Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/vOa8HiYyPlU-xruapYe85cH8EL0.roa
File: vOa8HiYyPlU-xruapYe85cH8EL0.roa (raw, json)
Hash identifier: wIQSTdUR12J6+bDrLYzI5b3yONScJaDR+q8qrIbDGXA=
Subject key identifier: BC:E6:BC:1E:26:32:3E:55:3E:C6:BB:9A:A5:87:BC:E5:C1:FC:10:BD
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 01944A64ABFA4A4A70E7F85765F7945B9767
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/vOa8HiYyPlU-xruapYe85cH8EL0.roa
Signing time: Thu 09 Jan 2025 09:28:19 +0000
ROA not before: Thu 09 Jan 2025 09:28:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31083
IP address blocks: 5.104.175.0/24 maxlen: 24
77.76.14.0/24 maxlen: 24
78.128.1.0/24 maxlen: 24
78.128.6.0/24 maxlen: 24
78.128.7.0/24 maxlen: 24
78.128.8.0/24 maxlen: 24
78.128.9.0/24 maxlen: 24
78.128.42.0/24 maxlen: 24
78.128.43.0/24 maxlen: 24
78.128.60.0/24 maxlen: 24
78.128.62.0/24 maxlen: 24
78.128.76.0/24 maxlen: 24
78.128.77.0/24 maxlen: 24
78.128.78.0/24 maxlen: 24
78.128.80.0/24 maxlen: 24
78.128.81.0/24 maxlen: 24
78.128.118.0/24 maxlen: 24
78.128.126.0/24 maxlen: 24
78.142.6.0/24 maxlen: 24
78.142.32.0/24 maxlen: 24
78.142.47.0/24 maxlen: 24
78.142.51.0/24 maxlen: 24
78.142.56.0/24 maxlen: 24
78.142.57.0/24 maxlen: 24
78.142.58.0/24 maxlen: 24
78.142.59.0/24 maxlen: 24
78.142.62.0/24 maxlen: 24
78.142.63.0/24 maxlen: 24
79.124.4.0/24 maxlen: 24
79.124.5.0/24 maxlen: 24
79.124.6.0/24 maxlen: 24
79.124.13.0/24 maxlen: 24
79.124.14.0/24 maxlen: 24
79.124.16.0/24 maxlen: 24
79.124.17.0/24 maxlen: 24
79.124.22.0/24 maxlen: 24
79.124.31.0/24 maxlen: 24
79.124.44.0/24 maxlen: 24
79.124.52.0/24 maxlen: 24
79.124.55.0/24 maxlen: 24
79.124.63.0/24 maxlen: 24
79.124.64.0/24 maxlen: 24
79.124.65.0/24 maxlen: 24
79.124.66.0/24 maxlen: 24
79.124.67.0/24 maxlen: 24
79.124.75.0/24 maxlen: 24
79.124.76.0/24 maxlen: 24
79.124.84.0/24 maxlen: 24
79.124.90.0/24 maxlen: 24
82.118.229.0/24 maxlen: 24
82.118.243.0/24 maxlen: 24
91.148.148.0/24 maxlen: 24
91.148.168.0/24 maxlen: 24
94.72.136.0/22 maxlen: 24
130.185.225.0/24 maxlen: 24
130.185.232.0/24 maxlen: 24
178.132.86.0/24 maxlen: 24
178.132.87.0/24 maxlen: 24
185.197.152.0/22 maxlen: 24
185.232.156.0/23 maxlen: 24
217.174.146.0/23 maxlen: 24
217.174.148.0/23 maxlen: 24
217.174.151.0/24 maxlen: 24
217.174.152.0/23 maxlen: 24
217.174.155.0/24 maxlen: 24
217.174.156.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:4a:64:ab:fa:4a:4a:70:e7:f8:57:65:f7:94:5b:97:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jan 9 09:28:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bce6bc1e26323e553ec6bb9aa587bce5c1fc10bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3d:27:a4:f3:1e:99:a9:56:97:32:36:c7:42:
