Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/70Zeh7-y3wC8cfqctSJoN8vJo9s.roa
File: 70Zeh7-y3wC8cfqctSJoN8vJo9s.roa (raw, json)
Hash identifier: vL4s+eP+cHsPtxmBDjdpt9VyzAaIED+cR66CFVSlXVE=
Subject key identifier: EF:46:5E:87:BF:B2:DF:00:BC:71:FA:9C:B5:22:68:37:CB:C9:A3:DB
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01946C0B977A0C527793F9B60F571832EA39
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/70Zeh7-y3wC8cfqctSJoN8vJo9s.roa
Signing time: Wed 15 Jan 2025 22:18:06 +0000
ROA not before: Wed 15 Jan 2025 22:18:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214052
IP address blocks: 5.83.136.0/24 maxlen: 24
5.83.139.0/24 maxlen: 24
5.83.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6c:0b:97:7a:0c:52:77:93:f9:b6:0f:57:18:32:ea:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 15 22:18:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef465e87bfb2df00bc71fa9cb5226837cbc9a3db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5f:d7:f5:6b:8f:0c:c1:d0:11:6e:2e:31:a4:
1e:e9:9f:e6:0b:c0:7d:e8:6b:e5:0f:f9:f0:9a:de:
41:6b:3a:76:cb:d6:a2:df:11:b2:cc:f3:89:2c:25:
18:48:19:59:23:23:0b:95:ae:1b:7c:be:93:ac:c3:
51:6e:d3:15:a4:9b:cd:df:c7:0e:ff:9e:77:4e:93:
15:b7:26:6b:1c:fe:4e:a3:d5:dc:70:0f:e8:ea:0c:
d1:3e:2e:58:63:48:e3:d7:25:78:a2:b0:1a:01:00:
1f:9f:d7:70:43:e6:62:42:7e:6f:fc:6f:47:c1:2b:
81:af:1d:4a:3f:aa:d8:ee:b0:4a:7f:fe:32:ca:37:
90:20:2e:46:3e:f4:6d:29:8c:4a:d8:bb:b5:22:d5:
04:56:9d:8b:48:d1:8d:94:fc:83:f6:90:d5:3b:66:
ae:1f:c5:16:05:28:fb:ca:02:45:16:39:ed:7a:ea:
5d:77:73:df:15:e1:1b:90:d2:3e:72:1f:9e:f3:0e:
2a:24:cd:ab:b8:72:67:c9:68:55:84:56:d0:ea:82:
9f:19:74:7a:d8:d6:fd:8f:08:13:87:34:c6:85:cd:
fb:5d:9d:95:ba:e2:35:ad:5f:ea:ab:97:64:7f:60:
5d:42:09:78:d5:38:b9:4a:ee:ba:4b:2a:fd:27:c5:
d5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:46:5E:87:BF:B2:DF:00:BC:71:FA:9C:B5:22:68:37:CB:C9:A3:DB
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/70Zeh7-y3wC8cfqctSJoN8vJo9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.136.0/24
5.83.139.0/24
5.83.159.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:1a:f5:e9:29:bb:9b:9c:fc:7e:23:77:7e:33:b3:d3:73:46:
ba:26:3a:a0:65:a3:ce:fc:70:a3:a6:3f:4f:94:6f:7c:99:15:
3f:b9:f4:18:b3:ea:80:0f:fa:ec:d8:d4:04:fa:33:8e:fb:9e:
2b:86:90:fd:61:43:63:9e:f4:a2:0b:f1:40:f6:a7:ed:b8:d4:
c0:e4:5e:39:52:f1:d5:ad:e1:ef:ec:e8:d1:01:d7:fa:b9:33:
1f:d5:11:ad:aa:5e:40:af:81:14:08:ec:ff:e8:44:c8:20:e2:
56:8b:e3:0e:04:bb:8b:b7:29:b4:2f:c3:cd:d7:ad:23:89:32:
64:6e:71:1e:d8:a3:15:ba:6a:c7:58:4f:0a:6b:57:9c:16:1c:
f6:cc:18:63:9f:55:31:74:f3:05:91:7b:95:06:ba:15:e9:66:
dc:1c:9a:aa:f1:55:47:7a:6f:a2:8e:e6:f4:f0:be:83:c0:ea:
3f:c2:80:f9:5d:57:c9:7e:81:25:94:ac:78:0b:42:44:01:c1:
59:dc:80:23:25:95:66:c9:4f:a9:e6:a2:c8:94:d9:90:60:96:
e1:70:f0:77:fe:f0:9b:77:ac:4b:69:42:4a:e0:57:e8:2a:4c:
7d:36:37:d1:f0:d3:03:93:9a:e3:8d:c1:75:e2:f1:93:33:46:
97:c2:99:6e
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZRsC5d6DFJ3k/m2D1cYMuo5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMTE1MjIxODA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjQ2NWU4N2JmYjJkZjAwYmM3MWZhOWNiNTIyNjgzN2NiYzlhM2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxl/X9WuPDMHQEW4uMaQe6Z/mC8B9
6GvlD/nwmt5Bazp2y9ai3xGyzPOJLCUYSBlZIyMLla4bfL6TrMNRbtMVpJvN38cO
/553TpMVtyZrHP5Oo9XccA/o6gzRPi5YY0jj1yV4orAaAQAfn9dwQ+ZiQn5v/G9H
wSuBrx1KP6rY7rBKf/4yyjeQIC5GPvRtKYxK2Lu1ItUEVp2LSNGNlPyD9pDVO2au
H8UWBSj7ygJFFjnteupdd3PfFeEbkNI+ch+e8w4qJM2ruHJnyWhVhFbQ6oKfGXR6
2Nb9jwgThzTGhc37XZ2VuuI1rV/qq5dkf2BdQgl41Ti5Su66Syr9J8XV+wIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFO9GXoe/st8AvHH6nLUiaDfLyaPbMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvNzBaZWg3LXkzd0M4Y2ZxY3RTSm9OOHZKbzlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABVOIAwQA
BVOLAwQABVOfMA0GCSqGSIb3DQEBCwUAA4IBAQDKGvXpKbubnPx+I3d+M7PTc0a6
JjqgZaPO/HCjpj9PlG98mRU/ufQYs+qAD/rs2NQE+jOO+54rhpD9YUNjnvSiC/FA
9qftuNTA5F45UvHVreHv7OjRAdf6uTMf1RGtql5Ar4EUCOz/6ETIIOJWi+MOBLuL
tym0L8PN160jiTJkbnEe2KMVumrHWE8Ka1ecFhz2zBhjn1UxdPMFkXuVBroV6Wbc
HJqq8VVHem+ijub08L6DwOo/woD5XVfJfoEllKx4C0JEAcFZ3IAjJZVmyU+p5qLI
lNmQYJbhcPB3/vCbd6xLaUJK4FfoKkx9NjfR8NMDk5rjjcF14vGTM0aXwplu
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:20:34 2025 by rpki-client