Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ypuXUHnwj0Si2wTZIoD6wakrPpE.roa
File: ypuXUHnwj0Si2wTZIoD6wakrPpE.roa (raw, json)
Hash identifier: Q3wl4UsBeSP4TzzPez8jeK8xoNzd5ChOWI4pNHLd3Ng=
Subject key identifier: CA:9B:97:50:79:F0:8F:44:A2:DB:04:D9:22:80:FA:C1:A9:2B:3E:91
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 01955AE435DA3AE70DE97B669DB032AAFB95
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ypuXUHnwj0Si2wTZIoD6wakrPpE.roa
Signing time: Mon 03 Mar 2025 07:24:20 +0000
ROA not before: Mon 03 Mar 2025 07:24:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44709
IP address blocks: 5.100.248.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.251.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.253.0/24 maxlen: 24
5.100.254.0/24 maxlen: 24
5.100.255.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.95.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
91.226.76.0/24 maxlen: 24
91.228.126.0/23 maxlen: 23
103.45.244.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
185.47.173.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
185.139.231.0/24 maxlen: 24
185.159.72.0/24 maxlen: 24
185.159.73.0/24 maxlen: 24
185.159.74.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.91.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
2a06:c5c0::/48 maxlen: 48
2a06:c5c0:700::/48 maxlen: 48
2a06:c5c0:900::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5a:e4:35:da:3a:e7:0d:e9:7b:66:9d:b0:32:aa:fb:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Mar 3 07:24:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ca9b975079f08f44a2db04d92280fac1a92b3e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:64:cb:21:b9:c0:6a:93:1d:db:34:6b:5a:4c:
6c:10:75:e8:f7:5e:b3:8a:5f:6f:b3:91:bc:65:d5:
20:f0:b9:e8:94:98:8f:48:84:97:78:ca:2d:cb:14:
c8:bf:e6:22:0b:07:fa:6c:4a:81:6c:bb:cc:a9:9d:
cf:44:1b:30:85:80:a2:fd:88:2d:e5:b0:71:9c:7b:
49:61:77:d3:b4:16:41:c6:38:fb:71:95:cf:09:8d:
c9:53:fe:a6:5e:d1:88:72:57:06:c7:b1:5d:08:5e:
49:35:03:ab:28:29:4d:a2:3d:b3:73:29:cc:1b:90:
98:b7:4b:e3:97:7b:c3:a7:a4:44:2d:3e:cb:71:eb:
65:ac:27:7c:9c:27:b7:42:05:6d:df:62:46:ca:ed:
77:88:64:b6:59:86:34:58:77:47:24:0d:df:8d:a2:
d5:fd:68:80:2d:9a:fd:40:11:24:85:74:1a:2f:e7:
ff:7f:ab:83:be:05:d0:a5:18:77:82:f6:bb:08:1d:
97:53:6c:fa:54:91:6d:31:e4:a0:fb:f0:b7:a7:0e:
2c:00:64:02:17:49:e9:ea:da:6c:d6:b8:a0:bb:54:
c4:2a:bc:fd:79:16:44:19:5b:1b:7c:89:e8:dd:55:
37:b3:11:56:b9:be:04:d0:5d:0d:55:6a:53:77:45:
d8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9B:97:50:79:F0:8F:44:A2:DB:04:D9:22:80:FA:C1:A9:2B:3E:91
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ypuXUHnwj0Si2wTZIoD6wakrPpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/23
91.202.171.0/24
91.223.106.0/24
91.226.72.0/24
91.226.76.0/24
91.228.126.0/23
103.45.244.0/24
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.173.0/24
185.47.175.0/24
185.56.72.0/22
185.139.231.0/24
185.159.72.0-185.159.74.255
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0::/48
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
57:e9:7c:a9:41:25:2e:e3:96:7a:98:c1:ae:a5:5c:7e:13:9e:
52:1e:8a:09:25:8f:d0:b4:90:9e:2d:8c:a7:e5:48:e1:fa:38:
b8:aa:3e:51:52:8b:f9:7e:80:6d:24:2c:4e:ee:e9:27:4d:b6:
7d:ab:2d:c7:7c:55:9d:ed:92:4c:18:31:8c:2d:f6:f5:e2:07:
5c:c4:e0:c7:32:e5:e5:c5:34:d3:76:de:30:5f:1a:a3:6c:e9:
5f:20:98:f3:3b:40:7a:de:61:a4:15:81:e4:f1:6c:11:23:a7:
0a:63:7e:23:71:5a:30:54:97:55:49:7b:7d:1c:8d:fc:bb:42:
3a:07:81:64:eb:4f:51:f3:0f:fb:a7:5c:4e:ea:17:a1:c6:d5:
23:8a:f0:ea:4a:75:93:cc:9b:66:de:f5:93:98:06:66:1b:b7:
ce:2e:e8:4c:6d:8d:f6:13:bc:0c:66:18:29:be:be:15:70:ea:
d3:04:9b:9b:b6:0b:cd:e8:31:a7:28:e6:8a:95:84:49:4a:4c:
2b:16:ba:61:a1:ed:7d:07:5c:c4:1a:c2:44:42:b3:4a:27:c2:
b6:a4:c0:73:6a:f9:62:2f:6e:3e:cb:3c:01:f2:83:e3:fc:8f:
9b:78:61:a4:99:f0:2a:dd:b1:20:a7:81:99:fc:53:d8:c6:65:
ea:dc:96:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:31 2025 by rpki-client on console.sobornost.net