Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/Phgi2ZArlwQpFiON6wRicjIN2Xo.roa
File: Phgi2ZArlwQpFiON6wRicjIN2Xo.roa (raw, json)
Hash identifier: 3ZXnuXl5WCh1mYPa+yvUBkpohftEtqnkj2PS1Vktg/s=
Subject key identifier: 3E:18:22:D9:90:2B:97:04:29:16:23:8D:EB:04:62:72:32:0D:D9:7A
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 01945F9164783ED9DBB1CD3D4F1F8C1D4C11
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/Phgi2ZArlwQpFiON6wRicjIN2Xo.roa
Signing time: Mon 13 Jan 2025 12:09:11 +0000
ROA not before: Mon 13 Jan 2025 12:09:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 5.133.124.0/23 maxlen: 23
5.133.126.0/23 maxlen: 23
31.40.196.0/23 maxlen: 23
31.40.198.0/23 maxlen: 23
62.182.32.0/23 maxlen: 23
62.182.34.0/23 maxlen: 23
84.54.0.0/23 maxlen: 23
84.54.2.0/23 maxlen: 23
139.28.48.0/23 maxlen: 23
139.28.50.0/23 maxlen: 23
139.28.240.0/23 maxlen: 23
139.28.242.0/23 maxlen: 23
176.53.156.0/23 maxlen: 23
176.53.158.0/23 maxlen: 23
193.32.204.0/23 maxlen: 23
193.32.206.0/23 maxlen: 23
193.38.44.0/23 maxlen: 23
193.38.46.0/23 maxlen: 23
193.187.132.0/23 maxlen: 23
193.187.134.0/23 maxlen: 23
193.187.134.0/24 maxlen: 24
193.187.135.0/24 maxlen: 24
194.93.48.0/23 maxlen: 23
194.93.50.0/23 maxlen: 23
194.93.60.0/23 maxlen: 23
194.93.62.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5f:91:64:78:3e:d9:db:b1:cd:3d:4f:1f:8c:1d:4c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Jan 13 12:09:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3e1822d9902b97042916238deb046272320dd97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3b:a5:d3:1b:5e:41:17:f1:02:05:f3:14:28:
44:26:12:3e:f2:a2:03:48:78:8f:29:04:1a:46:04:
85:79:c1:90:31:27:15:76:3a:5c:66:ff:8f:ce:65:
b2:dd:64:30:c5:61:5a:75:47:7c:34:49:90:ee:92:
cd:90:6f:b9:d8:6f:2b:99:eb:6d:df:c9:15:66:18:
5c:7e:21:9c:c1:8a:71:26:66:4a:15:40:d4:5b:82:
19:93:fc:13:5b:af:88:13:34:5c:ae:60:83:dd:a6:
0d:a7:04:00:40:bf:2c:c9:d9:e4:a5:20:07:51:d0:
8a:d6:3b:e2:3d:44:30:99:bb:f6:67:21:b0:36:a9:
98:e9:c7:6e:72:45:99:44:31:23:63:4d:1f:10:f9:
58:ea:b8:a0:5b:3e:19:d3:7f:0a:3d:e7:e5:dc:dc:
e4:cd:bf:ed:a4:7a:28:8f:2c:78:48:34:af:05:7e:
2d:e6:19:40:c4:1b:a5:68:52:4b:e8:dc:cb:de:80:
11:e5:ae:92:81:f7:34:ba:bc:b3:c4:69:8d:02:2d:
dd:be:97:0b:c5:c0:cf:7c:63:d3:31:11:a4:81:ed:
45:a7:6e:92:84:b1:9b:0e:8d:67:0c:fc:08:32:e7:
8d:d9:7d:6f:0f:7f:f7:f2:d5:c2:c2:10:0e:9a:20:
f7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:18:22:D9:90:2B:97:04:29:16:23:8D:EB:04:62:72:32:0D:D9:7A
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/Phgi2ZArlwQpFiON6wRicjIN2Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.124.0/22
31.40.196.0/22
62.182.32.0/22
84.54.0.0/22
139.28.48.0/22
139.28.240.0/22
176.53.156.0/22
193.32.204.0/22
193.38.44.0/22
193.187.132.0/22
194.93.48.0/22
194.93.60.0/22
Signature Algorithm: sha256WithRSAEncryption
43:f6:f7:18:8d:13:6b:a4:b3:b5:77:db:e9:e5:73:a9:fe:8c:
04:2e:af:36:76:37:7c:ff:ff:9a:4f:54:93:95:03:6f:82:95:
b1:81:56:40:78:d1:d8:08:f3:77:d6:20:de:f3:cf:48:1d:67:
e4:45:52:df:ca:39:63:5e:97:90:a8:ca:9b:d2:38:33:9b:90:
b2:2e:cf:f9:1d:54:8c:26:67:af:95:33:b9:e6:fb:76:33:5a:
a8:07:a9:bd:6e:3d:c8:24:a0:cb:3f:0f:cc:c7:21:f9:2f:d7:
4a:69:c8:e7:3d:08:a0:84:f5:1b:a4:84:02:f7:d4:33:f3:f0:
fa:93:95:1d:ae:5c:d6:d7:aa:3b:f1:a7:85:6c:31:90:07:a2:
10:58:17:40:09:22:fc:e7:91:a6:86:45:60:5c:d9:13:76:2d:
0e:75:5a:22:34:1f:14:50:d8:8f:23:5c:ef:c1:37:f2:48:59:
34:e8:98:9c:b8:6c:64:37:41:da:30:ef:b7:73:9b:5a:f9:0b:
18:ee:ca:e3:ec:fa:31:f2:92:9a:99:80:9f:6a:44:15:76:5e:
dc:8f:b2:9d:df:ff:22:b2:16:66:d1:c1:2b:af:c4:24:37:d8:
8d:53:4b:f6:2c:30:88:3d:71:55:4e:24:16:13:7f:b2:df:80:
c5:af:39:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 12:27:39 2025 by rpki-client