Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MUJOemOmSywbI_KjUPoVtKo5Htw.roa
File: MUJOemOmSywbI_KjUPoVtKo5Htw.roa (raw, json)
Hash identifier: 2nFzEyZfDyaFxqfEDMXC7QNVsP71PrKZqZ+kqQlMTfE=
Subject key identifier: 31:42:4E:7A:63:A6:4B:2C:1B:23:F2:A3:50:FA:15:B4:AA:39:1E:DC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01946B04D852DA7FDF55045ABA73D024D4ED
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MUJOemOmSywbI_KjUPoVtKo5Htw.roa
Signing time: Wed 15 Jan 2025 17:31:07 +0000
ROA not before: Wed 15 Jan 2025 17:31:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.175.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.219.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.231.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6b:04:d8:52:da:7f:df:55:04:5a:ba:73:d0:24:d4:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 15 17:31:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=31424e7a63a64b2c1b23f2a350fa15b4aa391edc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ff:0c:46:8d:ba:12:28:a1:72:60:0e:ee:f1:
bd:92:fc:e2:96:5a:1e:cf:72:06:8a:38:83:29:81:
9d:66:ec:63:9c:38:fb:7a:9a:44:45:1c:18:7a:7d:
9c:16:da:bf:5e:36:1d:a2:63:2c:90:9d:85:e9:2b:
39:91:d1:f7:14:68:02:39:f1:61:92:27:bd:15:a5:
79:96:bc:ba:87:eb:dc:83:3c:fc:52:bf:bd:b4:90:
44:8b:17:82:fe:b9:50:da:fb:61:d9:ae:f4:5d:6a:
64:b1:16:9a:f7:a5:7c:a9:a4:5f:77:18:bb:6e:2e:
19:66:08:59:be:63:a3:75:be:a0:80:cc:4c:00:76:
3e:43:ef:32:11:06:27:58:75:5b:74:2d:a0:fd:2c:
d4:d9:d9:be:72:cc:98:87:7c:d1:ae:d4:9d:b8:2b:
a6:dc:00:55:74:5f:17:45:d1:c1:eb:d7:56:ce:f8:
07:a7:96:c5:0c:af:34:d7:77:e3:18:c3:49:39:61:
53:c0:b1:cb:b3:1d:fd:6a:ca:81:3f:3a:13:86:98:
b3:4b:e3:ea:68:e8:a3:41:23:ae:4a:68:08:a7:13:
c0:89:c4:12:6e:2a:ca:d9:be:de:4d:28:db:e1:5b:
92:00:f2:fa:f8:05:43:65:ff:9a:47:aa:f9:ac:a4:
36:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:42:4E:7A:63:A6:4B:2C:1B:23:F2:A3:50:FA:15:B4:AA:39:1E:DC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MUJOemOmSywbI_KjUPoVtKo5Htw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.59.0/24
163.5.73.0/24
163.5.110.0-163.5.113.255
163.5.118.0/23
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.138.0/23
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.158.0/24
163.5.160.0/24
163.5.167.0/24
163.5.175.0/24
163.5.178.0/24
163.5.182.0/24
163.5.189.0/24
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.212.0/24
163.5.218.0/23
163.5.224.0/24
163.5.228.0/24
163.5.231.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
03:f6:d9:00:ff:4c:3b:3a:3d:84:86:12:44:f5:f1:00:a2:40:
ce:b7:ba:08:fc:72:ae:7c:0e:cf:38:ee:5e:62:b5:8c:da:e0:
1e:3a:8d:13:43:d8:9d:fa:f3:ca:af:88:2e:08:16:a3:32:3a:
88:81:f8:0c:85:f5:20:79:39:21:88:f9:dc:af:de:ae:3b:b5:
96:61:9a:66:3d:fa:46:a7:be:49:39:91:2a:6a:b0:24:1b:b6:
3c:ec:b9:7f:66:b2:46:11:47:b7:56:5a:4b:36:45:bc:73:2e:
bf:0e:36:7e:c7:c6:87:d9:06:ce:95:9b:96:b5:40:f3:0f:b7:
62:35:aa:f0:b9:70:1b:c1:4e:f9:32:4d:e9:1d:be:3d:7c:af:
1e:48:cd:98:f9:37:33:2d:21:27:0b:83:ba:e6:35:9d:04:5b:
97:e3:b2:33:52:48:9a:66:db:21:bf:2e:4a:14:90:9a:44:62:
ee:16:45:ce:23:6e:06:e0:a2:d3:a4:54:ad:e4:fb:95:46:1a:
fb:c5:12:54:13:5b:38:95:fa:ec:ee:f8:0e:73:cf:f2:85:d9:
70:8c:4f:a9:c4:5f:b6:7d:02:12:68:93:30:7a:70:b9:46:8c:
92:b3:41:3b:30:10:ac:94:d0:34:7f:e0:da:9b:34:05:75:07:
92:63:da:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:51 2025 by rpki-client