Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/fVdztDEhSIBFpT0HA3R-89gABo4.roa
File: fVdztDEhSIBFpT0HA3R-89gABo4.roa (raw, json)
Hash identifier: 2BoVGqIptnqg6XvwaYieBKRPzHvrLq45BY8K4EBjc3c=
Subject key identifier: 7D:57:73:B4:31:21:48:80:45:A5:3D:07:03:74:7E:F3:D8:00:06:8E
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 157391C3
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/fVdztDEhSIBFpT0HA3R-89gABo4.roa
Signing time: Sat 01 Jan 2022 14:03:38 +0000
ROA not before: Sat 01 Jan 2022 14:03:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47536
IP address blocks: 23.92.115.0/24 maxlen: 24
23.92.127.0/24 maxlen: 24
192.40.94.0/24 maxlen: 24
151.237.188.0/24 maxlen: 24
37.72.186.0/24 maxlen: 24
130.185.153.0/24 maxlen: 24
107.150.64.0/24 maxlen: 24
107.150.67.0/24 maxlen: 24
107.150.65.0/24 maxlen: 24
107.150.71.0/24 maxlen: 24
107.150.70.0/24 maxlen: 24
5.157.6.0/24 maxlen: 24
5.157.11.0/24 maxlen: 24
104.160.16.0/24 maxlen: 24
104.160.17.0/24 maxlen: 24
104.160.18.0/24 maxlen: 24
104.160.19.0/24 maxlen: 24
5.157.14.0/24 maxlen: 24
5.157.13.0/24 maxlen: 24
162.212.171.0/24 maxlen: 24
162.212.169.0/24 maxlen: 24
5.157.24.0/24 maxlen: 24
107.150.89.0/24 maxlen: 24
162.212.172.0/24 maxlen: 24
162.212.170.0/24 maxlen: 24
162.212.168.0/24 maxlen: 24
5.157.23.0/24 maxlen: 24
162.212.175.0/24 maxlen: 24
162.212.173.0/24 maxlen: 24
107.150.93.0/24 maxlen: 24
162.212.174.0/24 maxlen: 24
5.157.29.0/24 maxlen: 24
5.157.32.0/24 maxlen: 24
5.157.37.0/24 maxlen: 24
5.157.33.0/24 maxlen: 24
5.157.43.0/24 maxlen: 24
5.157.55.0/24 maxlen: 24
5.157.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359895491 (0x157391c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: Jan 1 14:03:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d5773b43121488045a53d0703747ef3d800068e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9e:7c:aa:41:0f:fd:8a:52:03:41:bc:ef:bc:
04:d6:1b:74:1d:43:3d:81:99:43:ee:ac:26:3b:a6:
0d:85:38:e9:8c:a7:cf:98:ee:5f:a6:f5:bc:0b:e6:
9d:a4:eb:2e:db:cc:c9:a6:d6:78:99:8d:2b:1d:79:
6d:dc:46:a5:34:3a:5b:5d:c4:53:b1:b5:9d:39:3f:
24:98:3f:b8:b0:d3:7f:12:65:8c:e8:54:76:8c:c3:
2c:59:91:73:c2:de:07:cb:c1:6d:b2:0e:e7:55:8b:
1e:6d:32:03:22:f6:92:a9:f6:f6:c8:b9:56:e7:a8:
c8:b6:1d:7f:a1:04:3a:3a:79:b3:31:85:0f:48:db:
16:12:b8:95:df:a0:06:2e:1b:df:d2:3c:78:8b:61:
0e:98:15:20:54:62:ad:57:ac:99:91:77:cb:43:e4:
a0:49:ec:06:af:3c:c2:62:79:38:72:9f:c2:8f:c3:
21:32:5f:86:2a:2b:bd:14:2a:a4:b5:5a:ba:af:fa:
c2:1a:90:c3:e1:b9:75:02:36:83:f5:60:65:77:48:
16:3e:e1:ae:77:53:7c:13:6b:a3:14:35:5f:db:77:
69:23:1a:ef:d2:b2:cb:a9:ff:d6:4c:23:16:d3:4d:
7c:2f:c9:ff:a7:01:89:bd:80:ce:d7:5d:36:7f:f2:
bc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:57:73:B4:31:21:48:80:45:A5:3D:07:03:74:7E:F3:D8:00:06:8E
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/fVdztDEhSIBFpT0HA3R-89gABo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.6.0/24
5.157.11.0/24
5.157.13.0-5.157.14.255
5.157.23.0-5.157.24.255
5.157.29.0/24
5.157.32.0/23
5.157.37.0/24
