Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/poPWmmT9D_B8nNf4Szig7KGJyGU.roa
File: poPWmmT9D_B8nNf4Szig7KGJyGU.roa (raw, json)
Hash identifier: jeZZkrrNy0q+8N6PyJzFqtPywSFrgGRlUouGuotg2ec=
Subject key identifier: A6:83:D6:9A:64:FD:0F:F0:7C:9C:D7:F8:4B:38:A0:EC:A1:89:C8:65
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019458F1D59F0F19A03C7B220C54241F241B
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/poPWmmT9D_B8nNf4Szig7KGJyGU.roa
Signing time: Sun 12 Jan 2025 05:17:11 +0000
ROA not before: Sun 12 Jan 2025 05:17:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.151.0/24 maxlen: 32
5.83.156.0/24 maxlen: 24
5.83.157.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.138.0/24 maxlen: 24
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 32
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.233.0/24 maxlen: 32
77.90.0.0/18 maxlen: 32
77.90.7.0/24 maxlen: 24
77.90.44.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.5.0/24 maxlen: 24
85.93.20.0/24 maxlen: 32
85.118.160.0/21 maxlen: 32
87.239.128.0/21 maxlen: 32
87.239.130.0/24 maxlen: 24
89.106.64.0/19 maxlen: 32
89.144.0.0/18 maxlen: 32
94.103.160.0/20 maxlen: 32
94.103.163.0/24 maxlen: 24
94.249.128.0/17 maxlen: 32
94.249.148.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
95.215.32.0/22 maxlen: 32
95.215.32.0/24 maxlen: 24
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 32
185.13.156.0/22 maxlen: 32
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:58:f1:d5:9f:0f:19:a0:3c:7b:22:0c:54:24:1f:24:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 12 05:17:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a683d69a64fd0ff07c9cd7f84b38a0eca189c865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1f:e1:bc:68:f0:49:11:c2:5b:79:46:49:91:
02:18:46:5f:7c:b9:3c:ab:27:66:2c:91:78:a1:b5:
1c:3f:79:43:84:f2:48:e7:2b:b6:16:38:5e:da:d9:
fa:23:d0:19:7f:06:97:8b:c5:ff:4c:1e:2f:27:f8:
ff:15:23:8c:08:7b:e6:6a:dc:fa:3b:2d:31:51:07:
93:29:fa:8e:8f:24:ff:99:8b:f5:34:b3:b4:fb:a2:
c9:a8:16:04:16:bd:22:d1:f0:b5:49:ab:8c:20:bf:
9b:2f:d8:c3:25:0b:72:e4:ad:72:b2:09:eb:40:72:
33:ff:5d:9d:a1:86:bc:b8:66:f2:6d:11:ac:09:72:
bb:3f:ba:7d:1f:90:41:0a:56:94:b7:90:b2:6a:2b:
0a:98:80:7f:00:93:7f:ec:03:4f:7f:ef:37:b0:54:
69:7a:76:38:b6:31:29:95:4d:81:91:70:45:45:5f:
ad:e8:1f:25:da:a5:36:71:05:d8:15:bd:67:44:4e:
94:96:49:8f:03:f3:09:4d:05:db:08:69:74:88:5a:
d6:d1:9b:9e:15:24:54:0c:92:d0:de:04:17:02:fe:
21:0e:5c:58:b6:de:88:de:88:46:90:6c:ae:14:31:
a6:9f:76:05:52:1b:e4:ff:ca:79:6e:81:d0:1c:79:
4f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:83:D6:9A:64:FD:0F:F0:7C:9C:D7:F8:4B:38:A0:EC:A1:89:C8:65
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/poPWmmT9D_B8nNf4Szig7KGJyGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.138.0/24
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0/24
5.175.240.0-5.175.244.255
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0/23
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
26:67:3d:67:10:fe:ec:f0:af:4b:3f:5a:ae:61:77:26:0c:21:
00:23:14:14:7a:56:3d:d3:dd:82:f4:a3:4c:6f:d9:8c:5a:99:
52:62:e5:02:db:ea:04:32:67:61:7f:85:e4:90:e3:3a:3b:ab:
72:b9:e4:70:af:f4:10:bc:51:df:6a:bf:32:10:94:4a:d6:d4:
6f:47:c3:ac:72:e8:bf:37:90:f8:04:d8:ee:cf:b9:67:c0:49:
e9:9c:b4:c2:d3:91:da:e7:21:b3:c5:85:6e:27:c9:71:74:6d:
97:55:9b:37:1d:8a:74:fa:68:2e:2f:1c:9c:4c:95:62:eb:46:
d7:da:0c:24:58:ce:5f:7d:b8:ef:6c:83:de:49:d8:7b:9e:f2:
0f:7d:1f:c4:f5:e0:32:8b:02:4a:7b:c6:41:de:d8:18:a7:64:
1d:68:af:d7:1f:3f:bf:e9:1d:39:1c:06:98:29:07:ef:7f:b7:
3c:21:ab:76:c8:32:95:79:40:a1:81:08:38:f1:2f:c6:be:8f:
41:96:7a:8b:80:b6:40:b8:c9:2c:06:5f:62:59:72:d6:6f:d4:
c4:4d:eb:06:46:3d:49:cc:cd:ea:e1:27:13:12:99:aa:1d:e7:
83:ec:97:63:f5:ee:79:db:23:d4:7f:43:08:b0:8f:ba:39:66:
65:aa:10:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:16:03 2025 by rpki-client