Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/FWE9L-rnsdlEHsQv29Dfy2tn26U.roa
File: FWE9L-rnsdlEHsQv29Dfy2tn26U.roa (raw, json)
Hash identifier: QlHLCmMnrGIfrcx/9CQvQc1mnbO8jGNos0wj3yU8wQA=
Subject key identifier: 15:61:3D:2F:EA:E7:B1:D9:44:1E:C4:2F:DB:D0:DF:CB:6B:67:DB:A5
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0195930D317FBCB2EFA11AB739AA56784541
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/FWE9L-rnsdlEHsQv29Dfy2tn26U.roa
Signing time: Fri 14 Mar 2025 05:07:50 +0000
ROA not before: Fri 14 Mar 2025 05:07:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.175.220.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.34.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
89.144.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:93:0d:31:7f:bc:b2:ef:a1:1a:b7:39:aa:56:78:45:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 14 05:07:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=15613d2feae7b1d9441ec42fdbd0dfcb6b67dba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:48:ea:90:78:b9:a8:9c:10:64:d8:65:81:61:
71:cd:a3:df:84:22:ac:32:2e:4b:08:ec:87:d9:fc:
24:c2:07:ff:44:39:9a:c6:a2:7a:37:51:27:41:fb:
8a:6c:3b:d8:8b:d1:15:9d:e6:8b:91:76:12:ad:5d:
11:a1:40:97:4e:8c:97:ee:03:8b:72:af:32:5f:04:
a3:39:25:af:57:19:69:67:18:df:3f:e3:f9:2c:d2:
d0:29:5b:18:5b:74:56:54:a0:e9:c9:21:df:38:6c:
2a:96:79:12:51:cd:0d:98:34:ac:60:8a:8a:3a:7a:
f8:77:c5:1c:32:c0:ce:b1:b0:a7:1d:d9:b9:31:15:
48:07:b7:e8:32:cd:87:3a:ee:df:12:96:dc:8d:12:
8f:b0:98:18:f6:a1:97:60:82:65:67:fb:ed:09:19:
6e:2e:9a:89:be:9a:fe:a0:98:7f:51:84:a2:a6:b5:
7a:36:90:2e:5f:3b:b8:08:36:6e:9b:18:e1:31:f7:
fd:df:05:ca:7a:1d:c9:10:6e:5d:02:a4:bf:04:b2:
9e:e0:7d:ce:77:e4:a4:55:d9:45:e4:b8:7d:95:82:
1e:e3:ba:ad:cb:59:f5:47:1c:54:79:19:c6:8c:03:
44:e2:22:d7:d3:00:41:fc:27:b1:e6:59:65:85:42:
3e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:61:3D:2F:EA:E7:B1:D9:44:1E:C4:2F:DB:D0:DF:CB:6B:67:DB:A5
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/FWE9L-rnsdlEHsQv29Dfy2tn26U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.175.220.0/24
5.231.70.0/24
5.231.82.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
89.106.70.0/24
89.144.16.0/24
89.144.25.0/24
89.144.34.0/23
89.144.60.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:2c:e1:e2:14:84:86:15:6a:11:7a:27:b3:9d:78:1c:4f:6c:
7a:ad:d7:33:78:54:d3:48:fc:32:9b:c8:26:64:6c:64:d9:59:
d3:89:e5:68:5d:a4:0a:ca:6c:54:73:99:a5:74:76:d4:76:c3:
24:68:58:0b:69:71:4e:81:6c:0e:c4:c7:f2:be:52:92:32:1f:
be:a6:6e:fe:c8:3d:ab:a7:3e:45:f5:bf:85:55:f9:e5:b7:24:
69:8b:1b:41:aa:58:23:17:cd:50:d0:7d:f0:33:c6:cb:7a:bd:
2b:4b:1a:c8:e2:ba:ae:2c:9d:bc:27:ef:ea:82:5b:43:b0:1e:
e9:32:71:b1:76:3e:1b:53:7d:d7:48:46:78:1c:8b:60:f9:6a:
f4:34:d6:07:33:22:c5:9a:d4:c1:a3:be:ad:60:fc:97:cf:2c:
bc:30:e4:7a:47:fa:11:6e:38:48:78:17:e2:00:65:45:5a:0f:
30:e4:22:29:88:8e:eb:e0:79:09:97:ae:af:4a:27:d3:73:9d:
97:ec:98:84:88:4f:30:2d:e6:4c:0b:44:96:f8:6a:f4:3a:5d:
5e:e7:53:5c:48:0d:e9:d9:7a:69:14:fc:55:8e:3f:a1:19:08:
bc:e0:37:e6:44:e3:91:4b:35:e8:82:17:92:59:c2:5d:93:6f:
46:b2:b1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:18:10 2025 by rpki-client