Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/bMZAGJiSL37RYjG0omxqUzfw6RQ.roa
File: bMZAGJiSL37RYjG0omxqUzfw6RQ.roa (raw, json)
Hash identifier: GC8GdghFTzQFHElrcSiH/7+b0UQBvz9Pyt1qThrmjO4=
Subject key identifier: 6C:C6:40:18:98:92:2F:7E:D1:62:31:B4:A2:6C:6A:53:37:F0:E9:14
Certificate issuer: /CN=12694f6945a21d08d30192cfc1a6b780de728e3b
Certificate serial: 01942747D1C16184EEE514EB12CD1CACFAD8
Authority key identifier: 12:69:4F:69:45:A2:1D:08:D3:01:92:CF:C1:A6:B7:80:DE:72:8E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmlPaUWiHQjTAZLPwaa3gN5yjjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/bMZAGJiSL37RYjG0omxqUzfw6RQ.roa
Signing time: Thu 02 Jan 2025 13:50:05 +0000
ROA not before: Thu 02 Jan 2025 13:50:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64398
IP address blocks: 5.83.45.0/24 maxlen: 24
5.83.47.0/24 maxlen: 24
2a02:13f0:8200::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:d1:c1:61:84:ee:e5:14:eb:12:cd:1c:ac:fa:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12694f6945a21d08d30192cfc1a6b780de728e3b
Validity
Not Before: Jan 2 13:50:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6cc6401898922f7ed16231b4a26c6a5337f0e914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cc:37:dc:22:92:b3:29:6d:08:90:a9:2e:03:
78:e4:44:77:3a:57:19:8e:22:37:ba:b3:ad:b2:08:
bb:e8:91:a0:e8:5a:d2:3e:75:7a:79:3d:07:fc:c8:
7d:65:f8:2a:64:5d:1a:6b:54:1c:29:f0:d7:4f:00:
7e:01:91:58:43:6d:f5:46:81:71:ca:84:c8:ae:0c:
cb:fc:8b:c4:59:b2:2b:69:be:79:80:3e:2c:6c:19:
6d:43:be:30:b4:82:99:dd:b3:91:8f:7f:e5:55:0c:
c8:8f:23:b6:2b:ec:87:b0:21:31:2b:b6:25:4a:91:
74:10:c8:11:f8:12:20:a6:99:5f:42:68:c6:03:92:
e9:ef:9f:63:f8:e8:11:ae:74:0a:6c:7a:5f:08:b2:
24:c5:e4:b6:1a:ee:04:0c:d5:93:55:31:14:f7:c6:
88:56:48:75:37:e2:91:ab:ce:23:c1:7b:03:34:85:
3e:4c:db:30:f0:9e:df:3e:47:44:ff:b2:74:1c:02:
4e:15:a9:a1:af:ac:d6:ab:39:5a:84:c6:d5:c1:e1:
c3:af:e2:5f:2f:a5:ae:20:16:9f:c4:ac:36:d5:e7:
1a:f2:0a:5b:9e:a0:9c:b6:c0:45:c2:f2:9b:2c:d8:
cc:54:b3:4f:98:96:63:53:9c:75:8d:e0:cd:92:d7:
e0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C6:40:18:98:92:2F:7E:D1:62:31:B4:A2:6C:6A:53:37:F0:E9:14
X509v3 Authority Key Identifier:
keyid:12:69:4F:69:45:A2:1D:08:D3:01:92:CF:C1:A6:B7:80:DE:72:8E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmlPaUWiHQjTAZLPwaa3gN5yjjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/bMZAGJiSL37RYjG0omxqUzfw6RQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/EmlPaUWiHQjTAZLPwaa3gN5yjjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.45.0/24
5.83.47.0/24
IPv6:
2a02:13f0:8200::/48
Signature Algorithm: sha256WithRSAEncryption
16:45:1a:d9:b6:e7:a0:5f:13:19:e3:c5:6a:fc:f2:4d:9b:12:
59:1b:20:c6:86:45:11:8f:c1:eb:6f:6a:34:b4:c4:60:5f:1c:
c3:a8:df:0c:6d:cd:29:c4:1a:cd:40:8c:16:98:ff:8e:5d:51:
16:84:61:0e:fa:c1:ac:68:c7:51:45:5e:63:1b:bb:4d:c4:c3:
01:11:90:b2:a5:ce:73:b1:4b:5b:fb:85:5f:2e:b4:fa:b2:74:
f7:b4:79:b6:47:e5:24:4a:ef:a0:bf:b5:2f:cc:e4:0b:71:80:
90:02:a6:d8:26:8d:df:83:d1:76:d7:1b:3d:76:35:7b:4b:a1:
e4:aa:bb:33:dc:90:29:5a:90:a1:31:12:52:0c:53:50:c5:f3:
f3:8f:f9:2a:c0:08:ec:88:76:75:3b:22:27:34:86:4c:e7:1b:
8a:cf:e7:b7:29:9d:f7:3f:94:b4:57:0c:28:1f:15:de:cf:c8:
8b:15:cb:f9:e5:a8:38:26:53:f7:6a:05:2d:15:c8:c7:3c:2f:
97:ba:6b:54:79:ae:fe:3d:a0:df:58:77:0d:49:5c:0b:6a:71:
53:16:c9:d7:ef:c1:7d:82:b1:06:6e:a0:7e:e7:3a:40:79:ed:
b3:b6:51:5c:44:4e:0a:58:46:88:d1:4c:90:b6:2d:74:f1:5e:
bd:54:49:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net