Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/5pZD9AG_bFCUV7U9ok1svGxT2Po.roa
File: 5pZD9AG_bFCUV7U9ok1svGxT2Po.roa (raw, json)
Hash identifier: 9153wHsD5LwyTcGfDom2JwhAylnaQmSa8KoB+cswR/g=
Subject key identifier: E6:96:43:F4:01:BF:6C:50:94:57:B5:3D:A2:4D:6C:BC:6C:53:D8:FA
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 0193A14C27D43DE332E9DCE8C9098DCBCC93
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/5pZD9AG_bFCUV7U9ok1svGxT2Po.roa
Signing time: Sat 07 Dec 2024 13:25:42 +0000
ROA not before: Sat 07 Dec 2024 13:25:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 5.181.20.0/24 maxlen: 32
5.181.21.0/24 maxlen: 32
5.181.22.0/24 maxlen: 32
5.181.23.0/24 maxlen: 32
45.14.244.0/24 maxlen: 24
45.14.245.0/24 maxlen: 24
45.14.246.0/24 maxlen: 24
45.14.247.0/24 maxlen: 24
45.91.52.0/22 maxlen: 32
45.140.146.0/24 maxlen: 32
45.140.147.0/24 maxlen: 32
45.140.166.0/24 maxlen: 32
45.140.167.0/24 maxlen: 32
45.144.28.0/24 maxlen: 32
45.144.29.0/24 maxlen: 32
45.144.30.0/24 maxlen: 32
45.144.31.0/24 maxlen: 32
45.150.64.0/24 maxlen: 32
45.150.65.0/24 maxlen: 32
45.150.67.0/24 maxlen: 32
45.155.52.0/22 maxlen: 32
91.194.11.0/24 maxlen: 24
138.124.180.0/24 maxlen: 24
138.124.183.0/24 maxlen: 24
138.124.184.0/24 maxlen: 24
146.19.230.0/24 maxlen: 24
185.74.222.0/24 maxlen: 24
185.234.247.0/24 maxlen: 32
195.16.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:a1:4c:27:d4:3d:e3:32:e9:dc:e8:c9:09:8d:cb:cc:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Dec 7 13:25:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e69643f401bf6c509457b53da24d6cbc6c53d8fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:26:b9:31:2c:b3:30:93:c6:e1:39:9b:03:f0:
d1:1c:10:6a:04:51:7d:70:70:d6:8f:dc:38:24:8f:
d7:c2:ef:b6:3c:59:a9:58:d3:29:8d:84:4d:30:e0:
fc:df:50:cd:35:98:ff:15:50:b7:63:b0:95:bc:4e:
ba:70:52:f0:bf:ab:e0:e8:00:4a:37:78:0f:dd:ce:
59:f3:c8:2b:9d:9c:c7:b1:32:fc:b0:d4:f7:6d:5b:
52:2c:fc:7e:ae:15:cc:7a:1e:ef:2c:f2:6f:b0:9f:
01:44:72:d2:a9:02:6d:bd:0d:07:e4:5b:f4:95:18:
56:c7:53:50:a5:56:6d:f1:ac:f3:d5:ea:3b:b7:cf:
2f:c1:99:f6:38:32:e1:6c:6f:c9:1e:ac:a3:4f:59:
17:f3:84:01:56:5e:fa:49:95:cf:2d:75:bd:c8:a7:
40:b2:ee:7e:38:b1:28:ea:b8:a7:7d:cc:1c:2c:d1:
7f:b6:f8:dd:49:e5:98:b4:16:c2:46:04:47:f3:c1:
19:17:26:2d:5a:93:fa:21:3e:38:c9:2e:9d:ce:8e:
1e:94:60:78:be:03:67:f6:42:5e:3b:14:8c:ae:cb:
78:8e:d7:4f:2d:8e:c4:4c:b5:a6:fb:cc:20:16:ec:
9c:11:c7:f4:43:88:cd:54:76:41:1d:67:b4:3c:62:
c6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:96:43:F4:01:BF:6C:50:94:57:B5:3D:A2:4D:6C:BC:6C:53:D8:FA
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/5pZD9AG_bFCUV7U9ok1svGxT2Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.20.0/22
45.14.244.0/22
45.91.52.0/22
