Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jzl0sb0zbXPhVxUePyL7IQdc12s.roa
File: jzl0sb0zbXPhVxUePyL7IQdc12s.roa (raw, json)
Hash identifier: lfHEVWxGWqvOXGHIdv7vwQgCyh/zd8K9MMq0hMcwXz4=
Subject key identifier: 8F:39:74:B1:BD:33:6D:73:E1:57:15:1E:3F:22:FB:21:07:5C:D7:6B
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0193EA1EB1440A8E3C0172B07ABADFDB06AA
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jzl0sb0zbXPhVxUePyL7IQdc12s.roa
Signing time: Sat 21 Dec 2024 16:48:20 +0000
ROA not before: Sat 21 Dec 2024 16:48:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.130.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.138.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ea:1e:b1:44:0a:8e:3c:01:72:b0:7a:ba:df:db:06:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Dec 21 16:48:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f3974b1bd336d73e157151e3f22fb21075cd76b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ef:e6:df:1c:91:d2:06:4c:11:ea:c5:25:3d:
8e:00:ab:d9:05:32:86:9e:41:7e:47:9f:37:83:b0:
f4:83:3f:4d:ab:56:56:ca:b9:67:ba:f6:cf:b2:60:
f7:ca:e8:32:11:a1:11:a5:fd:0f:20:fa:3d:d5:42:
05:83:5c:b2:16:72:5b:44:75:0e:1f:f6:8e:76:f9:
73:45:2f:19:26:e8:a2:94:e6:8f:41:d6:35:8d:fc:
4a:6c:7e:fe:a3:9e:78:e2:c9:a7:9e:11:10:75:3e:
a9:fc:ba:6e:6f:88:85:0b:7b:04:8e:ab:55:71:f4:
25:24:16:85:da:25:8a:4a:74:74:69:ae:34:3f:2d:
0c:35:de:f6:3a:8a:2e:42:28:15:02:6d:e6:fd:9c:
23:5e:89:ba:77:4c:39:ec:78:4b:96:e3:48:cd:20:
d6:fa:4c:1a:0c:46:3e:35:93:f6:2e:00:4f:d7:19:
fe:7e:56:26:fd:9b:9e:1e:e6:b1:2f:0c:5c:a5:ce:
7f:86:da:bb:c7:a5:b3:5e:b7:5d:ae:2f:b0:82:62:
fe:54:38:47:4f:7f:22:38:2a:1b:49:b4:42:f4:f2:
21:a2:62:3a:eb:cd:2f:1a:60:8a:50:51:ce:32:b0:
b3:31:84:a8:c0:d3:6b:e6:bc:c7:c0:fc:24:a5:14:
22:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:39:74:B1:BD:33:6D:73:E1:57:15:1E:3F:22:FB:21:07:5C:D7:6B
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jzl0sb0zbXPhVxUePyL7IQdc12s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.130.0/23
89.106.69.0/24
94.103.163.0/24
94.249.138.0/24
94.249.148.0/24
94.249.153.0/24
94.249.212.0/24
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
185.13.159.0/24
185.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:ca:fb:ea:3d:9a:3a:03:0f:33:37:26:f4:77:5a:c8:13:d7:
f4:78:e1:1a:d6:24:31:23:71:00:74:e9:cd:c5:bd:5c:dc:eb:
2c:32:eb:f8:5b:1d:ab:0f:0b:6a:f4:6e:f9:5f:eb:93:2d:f3:
7c:e3:12:bc:7c:36:88:f1:ff:aa:29:c4:f5:32:68:cc:7b:8e:
0c:d5:27:f6:7d:b7:55:75:43:a3:6f:60:69:8c:69:54:6d:c5:
5a:3c:83:67:8d:61:04:2d:9c:eb:66:02:86:bd:48:09:06:e7:
7a:b7:51:57:65:91:0f:d0:7b:82:9a:71:f9:49:50:9e:d1:9f:
1d:80:3f:d3:4a:ea:c6:02:1e:51:cc:53:8b:ab:41:f0:3a:9b:
20:a2:65:3a:43:10:70:a3:d2:ac:d9:e3:06:ec:65:d0:bd:88:
c4:7e:0a:92:a1:7c:ef:90:2f:16:98:ac:8f:dc:08:99:aa:12:
03:7c:51:ea:e4:a0:6c:63:89:39:48:bd:84:77:6d:e7:3a:8a:
59:69:a0:22:c5:5c:59:93:db:6b:d9:94:80:a2:c0:4b:94:0f:
15:1f:74:b8:99:b6:bc:5f:ad:39:e9:8d:62:4f:ff:e0:00:14:
0d:00:0e:2d:da:29:63:a3:00:40:5a:b2:28:65:ae:0b:36:40:
ea:87:7d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:20:31 2025 by rpki-client