Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ozxAxorvWrzgVJDSLVyrJ-9awpA.roa
File: ozxAxorvWrzgVJDSLVyrJ-9awpA.roa (raw, json)
Hash identifier: 03uxxTmaiyYFltJXhcQsNldhPBTF9RIsH0fKc9kT75k=
Subject key identifier: A3:3C:40:C6:8A:EF:5A:BC:E0:54:90:D2:2D:5C:AB:27:EF:5A:C2:90
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194222003F4B7967B3A15147674C2B11916
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ozxAxorvWrzgVJDSLVyrJ-9awpA.roa
Signing time: Wed 01 Jan 2025 13:48:31 +0000
ROA not before: Wed 01 Jan 2025 13:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
77.90.7.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:03:f4:b7:96:7b:3a:15:14:76:74:c2:b1:19:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a33c40c68aef5abce05490d22d5cab27ef5ac290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f1:41:ea:80:2e:c1:47:c6:47:1e:0e:90:97:
aa:d0:e0:f9:d5:81:63:b8:84:6e:7d:ca:ea:77:85:
d4:bf:c4:53:23:e0:c9:87:6d:5d:9f:ed:77:2b:c0:
b7:73:33:2e:fc:b8:a9:90:a6:44:f9:f6:d6:0d:23:
81:f8:aa:c7:ba:99:40:dc:74:0e:31:33:62:26:e6:
c8:60:b2:4c:68:03:9b:43:55:99:f4:1f:c5:e0:4a:
60:04:71:d3:87:7c:70:fc:55:00:37:12:cb:9f:b4:
ec:70:1a:10:4b:ab:3b:b8:aa:6d:9b:12:1b:6a:72:
48:a3:ef:83:cc:43:06:1b:e0:8b:8e:12:5a:25:ee:
53:ab:70:8c:50:92:b6:fd:c0:40:74:57:0b:48:96:
d0:97:95:0a:a4:c6:9d:0e:89:15:53:89:2e:2e:fc:
7d:bc:fd:2e:3c:5d:7d:ef:b1:64:fa:66:50:94:41:
40:6e:0d:3d:79:6a:03:f6:fc:4c:70:d1:37:96:62:
ba:b8:79:86:a0:10:00:b5:95:77:4c:82:f8:b7:68:
cd:72:59:63:48:bd:af:04:31:71:7c:8b:22:e8:4e:
a7:56:34:df:aa:35:54:83:91:b0:c9:ec:d2:9a:f9:
31:b4:da:08:1c:10:0c:23:43:26:35:9a:e6:71:16:
08:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3C:40:C6:8A:EF:5A:BC:E0:54:90:D2:2D:5C:AB:27:EF:5A:C2:90
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ozxAxorvWrzgVJDSLVyrJ-9awpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
77.90.7.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:e4:f7:4a:8b:6e:96:f4:c9:ea:da:30:b3:ae:a1:5d:88:66:
db:b4:09:41:4e:58:d8:5f:2b:ba:52:a0:9c:25:16:4e:a1:6a:
e4:ae:d5:22:73:c8:34:68:82:33:1f:72:3a:4f:40:e3:75:d7:
3d:fc:ad:d4:19:9b:8d:3a:23:4f:38:8f:3c:8c:35:59:7b:4b:
1b:03:e7:74:aa:a9:0a:65:6e:c4:b0:0a:78:6c:f5:f4:f3:42:
11:94:93:f6:9f:7d:60:b9:00:43:a6:83:9a:88:79:42:85:17:
a9:8c:25:50:3a:cb:ac:20:d3:5d:b9:57:53:44:65:18:fb:17:
e1:39:2a:5b:45:8a:0f:10:d8:36:3c:c4:c6:3d:61:fd:ed:4b:
60:6c:32:2d:e4:2b:8b:7a:99:3c:50:38:f3:ae:b4:ea:99:dd:
f3:1c:87:05:20:b9:50:00:24:c9:b2:fb:bf:74:e8:d9:ca:8c:
f7:8d:0c:b2:8d:ab:fd:54:43:9b:c5:82:03:0f:c6:b1:12:13:
c9:00:eb:c1:d6:79:fb:ad:3d:d3:92:e3:61:53:71:e6:20:5a:
1a:2c:84:9a:6c:ba:c5:0a:b0:50:a4:df:ec:1a:87:33:d2:42:
78:0e:69:52:2f:20:1e:92:98:6b:ba:3b:df:ac:a8:7b:7a:95:
5e:a6:dc:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:15:48 2025 by rpki-client