45.140.146.0/23
45.140.166.0/23
45.144.28.0/22
45.150.64.0/23
45.150.67.0/24
45.155.52.0/22
91.194.11.0/24
138.124.180.0/24
138.124.183.0-138.124.184.255
146.19.230.0/24
185.74.222.0/24
185.234.247.0/24
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
71:30:45:4e:da:a5:94:08:a5:9f:63:ac:3f:93:08:87:80:7b:
91:7b:77:f1:5b:fc:4e:8c:fd:9c:af:db:68:7e:6d:78:42:8d:
fc:b4:ac:8b:73:5c:bb:d0:79:44:6b:5b:c8:6c:c3:6a:68:0a:
8f:12:50:cb:f9:9a:55:f8:af:06:12:c8:3a:22:07:94:47:ab:
be:62:5c:b8:ad:39:73:99:67:b5:2c:41:84:24:bb:6c:72:ed:
d2:72:84:03:8f:c8:2d:ab:3a:4e:f4:ce:b4:e8:f9:9d:6c:03:
b5:a2:6c:f9:1a:15:b2:f8:da:c3:18:84:d3:ea:54:8b:45:1e:
6c:23:6c:1f:56:dc:79:ec:37:73:47:13:0b:7d:50:8f:cd:b1:
99:33:c1:55:4b:1b:6c:33:27:b4:73:87:3a:a8:7b:a4:3f:fa:
73:dd:5d:79:9f:a6:b0:2a:e1:1c:9b:bf:b8:43:3f:84:bc:00:
dc:93:5a:41:0e:3f:17:2b:ba:50:4d:a0:41:7a:61:78:31:41:
39:0a:f3:c2:9f:76:e3:39:ea:6a:4b:4b:0f:26:57:ec:14:22:
2b:4f:90:e5:57:65:85:d9:df:95:0d:ea:b0:11:f4:a3:40:69:
1a:9d:83:52:ae:d5:23:63:48:79:2a:36:56:84:be:aa:00:a3:
1b:51:b5:40
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgISAZOhTCfUPeMy6dzoyQmNy8yTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmODQxMTM1NDVkOTAwMDc2MGY2NjA2MmE0MjIxOTMzYTJl
OTU5ZDgwHhcNMjQxMjA3MTMyNTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNjk2NDNmNDAxYmY2YzUwOTQ1N2I1M2RhMjRkNmNiYzZjNTNkOGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtia5MSyzMJPG4TmbA/DRHBBqBFF9
cHDWj9w4JI/Xwu+2PFmpWNMpjYRNMOD831DNNZj/FVC3Y7CVvE66cFLwv6vg6ABK
N3gP3c5Z88grnZzHsTL8sNT3bVtSLPx+rhXMeh7vLPJvsJ8BRHLSqQJtvQ0H5Fv0
lRhWx1NQpVZt8azz1eo7t88vwZn2ODLhbG/JHqyjT1kX84QBVl76SZXPLXW9yKdA
su5+OLEo6rinfcwcLNF/tvjdSeWYtBbCRgRH88EZFyYtWpP6IT44yS6dzo4elGB4
vgNn9kJeOxSMrst4jtdPLY7ETLWm+8wgFuycEcf0Q4jNVHZBHWe0PGLGTQIDAQAB
o4ICbDCCAmgwHQYDVR0OBBYEFOaWQ/QBv2xQlFe1PaJNbLxsU9j6MB8GA1UdIwQY
MBaAFL+EETVF2QAHYPZgYqQiGTOi6VnYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEt
NGJkNjNhZGM3MzU0LzEvNXBaRDlBR19iRkNVVjdVOW9rMXN2R3hUMlBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEtNGJkNjNhZGM3MzU0
LzEvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGBBggrBgEFBQcBBwEB/wRyMHAwbgQCAAEwaAMEAgW1FAME
Ai0O9AMEAi1bNAMEAS2MkgMEAS2MpgMEAi2QHAMEAS2WQAMEAC2WQwMEAi2bNAME
AFvCCwMEAIp8tDAMAwQAiny3AwQAiny4AwQAkhPmAwQAuUreAwQAuer3AwQAwxBK
MA0GCSqGSIb3DQEBCwUAA4IBAQBxMEVO2qWUCKWfY6w/kwiHgHuRe3fxW/xOjP2c
r9tofm14Qo38tKyLc1y70HlEa1vIbMNqaAqPElDL+ZpV+K8GEsg6IgeUR6u+Yly4
rTlzmWe1LEGEJLtscu3ScoQDj8gtqzpO9M606PmdbAO1omz5GhWy+NrDGITT6lSL
RR5sI2wfVtx57DdzRxMLfVCPzbGZM8FVSxtsMye0c4c6qHukP/pz3V15n6awKuEc
m7+4Qz+EvADck1pBDj8XK7pQTaBBemF4MUE5CvPCn3bjOepqS0sPJlfsFCIrT5Dl
V2WF2d+VDeqwEfSjQGkanYNSrtUjY0h5KjZWhL6qAKMbUbVA
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:53:29 2025 by rpki-client