Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WqSufHz2OzDXN-WMLxsbQQdyvF4.roa
File: WqSufHz2OzDXN-WMLxsbQQdyvF4.roa (raw, json)
Hash identifier: pzyx7e9QQXDbn9vxKyqgsMc0WmOij1DpgUv2chf5Q9Q=
Subject key identifier: 5A:A4:AE:7C:7C:F6:3B:30:D7:37:E5:8C:2F:1B:1B:41:07:72:BC:5E
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194749B5DD6B1B2F970FB5AB11F9F82D216
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WqSufHz2OzDXN-WMLxsbQQdyvF4.roa
Signing time: Fri 17 Jan 2025 14:12:06 +0000
ROA not before: Fri 17 Jan 2025 14:12:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.130.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:74:9b:5d:d6:b1:b2:f9:70:fb:5a:b1:1f:9f:82:d2:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 17 14:12:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5aa4ae7c7cf63b30d737e58c2f1b1b410772bc5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5d:23:90:4b:52:53:e1:56:a6:7c:96:ac:81:
bb:82:78:dc:60:e7:7f:51:f7:4d:72:64:dd:cb:df:
d4:ef:75:aa:77:ce:ab:b2:c7:e5:67:06:cf:a8:d0:
5c:fd:a9:ef:5a:61:48:e7:b7:9f:20:d4:bb:18:e8:
05:0c:25:75:ad:b0:b3:93:3f:56:aa:7a:50:1c:8f:
08:a1:11:0f:6c:bb:c8:12:2c:ba:bc:52:60:f5:70:
13:73:70:d9:61:95:4b:04:8f:c6:53:e2:fa:9a:5b:
a1:ce:f4:af:26:68:73:60:99:a8:1c:5c:93:9e:9e:
c1:d0:bc:cf:83:1a:3c:bb:35:9a:bc:98:83:7c:3b:
4f:4b:a1:b7:dc:15:40:34:91:76:d5:f7:c5:4e:53:
2b:39:0c:7a:90:1f:1c:53:4d:3a:05:f8:52:90:8a:
46:12:bd:49:b8:20:9d:69:68:7c:d2:da:d0:16:41:
58:6c:a2:67:1e:d4:47:5a:cb:2e:9f:9e:34:d4:d0:
e9:45:e2:7a:27:40:44:f5:24:81:16:43:f2:ed:fa:
69:cf:dc:1a:1d:6a:e9:3f:00:c7:3c:6c:3e:ac:50:
5b:b7:6f:d7:02:e1:34:b1:b3:de:a5:04:32:ac:74:
eb:35:bc:e5:15:6f:6b:33:fb:02:de:11:a3:48:40:
df:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A4:AE:7C:7C:F6:3B:30:D7:37:E5:8C:2F:1B:1B:41:07:72:BC:5E
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WqSufHz2OzDXN-WMLxsbQQdyvF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.130.0/23
89.106.69.0/24
94.103.164.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.212.0/24
94.249.214.0/23
94.249.237.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
61:36:e7:fa:52:b8:ce:6e:5d:06:db:72:74:92:fc:b0:ce:b6:
d5:68:23:4a:ca:f5:a5:ef:49:9c:16:07:f6:03:10:d6:e9:e1:
17:5e:5b:e8:59:0d:bb:ad:0e:d7:a8:c2:83:b2:9e:12:3a:5b:
58:27:40:92:6e:24:99:f9:5f:8b:92:70:95:f4:5d:1f:6d:c7:
65:7f:f2:8e:1d:01:4c:7a:c6:11:b2:fd:14:98:79:fc:58:3a:
92:70:a8:76:7b:b9:1b:17:42:17:17:af:3b:17:d3:cb:7e:e4:
f1:cb:b3:ec:20:4d:4e:7a:fa:13:58:5f:fa:e1:59:b2:49:0b:
82:bf:71:5f:6b:7d:49:ca:63:00:af:e3:71:40:87:1a:0b:a9:
af:60:88:13:07:fb:54:e1:63:35:cf:06:25:f4:a0:c5:50:23:
ff:23:aa:9b:85:2c:c0:c4:df:bc:a9:ec:c4:92:28:4d:0f:31:
8e:ff:8b:08:8e:33:18:e4:3c:88:69:4a:0d:df:b6:a0:81:d5:
97:0f:7d:d8:67:08:f1:49:1a:ac:01:24:fe:8f:30:46:02:6f:
d0:9b:38:74:cd:c1:53:ea:98:fc:59:43:9b:80:08:79:6a:09:
2f:71:b9:53:3b:1a:5a:03:fd:c2:1e:66:b2:7b:3d:15:f3:5d:
e6:fc:46:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:23:01 2025 by rpki-client