
107.150.70.0/24 maxlen: 24
107.150.71.0/24 maxlen: 24
107.150.65.0/24 maxlen: 24
107.150.67.0/24 maxlen: 24
5.157.11.0/24 maxlen: 24
107.150.75.0/24 maxlen: 24
5.157.6.0/24 maxlen: 24
104.160.17.0/24 maxlen: 24
104.160.16.0/24 maxlen: 24
104.160.19.0/24 maxlen: 24
104.160.18.0/24 maxlen: 24
107.150.90.0/24 maxlen: 24
5.157.24.0/24 maxlen: 24
107.150.88.0/24 maxlen: 24
107.150.89.0/24 maxlen: 24
5.157.19.0/24 maxlen: 24
107.150.91.0/24 maxlen: 24
5.157.21.0/24 maxlen: 24
5.157.23.0/24 maxlen: 24
5.157.26.0/24 maxlen: 24
107.150.94.0/24 maxlen: 24
5.157.29.0/24 maxlen: 24
107.150.93.0/24 maxlen: 24
5.157.32.0/24 maxlen: 24
5.157.34.0/24 maxlen: 24
5.157.33.0/24 maxlen: 24
5.157.37.0/24 maxlen: 24
5.157.41.0/24 maxlen: 24
5.157.43.0/24 maxlen: 24
5.157.51.0/24 maxlen: 24
5.157.53.0/24 maxlen: 24
5.157.55.0/24 maxlen: 24
23.92.115.0/24 maxlen: 24
23.92.119.0/24 maxlen: 24
130.185.153.0/24 maxlen: 24
162.212.168.0/24 maxlen: 24
162.212.170.0/24 maxlen: 24
162.212.172.0/24 maxlen: 24
162.212.169.0/24 maxlen: 24
162.212.171.0/24 maxlen: 24
162.212.173.0/24 maxlen: 24
162.212.175.0/24 maxlen: 24
162.212.174.0/24 maxlen: 24
2a02:5740:14::/48 maxlen: 48
2a02:5740:4::/48 maxlen: 48
2a02:5740:9::/48 maxlen: 48
2a02:5740:10::/48 maxlen: 48
2a02:5740:21::/48 maxlen: 48
2a02:5740:24::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fc:23:60:8a:d6:a8:3b:ff:e2:e3:ab:18:3c:3b:19:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: Jun 27 09:15:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7019f8140932c094e4124d17a6810d63d06b87b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e5:b5:4d:6d:33:c2:dc:1f:38:db:98:ec:e4:
f0:7a:98:9c:9c:6a:3b:38:c7:11:29:bd:06:cc:ab:
44:3a:6b:08:72:97:ed:57:07:9e:3c:af:04:a3:45:
1e:4b:95:d3:38:7b:ca:6e:ce:a4:2b:74:a3:3c:8b:
b6:06:09:c9:a3:b9:46:82:89:50:c8:98:48:b4:75:
be:c8:59:e8:40:8a:96:15:19:9c:a2:65:e8:11:2f:
c0:ce:da:89:91:b5:5d:4e:1d:ac:e7:9f:6c:c8:40:
55:ca:dc:03:b3:b8:25:c4:96:d4:8e:9d:41:ac:f0:
a4:cb:2a:db:6c:47:9d:9a:ef:36:a0:97:a2:a3:ba:
95:cb:77:1d:71:13:dc:e7:af:14:2c:e2:af:03:fa:
eb:f5:36:ba:92:58:05:2c:65:34:07:9c:0b:99:f5:
e8:85:be:74:e3:77:fe:29:c2:e2:2d:c4:f9:85:19:
d9:dc:97:d2:9d:36:40:d3:24:d8:7e:32:c0:e7:0a:
85:89:fb:59:80:43:fd:f1:82:98:d5:f3:34:5b:61:
7c:40:e0:ee:e2:d9:6c:b2:08:c9:a9:33:33:4f:a4:
e9:ef:07:34:53:cd:17:ae:d3:d3:5b:87:f0:82:0b:
3f:d6:20:c4:f5:78:7e:97:15:ec:ba:db:85:b4:4b:
3f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:19:F8:14:09:32:C0:94:E4:12:4D:17:A6:81:0D:63:D0:6B:87:B4
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/cBn4FAkywJTkEk0XpoENY9Brh7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.6.0/24
5.157.11.0/24
5.157.19.0/24
5.157.21.0/24
5.157.23.0-5.157.24.255
5.157.26.0/24
5.157.29.0/24
5.157.32.0-5.157.34.255
5.157.37.0/24
5.157.41.0/24
5.157.43.0/24
5.157.51.0/24
5.157.53.0/24
5.157.55.0/24
23.92.115.0/24
23.92.119.0/24
37.72.186.0/24
104.160.16.0/22
107.150.64.0/23
107.150.67.0/24
107.150.70.0/23
107.150.75.0/24
107.150.88.0/22
107.150.93.0-107.150.94.255
130.185.153.0/24
151.237.188.0/24
162.212.168.0/21
192.40.94.0/24
IPv6:
2a02:5740:4::/48
2a02:5740:9::/48
2a02:5740:10::/48
2a02:5740:14::/48
2a02:5740:21::/48
2a02:5740:24::/48
Signature Algorithm: sha256WithRSAEncryption
0e:7c:e6:a6:69:d6:31:0d:55:e2:87:3e:73:45:36:cf:c7:43:
c9:fe:bb:65:24:1d:85:fc:6b:3b:02:79:13:9d:a8:fb:b9:84:
55:c2:8d:f6:85:62:6b:08:2d:b4:bb:4e:c5:3e:c9:0e:d4:80:
c3:83:d5:e2:73:ce:18:d2:b6:46:84:0c:42:6c:cd:b4:e7:84:
e3:26:9b:79:4a:da:2f:b4:5a:e9:90:48:3c:0d:9a:9a:8c:63:
21:07:2f:2b:de:80:71:a8:07:15:c4:30:99:5a:c9:96:9e:6c:
9e:ef:61:6e:b0:6a:10:24:ad:d4:68:dc:e1:35:98:10:dc:f1:
40:aa:9c:01:7f:b7:f2:91:69:9e:5a:0a:24:32:72:63:47:c5:
75:28:9d:43:d9:50:56:01:c7:f8:aa:e7:10:b7:61:7f:65:39:
bf:93:5f:6d:ee:99:9e:4c:a8:14:32:7e:90:ef:1d:ed:14:1f:
36:6c:ec:96:c0:e2:78:be:70:b1:b5:6c:b4:65:1c:20:24:43:
f5:21:ac:4f:d7:72:d3:a3:02:73:7b:04:e3:1b:5a:6a:b5:26:
6e:22:71:62:46:e0:3a:a0:e1:40:6c:cf:75:99:08:4d:51:8a:
cb:b9:49:74:0c:23:40:34:b6:d7:fe:b5:c3:19:98:24:a0:2b:
68:48:90:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 10:47:37 2025 by rpki-client