Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/5ekL_VnxtRm7-caJUH4OelBy7bQ.roa
File: 5ekL_VnxtRm7-caJUH4OelBy7bQ.roa (raw, json)
Hash identifier: C2pbDFwPGGpQ/WwmXSA+V7qxwJXZjh78LiDnuEJr7qo=
Subject key identifier: E5:E9:0B:FD:59:F1:B5:19:BB:F9:C6:89:50:7E:0E:7A:50:72:ED:B4
Certificate issuer: /CN=4d136295f7f32e64be78fb399eb6d15ae3e92632
Certificate serial: 01941F8C8655CF1CF95A534D2986CCEE6C70
Authority key identifier: 4D:13:62:95:F7:F3:2E:64:BE:78:FB:39:9E:B6:D1:5A:E3:E9:26:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRNilffzLmS-ePs5nrbRWuPpJjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/5ekL_VnxtRm7-caJUH4OelBy7bQ.roa
Signing time: Wed 01 Jan 2025 01:48:10 +0000
ROA not before: Wed 01 Jan 2025 01:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202269
IP address blocks: 194.5.175.0/24 maxlen: 24
194.5.188.0/24 maxlen: 24
194.5.195.0/24 maxlen: 24
194.5.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:86:55:cf:1c:f9:5a:53:4d:29:86:cc:ee:6c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d136295f7f32e64be78fb399eb6d15ae3e92632
Validity
Not Before: Jan 1 01:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e5e90bfd59f1b519bbf9c689507e0e7a5072edb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:40:39:f6:f8:83:73:3f:33:8e:ec:f2:14:3d:
cb:07:88:c1:22:ab:da:ae:ff:0a:63:6a:5d:a2:fc:
48:4e:f1:f7:7b:bc:da:a3:74:90:22:b9:32:d4:79:
ba:72:ee:f1:24:29:49:41:57:4c:96:52:ed:e2:46:
25:a1:e5:cf:f0:e9:e7:37:1a:3f:9b:ec:f6:08:67:
db:bf:e9:fa:51:d9:b0:b9:c1:98:41:90:a5:e0:00:
bd:8c:1f:56:b8:87:91:81:f8:68:82:88:14:20:aa:
97:44:9e:7c:ec:93:1c:4c:72:67:da:70:94:67:ad:
f3:a2:95:4d:22:22:c9:d6:e0:ec:ba:59:b4:f2:ba:
73:9e:a6:57:c2:8b:66:08:80:de:15:80:08:80:34:
e4:b6:93:53:d5:0d:d6:69:d0:f8:b9:1d:cf:64:fa:
d7:e7:01:1e:fd:0b:f4:b2:af:53:a7:a1:2a:90:a0:
07:cc:ae:73:53:24:60:ec:56:db:81:f8:de:d7:4a:
31:e9:aa:e3:39:58:34:0b:eb:3c:d2:db:0d:ee:c4:
c4:28:b1:2a:8e:1e:54:71:96:6a:88:c9:33:7a:17:
a1:f7:c1:a0:8e:87:ed:82:a1:18:18:c8:2b:f1:e3:
77:e5:22:20:49:c5:df:e0:d5:c6:fe:94:df:a2:dd:
7f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E9:0B:FD:59:F1:B5:19:BB:F9:C6:89:50:7E:0E:7A:50:72:ED:B4
X509v3 Authority Key Identifier:
keyid:4D:13:62:95:F7:F3:2E:64:BE:78:FB:39:9E:B6:D1:5A:E3:E9:26:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRNilffzLmS-ePs5nrbRWuPpJjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/5ekL_VnxtRm7-caJUH4OelBy7bQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/TRNilffzLmS-ePs5nrbRWuPpJjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.175.0/24
194.5.188.0/24
194.5.195.0/24
194.5.205.0/24
Signature Algorithm: sha256WithRSAEncryption
83:b7:23:64:be:24:5f:86:54:29:c6:f1:df:84:55:44:27:27:
53:31:3e:71:16:f0:e3:5f:16:db:3d:42:9c:6c:81:d0:03:76:
b0:ba:55:1a:e1:c7:64:6f:5c:3d:49:b7:1b:43:e4:9b:03:26:
84:e9:38:f4:ba:1f:f0:7b:d5:e2:bd:84:2e:27:0d:13:dd:92:
4b:34:80:f2:a3:81:b4:eb:67:d7:7a:0f:05:9f:91:57:2a:ca:
19:54:d3:a4:3f:ed:b8:49:4d:8c:f7:f1:a3:30:7d:17:c8:5c:
68:01:85:bc:ce:a9:c0:c5:17:75:f2:49:4b:a0:1e:84:74:1e:
0b:bd:6b:6c:ed:90:12:36:c4:51:f1:9c:07:11:70:39:d2:2e:
8e:e6:05:28:7f:10:1c:ca:39:f6:4c:ff:13:92:d3:16:06:27:
61:fd:68:b1:4b:16:81:b4:81:75:19:80:64:04:8c:43:e3:66:
fb:72:aa:7e:20:e2:6e:59:ef:66:9c:6b:66:3e:81:13:5a:97:
ac:6f:a3:11:79:ad:8c:fa:f1:db:1b:ed:d2:e8:8c:94:31:1c:
b5:62:22:df:17:f9:56:ee:17:8a:21:ae:3c:16:e0:fc:fc:40:
53:cf:69:1c:84:2b:f6:4c:52:ec:39:02:7d:32:7c:ad:2f:0e:
52:65:a5:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net