Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/IX6RB5aSk8QeW6p9YGPCJrzGkog.roa
File: IX6RB5aSk8QeW6p9YGPCJrzGkog.roa (raw, json)
Hash identifier: mUDUyoUsytcNTJv8J8YxMT9Lq+5JDOoDF7amTdB9uW8=
Subject key identifier: 21:7E:91:07:96:92:93:C4:1E:5B:AA:7D:60:63:C2:26:BC:C6:92:88
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019503516DB1243260AB7B9BCBAD17DF557C
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/IX6RB5aSk8QeW6p9YGPCJrzGkog.roa
Signing time: Fri 14 Feb 2025 07:17:02 +0000
ROA not before: Fri 14 Feb 2025 07:17:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.175.140.0/24 maxlen: 24
5.175.142.0/24 maxlen: 24
5.231.79.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
77.90.7.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:03:51:6d:b1:24:32:60:ab:7b:9b:cb:ad:17:df:55:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 14 07:17:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=217e9107969293c41e5baa7d6063c226bcc69288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:06:a4:70:c6:ce:c5:9a:12:e2:97:7c:f7:aa:
d9:7e:a7:d0:b1:94:d9:10:df:3c:50:52:0f:b0:01:
6b:35:54:89:51:00:92:2f:5d:52:8b:68:be:6b:6f:
25:10:0b:57:df:ee:5e:49:5c:fe:71:6b:85:c2:fc:
b3:a4:e7:63:c3:0c:84:05:e1:6b:1a:c3:7c:76:dc:
ba:ea:0d:d3:88:f5:39:91:da:ae:92:57:34:de:e9:
80:57:07:33:e3:3e:91:fc:14:21:a0:75:75:94:90:
df:5f:a5:db:75:e2:54:2a:53:02:54:5c:a9:88:7a:
6e:c5:b5:ec:b5:5f:f8:c9:1c:80:99:e0:f8:60:9d:
0f:73:78:7c:b0:10:32:d0:32:1d:62:19:6d:a8:9a:
52:47:7a:b5:d3:25:48:d1:2a:c0:0a:c6:da:b9:ca:
74:e9:53:03:4a:67:14:0f:a1:0e:06:1a:95:c7:44:
a3:b7:f6:3e:cb:2f:23:4e:47:d6:74:41:7b:27:6f:
dc:34:57:51:b1:1b:58:58:1e:af:94:2a:2c:f6:fc:
c9:0c:5e:4f:53:23:d9:8a:6b:21:91:b9:15:15:f6:
92:0f:e2:34:14:38:e9:d1:66:18:9c:59:21:f4:cc:
8a:06:82:2d:82:0c:ae:2b:51:45:9a:3f:f3:69:9e:
12:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:7E:91:07:96:92:93:C4:1E:5B:AA:7D:60:63:C2:26:BC:C6:92:88
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/IX6RB5aSk8QeW6p9YGPCJrzGkog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.175.140.0/24
5.175.142.0/24
5.231.79.0/24
5.231.82.0/24
77.90.7.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
89.106.70.0/24
94.249.212.0/24
Signature Algorithm: sha256WithRSAEncryption
22:36:97:29:38:ff:c0:e1:ff:8b:68:92:9b:1e:0e:cc:1a:79:
40:bb:08:91:f6:7c:c8:84:89:6a:bf:ef:8d:7d:72:5c:63:4f:
a8:dc:eb:7a:78:95:3e:a0:58:d3:58:b6:fe:16:5e:12:5c:fb:
cb:7d:aa:30:fe:1b:2f:39:32:10:51:26:df:cd:7b:93:49:1b:
d7:d3:cf:86:2e:df:fa:cc:57:06:5e:14:49:16:48:4a:a5:b0:
c0:25:55:e7:2c:cd:c3:c7:98:b3:16:1c:32:9e:a8:2d:b8:20:
8f:b6:d0:c4:c5:7e:31:dc:e7:d3:b8:a5:a6:02:68:64:02:8e:
5e:ea:c3:ab:4f:d9:14:7d:78:8f:a2:fe:75:9f:23:38:ae:33:
91:2f:66:0c:5d:fc:75:84:f7:64:e0:2c:9a:00:2d:26:e5:44:
c2:b8:d0:6e:40:be:01:e2:2e:90:a6:a9:ce:67:72:db:de:f4:
35:59:41:e4:96:01:81:ff:f7:90:1b:55:7a:01:a2:2d:f5:bf:
25:e4:e9:7a:86:25:c4:a3:02:94:c4:3b:d4:f2:e6:11:b1:ee:
c3:9f:19:0b:b5:71:9f:ab:92:5e:25:ed:28:11:db:6c:4d:18:
da:eb:51:17:38:2c:03:9a:31:e9:02:7e:0c:bd:c0:8c:13:e0:
40:a2:12:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:30:17 2025 by rpki-client