bd:7a:c8:26:c8:1d:4a:e0:25:0f:e8:75:c3:b3:e5:
b1:29:82:c3:a6:62:5b:2c:9f:51:a9:bf:70:2a:43:
c9:e0:fe:d5:93:f6:8c:f5:ce:9c:4c:d5:a1:bf:f8:
2f:c4:7f:bf:26:18:3c:fc:1d:52:1f:0e:e1:81:6f:
e6:bd:fd:37:3c:31:cb:21:d3:f0:e1:2b:58:35:9e:
35:21:97:ec:5c:a7:a4:67:82:12:8d:71:e8:f7:a3:
88:19:fd:3d:3c:e6:f5:0e:fa:a0:18:ba:9a:02:ea:
b0:92:36:48:cf:28:09:79:8a:27:66:78:fc:05:5c:
5a:e6:1d:b8:4a:7d:28:87:2d:ed:74:5d:9b:66:ce:
1b:68:f7:94:b3:c9:e4:a4:23:e0:e9:49:b9:69:3d:
91:10:cd:d0:29:94:d4:a0:9c:d8:de:02:2a:78:ae:
86:f0:8b:2f:f9:16:7c:87:1c:40:b5:aa:b2:81:28:
4f:94:aa:72:b5:6f:85:3d:f9:fa:14:63:fc:b2:69:
a9:84:77:3c:13:59:d8:f8:93:80:de:76:fb:1e:5f:
16:f4:64:bf:37:66:08:e9:01:2e:fa:fe:c2:f2:3f:
07:c4:f7:ee:bb:c5:6f:08:ea:c6:97:86:30:31:77:
0d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E6:BC:1E:26:32:3E:55:3E:C6:BB:9A:A5:87:BC:E5:C1:FC:10:BD
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/vOa8HiYyPlU-xruapYe85cH8EL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.175.0/24
77.76.14.0/24
78.128.1.0/24
78.128.6.0-78.128.9.255
78.128.42.0/23
78.128.60.0/24
78.128.62.0/24
78.128.76.0-78.128.78.255
78.128.80.0/23
78.128.118.0/24
78.128.126.0/24
78.142.6.0/24
78.142.32.0/24
78.142.47.0/24
78.142.51.0/24
78.142.56.0/22
78.142.62.0/23
79.124.4.0-79.124.6.255
79.124.13.0-79.124.14.255
79.124.16.0/23
79.124.22.0/24
79.124.31.0/24
79.124.44.0/24
79.124.52.0/24
79.124.55.0/24
79.124.63.0-79.124.67.255
79.124.75.0-79.124.76.255
79.124.84.0/24
79.124.90.0/24
82.118.229.0/24
82.118.243.0/24
91.148.148.0/24
91.148.168.0/24
94.72.136.0/22
130.185.225.0/24
130.185.232.0/24
178.132.86.0/23
185.197.152.0/22
185.232.156.0/23
217.174.146.0-217.174.149.255
217.174.151.0-217.174.153.255
217.174.155.0-217.174.156.255
Signature Algorithm: sha256WithRSAEncryption
1e:47:e8:d4:bb:b1:8d:ad:06:e9:5e:88:fa:03:e4:93:67:68:
9b:d9:97:71:1c:90:ad:ff:22:e8:34:01:10:81:29:b6:dd:5e:
bc:3a:57:78:96:b9:7d:3b:0b:27:c4:23:89:ca:d6:6d:d0:f6:
a0:6f:cb:0f:74:de:a8:11:a6:4c:8a:e9:c8:90:82:f5:97:25:
db:43:83:b1:34:41:33:2d:b0:8c:59:83:c3:8a:ba:67:57:fc:
58:44:bb:a8:fd:99:24:24:b0:00:b4:7d:47:a3:71:57:90:a4:
d3:44:f6:bd:91:7e:f8:83:81:db:00:f0:e8:7a:72:6c:d9:15:
07:b6:ab:61:de:52:c4:aa:96:75:51:2f:74:0f:a6:b6:3a:50:
a2:4a:d2:6e:d5:d2:b2:af:4a:7e:cd:72:01:6c:e6:ba:ea:11:
2f:00:8a:a1:ee:8e:1b:f7:aa:65:e8:67:b9:59:4f:1e:52:72:
55:73:85:bd:c2:0e:f4:c4:45:50:db:73:b7:f1:c5:72:b1:2e:
12:32:1a:08:0e:77:d6:42:94:de:e0:f1:b2:d4:a2:ed:ef:f9:
33:a9:c2:df:d8:62:eb:72:03:57:b1:f3:b7:3b:0d:23:43:18:
e1:d6:f6:39:a8:64:a7:58:a1:45:4b:18:08:cf:0e:d7:9c:40:
32:a8:a1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 14:45:13 2025 by rpki-client on console.sobornost.net