Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/OuDLqyPDKdUQ3D0OdMmxi6znsZc.roa
File: OuDLqyPDKdUQ3D0OdMmxi6znsZc.roa (raw, json)
Hash identifier: X29bj6C+uyXxoaNQMaAe51YA0Tqbgq5juUBMjUVd+kc=
Subject key identifier: 3A:E0:CB:AB:23:C3:29:D5:10:DC:3D:0E:74:C9:B1:8B:AC:E7:B1:97
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019387D7D8779181FFF8AD32FE0E9FE5AA81
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/OuDLqyPDKdUQ3D0OdMmxi6znsZc.roa
Signing time: Mon 02 Dec 2024 14:48:10 +0000
ROA not before: Mon 02 Dec 2024 14:48:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.137.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.219.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:87:d7:d8:77:91:81:ff:f8:ad:32:fe:0e:9f:e5:aa:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 2 14:48:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ae0cbab23c329d510dc3d0e74c9b18bace7b197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:37:12:8f:30:fe:b7:7e:e0:a6:dc:05:5c:21:
f4:f7:e4:2c:d0:aa:83:a7:dc:8d:2d:bf:e8:14:a7:
0d:86:75:b2:7d:21:a1:3d:5c:1f:ad:b3:b9:70:14:
23:ae:98:8f:0f:1e:ea:8a:17:cb:b6:e7:31:b9:28:
9e:62:f1:95:a9:f9:6d:0d:a4:80:8b:c0:72:8f:ce:
9d:37:38:6e:f8:42:7c:16:c8:75:46:8c:00:5e:fe:
98:30:10:a6:f7:2d:3b:6d:37:2e:ea:89:f2:0c:51:
0f:0e:26:a3:0a:bf:9b:5e:2e:b7:61:d4:3a:0d:1d:
63:8b:fc:ad:d5:35:fa:63:f5:5a:a5:d2:ba:7a:d4:
d3:ac:03:27:29:49:ad:8d:0e:6d:c1:a5:14:0a:5b:
50:87:08:38:38:a2:68:6f:5a:2f:b6:b6:dd:fc:56:
bd:f6:79:27:e6:ff:2d:24:8a:85:c8:d1:d1:6d:92:
8e:e7:b0:e8:7d:b3:db:e9:c1:6c:cb:ad:d4:b1:5a:
4c:a4:d5:4e:1f:10:55:06:63:7c:e4:9d:42:02:e5:
45:00:06:4e:ad:09:30:65:24:8d:75:1c:ab:a7:b4:
ae:b9:1d:12:c6:9c:00:17:7d:7c:15:7b:bd:82:ed:
50:36:c6:a2:f7:68:ab:60:45:02:9a:c2:e5:58:11:
d3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E0:CB:AB:23:C3:29:D5:10:DC:3D:0E:74:C9:B1:8B:AC:E7:B1:97
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/OuDLqyPDKdUQ3D0OdMmxi6znsZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.59.0/24
163.5.73.0/24
163.5.89.0/24
163.5.92.0/24
163.5.110.0-163.5.113.255
163.5.118.0/23
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.137.0-163.5.139.255
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.162.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/23
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:84:83:8b:2f:c2:f4:46:42:ea:2f:a9:63:f1:27:06:56:21:
45:71:e8:b5:51:2c:c9:18:98:d1:5f:ec:f5:05:a7:06:cc:ba:
30:f2:53:cf:4a:78:33:24:4d:b1:c7:2b:aa:88:36:c2:4f:ee:
b0:2e:51:16:93:47:ab:1b:a6:f2:55:34:82:86:f8:3e:0b:8d:
29:26:1a:47:20:e5:1e:4c:70:70:17:b8:eb:1c:18:0b:7c:92:
43:77:b3:e3:cb:e7:10:24:39:b8:09:7d:d8:2e:96:ac:35:8b:
ee:ea:13:0d:2e:a8:05:00:8c:21:e8:85:cc:0b:49:c7:e3:c6:
b2:cd:64:89:e2:2a:8e:bb:09:58:dc:a5:8b:37:2b:b1:a4:f4:
b4:c9:a0:05:9b:e1:ea:c9:e6:85:1e:6b:29:52:10:cb:9b:ef:
15:4b:31:36:35:8c:1a:88:2d:12:c9:13:22:52:6a:8d:24:82:
ae:99:b5:bd:3d:ed:5f:2a:3b:10:36:7d:53:43:a5:88:3e:fd:
3e:a3:50:fd:eb:a0:6c:57:2e:bc:52:88:60:5e:a1:a0:ff:29:
f7:a2:01:bb:d2:67:1d:8d:6e:c7:f3:02:19:24:26:59:19:5a:
07:a1:5d:1b:c3:37:6d:cb:c8:64:00:9f:0f:91:e5:6a:8b:7e:
3b:94:12:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:39:04 2025 by rpki-client