Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/fmotava-K3VJFtwqCAPrMX-l8vk.roa
File: fmotava-K3VJFtwqCAPrMX-l8vk.roa (raw, json)
Hash identifier: 0Z60+U/mIqvtGTzrTnweSbCt4AhxXjgpQQ4jUQqsCKU=
Subject key identifier: 7E:6A:2D:6A:F6:BE:2B:75:49:16:DC:2A:08:03:EB:31:7F:A5:F2:F9
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194B483D70362D434B1327F2AF5AB7C3899
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/fmotava-K3VJFtwqCAPrMX-l8vk.roa
Signing time: Thu 30 Jan 2025 00:02:06 +0000
ROA not before: Thu 30 Jan 2025 00:02:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.103.166.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
185.121.69.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b4:83:d7:03:62:d4:34:b1:32:7f:2a:f5:ab:7c:38:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 30 00:02:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e6a2d6af6be2b754916dc2a0803eb317fa5f2f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8c:c4:14:ce:4c:30:14:6c:17:d6:08:92:88:
54:c3:72:d1:8d:71:4b:10:00:56:94:de:f2:3a:4d:
df:1e:32:eb:4e:f5:d2:d3:99:86:a4:d8:87:9f:0b:
eb:f0:ef:fd:b6:df:97:9f:21:48:43:bc:27:17:9a:
87:d2:24:a8:8d:a1:8a:10:28:ad:b1:db:f0:73:5b:
c4:ff:c5:94:33:76:ea:3f:66:11:5c:a6:74:4f:0c:
b4:9c:de:b8:9e:88:be:09:15:e1:91:38:df:db:8b:
e4:61:48:92:aa:76:9b:a1:00:1d:4d:7c:af:f8:6e:
1f:d2:8f:56:44:f6:ff:54:2a:9b:e1:95:3b:6f:7d:
30:88:cd:a4:c5:03:81:d0:a7:9d:3c:46:de:eb:55:
f2:ab:fc:9b:4a:47:0c:3d:aa:70:30:f3:f6:6b:ab:
e3:94:58:4d:a6:cf:d6:c8:52:4a:0c:36:55:b0:64:
f9:ac:34:a0:6a:de:c8:2b:9a:dc:03:fc:3a:eb:6d:
75:76:26:b9:1d:39:04:3e:d3:54:d3:b3:fc:30:8f:
19:96:06:e1:5b:b3:52:fa:7b:e0:28:e8:06:35:42:
cb:c3:df:e0:d1:9f:de:e9:e1:bc:55:37:65:1f:f6:
72:04:6a:78:7f:79:71:2b:c7:b1:f8:2b:32:8d:19:
1d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6A:2D:6A:F6:BE:2B:75:49:16:DC:2A:08:03:EB:31:7F:A5:F2:F9
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/fmotava-K3VJFtwqCAPrMX-l8vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0-94.103.164.255
94.103.166.0/24
94.249.148.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.214.0/23
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
185.121.69.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
34:1d:be:12:02:8a:ee:88:03:f7:1d:cb:8d:f1:7a:2c:74:14:
42:5e:6f:06:95:39:ca:16:c7:70:01:8f:e7:d6:29:2d:2f:ce:
88:14:b6:1f:0f:0e:10:b3:2d:34:6d:9c:94:e1:dc:36:cd:58:
26:41:35:39:41:b4:15:4c:ca:c9:c2:c1:88:78:f5:bc:67:4b:
72:54:24:7a:99:89:99:88:c1:77:ac:6e:2e:d6:34:d6:52:36:
74:8b:1f:ee:c6:2d:74:b9:94:5e:60:37:9f:df:a7:7d:ce:b4:
44:22:a9:d5:c0:d2:aa:a2:89:f4:26:9b:46:2b:66:20:2d:f6:
96:af:8f:e4:f8:f0:ba:c0:3b:f4:7f:96:01:74:20:c2:fa:89:
69:7b:5d:2f:01:6a:98:27:b9:a9:fa:82:02:75:f5:49:bc:9f:
d3:61:52:b4:3f:34:95:02:1b:4f:f1:2f:f8:bf:94:8b:e2:49:
83:a5:65:04:5f:23:2b:fa:42:56:61:bc:79:0e:93:a7:e2:a3:
f4:96:6b:0c:66:5f:6e:47:69:61:6b:ca:7c:7e:81:97:26:a2:
da:b4:9f:fe:77:36:dc:7a:d1:40:03:de:d5:34:e0:d4:9d:e1:
79:be:da:47:33:08:62:c6:32:14:1a:c8:bd:43:45:33:f5:eb:
c3:08:81:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:12:51 2025 by rpki-client