Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6NlfRultE22NMHEwARQjWMYqogE.roa
File: 6NlfRultE22NMHEwARQjWMYqogE.roa (raw, json)
Hash identifier: B6Y1541nlVGezI07IbrJqBTpeuek+raeBcQKu/KLW/w=
Subject key identifier: E8:D9:5F:46:E9:6D:13:6D:8D:30:71:30:01:14:23:58:C6:2A:A2:01
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01939297EB96BCA364915990FECD0AE136EB
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6NlfRultE22NMHEwARQjWMYqogE.roa
Signing time: Wed 04 Dec 2024 16:54:10 +0000
ROA not before: Wed 04 Dec 2024 16:54:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.219.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:92:97:eb:96:bc:a3:64:91:59:90:fe:cd:0a:e1:36:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 4 16:54:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8d95f46e96d136d8d30713001142358c62aa201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d6:77:b9:1b:c8:12:d0:82:7b:b4:1c:fe:20:
5a:1a:ae:82:cc:f6:05:24:55:82:06:1e:73:e1:24:
54:f1:f5:fe:34:56:ff:20:25:cc:4b:ef:30:6d:f5:
d3:b8:9b:a0:c5:8e:ff:ff:d5:ad:27:f1:37:22:cc:
32:d3:d5:94:2a:9c:6d:78:b9:82:8d:85:54:bb:a9:
c5:4b:ba:e5:aa:68:d1:4e:6c:a7:40:99:87:54:c1:
18:14:0d:ae:c1:f9:8d:6e:04:7c:2a:8d:f5:7b:6e:
5a:81:32:c5:2d:1c:9c:20:c8:6d:62:8f:03:39:70:
09:5c:ff:ee:c0:40:53:54:a0:a5:a7:6f:7e:e7:0a:
59:51:48:8f:0a:00:ae:f8:91:5b:a8:83:ed:b4:ba:
c7:6f:8a:24:a1:f3:8f:12:b0:b7:af:b9:7a:39:df:
c6:52:d5:b8:18:0f:ea:e1:1c:07:38:f0:9b:d2:cc:
88:19:f1:8e:c5:fd:70:4b:ab:84:c8:19:e9:95:9d:
06:a7:42:f7:e9:0f:c0:74:07:1b:53:d3:0d:4e:2d:
a3:2e:e9:4d:62:4c:bf:3a:16:20:71:01:8e:01:27:
84:37:b3:b8:2e:64:ab:07:23:d1:3e:45:43:ee:89:
80:10:e6:b5:bd:3b:8b:01:2f:1d:8c:58:cc:4e:23:
ea:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D9:5F:46:E9:6D:13:6D:8D:30:71:30:01:14:23:58:C6:2A:A2:01
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6NlfRultE22NMHEwARQjWMYqogE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.59.0/24
163.5.73.0/24
163.5.89.0/24
163.5.92.0/24
163.5.110.0-163.5.113.255
163.5.118.0/23
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.138.0/23
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.162.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.189.0/24
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/23
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.248.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
16:a6:c3:5e:64:e6:4f:2c:4c:07:c4:2f:33:c9:94:01:17:36:
f2:57:4f:1a:1b:b5:40:66:54:13:f0:90:99:6d:9d:cc:c9:ea:
c1:4f:8c:2e:70:4d:38:48:9f:35:61:92:2c:1c:7d:87:12:b4:
0f:fe:ee:98:2d:f5:18:3e:3e:93:d3:b0:5d:58:8f:06:b5:21:
77:c5:ea:2d:cd:e6:94:e5:4d:bc:e9:9c:47:4c:bc:da:2d:79:
0e:5e:4c:f2:89:fe:1e:1e:2f:2a:13:2a:e8:2a:6a:13:7c:37:
a0:cd:74:c4:72:e6:08:67:a0:b7:fd:a8:17:e2:4a:c8:70:a7:
d8:60:b8:49:a9:db:fe:b3:f4:b0:dd:41:b5:0d:5a:be:d6:b0:
ca:6a:c7:fd:02:7d:e5:c9:a9:50:93:cf:8a:46:aa:c6:dc:22:
b5:48:e4:b3:f7:43:54:2c:bd:e5:b6:a8:b4:30:6b:cb:37:5b:
d4:7d:64:fc:cd:20:7f:f9:38:61:da:2f:67:04:46:fe:0e:02:
62:83:e5:e4:25:a1:0d:d7:f8:7d:c4:42:5a:62:9a:c2:22:4d:
53:05:11:8d:51:04:f9:bf:d8:4f:30:ec:89:81:92:55:2e:58:
e2:e7:ba:e6:fb:95:4d:50:c3:89:0e:35:c8:d6:f1:3d:5a:14:
25:4d:28:b0
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgISAZOSl+uWvKNkkVmQ/s0K4TbrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQxMjA0MTY1NDEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGQ5NWY0NmU5NmQxMzZkOGQzMDcxMzAwMTE0MjM1OGM2MmFhMjAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3tZ3uRvIEtCCe7Qc/iBaGq6CzPYF
JFWCBh5z4SRU8fX+NFb/ICXMS+8wbfXTuJugxY7//9WtJ/E3Iswy09WUKpxteLmC
jYVUu6nFS7rlqmjRTmynQJmHVMEYFA2uwfmNbgR8Ko31e25agTLFLRycIMhtYo8D
OXAJXP/uwEBTVKClp29+5wpZUUiPCgCu+JFbqIPttLrHb4okofOPErC3r7l6Od/G
UtW4GA/q4RwHOPCb0syIGfGOxf1wS6uEyBnplZ0Gp0L36Q/AdAcbU9MNTi2jLulN
Yky/OhYgcQGOASeEN7O4LmSrByPRPkVD7omAEOa1vTuLAS8djFjMTiPq6wIDAQAB
o4ICzDCCAsgwHQYDVR0OBBYEFOjZX0bpbRNtjTBxMAEUI1jGKqIBMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvNk5sZlJ1bHRFMjJOTUhFd0FSUWpXTVlxb2dFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHhBggrBgEFBQcBBwEB/wSB0TCBzjCBywQCAAEwgcQDBACj
BR4DBACjBTsDBACjBUkDBACjBVkDBACjBVwwDAMEAaMFbgMEAaMFcAMEAaMFdgME
AKMFeQMEAKMFfgMEAaMFgAMEAaMFigMEAKMFjwMEAKMFkgMEAKMFlwMEAKMFoAME
AKMFogMEAKMFpwMEAKMFsgMEAKMFtgMEAKMFvQMEAKMFvwMEAaMFyDAMAwQAowXL
AwQAowXOAwQBowXaAwQAowXgAwQAowXkAwQAowXxAwQAowX4AwQAowX6AwQAowX9
MA0GCSqGSIb3DQEBCwUAA4IBAQAWpsNeZOZPLEwHxC8zyZQBFzbyV08aG7VAZlQT
8JCZbZ3MyerBT4wucE04SJ81YZIsHH2HErQP/u6YLfUYPj6T07BdWI8GtSF3xeot
zeaU5U286ZxHTLzaLXkOXkzyif4eHi8qEyroKmoTfDegzXTEcuYIZ6C3/agX4krI
cKfYYLhJqdv+s/Sw3UG1DVq+1rDKasf9An3lyalQk8+KRqrG3CK1SOSz90NULL3l
tqi0MGvLN1vUfWT8zSB/+Thh2i9nBEb+DgJig+XkJaEN1/h9xEJaYprCIk1TBRGN
UQT5v9hPMOyJgZJVLlji57rm+5VNUMOJDjXI1vE9WhQlTSiw
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:30 2025 by rpki-client