Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PGGsuxakaxabiuiikPcWxXfkBu8.roa
File: PGGsuxakaxabiuiikPcWxXfkBu8.roa (raw, json)
Hash identifier: 3zSqksNYnhaPaZTCW0EQmavAK7BC7OBZpFi3Q5knql4=
Subject key identifier: 3C:61:AC:BB:16:A4:6B:16:9B:8A:E8:A2:90:F7:16:C5:77:E4:06:EF
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0193D509B281A31AD5D9A6C276608FC0A4EB
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PGGsuxakaxabiuiikPcWxXfkBu8.roa
Signing time: Tue 17 Dec 2024 14:33:22 +0000
ROA not before: Tue 17 Dec 2024 14:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 163.5.72.0/24 maxlen: 24
163.5.77.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d5:09:b2:81:a3:1a:d5:d9:a6:c2:76:60:8f:c0:a4:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 17 14:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c61acbb16a46b169b8ae8a290f716c577e406ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c6:13:55:dc:35:2a:e5:8e:27:5a:44:53:a0:
38:93:79:03:68:29:01:6d:d7:29:85:b4:7b:fc:98:
f8:94:8b:00:56:df:49:5a:58:cf:d7:ea:53:61:33:
24:14:ef:2b:62:7f:3d:d2:ca:25:b5:d6:58:5d:d3:
f5:6c:b6:6e:b6:a3:2d:4e:6d:7b:af:30:5c:d9:86:
41:b7:e7:cd:45:57:2f:5f:90:74:da:71:2e:df:3d:
17:a9:bf:bf:e9:84:61:66:33:7c:56:41:d3:fd:ca:
5c:58:3b:c7:5e:7f:00:65:65:cc:73:26:39:5d:1c:
da:63:3b:01:2a:bf:4a:3e:f2:0d:e3:1e:c1:96:de:
8e:08:7b:74:7f:41:13:70:25:22:6d:6e:ce:5d:cf:
9b:2d:2c:0f:2a:8e:32:5c:c3:27:87:45:22:10:29:
8d:b6:84:3e:d5:30:1f:7c:8a:17:23:06:09:f1:28:
87:02:90:f6:d8:9b:81:cb:b2:05:8c:6d:e7:0a:d6:
4a:c9:54:52:cc:18:5f:fc:5a:d3:e5:53:66:4f:77:
76:f2:61:d3:2e:25:d2:cc:ee:d5:cd:46:dc:88:97:
20:8f:b9:17:cf:89:fd:bb:15:50:38:1a:e3:77:8d:
1a:75:b4:df:8f:ef:c2:81:7e:59:a3:35:b1:65:96:
91:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:61:AC:BB:16:A4:6B:16:9B:8A:E8:A2:90:F7:16:C5:77:E4:06:EF
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PGGsuxakaxabiuiikPcWxXfkBu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.72.0/24
163.5.77.0/24
163.5.162.0/23
Signature Algorithm: sha256WithRSAEncryption
18:40:53:b5:5f:ad:2e:69:f4:ec:a3:b5:03:90:b8:1b:22:e0:
a3:3b:78:e6:e2:e6:e9:8c:32:47:71:8b:4b:b7:43:c4:56:68:
b2:d7:20:2e:86:95:69:48:65:27:bd:59:64:d1:09:9d:b7:68:
80:6e:4c:b2:31:fb:47:c5:99:6f:c1:29:ea:d9:f4:88:35:26:
59:16:01:b8:c8:6b:36:a7:31:87:92:ca:e5:f7:b5:5c:f4:07:
b0:2a:03:48:f6:8b:47:7a:cf:fc:3d:71:cf:97:74:3f:88:5e:
68:4d:38:67:9e:4e:69:6b:0f:9c:87:5f:bf:80:9b:a4:7a:6b:
eb:f7:64:8e:a4:eb:ca:c6:8e:b0:4f:2b:86:a0:fa:b4:b6:09:
4a:48:89:64:72:ae:ef:2d:ac:b3:e1:e0:3f:8e:7f:ec:52:06:
c4:76:15:11:75:ed:33:b5:21:5d:df:46:ce:cc:25:34:dc:65:
30:0d:cd:fc:e7:4b:62:1d:58:a4:ca:92:58:c8:51:2f:8c:9c:
77:8e:3b:6c:92:5d:55:2b:23:9c:41:38:c2:1d:3c:be:5a:c4:
b8:68:d1:82:b9:3f:2f:a4:15:c8:97:42:9b:38:74:11:27:2d:
44:76:1b:aa:89:37:31:65:e3:71:d2:51:30:16:a4:9c:3e:fe:
bd:64:16:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:04:02 2025 by rpki-client