Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/aS4tFe650OszJj8tQHnCtXWChZU.roa
File: aS4tFe650OszJj8tQHnCtXWChZU.roa (raw, json)
Hash identifier: thnP2gGp70lKU167TvCtfO6o9UUMDLrJL4d/YFtAZOw=
Subject key identifier: 69:2E:2D:15:EE:B9:D0:EB:33:26:3F:2D:40:79:C2:B5:75:82:85:95
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0195143CC9B47D53CBFDAFD1B19AC08400B1
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/aS4tFe650OszJj8tQHnCtXWChZU.roa
Signing time: Mon 17 Feb 2025 14:08:02 +0000
ROA not before: Mon 17 Feb 2025 14:08:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:14:3c:c9:b4:7d:53:cb:fd:af:d1:b1:9a:c0:84:00:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 17 14:08:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=692e2d15eeb9d0eb33263f2d4079c2b575828595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ba:e4:47:76:20:14:26:74:28:38:87:3c:d7:
5c:14:08:97:15:38:e7:40:6b:1b:e4:44:db:6e:16:
0e:f9:13:31:68:5e:a2:2d:dd:d5:fd:27:52:3a:b4:
71:dd:03:d3:17:1c:a3:b1:56:9f:79:a8:c3:0e:07:
2f:aa:39:c7:c5:e2:97:09:39:45:27:26:1a:6e:90:
19:8d:92:d1:38:38:0f:ab:20:18:d9:a8:1a:e5:f2:
64:c7:10:dd:82:51:ae:5f:1b:6e:1b:41:d3:16:d3:
9d:09:10:54:12:02:81:29:c4:88:39:f3:5b:a2:e5:
10:79:23:0b:db:c2:b2:1a:fe:3c:75:a9:4a:cd:cc:
e5:fd:cd:f7:76:7a:d7:49:92:96:07:51:b0:08:12:
fb:09:02:c9:26:d3:68:d5:00:cb:95:cd:d7:ce:c5:
62:e1:69:8e:68:93:ec:48:21:a7:ae:25:6b:9f:26:
2a:66:67:6c:63:65:fe:f3:f9:a9:e4:cb:11:1a:98:
d6:50:ec:74:c1:bb:6f:38:88:59:0e:2a:f8:70:c0:
78:3e:c6:b3:a9:7d:8c:23:95:c8:b6:87:70:1e:35:
e4:f7:a1:f2:09:9c:17:4f:e2:7c:68:c9:79:7b:28:
83:37:9b:91:41:e8:7c:c6:5e:a9:bf:3d:dd:73:44:
f1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:2E:2D:15:EE:B9:D0:EB:33:26:3F:2D:40:79:C2:B5:75:82:85:95
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/aS4tFe650OszJj8tQHnCtXWChZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.215.0/24
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
21:71:1e:34:13:df:fa:af:47:03:1d:41:0a:44:f0:9a:0d:80:
1a:4e:00:c2:a7:32:7d:49:bd:3d:13:5e:8e:8a:16:b1:77:5d:
e7:07:e7:05:f1:8b:f6:01:fd:65:af:ba:cf:de:da:19:da:d0:
c7:8f:b7:a7:e1:6e:c5:57:4a:79:d2:06:17:d9:71:ce:44:ea:
b7:38:56:dd:59:24:b4:85:8d:e2:c7:97:48:02:04:30:b0:1a:
d0:14:cd:db:48:30:b4:de:fd:32:df:27:2b:04:85:9f:47:00:
98:a0:a9:6e:88:8d:d5:c0:ff:e6:a6:d9:30:fe:ca:a7:d4:ca:
91:c8:dc:ce:ff:21:c4:58:16:0d:d2:c4:5d:df:02:81:19:91:
f2:1d:e0:da:97:96:04:89:e7:7c:14:67:dd:34:20:51:d5:8e:
27:eb:12:7b:64:59:b4:76:e1:a5:1f:44:b8:84:f9:ac:b5:cb:
ed:0b:a7:c1:66:66:97:8f:72:57:bf:fd:1a:5b:61:07:bb:04:
7e:d8:0b:a4:3b:46:b6:3b:0b:99:22:a8:07:18:8b:15:96:93:
75:43:e7:ec:32:b0:ec:e1:17:c3:55:8e:00:a2:73:b0:89:6c:
3c:6c:88:d5:2e:69:d8:87:7e:05:d3:7a:87:d9:85:aa:a0:95:
86:82:bf:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:22:51 2025 by rpki-client