Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/FXmVAUxFibLnXHkOgQjLL24BJ7c.roa
File: FXmVAUxFibLnXHkOgQjLL24BJ7c.roa (raw, json)
Hash identifier: U+9mEcHtG3Nd3jag8GywGXIw+b6nbu079xUUf0cL4bU=
Subject key identifier: 15:79:95:01:4C:45:89:B2:E7:5C:79:0E:81:08:CB:2F:6E:01:27:B7
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0195382DD61640E458C829E2602A91F53AB0
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/FXmVAUxFibLnXHkOgQjLL24BJ7c.roa
Signing time: Mon 24 Feb 2025 13:38:02 +0000
ROA not before: Mon 24 Feb 2025 13:38:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:38:2d:d6:16:40:e4:58:c8:29:e2:60:2a:91:f5:3a:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 24 13:38:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=157995014c4589b2e75c790e8108cb2f6e0127b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f5:ca:50:10:13:d4:4f:1c:3d:37:9b:60:98:
9d:a1:70:7c:0d:ab:55:30:75:4c:7e:37:af:a5:74:
63:f9:40:41:36:17:6d:4b:d6:1d:06:11:15:82:f1:
68:e2:91:d7:a9:f8:e3:4f:dc:91:33:84:75:b7:5e:
b7:4c:7b:b1:9b:8b:b8:4a:e1:ec:32:a3:23:7e:82:
4d:04:fa:5c:81:76:ae:6a:73:95:63:48:e5:73:7e:
55:6c:e3:9a:ed:9d:19:dd:38:c5:be:7b:e3:5a:e3:
80:ec:5c:3b:c9:d1:e8:a9:c7:18:6e:62:84:06:a0:
0b:78:cf:f9:e3:7b:fc:d7:11:7e:25:87:6f:10:f2:
cf:7d:0a:3a:8e:8c:0f:fe:23:49:fe:d7:83:6c:15:
bc:16:85:3a:b5:37:e0:cc:0d:5b:0c:14:42:c9:85:
8b:3d:c0:3e:93:38:26:21:62:dd:cb:9d:28:d7:2f:
87:13:58:52:62:5f:ad:ae:cc:56:71:d9:45:49:45:
93:66:94:d9:38:e6:80:45:5e:84:e7:ca:9c:6d:e8:
a7:35:83:a1:b5:7e:31:c3:6e:94:c9:87:ac:70:1b:
94:b3:f3:24:f6:0d:d0:8f:99:68:27:0a:06:a0:ee:
de:07:49:d1:5a:6a:1c:8e:5f:8b:99:b4:ac:ca:d4:
cb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:79:95:01:4C:45:89:B2:E7:5C:79:0E:81:08:CB:2F:6E:01:27:B7
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/FXmVAUxFibLnXHkOgQjLL24BJ7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
94.103.163.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.215.0/24
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
af:9c:22:56:99:e8:d4:d5:df:f7:1e:ba:2a:da:87:d0:01:23:
92:a0:c3:3e:83:cb:4f:5e:54:05:a0:06:c8:fe:d8:02:36:cc:
0a:e8:e2:91:c9:b2:51:b9:3f:5f:fc:4a:a4:fa:8a:2d:1a:0d:
9d:5d:12:8e:80:cf:41:90:28:f1:54:03:1a:34:ba:54:72:1f:
c6:80:c6:77:55:52:1d:2f:b9:a1:e8:1c:19:82:2f:e8:4e:6b:
fb:ab:5d:5b:d0:39:e6:35:ab:b4:86:59:84:3e:d1:02:75:3f:
df:21:ea:54:12:ab:95:07:b5:eb:bf:4f:02:a5:70:ae:50:27:
fe:34:74:5f:26:08:f9:42:79:62:a0:0d:ce:fd:b4:8e:a5:70:
03:56:35:b4:fa:f6:5d:1a:67:8d:de:36:c7:d5:da:5b:2c:cb:
7e:57:38:a8:c7:f2:f8:a8:f5:7b:c1:13:14:42:83:7c:ec:5e:
d7:fd:f9:39:82:c8:7b:1c:e5:45:ac:2f:5c:cd:fc:eb:eb:54:
8f:9c:9a:bb:c3:08:08:76:e1:11:ae:cb:0c:df:bf:df:49:14:
33:3d:4d:90:08:d3:e8:86:3d:64:64:fb:c3:dc:2d:98:98:7c:
ab:b4:87:d7:0e:11:6a:6d:16:76:6f:be:4a:dc:90:90:9b:fa:
a6:01:6d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:37 2025 by rpki-client