Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/oWqPujoyncHqucaQXGvAMDIBSEU.roa
File: oWqPujoyncHqucaQXGvAMDIBSEU.roa (raw, json)
Hash identifier: AE3qaGKqOaKXDmIym5U0a0vouhxhgK3ajQ4VU8DOEs0=
Subject key identifier: A1:6A:8F:BA:3A:32:9D:C1:EA:B9:C6:90:5C:6B:C0:30:32:01:48:45
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194DE2A131CBEE361D2823740475242DEA3
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/oWqPujoyncHqucaQXGvAMDIBSEU.roa
Signing time: Fri 07 Feb 2025 02:08:06 +0000
ROA not before: Fri 07 Feb 2025 02:08:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:de:2a:13:1c:be:e3:61:d2:82:37:40:47:52:42:de:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 7 02:08:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a16a8fba3a329dc1eab9c6905c6bc03032014845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a0:bc:aa:06:1b:6b:10:dd:66:18:9b:ff:39:
f7:73:07:e4:f1:e1:e4:91:09:a4:59:28:58:b9:13:
d6:a2:5e:3c:76:5b:28:77:5a:58:eb:94:ec:db:99:
67:9f:d5:42:24:ca:03:df:f4:1d:26:ac:dc:b3:4c:
c3:ed:b2:bf:f7:76:c7:1b:89:65:c8:c1:e9:18:b3:
b9:37:e3:37:43:02:35:71:67:67:8d:7d:18:e9:01:
c6:80:c8:0d:b9:2e:2a:4b:19:52:57:5c:63:7b:94:
6d:31:ff:19:83:d9:9e:49:f2:12:68:8b:83:cf:39:
18:a6:b8:de:10:24:ea:26:76:84:40:56:49:f7:bd:
2a:b8:cf:f7:9f:09:13:17:01:b8:76:c7:04:9a:ca:
d9:b2:c4:fc:f7:fd:82:28:a2:c4:33:44:43:d7:4c:
a9:fe:e0:2f:53:6e:bd:3d:f1:33:6f:00:b7:fd:f3:
e6:3d:74:4b:65:49:da:bd:db:2e:40:9b:dc:b7:5e:
c8:9f:25:78:73:2c:63:a9:75:da:f2:b5:47:ed:33:
be:c9:df:5c:37:93:c8:05:c3:2a:0d:12:9f:9a:3e:
5b:6d:c3:4c:5b:d2:1a:33:46:f9:82:73:e6:a1:69:
3c:72:8b:d9:2c:9f:21:be:1f:78:c4:5c:84:1c:04:
fd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6A:8F:BA:3A:32:9D:C1:EA:B9:C6:90:5C:6B:C0:30:32:01:48:45
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/oWqPujoyncHqucaQXGvAMDIBSEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0-94.103.164.255
94.249.148.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.214.0/23
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
24:1b:fd:b3:3f:99:e4:ac:f7:e3:3e:ea:cc:6b:c6:2d:ce:e7:
b2:fc:8d:b9:cc:6c:00:7f:de:a5:4c:7c:7c:78:63:99:c9:ab:
00:f5:24:37:e8:be:7d:10:4b:b1:b3:bc:11:bc:59:4f:e4:c1:
9b:e3:70:66:fc:3a:b6:d9:af:b0:92:df:c5:01:4a:ff:46:8d:
a4:e2:f3:63:e6:e3:db:9b:cb:fe:7e:4b:42:b0:7a:0d:73:d1:
86:b4:13:6e:95:9d:70:ca:fb:48:fc:06:99:7d:0c:c4:9e:d1:
e1:0c:47:c0:20:74:19:37:84:06:bb:d8:61:39:50:a2:35:b6:
37:03:98:fe:55:28:42:e2:3a:c6:65:c6:5c:b4:11:c6:90:60:
27:63:53:27:3e:82:b8:49:bd:b0:14:5f:b5:af:7b:f9:c8:a9:
d2:78:b1:01:3f:87:62:2d:02:a4:5b:ed:1c:0d:9a:e2:0a:66:
33:11:a6:98:2e:a6:ce:f3:e8:c7:4f:c5:9e:6a:68:da:4d:d0:
88:b8:81:28:7f:df:d0:dd:99:d1:5a:85:4c:1d:6f:36:da:b5:
0c:e7:af:fc:8f:5f:75:c2:7d:0c:7a:74:0d:4f:58:4b:99:47:
cd:d1:7f:ec:53:43:7b:2c:6b:c2:e1:ce:d8:f4:25:10:5a:eb:
6e:e6:dd:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:35 2025 by rpki-client