Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gVe-tsTwJKwEXwEefqoo0kCqRAk.roa
File: gVe-tsTwJKwEXwEefqoo0kCqRAk.roa (raw, json)
Hash identifier: 9fvsf6JnQAcAWy3vHUXGJdOX8OcL0SNw6kyTiFWllGQ=
Subject key identifier: 81:57:BE:B6:C4:F0:24:AC:04:5F:01:1E:7E:AA:28:D2:40:AA:44:09
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194B074F1EE448730479035A87A975ECF10
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gVe-tsTwJKwEXwEefqoo0kCqRAk.roa
Signing time: Wed 29 Jan 2025 05:07:21 +0000
ROA not before: Wed 29 Jan 2025 05:07:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.103.166.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b0:74:f1:ee:44:87:30:47:90:35:a8:7a:97:5e:cf:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 29 05:07:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8157beb6c4f024ac045f011e7eaa28d240aa4409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:61:d6:47:39:1e:82:4f:3f:72:b8:45:35:e1:
c1:e7:cc:c3:4e:ae:23:77:a8:07:48:f4:69:c9:22:
f1:d8:7c:b5:12:c4:20:b4:dc:e8:70:d8:8e:68:29:
2d:81:1e:f8:64:9a:5d:6b:70:f2:18:3b:7c:fb:c0:
0a:6f:e1:0d:86:3a:de:c0:68:8a:9b:49:e0:b1:54:
f3:d3:ae:ce:a7:3d:c3:82:8a:40:1b:7e:a8:bf:66:
be:40:4b:31:a7:69:32:b9:6f:f2:6d:09:67:dc:8b:
35:4c:d8:88:f4:10:14:4a:56:63:78:49:2a:eb:61:
b7:38:f0:03:0e:c1:03:b1:e5:d2:e1:d6:22:2a:7a:
f6:fb:df:a4:75:7c:3b:c5:a4:d0:06:fc:54:8c:00:
41:32:aa:4c:1f:93:09:0d:6c:b1:2c:80:f7:49:00:
96:c3:f3:5a:36:64:18:45:0d:26:6b:f2:8c:a1:60:
c0:20:9a:e5:45:44:14:9e:b0:06:9b:18:44:f5:25:
bd:e2:d4:41:9a:de:0c:c6:4e:1b:30:86:72:7a:c6:
1f:6a:1e:5d:7f:18:f5:04:b0:da:3a:45:b9:75:34:
58:f9:26:25:6e:d3:6c:f3:e3:7f:9b:a7:c3:ae:c6:
eb:51:89:4f:58:ea:e5:53:69:9c:6b:92:2f:d5:a5:
e9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:57:BE:B6:C4:F0:24:AC:04:5F:01:1E:7E:AA:28:D2:40:AA:44:09
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gVe-tsTwJKwEXwEefqoo0kCqRAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0-94.103.164.255
94.103.166.0/24
94.249.148.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.214.0/23
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:75:5d:93:a8:28:82:ea:10:66:9e:c4:81:9f:f1:1a:e8:64:
fc:c6:b3:5e:2e:42:2d:58:2e:ed:a1:cd:6b:da:c1:cc:73:b7:
5a:56:79:ae:0d:d0:15:4c:e4:c7:13:37:51:10:5b:8d:7f:1b:
af:29:0e:c3:d7:df:18:d4:c6:34:89:bf:51:26:09:ed:5c:94:
56:2d:86:3a:55:f3:6a:24:48:ab:32:d6:5f:3a:56:3e:6e:6f:
5b:99:58:db:4d:48:52:81:2d:e6:7b:b0:14:66:ee:c0:c8:79:
f5:bc:2b:53:e6:d7:25:70:0f:06:59:fe:8c:f0:e5:2c:8b:ef:
0d:8e:69:69:1a:09:ac:ef:87:27:59:30:9e:46:61:5e:c0:a0:
cb:2b:8a:bc:a6:ea:5c:22:b8:78:ae:b2:40:6e:10:80:7c:7d:
19:8e:f6:33:d8:16:7d:f4:55:2e:70:67:2d:b7:95:26:93:37:
0c:9d:57:7c:dc:c8:b6:ae:a8:6c:66:0c:45:ea:c6:ff:0e:d5:
e9:19:79:92:09:c8:b2:16:c4:b1:f0:c2:37:45:29:66:af:2c:
e5:fb:1c:84:3b:0b:1f:d7:dd:60:b0:11:13:29:58:83:7f:29:
8a:d8:26:70:7a:c1:d2:56:80:27:1d:ba:46:e4:0d:5a:db:ab:
df:2d:14:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:18:14 2025 by rpki-client