Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/5LxX5CprZ6VADmSAuGDtLnNp5yk.roa
File: 5LxX5CprZ6VADmSAuGDtLnNp5yk.roa (raw, json)
Hash identifier: X+gE3i4UZ8V949dSNMQGAw9u/79RoXhFuVZ+r9hvNg8=
Subject key identifier: E4:BC:57:E4:2A:6B:67:A5:40:0E:64:80:B8:60:ED:2E:73:69:E7:29
Certificate issuer: /CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Certificate serial: 0189AD68B4AED7B579D6E36D5694FF640E43
Authority key identifier: DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/5LxX5CprZ6VADmSAuGDtLnNp5yk.roa
Signing time: Mon 31 Jul 2023 19:24:27 +0000
ROA not before: Mon 31 Jul 2023 19:24:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 109.94.144.0/20 maxlen: 24
89.39.210.0/23 maxlen: 24
94.26.110.0/23 maxlen: 24
213.159.136.0/21 maxlen: 24
37.251.200.0/21 maxlen: 24
94.24.108.0/23 maxlen: 24
62.122.40.0/21 maxlen: 24
192.64.44.0/23 maxlen: 24
88.135.96.0/20 maxlen: 24
94.24.64.0/21 maxlen: 24
89.46.248.0/22 maxlen: 24
91.245.216.0/23 maxlen: 24
94.26.24.0/23 maxlen: 24
89.40.220.0/23 maxlen: 24
141.136.16.0/20 maxlen: 24
86.104.248.0/22 maxlen: 24
91.227.240.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ad:68:b4:ae:d7:b5:79:d6:e3:6d:56:94:ff:64:0e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Validity
Not Before: Jul 31 19:24:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4bc57e42a6b67a5400e6480b860ed2e7369e729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e3:89:88:a6:a3:31:39:37:58:34:23:e5:59:
13:8c:df:57:fd:1b:18:57:90:07:e9:cb:e9:75:20:
46:06:d8:66:71:33:ac:4e:ed:d1:73:d7:09:02:a8:
32:26:08:c3:85:6e:c1:56:5c:1e:07:a2:9d:b0:ac:
08:14:7a:0b:de:83:b9:a2:2b:82:ae:b7:73:f6:e4:
2d:8d:13:ca:d1:1d:a0:e4:4f:20:82:67:df:0a:2a:
80:7f:ff:8d:b9:b4:93:71:fb:b3:bf:e6:58:17:cf:
e9:b8:e7:1e:cd:2e:c8:d8:f7:98:d6:75:11:6f:9e:
5d:b6:05:51:52:f3:e2:27:db:b9:87:50:8f:3b:6e:
a3:1a:65:f1:54:84:49:85:15:15:11:24:74:07:4b:
42:51:d9:d7:d8:f1:ff:54:85:30:b1:b7:c0:f7:ed:
e9:bd:a7:69:7f:43:41:78:78:bc:c6:4b:41:76:9f:
86:9f:7e:9e:87:50:c1:d8:5f:a9:6b:b0:3d:f7:8a:
db:31:92:1b:fd:a0:64:1f:d9:15:a5:c4:21:64:07:
8a:a5:f3:b6:e3:25:bc:e8:8e:15:2f:de:f4:46:8c:
60:35:fc:4c:1a:84:f7:a6:b2:ae:fe:23:b6:0a:2e:
4d:13:8b:e8:b5:8a:6b:5d:aa:d5:83:64:d2:22:e0:
49:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:BC:57:E4:2A:6B:67:A5:40:0E:64:80:B8:60:ED:2E:73:69:E7:29
X509v3 Authority Key Identifier:
keyid:DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/5LxX5CprZ6VADmSAuGDtLnNp5yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/2-jMj1rx5zYtRU892RqClSkZ22E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.251.200.0/21
62.122.40.0/21
86.104.248.0/22
88.135.96.0/20
89.39.210.0/23
89.40.220.0/23
89.46.248.0/22
91.227.240.0/23
91.245.216.0/23
94.24.64.0/21
94.24.108.0/23
94.26.24.0/23
94.26.110.0/23
109.94.144.0/20
141.136.16.0/20
192.64.44.0/23
213.159.136.0/21
Signature Algorithm: sha256WithRSAEncryption
a6:91:10:7c:97:e9:cd:dc:7b:10:07:8a:30:75:c7:83:89:2d:
bd:c1:7b:b7:d6:8a:44:c5:7e:15:15:c1:bc:e5:65:c9:b5:bc:
cd:bb:18:02:59:62:e7:69:58:04:29:9b:67:88:b9:0c:1f:a5:
f1:e8:3f:af:f2:3e:70:68:e1:41:b0:b1:a2:bd:96:4f:26:52:
96:f9:49:7e:ce:c6:51:fb:44:c6:a8:80:dd:0a:e2:80:a4:ef:
03:e5:1a:d1:9e:16:d2:59:f8:6d:c1:80:55:e7:40:e4:90:de:
b5:29:24:83:23:13:89:2a:78:bd:5d:fd:2e:ea:25:6b:e3:b0:
42:ee:b8:47:71:b9:d5:23:50:cd:20:51:fb:98:46:83:cd:28:
73:ba:04:df:9c:5a:6b:82:ef:cd:3c:43:bb:b4:01:10:17:33:
b1:0c:1d:c6:85:69:06:99:f4:3b:df:12:7d:96:f5:14:33:a1:
45:a9:08:e1:a0:d9:ff:bc:cc:0f:e7:fe:3a:e3:b7:77:65:44:
5f:68:2f:d3:f3:6d:58:df:66:00:07:9c:0a:1b:e8:e2:bd:69:
41:89:cc:2d:27:10:94:00:5e:a4:11:aa:f4:bd:ec:42:ef:20:
38:b0:73:fd:1d:19:79:33:cc:96:32:7d:a1:98:db:34:28:b0:
b6:e8:1b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 13:20:03 2025 by rpki-client