Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ALV_2F8oFSNDJ8tYPIDszC_KAyA.roa
File: ALV_2F8oFSNDJ8tYPIDszC_KAyA.roa (raw, json)
Hash identifier: PJwqSnASn0/SLelD6D/JLNDP0k1WjQsFtAqX7u5bgDI=
Subject key identifier: 00:B5:7F:D8:5F:28:15:23:43:27:CB:58:3C:80:EC:CC:2F:CA:03:20
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01944845C43B47F4E1041956E94BD2122A90
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ALV_2F8oFSNDJ8tYPIDszC_KAyA.roa
Signing time: Wed 08 Jan 2025 23:35:19 +0000
ROA not before: Wed 08 Jan 2025 23:35:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.130.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:48:45:c4:3b:47:f4:e1:04:19:56:e9:4b:d2:12:2a:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 8 23:35:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=00b57fd85f2815234327cb583c80eccc2fca0320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:43:38:c7:ab:b3:ae:c2:6e:c5:f0:b0:96:ac:
72:68:39:ab:32:02:5d:eb:9e:ca:5b:4c:38:fb:4e:
12:e1:17:fd:52:8f:e6:f5:e1:75:f7:ba:cd:23:6f:
95:42:d3:ec:c6:ba:54:3c:6c:aa:12:ab:82:bb:99:
81:f2:3d:a0:78:25:5e:ae:8d:ad:98:b8:9a:46:42:
0e:fc:ba:23:a9:e7:25:26:04:f9:19:db:ce:b6:c5:
26:f9:5b:ac:61:28:22:39:84:c8:2f:6e:fe:5a:91:
e1:a9:1f:4e:aa:5e:c6:83:b3:b5:d2:f4:c8:a7:2e:
85:db:11:6f:2e:b9:b7:45:23:24:7a:04:62:76:93:
8d:e2:01:b7:f8:e9:04:76:12:e1:d9:b4:9a:82:7a:
41:b1:a7:98:4a:54:03:8a:b3:51:95:df:50:da:c7:
97:2a:be:d9:79:08:87:ce:0c:c7:3d:d8:52:30:c2:
c2:e6:28:b3:da:ec:ae:ab:6f:fe:7a:36:c8:25:10:
34:f1:4f:e1:38:75:3c:6a:cd:d4:32:b7:ca:a2:ff:
88:c1:5b:25:08:39:96:ca:8c:bd:03:2a:06:a5:cc:
58:9f:66:52:cf:5e:1d:0d:89:28:49:14:f3:dc:da:
9d:5a:9c:b2:f8:dc:24:e5:66:39:6c:97:de:53:c2:
b7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B5:7F:D8:5F:28:15:23:43:27:CB:58:3C:80:EC:CC:2F:CA:03:20
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ALV_2F8oFSNDJ8tYPIDszC_KAyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.130.0/23
89.106.69.0/24
94.103.163.0-94.103.164.255
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.212.0/24
94.249.215.0/24
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
29:a2:f2:db:fd:a5:0d:c4:70:3c:ae:bd:18:c8:17:7d:69:45:
17:32:c8:3e:22:df:4a:7e:50:2c:a7:44:39:59:e3:2b:a4:e4:
d9:15:6c:aa:6b:fe:25:73:ff:5e:0c:ed:97:d5:a0:b2:86:d8:
27:0e:2e:43:33:68:10:b9:ed:68:01:36:13:ff:8b:82:c6:62:
02:1d:f4:8f:41:26:73:84:50:5b:a8:bb:e0:7e:df:e6:88:1c:
ab:2b:f7:19:32:0b:d2:6c:84:d1:74:73:2c:33:09:98:f3:c2:
00:36:2a:96:1b:66:af:a0:94:72:a3:bd:e4:b1:47:e0:a5:9f:
7c:2e:cf:06:13:da:b1:55:6a:b2:bb:2b:8c:71:8f:e2:dc:bb:
15:cb:e0:a4:50:39:34:1d:6c:da:b4:c5:81:f6:ff:a3:b0:9f:
67:e8:f6:26:e5:6d:48:5e:5a:a3:f1:be:e5:71:7a:c7:a3:e8:
f0:87:22:28:8f:fb:e7:81:6b:d4:8f:83:4f:18:69:d2:5a:51:
44:d2:8f:60:15:56:0c:d3:81:a3:4d:da:d8:c2:57:6d:f7:ba:
25:de:57:7c:75:9f:69:be:a5:a4:33:b4:57:63:1e:fc:5f:e7:
76:27:64:4a:6d:fd:85:43:45:f9:51:70:77:db:b5:3b:d7:49:
e6:50:27:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:18:13 2025 by rpki-client