Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/O5x_WC1NHWcVzipyAlzDPKaF7Ds.roa
File: O5x_WC1NHWcVzipyAlzDPKaF7Ds.roa (raw, json)
Hash identifier: KxPthB84wYqsbjN02I+98dgQ9AO5e47DpsibpnN0kgM=
Subject key identifier: 3B:9C:7F:58:2D:4D:1D:67:15:CE:2A:72:02:5C:C3:3C:A6:85:EC:3B
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0195ACCC12A277793DB87561CC4CFD517659
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/O5x_WC1NHWcVzipyAlzDPKaF7Ds.roa
Signing time: Wed 19 Mar 2025 05:06:50 +0000
ROA not before: Wed 19 Mar 2025 05:06:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.175.220.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.8.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.34.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ac:cc:12:a2:77:79:3d:b8:75:61:cc:4c:fd:51:76:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 19 05:06:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3b9c7f582d4d1d6715ce2a72025cc33ca685ec3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:73:0a:2a:05:8c:77:51:93:2d:9a:28:67:ac:
7b:73:83:f0:16:97:ee:3c:c7:d9:8f:55:80:87:f5:
b9:bd:64:3e:7d:77:1b:21:9a:cd:24:04:8b:8b:ed:
e7:0e:bd:4b:01:fa:d5:f8:7d:e8:e3:ce:a7:4c:3f:
8e:27:e3:6d:89:1c:54:b9:49:9d:5e:5e:2d:72:af:
71:ef:78:5d:be:fd:fd:78:92:3e:5f:7b:c2:2a:96:
0d:91:82:a7:07:ce:86:77:64:85:1f:ab:f1:fe:60:
80:d1:3e:0a:a9:58:41:b9:76:9e:9f:d0:65:0d:02:
ba:98:c9:c1:43:99:e5:5e:60:f7:8a:06:91:11:98:
5e:7f:c0:12:da:83:a1:75:98:10:af:35:51:61:d7:
d6:55:50:70:a2:b5:22:65:6c:1a:ab:87:90:0a:43:
15:c6:b6:16:21:90:e5:fc:29:ce:d5:52:61:57:b9:
0e:35:f2:72:85:21:eb:0b:4f:6d:b3:f2:5b:5c:9c:
ed:0a:8b:af:9b:3e:0a:18:fc:7d:e7:c6:e0:99:aa:
92:22:bd:b7:57:6e:3c:3b:c3:4b:70:b3:1d:3f:3a:
cf:6c:f4:8d:db:3a:49:bd:39:e6:d5:3b:24:34:f3:
ba:9a:ce:c1:b9:0b:64:61:03:ea:2e:7b:9a:56:0f:
a9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:9C:7F:58:2D:4D:1D:67:15:CE:2A:72:02:5C:C3:3C:A6:85:EC:3B
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/O5x_WC1NHWcVzipyAlzDPKaF7Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.175.220.0/24
5.231.70.0/24
5.231.82.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
89.106.70.0/24
89.144.8.0/24
89.144.16.0/24
89.144.25.0/24
89.144.34.0/23
Signature Algorithm: sha256WithRSAEncryption
71:ab:d2:3b:b0:60:03:84:ef:1d:42:7f:e7:16:66:00:e1:33:
de:c2:84:5c:f5:28:5d:e3:93:31:55:55:21:d5:90:56:ff:17:
79:0b:66:96:27:68:f7:61:21:5c:6a:a9:ec:6f:88:ca:88:0f:
59:1d:9a:a1:db:d6:06:0a:cf:5e:48:5c:13:86:b5:12:02:13:
b0:02:26:e6:cd:ef:7f:2b:99:ca:25:7b:48:84:a7:d2:23:66:
d7:04:bd:d6:67:df:1d:ff:f6:9a:bb:f9:82:e4:23:5a:dc:36:
d0:3f:06:4c:b5:99:94:65:b3:a1:b9:98:a2:72:c3:41:67:09:
c4:26:bb:5a:9b:4f:8d:8f:6c:82:f8:6a:65:f3:8d:14:be:05:
c4:bd:df:89:03:59:56:e4:ae:e9:6a:06:4c:a3:39:28:df:4a:
c0:32:e9:b4:95:de:05:c4:26:6b:13:94:49:73:fd:21:cc:22:
05:9a:78:ea:8c:61:3e:d5:9d:81:bb:fa:6d:ae:9f:84:75:b3:
19:9e:27:1f:69:a1:74:b9:9b:5f:5d:8d:2f:7a:00:8c:40:89:
53:d2:6d:86:61:d2:93:22:23:71:d8:7d:27:e0:31:ab:e6:6d:
78:d4:26:d7:b3:6e:4c:f3:19:67:6e:8b:0f:70:23:94:94:65:
0c:0f:46:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:08:01 2025 by rpki-client