Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/knNUde1XUCxGAbwUvJj5Jrkqo9Y.roa
File: knNUde1XUCxGAbwUvJj5Jrkqo9Y.roa (raw, json)
Hash identifier: oiOcIuH2m10J6cvIb5fgIhMS70JKPWcg5f5lzFJ4d3s=
Subject key identifier: 92:73:54:75:ED:57:50:2C:46:01:BC:14:BC:98:F9:26:B9:2A:A3:D6
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 16421597
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/knNUde1XUCxGAbwUvJj5Jrkqo9Y.roa
Signing time: Sun 27 Mar 2022 13:06:44 +0000
ROA not before: Sun 27 Mar 2022 13:06:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41564
IP address blocks: 23.92.127.0/24 maxlen: 24
192.40.88.0/24 maxlen: 24
158.222.0.0/20 maxlen: 20
158.222.3.0/24 maxlen: 24
158.222.7.0/24 maxlen: 24
158.222.5.0/24 maxlen: 24
151.237.186.0/24 maxlen: 24
5.157.4.0/24 maxlen: 24
5.157.8.0/24 maxlen: 24
104.160.4.0/24 maxlen: 24
104.160.2.0/24 maxlen: 24
104.160.6.0/24 maxlen: 24
104.160.10.0/24 maxlen: 24
104.160.12.0/24 maxlen: 24
104.160.20.0/24 maxlen: 24
5.153.236.0/24 maxlen: 24
5.153.239.0/24 maxlen: 24
5.157.17.0/24 maxlen: 24
5.157.13.0/24 maxlen: 24
5.157.14.0/24 maxlen: 24
5.157.22.0/24 maxlen: 24
5.157.27.0/24 maxlen: 24
5.157.30.0/24 maxlen: 24
5.157.41.0/24 maxlen: 24
5.157.42.0/24 maxlen: 24
5.157.45.0/24 maxlen: 24
5.157.58.0/24 maxlen: 24
5.157.56.0/24 maxlen: 24
5.157.59.0/24 maxlen: 24
5.157.61.0/24 maxlen: 24
5.157.63.0/24 maxlen: 24
5.157.62.0/24 maxlen: 24
5.157.60.0/24 maxlen: 24
2a02:5740:3::/48 maxlen: 48
2a02:5740::/48 maxlen: 48
2a02:5740:11::/48 maxlen: 48
2a02:5740:5::/48 maxlen: 48
2a02:5740:18::/48 maxlen: 48
2a02:5740:2::/48 maxlen: 48
2a02:5740:6::/48 maxlen: 48
2a02:5740:1::/48 maxlen: 48
2a02:5740:21::/48 maxlen: 48
2a02:5740:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373429655 (0x16421597)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: Mar 27 13:06:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92735475ed57502c4601bc14bc98f926b92aa3d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7d:8d:b8:78:d9:f0:61:da:58:b1:64:2b:e6:
83:aa:86:52:41:db:50:de:1c:c4:b5:c0:20:d8:e1:
eb:94:4d:89:df:b6:3d:46:19:c0:83:8a:21:15:a3:
86:87:52:20:e8:17:6f:65:84:22:29:17:37:a0:b5:
5a:ec:18:09:e5:5f:da:d2:74:ef:c0:49:4f:26:b6:
df:c3:b8:6d:a4:ec:66:b4:ca:41:5b:df:e1:a7:a0:
50:25:e1:71:12:8b:b3:a3:4d:9e:4c:52:e0:02:65:
33:86:46:ad:ac:af:fa:fd:85:a7:1f:64:93:f8:f2:
56:61:bd:63:21:c8:88:69:15:0d:bd:bb:f3:f3:0f:
0d:ea:07:08:cf:26:16:0c:d6:27:76:3a:00:a4:09:
68:ed:76:45:c8:94:60:a0:ac:19:7b:ce:31:fa:0e:
2b:4d:ee:f3:98:d7:01:5c:1c:9a:48:74:bf:66:f9:
63:d1:b0:7c:26:b5:cc:62:ca:a2:76:1b:cd:64:f4:
d0:01:e5:eb:00:b6:46:f2:e1:e6:3a:f9:3a:03:bd:
dd:e3:35:c1:b0:1e:4e:91:b5:0f:bc:4e:9b:3c:d5:
45:70:80:13:45:e3:f0:5c:6f:ca:e5:e6:88:cd:04:
e5:98:8f:37:8b:a2:a1:0d:08:0a:9a:ee:ff:ee:5e:
84:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:73:54:75:ED:57:50:2C:46:01:BC:14:BC:98:F9:26:B9:2A:A3:D6
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/knNUde1XUCxGAbwUvJj5Jrkqo9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.153.236.0/24
5.153.239.0/24
5.157.4.0/24
5.157.8.0/24
5.157.13.0-5.157.14.255
5.157.17.0/24
5.157.22.0/24
5.157.27.0/24
5.157.30.0/24
5.157.41.0-5.157.42.255
5.157.45.0/24
5.157.56.0/24
5.157.58.0-5.157.63.255
23.92.127.0/24
104.160.2.0/24
104.160.4.0/24
104.160.6.0/24
104.160.10.0/24
104.160.12.0/24
104.160.20.0/24
151.237.186.0/24
158.222.0.0/20
192.40.88.0/24
IPv6:
2a02:5740::-2a02:5740:6:ffff:ffff:ffff:ffff:ffff
2a02:5740:11::/48
2a02:5740:18::/48
2a02:5740:21::/48
Signature Algorithm: sha256WithRSAEncryption
2c:22:e6:9a:05:f1:c5:86:ef:5b:75:67:9b:61:a5:ae:37:3a:
ab:53:f4:98:23:f9:8b:8f:52:21:e7:97:aa:ca:86:8b:9f:4d:
55:06:b7:12:b5:30:21:d3:c4:8f:b5:e5:b2:03:af:93:c9:b6:
f0:d5:3f:51:06:a0:35:77:15:2d:84:99:2e:8a:13:0e:ff:3f:
06:e1:2f:bc:01:7d:dc:38:17:5b:9e:7d:8a:32:63:9e:63:ec:
74:25:ed:65:b9:ac:af:de:e7:73:3f:a8:d3:3e:d0:cc:9d:53:
49:58:0c:36:3b:e4:2a:2a:8b:43:66:3d:26:fd:ec:1b:52:e1:
11:c9:7b:16:06:24:57:e5:ac:9c:ef:51:3b:d7:23:cf:f6:ee:
2e:dd:23:ac:70:cc:12:46:ec:dd:3f:45:7f:e8:2c:f6:64:01:
6d:ca:7c:e1:82:a8:2a:de:8c:2b:af:36:cc:cc:19:50:88:cd:
0c:77:56:e6:d7:a0:82:8d:fb:31:6d:1f:4f:e2:08:60:39:6b:
69:29:74:ff:e0:9d:f9:39:75:df:18:0c:a2:ec:bc:3b:a1:d2:
f4:88:80:47:e5:f7:2c:2f:72:3a:3c:04:5a:25:e6:84:31:7a:
bc:45:9e:9c:50:a3:bd:93:1c:e3:a1:5a:c0:e0:f0:c7:b3:18:
cf:da:2d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:44:53 2025 by rpki-client