Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/meoVQru7nFStUYI9Z6VeaGhyny8.roa
File: meoVQru7nFStUYI9Z6VeaGhyny8.roa (raw, json)
Hash identifier: QX4VhfX2Ro9U5uwlUtfuKXilGlwbIJUAz+NqYcOrEBo=
Subject key identifier: 99:EA:15:42:BB:BB:9C:54:AD:51:82:3D:67:A5:5E:68:68:72:9F:2F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019453CB7B663D61588182F24E0E0EA99B1D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/meoVQru7nFStUYI9Z6VeaGhyny8.roa
Signing time: Sat 11 Jan 2025 05:17:11 +0000
ROA not before: Sat 11 Jan 2025 05:17:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:53:cb:7b:66:3d:61:58:81:82:f2:4e:0e:0e:a9:9b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 11 05:17:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=99ea1542bbbb9c54ad51823d67a55e6868729f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:16:ef:6a:61:ad:ff:f2:4c:48:7b:ad:54:fd:
52:4a:fc:16:b1:b5:14:65:0e:ed:52:de:5e:ed:99:
1f:e2:79:d3:e8:54:59:da:27:f2:de:7b:f5:26:28:
ea:10:9c:0e:0a:89:2e:d2:e2:d6:9a:ff:2d:1f:bd:
49:8c:99:e6:34:bb:a9:08:64:2e:d7:8e:14:ad:0f:
a8:be:c2:d3:2d:86:e3:05:41:8e:ed:45:27:8a:fe:
f6:4c:a1:b6:5f:8d:21:c1:a8:fd:28:40:d8:71:59:
6e:d5:ba:dd:99:3d:ef:ae:c6:d2:cd:e1:ca:5f:d5:
a0:dd:86:fa:5a:14:2c:bb:b6:cb:de:4b:f6:de:3a:
fb:15:55:6e:d2:82:c9:d8:59:e0:ac:7f:99:1a:0a:
30:52:13:fa:43:aa:77:1a:5c:8c:13:af:cd:8b:ab:
8d:a0:55:d4:09:fd:aa:33:26:8d:b5:09:9e:6c:f7:
8a:f8:05:97:c8:cb:04:34:18:4b:e6:68:0d:11:53:
5d:bc:bb:d0:0a:05:89:e7:49:e5:40:9a:dd:44:8c:
8b:6b:fa:cc:2e:73:12:b6:f6:7e:05:96:a9:6f:c6:
cb:10:e0:cd:38:b2:c3:72:1f:3e:38:64:f7:be:14:
4b:fe:2d:a4:79:aa:ca:d8:58:38:9c:53:46:83:7e:
f8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EA:15:42:BB:BB:9C:54:AD:51:82:3D:67:A5:5E:68:68:72:9F:2F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/meoVQru7nFStUYI9Z6VeaGhyny8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0-94.103.164.255
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.212.0/24
94.249.215.0/24
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:82:cf:69:10:37:22:4e:61:59:b7:0a:dc:77:69:3a:01:3f:
51:82:47:09:00:15:ba:41:8f:a0:b9:43:2a:9d:69:ee:aa:e9:
b0:a1:28:f5:9e:4f:84:a3:f9:24:fb:07:24:00:62:f6:b2:8d:
ea:c0:5e:fb:d7:fb:e5:5d:0d:a8:2f:87:55:fc:25:3b:bc:d3:
68:2e:3f:d5:7a:af:7f:7f:7d:ac:74:18:08:88:cf:1d:e6:82:
9d:c1:63:a6:6f:37:48:4f:cb:98:30:bf:40:38:95:d5:b7:e0:
60:69:b5:d0:fb:07:03:69:ec:67:ce:13:b1:28:35:f2:10:6e:
98:62:e3:03:3c:9f:68:7c:ac:99:4b:4b:09:42:d6:74:27:7c:
af:da:31:16:86:a5:70:86:2f:ca:d0:21:b3:0c:6a:7e:52:b2:
f5:6d:91:1b:bd:a8:1d:b7:7a:c2:11:1d:8d:b4:29:eb:07:6f:
9d:17:df:1d:79:f4:b1:18:24:58:d5:18:10:5c:d8:02:b4:d1:
83:68:a8:85:23:eb:a5:87:e8:ae:6e:fc:e6:1d:b0:db:27:60:
c7:43:89:6d:23:de:1c:e2:80:0c:20:41:fd:bf:5f:c7:65:de:
5d:cb:aa:dc:94:fb:ed:f6:21:65:ce:7b:f1:24:14:c5:11:46:
d4:aa:46:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:12:53 2025 by rpki-client