Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8_rIQJiLjcYbV_8waT6yzhMbsz4.roa
File: 8_rIQJiLjcYbV_8waT6yzhMbsz4.roa (raw, json)
Hash identifier: J6zFqWmBHp7TTq8el3kyhhHPU1MpHrBsy1Ew5+I/7BE=
Subject key identifier: F3:FA:C8:40:98:8B:8D:C6:1B:57:FF:30:69:3E:B2:CE:13:1B:B3:3E
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01949A010A76C7469808D993952BE26BFB83
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8_rIQJiLjcYbV_8waT6yzhMbsz4.roa
Signing time: Fri 24 Jan 2025 20:29:07 +0000
ROA not before: Fri 24 Jan 2025 20:29:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:9a:01:0a:76:c7:46:98:08:d9:93:95:2b:e2:6b:fb:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 24 20:29:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f3fac840988b8dc61b57ff30693eb2ce131bb33e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7d:ff:16:11:1b:d8:f9:e8:e2:ee:27:0d:9c:
70:5e:36:cb:2b:79:89:05:6f:20:ba:55:3b:57:f6:
2a:cd:ba:de:d4:5f:ac:84:c5:7f:b3:c2:26:d1:cb:
6b:40:76:69:da:09:ee:e0:be:a0:df:c6:9e:4b:39:
93:8a:09:36:f5:7d:59:80:e6:f7:bb:9b:b3:16:42:
34:6e:9f:f6:e8:f2:8c:e6:db:56:e6:9e:2f:42:08:
7c:6c:b2:53:40:e2:88:5d:88:9f:84:76:84:1c:96:
5f:2b:fb:e9:ca:6f:a3:41:72:b5:dc:f2:1b:dc:5d:
76:85:b0:7e:7d:57:62:2a:7c:e8:0d:da:14:97:80:
eb:6a:7c:91:18:92:81:02:de:f8:30:ef:dc:17:6f:
91:ac:9f:b0:a2:e8:61:e2:76:f4:1c:3a:b9:c5:88:
77:56:cb:cb:1b:3d:88:8b:7e:b9:51:8e:64:1c:cb:
07:9f:fd:c8:72:70:21:0f:fa:39:7c:7f:d5:a1:ee:
7a:e2:cd:9e:c4:a0:9d:2d:4b:02:00:2f:3a:5e:30:
04:3f:35:80:37:86:3e:87:4c:20:01:3f:9a:e2:a7:
93:de:4c:c5:11:76:32:d1:d1:6b:fe:4f:ba:30:c5:
4d:12:73:36:04:4c:73:c7:09:86:59:93:c3:83:8c:
ee:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:FA:C8:40:98:8B:8D:C6:1B:57:FF:30:69:3E:B2:CE:13:1B:B3:3E
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8_rIQJiLjcYbV_8waT6yzhMbsz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.138.0/24
77.90.54.0/24
89.106.69.0/24
94.103.163.0-94.103.164.255
94.249.148.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.212.0/24
94.249.214.0/23
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
Signature Algorithm: sha256WithRSAEncryption
76:f4:0c:76:99:23:3c:b4:79:b5:d0:0f:da:ec:c9:14:e0:e7:
8f:39:f1:e2:d6:1b:bb:8a:a8:ac:4e:51:25:b0:ea:36:ef:d6:
3a:be:98:e4:c6:70:35:7f:64:4b:86:95:c4:27:cb:2b:8e:ef:
9d:90:97:4e:42:cf:d8:c4:e8:d5:6c:ae:a5:4d:5c:d7:22:27:
4d:69:a6:2b:92:88:6c:ed:bf:10:a7:4e:fc:5a:c0:14:d1:9e:
55:eb:c7:6a:1d:68:a0:0c:34:c3:5e:cd:bd:b3:06:f2:17:78:
75:c3:c1:0e:35:a6:57:07:d0:24:9a:7a:bc:17:32:1d:ec:48:
2d:20:ac:38:ec:31:76:ba:e8:45:ef:a9:0a:44:82:b2:ad:36:
18:28:bf:52:c7:8d:44:c9:b6:42:59:ed:0d:6b:cb:c9:17:1f:
bb:ef:1c:85:92:a2:1b:48:3a:db:16:c4:e5:e4:87:45:44:e2:
8a:12:05:76:5d:7c:4c:57:07:67:d4:3d:0a:19:50:62:43:95:
a8:ec:c7:5e:d6:35:94:02:69:35:5c:fc:ab:18:18:bb:42:b1:
ef:8b:b4:db:64:90:36:c9:47:76:2d:99:77:d2:c6:dd:4f:a5:
44:3d:52:b8:05:cf:4c:6d:17:2b:97:cf:28:d0:94:48:75:0c:
ba:b7:76:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:51:37 2025 by rpki-client