5.157.43.0/24
5.157.53.0/24
5.157.55.0/24
23.92.115.0/24
23.92.127.0/24
37.72.186.0/24
104.160.16.0/22
107.150.64.0/23
107.150.67.0/24
107.150.70.0/23
107.150.89.0/24
107.150.93.0/24
130.185.153.0/24
151.237.188.0/24
162.212.168.0/21
192.40.94.0/24
Signature Algorithm: sha256WithRSAEncryption
15:62:03:97:cc:6a:ac:7f:ae:46:0a:c6:18:15:56:dc:33:7b:
86:03:6a:01:c3:69:78:f6:8f:b9:37:74:ac:ce:49:a6:f0:b4:
a0:5c:33:81:ec:47:56:c4:2b:d5:bb:70:a4:dc:2a:7c:fb:9b:
2c:1d:24:cc:dd:20:2d:91:0e:02:81:c0:90:b5:f0:21:a8:13:
e4:36:89:e7:e5:ce:c7:de:49:92:54:7e:76:c1:61:37:0a:70:
5e:d1:1a:67:18:3b:0a:97:f6:a5:86:c8:f7:9c:d4:d9:85:57:
ce:49:33:f0:c9:85:0b:76:81:c3:2d:d7:28:c0:d7:c1:c3:38:
28:66:f0:5c:4e:85:5f:ea:9b:8f:2a:6e:4c:57:d6:9a:48:59:
70:72:37:83:49:9b:1c:91:dd:d4:1d:92:17:12:c1:e5:72:e9:
bf:bb:2f:46:5d:36:23:e9:b3:69:be:da:2f:60:ea:3c:21:8c:
86:b9:13:5b:f4:ea:9a:3c:11:f0:13:ae:d2:ad:aa:e7:67:ff:
d0:f7:65:53:b0:35:d9:b5:58:bd:de:8b:59:b3:cc:f1:bd:78:
f1:69:4c:35:f9:6e:c4:07:86:98:ef:8e:0d:a8:35:00:83:c5:
8e:ab:4e:a9:de:d9:6c:12:91:4e:a6:9a:7a:02:c0:ec:a0:86:
6e:3f:b1:aa
-----BEGIN CERTIFICATE-----
MIIFiDCCBHCgAwIBAgIEFXORwzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MGYzNzZkZjVmOWVmNDg3YzgyYjMxYTg3NWM2YTQ5NmQ3OWNhMGQ3MB4XDTIyMDEw
MTE0MDMzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Q1NzczYjQzMTIx
NDg4MDQ1YTUzZDA3MDM3NDdlZjNkODAwMDY4ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALyefKpBD/2KUgNBvO+8BNYbdB1DPYGZQ+6sJjumDYU46Yyn
z5juX6b1vAvmnaTrLtvMyabWeJmNKx15bdxGpTQ6W13EU7G1nTk/JJg/uLDTfxJl
jOhUdozDLFmRc8LeB8vBbbIO51WLHm0yAyL2kqn29si5VueoyLYdf6EEOjp5szGF
D0jbFhK4ld+gBi4b39I8eIthDpgVIFRirVesmZF3y0PkoEnsBq88wmJ5OHKfwo/D
ITJfhiorvRQqpLVauq/6whqQw+G5dQI2g/VgZXdIFj7hrndTfBNroxQ1X9t3aSMa
79Kyy6n/1kwjFtNNfC/J/6cBib2AztddNn/yvIUCAwEAAaOCAqIwggKeMB0GA1Ud
DgQWBBR9V3O0MSFIgEWlPQcDdH7z2AAGjjAfBgNVHSMEGDAWgBSA83bfX570h8gr
Mah1xqSW15yg1zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dQTjIzMS1lOUlmSUt6R29kY2FrbHRlY29OYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDIvNzk1ZGVkLWZjZGYtNDdjZi1hZjgzLWE0YmMyODE2NjQzYS8x
L2ZWZHp0REVoU0lCRnBUMEhBM1ItODlnQUJvNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDIv
Nzk1ZGVkLWZjZGYtNDdjZi1hZjgzLWE0YmMyODE2NjQzYS8xL2dQTjIzMS1lOUlm
SUt6R29kY2FrbHRlY29OYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
twYIKwYBBQUHAQcBAf8EgacwgaQwgaEEAgABMIGaAwQABZ0GAwQABZ0LMAwDBAAF
nQ0DBAAFnQ4wDAMEAAWdFwMEAAWdGAMEAAWdHQMEAQWdIAMEAAWdJQMEAAWdKwME
AAWdNQMEAAWdNwMEABdccwMEABdcfwMEACVIugMEAmigEAMEAWuWQAMEAGuWQwME
AWuWRgMEAGuWWQMEAGuWXQMEAIK5mQMEAJftvAMEA6LUqAMEAMAoXjANBgkqhkiG
9w0BAQsFAAOCAQEAFWIDl8xqrH+uRgrGGBVW3DN7hgNqAcNpePaPuTd0rM5JpvC0
oFwzgexHVsQr1btwpNwqfPubLB0kzN0gLZEOAoHAkLXwIagT5DaJ5+XOx95JklR+
dsFhNwpwXtEaZxg7Cpf2pYbI95zU2YVXzkkz8MmFC3aBwy3XKMDXwcM4KGbwXE6F
X+qbjypuTFfWmkhZcHI3g0mbHJHd1B2SFxLB5XLpv7svRl02I+mzab7aL2DqPCGM
hrkTW/TqmjwR8BOu0q2q52f/0PdlU7A12bVYvd6LWbPM8b148WlMNfluxAeGmO+O
Dag1AIPFjqtOqd7ZbBKRTqaaegLA7KCGbj+xqg==
-----END CERTIFICATE-----
Generated at Tue Jun 17 22:12:37 2025 by rpki-client