Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/v_6YRkVEWHDpB68NdTDKbTF8Y9M.roa
File: v_6YRkVEWHDpB68NdTDKbTF8Y9M.roa (raw, json)
Hash identifier: 4osdiGG8Ul+bOQh4DNyuj1fwuWqb3gabRKaDbmil/nQ=
Subject key identifier: BF:FE:98:46:45:44:58:70:E9:07:AF:0D:75:30:CA:6D:31:7C:63:D3
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 0187F560FB5F0328BEEBC046DE895BEBD643
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/v_6YRkVEWHDpB68NdTDKbTF8Y9M.roa
Signing time: Sun 07 May 2023 08:43:06 +0000
ROA not before: Sun 07 May 2023 08:43:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58065
IP address blocks: 192.40.94.0/24 maxlen: 24
151.237.188.0/24 maxlen: 24
37.72.186.0/24 maxlen: 24
107.150.64.0/24 maxlen: 24
107.150.70.0/24 maxlen: 24
107.150.71.0/24 maxlen: 24
107.150.65.0/24 maxlen: 24
107.150.67.0/24 maxlen: 24
5.157.11.0/24 maxlen: 24
107.150.75.0/24 maxlen: 24
5.157.6.0/24 maxlen: 24
104.160.17.0/24 maxlen: 24
104.160.16.0/24 maxlen: 24
104.160.19.0/24 maxlen: 24
104.160.18.0/24 maxlen: 24
107.150.90.0/24 maxlen: 24
5.157.24.0/24 maxlen: 24
107.150.88.0/24 maxlen: 24
107.150.89.0/24 maxlen: 24
5.157.19.0/24 maxlen: 24
107.150.91.0/24 maxlen: 24
5.157.21.0/24 maxlen: 24
5.157.23.0/24 maxlen: 24
5.157.26.0/24 maxlen: 24
107.150.94.0/24 maxlen: 24
5.157.29.0/24 maxlen: 24
107.150.93.0/24 maxlen: 24
5.157.32.0/24 maxlen: 24
5.157.34.0/24 maxlen: 24
5.157.33.0/24 maxlen: 24
5.157.37.0/24 maxlen: 24
5.157.41.0/24 maxlen: 24
5.157.43.0/24 maxlen: 24
5.157.51.0/24 maxlen: 24
5.157.53.0/24 maxlen: 24
5.157.55.0/24 maxlen: 24
23.92.115.0/24 maxlen: 24
23.92.119.0/24 maxlen: 24
130.185.153.0/24 maxlen: 24
162.212.168.0/24 maxlen: 24
162.212.170.0/24 maxlen: 24
162.212.172.0/24 maxlen: 24
162.212.169.0/24 maxlen: 24
162.212.171.0/24 maxlen: 24
162.212.173.0/24 maxlen: 24
162.212.175.0/24 maxlen: 24
162.212.174.0/24 maxlen: 24
2a02:5740:14::/48 maxlen: 48
2a02:5740:22::/48 maxlen: 48
2a02:5740:4::/48 maxlen: 48
2a02:5740:9::/48 maxlen: 48
2a02:5740:10::/48 maxlen: 48
2a02:5740:21::/48 maxlen: 48
2a02:5740:24::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f5:60:fb:5f:03:28:be:eb:c0:46:de:89:5b:eb:d6:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: May 7 08:43:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bffe984645445870e907af0d7530ca6d317c63d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:db:37:70:66:28:b8:d9:e8:a5:9a:59:42:ec:
26:25:f2:ab:82:42:b9:40:4f:6a:d3:e2:68:81:91:
