Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/qCHmkz2M0M2kxcEVAl9tY9OtEc8.roa
File: qCHmkz2M0M2kxcEVAl9tY9OtEc8.roa (raw, json)
Hash identifier: AVO0whvJjoNdmE8dxqDhJMwK7zilpheWtnpbmolVg98=
Subject key identifier: A8:21:E6:93:3D:8C:D0:CD:A4:C5:C1:15:02:5F:6D:63:D3:AD:11:CF
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194D9A6AE4F5AC1235FBAD198999090E3F6
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/qCHmkz2M0M2kxcEVAl9tY9OtEc8.roa
Signing time: Thu 06 Feb 2025 05:06:06 +0000
ROA not before: Thu 06 Feb 2025 05:06:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d9:a6:ae:4f:5a:c1:23:5f:ba:d1:98:99:90:90:e3:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 6 05:06:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a821e6933d8cd0cda4c5c115025f6d63d3ad11cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e3:10:15:3b:2d:56:dc:24:d9:5c:b8:18:22:
c7:1c:d9:0b:ae:7d:ff:9b:19:d6:d9:a0:0b:c7:f6:
09:51:fb:4f:a3:0c:22:1f:79:4c:f6:2b:a2:11:3a:
d9:b2:58:36:30:b5:75:f5:52:c2:c1:d2:ce:50:9f:
42:a5:c8:da:11:69:07:4a:77:63:56:c8:31:cb:74:
48:8f:c2:2a:ce:a0:f9:48:9a:ef:e9:80:33:f9:67:
6d:c6:8a:f4:ef:49:fe:42:e2:ef:8b:a7:e9:24:46:
24:14:ff:66:56:31:59:b0:ca:3f:fa:3b:52:78:1a:
5f:50:9c:d5:10:cd:f9:d5:f6:a7:f5:ca:26:39:db:
ca:73:a8:6d:33:d7:43:79:22:7d:d6:4d:71:fd:fd:
8d:2f:53:0a:02:bb:5a:47:93:71:d5:0e:11:b6:21:
e4:0f:8d:0f:2e:bb:0d:80:d0:08:ed:54:eb:92:03:
12:b5:af:a2:2c:3c:2c:2a:44:11:a9:7d:5b:fd:ef:
c7:e0:3e:f2:35:19:3b:c5:15:08:6e:ea:e4:83:2b:
ca:a4:0e:df:1d:fe:33:23:bb:d5:e4:2d:84:bf:25:
12:2c:89:10:da:61:59:09:48:8a:84:68:74:36:92:
02:22:b6:3b:00:48:2d:20:c4:8f:3b:da:c4:81:6a:
f8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:21:E6:93:3D:8C:D0:CD:A4:C5:C1:15:02:5F:6D:63:D3:AD:11:CF
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/qCHmkz2M0M2kxcEVAl9tY9OtEc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0-94.103.164.255
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.214.0/23
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
e3:b1:d2:79:61:79:ec:70:a1:f4:34:8e:bf:de:a5:d3:52:67:
76:ae:07:db:e8:e1:d1:c6:f8:93:cd:49:40:f9:48:49:e0:61:
ca:f8:fd:54:45:39:4f:74:fd:b6:ee:54:cf:fc:4c:8c:a8:71:
fa:f3:c2:9f:f0:b7:d5:07:00:c8:08:90:d3:c1:fb:29:ba:a3:
e9:ee:f9:29:56:2e:de:d3:30:24:8c:d5:e8:68:79:e2:22:7b:
40:48:c6:67:9f:97:e7:98:bb:01:bc:b8:31:b4:8a:ff:68:c3:
99:b7:cd:51:4d:5b:72:70:fb:e0:cd:c9:53:0f:cd:5f:56:a6:
57:a1:77:d5:c5:3b:c4:d4:be:19:18:41:73:b0:8e:5b:58:f4:
8b:a5:3b:c6:62:b8:8c:5a:25:ca:d9:b1:3e:1f:66:d6:2c:39:
0c:9e:e8:45:60:8d:f8:61:80:04:b2:c0:99:6e:07:9e:79:24:
5b:5e:96:e0:fa:a9:67:6d:67:2e:84:e6:be:21:e0:9c:82:66:
39:4a:41:62:fa:7a:a0:e0:8c:55:fa:7c:76:47:30:06:30:b9:
f4:68:89:8d:69:cf:ec:bc:cb:5a:0c:fd:80:7c:3a:1d:2b:78:
5e:ef:03:1a:e1:12:c3:e5:93:61:39:c8:29:2c:a0:3c:99:12:
d7:05:46:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:35 2025 by rpki-client