Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gZzbSZBNDJs5-Ee0hSqFJ1dvEBI.roa
File: gZzbSZBNDJs5-Ee0hSqFJ1dvEBI.roa (raw, json)
Hash identifier: YNnEuF+A6/UonsXyrYRLe9kwnVeZBskXCOseNLfKo1o=
Subject key identifier: 81:9C:DB:49:90:4D:0C:9B:39:F8:47:B4:85:2A:85:27:57:6F:10:12
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019502DB52E370693E2D5DCC2749C7477804
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gZzbSZBNDJs5-Ee0hSqFJ1dvEBI.roa
Signing time: Fri 14 Feb 2025 05:08:02 +0000
ROA not before: Fri 14 Feb 2025 05:08:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:02:db:52:e3:70:69:3e:2d:5d:cc:27:49:c7:47:78:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 14 05:08:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=819cdb49904d0c9b39f847b4852a8527576f1012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:81:ab:a2:bb:83:e5:2b:c9:8d:61:89:d1:07:
b0:d7:85:0d:7b:51:b6:25:eb:02:97:57:29:5a:1c:
39:73:4e:82:b1:da:1f:5f:9c:d3:96:64:ec:bf:8f:
89:c2:5c:f0:36:08:61:e7:a2:01:e6:8c:88:aa:d3:
c0:df:45:72:de:1b:6e:e1:f4:e9:33:4a:90:49:4e:
02:87:36:42:3e:b9:1d:cd:0b:97:95:66:06:36:a9:
60:1d:60:b4:44:cb:b3:f6:05:e7:e8:4c:18:84:dd:
8d:92:4f:89:5f:63:56:eb:d5:5f:50:dc:79:57:b0:
0b:a4:5e:e8:ba:de:d4:73:31:f4:82:d7:87:80:d2:
fb:d6:b5:ac:5a:04:bf:78:b8:ac:5f:d4:ad:99:7b:
f5:07:20:08:d8:77:d5:08:81:36:12:04:cb:35:d5:
b6:df:a8:1b:e7:9e:5e:e8:da:1b:0c:3c:7a:d0:8c:
20:98:f8:6e:10:83:ba:b0:61:1e:42:00:54:1e:88:
71:ea:ee:e2:c0:2f:64:00:d9:d6:fd:86:09:8f:cf:
08:1b:7d:71:3f:60:bb:18:1e:54:bd:af:96:54:1e:
39:dc:c3:e8:a7:24:a6:2e:b3:90:ca:bd:e1:07:fd:
f0:ff:7b:54:2b:ba:3c:d3:76:d0:b1:0a:60:9d:57:
a1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:9C:DB:49:90:4D:0C:9B:39:F8:47:B4:85:2A:85:27:57:6F:10:12
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gZzbSZBNDJs5-Ee0hSqFJ1dvEBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.215.0/24
94.249.237.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
24:be:b0:60:f7:94:b7:38:7e:17:4a:00:8d:12:cd:06:27:ed:
5d:b6:b9:ba:84:01:3f:4a:94:2f:a4:15:ea:51:d0:af:7d:96:
8b:8a:39:50:5c:d1:65:7a:01:5b:56:6c:69:16:41:af:e2:dc:
bd:7c:72:51:96:aa:2f:aa:86:15:ec:c9:64:2b:62:e7:77:9d:
fc:9f:14:8a:90:27:89:bc:28:33:6d:80:a1:88:ab:45:c3:22:
a2:c3:ee:f3:fb:b2:e6:6c:99:50:75:1f:55:01:e2:02:c2:81:
04:2e:58:e0:dd:db:97:d9:10:e5:58:5b:8d:75:b4:7b:c4:a5:
73:a7:13:6b:21:31:4f:d3:69:0c:cf:e1:de:bb:e8:27:29:52:
94:a2:0a:83:34:04:80:f9:54:d1:4d:7c:80:7d:8b:58:dd:8f:
33:8b:04:6c:30:f3:16:ec:9a:04:03:e0:6f:0e:ae:96:3a:a9:
e4:01:15:42:56:90:ac:cd:6d:99:7f:e1:38:c5:69:e7:42:51:
4e:85:e7:46:59:ac:b6:b6:37:f7:2e:b4:8e:c2:7a:58:59:d2:
07:aa:e5:97:08:bf:33:9b:c4:00:8c:ab:da:96:5f:6e:8d:4a:
45:bc:50:db:19:21:78:e4:78:84:a2:a2:da:2a:f1:fa:e8:22:
8a:b4:50:8d
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAZUC21LjcGk+LV3MJ0nHR3gEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMjE0MDUwODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTljZGI0OTkwNGQwYzliMzlmODQ3YjQ4NTJhODUyNzU3NmYxMDEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4GroruD5SvJjWGJ0Qew14UNe1G2
JesCl1cpWhw5c06CsdofX5zTlmTsv4+JwlzwNghh56IB5oyIqtPA30Vy3htu4fTp
M0qQSU4ChzZCPrkdzQuXlWYGNqlgHWC0RMuz9gXn6EwYhN2Nkk+JX2NW69VfUNx5
V7ALpF7out7UczH0gteHgNL71rWsWgS/eLisX9StmXv1ByAI2HfVCIE2EgTLNdW2
36gb555e6NobDDx60IwgmPhuEIO6sGEeQgBUHohx6u7iwC9kANnW/YYJj88IG31x
P2C7GB5Uva+WVB453MPopySmLrOQyr3hB/3w/3tUK7o803bQsQpgnVeh6QIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFIGc20mQTQybOfhHtIUqhSdXbxASMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvZ1p6YlNaQk5ESnM1LUVlMGhTcUZKMWR2RUJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQABVOBAwQA
Ba+KAwQATVo2AwQAV++DAwQAWWpFAwQAXmejAwQAXvmZAwQAXvmeAwQAXvnDAwQA
XvnXAwQAXvntAwQAX9ciAwQAshKQAwQAuQ2cAwQAuQ2fAwQAuS+PAwQA2UWmMA0G
CSqGSIb3DQEBCwUAA4IBAQAkvrBg95S3OH4XSgCNEs0GJ+1dtrm6hAE/SpQvpBXq
UdCvfZaLijlQXNFlegFbVmxpFkGv4ty9fHJRlqovqoYV7MlkK2Lnd538nxSKkCeJ
vCgzbYChiKtFwyKiw+7z+7LmbJlQdR9VAeICwoEELljg3duX2RDlWFuNdbR7xKVz
pxNrITFP02kMz+Heu+gnKVKUogqDNASA+VTRTXyAfYtY3Y8ziwRsMPMW7JoEA+Bv
Dq6WOqnkARVCVpCszW2Zf+E4xWnnQlFOhedGWay2tjf3LrSOwnpYWdIHquWXCL8z
m8QAjKvall9ujUpFvFDbGSF45HiEoqLaKvH66CKKtFCN
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:18:22 2025 by rpki-client