Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/ePYTL98XwcCFlk8jyOtwBESk2Lw.roa
File: ePYTL98XwcCFlk8jyOtwBESk2Lw.roa (raw, json)
Hash identifier: 2T+o3RzXyFfpWXVAg3HO/OIEPc5Pt9Woh0HOAiSNr10=
Subject key identifier: 78:F6:13:2F:DF:17:C1:C0:85:96:4F:23:C8:EB:70:04:44:A4:D8:BC
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 019436F8711BEA0338C2C828A65474E7A29C
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/ePYTL98XwcCFlk8jyOtwBESk2Lw.roa
Signing time: Sun 05 Jan 2025 14:57:18 +0000
ROA not before: Sun 05 Jan 2025 14:57:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.133.102.0/24 maxlen: 24
5.133.103.0/24 maxlen: 24
37.221.76.0/24 maxlen: 24
37.221.78.0/24 maxlen: 24
37.221.79.0/24 maxlen: 24
85.235.72.0/24 maxlen: 24
85.235.73.0/24 maxlen: 24
85.235.74.0/24 maxlen: 24
93.190.8.0/24 maxlen: 24
93.190.10.0/24 maxlen: 24
93.190.11.0/24 maxlen: 24
176.96.130.0/24 maxlen: 24
185.254.52.0/24 maxlen: 24
193.17.4.0/24 maxlen: 24
193.17.5.0/24 maxlen: 24
193.17.6.0/24 maxlen: 24
193.17.7.0/24 maxlen: 24
193.111.76.0/24 maxlen: 24
193.111.77.0/24 maxlen: 24
193.111.78.0/24 maxlen: 24
193.111.79.0/24 maxlen: 24
217.18.208.0/24 maxlen: 24
217.18.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:36:f8:71:1b:ea:03:38:c2:c8:28:a6:54:74:e7:a2:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Jan 5 14:57:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=78f6132fdf17c1c085964f23c8eb700444a4d8bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:eb:b5:ca:bd:e9:0b:ff:1e:cb:78:b8:63:14:
01:42:e4:3c:33:8c:35:09:af:66:5c:9e:0c:b7:2d:
5d:cb:07:df:e3:9a:bb:4d:c8:1c:14:76:6a:61:8a:
fa:7d:f8:dd:8f:96:1e:f3:72:d2:78:bc:b7:de:f4:
86:bd:9d:9f:8c:af:83:09:12:7d:2c:c4:e9:3c:a4:
c6:19:11:c1:c4:8c:21:5b:2c:14:22:17:d3:8b:72:
ec:8e:76:d6:19:87:b3:71:7e:95:08:21:28:dc:30:
68:d2:91:3c:9e:5a:d9:f1:d1:e9:ae:ee:70:7c:98:
7b:57:51:23:be:0e:ec:ed:70:a0:79:ed:91:06:28:
8e:a0:bc:85:31:16:16:49:a1:12:29:ca:c0:83:26:
88:70:ba:57:be:00:69:69:29:12:99:69:0e:16:67:
27:31:50:69:e7:e8:ba:cf:86:45:b7:12:95:55:7c:
6d:f3:0c:d4:e5:9a:3e:a3:ff:0e:4e:71:a5:79:d0:
e0:46:7d:ab:fe:5d:92:cf:45:3d:c0:3d:32:49:c8:
a5:68:5f:55:f3:86:52:c0:42:bc:80:5a:48:42:54:
2c:ef:4c:9c:8f:07:12:89:67:0e:b8:43:4b:1f:38:
a9:3d:5f:49:37:dd:f7:f5:8c:9c:08:e1:40:cc:e4:
a2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F6:13:2F:DF:17:C1:C0:85:96:4F:23:C8:EB:70:04:44:A4:D8:BC
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/ePYTL98XwcCFlk8jyOtwBESk2Lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.102.0/23
37.221.76.0/24
37.221.78.0/23
85.235.72.0-85.235.74.255
93.190.8.0/24
93.190.10.0/23
176.96.130.0/24
185.254.52.0/24
193.17.4.0/22
193.111.76.0/22
217.18.208.0/24
217.18.211.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:d0:32:19:57:41:82:24:aa:71:25:16:8c:02:ed:a6:64:d9:
bd:4c:b3:a7:0e:61:af:21:72:d7:be:92:4a:34:e4:f2:c2:e9:
28:62:2c:c0:a1:88:ab:c8:3f:4a:a1:61:c7:63:df:ae:61:5c:
29:20:55:71:d5:b2:94:ef:b9:5a:8a:2e:9c:ed:09:07:d8:b6:
d4:5e:fd:89:95:8e:a5:c9:cf:33:39:c9:02:27:ac:ed:79:21:
ae:6c:bb:b9:6f:c2:3e:2a:e3:51:ae:96:af:ce:f8:71:6a:7f:
dc:a8:ca:d7:e7:db:1e:a2:2e:d0:da:81:2f:18:a4:c2:80:b9:
af:a2:05:fb:8f:c0:96:25:db:b5:a4:74:24:77:81:9f:90:97:
0d:34:9e:41:60:97:a8:53:bc:17:19:6c:01:97:c9:cd:61:6a:
97:2c:b1:db:d7:8a:a4:81:2d:8e:ee:c3:0e:34:7f:2d:1b:51:
36:08:5f:8b:4c:91:95:97:03:ad:3a:e5:22:c1:dd:d7:31:f4:
bc:e9:7e:e2:e1:65:c3:78:54:85:81:0a:57:b2:81:19:5f:31:
00:2b:19:32:d5:ea:ab:02:39:93:5e:c1:80:4b:ce:f6:6b:83:
30:16:93:3e:0f:6c:fd:e8:a9:cc:e1:98:d6:69:db:a5:38:5c:
77:0e:ed:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 12:27:41 2025 by rpki-client