be:5a:41:e5:0e:7f:bb:41:51:fe:96:93:a7:0b:da:
52:cc:3a:e5:c9:44:37:a5:46:77:16:87:99:7b:dd:
fe:dd:f5:22:f5:33:82:da:65:ce:fa:02:12:ed:b4:
ed:06:f6:db:01:27:2f:21:c7:70:b5:61:7e:97:83:
23:82:2f:12:83:f2:72:da:a8:fb:20:ee:94:42:f5:
b2:63:10:3b:70:93:6f:40:16:d9:f3:57:ee:59:f2:
0e:c7:c4:74:ec:1a:01:c9:8e:62:98:a2:03:eb:b5:
b2:ab:8d:9f:a1:fe:f2:5c:76:da:64:90:a2:fa:01:
0c:26:7f:43:c0:f5:94:96:82:ff:34:a8:20:5c:7c:
26:ac:4e:bc:3d:53:d7:34:bb:36:fc:9c:eb:e7:0e:
c8:f7:ca:7a:45:37:ef:f0:ce:61:1f:9b:94:0e:e0:
24:06:0c:44:fb:8b:af:b3:05:df:4e:38:d1:e4:af:
6f:b1:d0:03:47:fb:4d:f1:4d:e3:12:e3:0f:e8:37:
ad:88:0c:05:b0:00:98:c4:84:05:e1:1e:16:ef:b6:
c9:ad:3b:93:8c:13:9c:8b:7a:8d:82:a2:57:7b:9f:
f5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:FE:98:46:45:44:58:70:E9:07:AF:0D:75:30:CA:6D:31:7C:63:D3
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/v_6YRkVEWHDpB68NdTDKbTF8Y9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.6.0/24
5.157.11.0/24
5.157.19.0/24
5.157.21.0/24
5.157.23.0-5.157.24.255
5.157.26.0/24
5.157.29.0/24
5.157.32.0-5.157.34.255
5.157.37.0/24
5.157.41.0/24
5.157.43.0/24
5.157.51.0/24
5.157.53.0/24
5.157.55.0/24
23.92.115.0/24
23.92.119.0/24
37.72.186.0/24
104.160.16.0/22
107.150.64.0/23
107.150.67.0/24
107.150.70.0/23
107.150.75.0/24
107.150.88.0/22
107.150.93.0-107.150.94.255
130.185.153.0/24
151.237.188.0/24
162.212.168.0/21
192.40.94.0/24
IPv6:
2a02:5740:4::/48
2a02:5740:9::/48
2a02:5740:10::/48
2a02:5740:14::/48
2a02:5740:21::-2a02:5740:22:ffff:ffff:ffff:ffff:ffff
2a02:5740:24::/48
Signature Algorithm: sha256WithRSAEncryption
36:5b:a1:84:cb:9c:86:f9:12:fd:ad:10:3e:63:cd:d8:99:10:
fc:d4:96:c1:f5:68:24:2d:a9:a4:35:55:4e:47:05:f3:d0:c5:
af:bf:b0:ae:c0:a0:f8:da:20:77:bf:d3:72:82:6d:02:6e:53:
16:8f:2e:b5:80:9d:24:37:6f:7c:dc:92:5e:a7:27:e1:34:4d:
d6:5c:19:76:28:56:28:9d:09:be:7c:83:97:5b:76:71:9f:32:
39:cb:2b:cc:31:76:e3:85:c7:2c:24:8a:24:af:e5:58:06:3b:
92:0d:51:ec:7b:59:e8:a6:50:7b:4c:4e:15:be:9e:90:0d:fb:
44:bd:3c:52:12:42:b1:24:59:bb:ef:aa:ce:99:98:78:4b:42:
24:b2:19:49:c4:cc:42:24:6a:0c:51:a8:3f:db:43:11:9b:c2:
3d:90:02:7a:73:34:6d:43:b2:32:61:24:05:df:3b:77:1c:d0:
5c:c6:2b:83:2b:d8:ae:d3:40:2f:f7:55:94:e8:cc:c4:6b:15:
84:bc:75:46:e0:ec:7b:80:11:45:93:b9:6d:6d:92:ad:9a:65:
39:0f:de:7f:77:7f:90:90:73:a2:b6:1c:3f:5e:56:c4:6f:0b:
70:4f:7d:60:67:18:c5:0b:bf:00:61:4d:67:d1:a7:39:f2:2e:
91:cd:f6:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 07:33:26 2025 by rpki-client