Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/5oRCpfT1T6yQCJqx4kRnu1PISqE.roa
File: 5oRCpfT1T6yQCJqx4kRnu1PISqE.roa (raw, json)
Hash identifier: EyMBU9wS84YvIBo5Y3Ut08o1N5LKBsYGCi0/aBrkiC4=
Subject key identifier: E6:84:42:A5:F4:F5:4F:AC:90:08:9A:B1:E2:44:67:BB:53:C8:4A:A1
Certificate issuer: /CN=f0f14ed124f9a2f3deab1006f184cf4fb80a3aec
Certificate serial: 019519347414E7D3B6A29FD91DAA5E6D5DD8
Authority key identifier: F0:F1:4E:D1:24:F9:A2:F3:DE:AB:10:06:F1:84:CF:4F:B8:0A:3A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PFO0ST5ovPeqxAG8YTPT7gKOuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/5oRCpfT1T6yQCJqx4kRnu1PISqE.roa
Signing time: Tue 18 Feb 2025 13:17:02 +0000
ROA not before: Tue 18 Feb 2025 13:17:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206825
IP address blocks: 5.182.107.0/24 maxlen: 24
31.14.29.0/24 maxlen: 24
31.14.30.0/24 maxlen: 24
46.102.102.0/24 maxlen: 24
80.208.255.0/24 maxlen: 24
85.204.37.0/24 maxlen: 24
94.177.133.0/24 maxlen: 24
103.197.8.0/22 maxlen: 22
178.157.95.0/24 maxlen: 24
185.11.16.0/22 maxlen: 22
185.11.16.0/23 maxlen: 23
185.11.18.0/23 maxlen: 23
185.36.112.0/22 maxlen: 22
185.186.116.0/22 maxlen: 22
185.207.240.0/22 maxlen: 22
195.5.96.0/23 maxlen: 23
195.181.254.0/24 maxlen: 24
195.192.252.0/24 maxlen: 24
212.103.52.0/22 maxlen: 22
212.237.254.0/24 maxlen: 24
217.61.255.0/24 maxlen: 24
2a03:4f40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:19:34:74:14:e7:d3:b6:a2:9f:d9:1d:aa:5e:6d:5d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0f14ed124f9a2f3deab1006f184cf4fb80a3aec
Validity
Not Before: Feb 18 13:17:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e68442a5f4f54fac90089ab1e24467bb53c84aa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a0:67:8e:88:b2:d2:72:3f:86:7d:d7:c4:79:
73:38:2b:7d:5e:dc:b0:7b:8c:7f:c3:ac:9d:f5:ed:
91:d1:aa:f5:30:f8:a4:dd:cc:89:5f:5e:48:ba:d1:
06:db:89:fa:f2:b8:b1:41:da:f2:07:af:ed:6b:5f:
ac:55:1b:76:8a:fd:0d:10:f0:46:11:0e:ef:b6:77:
d2:b3:c4:09:84:ed:68:0c:87:02:9b:7f:5c:71:d9:
57:77:1e:31:09:05:05:61:ec:3a:10:f1:4b:a5:04:
ed:d7:61:48:be:6f:0c:d1:d9:cb:2b:31:bc:a2:11:
dc:92:14:8e:4f:16:af:b1:d2:f6:b0:d9:8c:de:80:
e4:df:e2:a2:e4:6d:44:f6:88:fb:02:80:b5:2c:39:
a1:13:68:64:e9:9f:34:53:b4:f7:9e:1b:8a:e3:6f:
f8:e2:af:c8:a3:34:69:6b:87:c9:e6:d4:e2:2d:ea:
1f:67:a6:86:17:f2:d9:19:87:18:f1:5f:4d:3b:78:
56:b2:1f:f3:22:b8:80:b9:32:b8:90:33:62:66:cd:
02:20:c7:40:0c:81:11:d0:03:51:c3:60:63:55:6f:
14:a5:2b:90:db:a5:a2:3e:0f:35:d1:89:f6:8f:ed:
ae:13:77:c8:86:00:79:5a:3e:f0:f2:f2:61:33:0e:
59:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:84:42:A5:F4:F5:4F:AC:90:08:9A:B1:E2:44:67:BB:53:C8:4A:A1
X509v3 Authority Key Identifier:
keyid:F0:F1:4E:D1:24:F9:A2:F3:DE:AB:10:06:F1:84:CF:4F:B8:0A:3A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PFO0ST5ovPeqxAG8YTPT7gKOuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/5oRCpfT1T6yQCJqx4kRnu1PISqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/8PFO0ST5ovPeqxAG8YTPT7gKOuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.107.0/24
31.14.29.0-31.14.30.255
46.102.102.0/24
80.208.255.0/24
85.204.37.0/24
94.177.133.0/24
103.197.8.0/22
178.157.95.0/24
185.11.16.0/22
185.36.112.0/22
185.186.116.0/22
185.207.240.0/22
195.5.96.0/23
195.181.254.0/24
195.192.252.0/24
212.103.52.0/22
212.237.254.0/24
217.61.255.0/24
IPv6:
2a03:4f40::/32
Signature Algorithm: sha256WithRSAEncryption
2e:3c:b3:24:e4:91:29:3e:0f:34:ac:57:04:c1:33:8a:bf:d9:
85:ea:e1:d3:46:8f:4f:5d:df:99:b5:4b:7b:cc:9c:e7:b1:5e:
20:37:6e:55:ba:c7:02:af:c9:66:eb:ac:ed:24:d2:81:ff:ad:
b4:4b:62:42:f8:cf:76:65:14:98:c4:54:22:01:9d:58:6d:dd:
0d:85:bf:e3:e1:b8:f0:62:40:96:66:1e:e9:e9:1d:fc:51:7a:
87:46:86:b1:ae:01:16:d4:92:a4:7b:33:5c:34:8c:37:53:df:
bf:e4:09:2a:87:09:79:64:35:75:c0:0b:ef:b1:45:34:c8:16:
43:70:27:1a:26:35:8c:fd:f3:1c:bf:25:d7:88:b6:b9:4f:90:
65:c1:20:aa:dc:be:59:c8:92:3f:12:9c:58:31:a3:44:cf:43:
f2:63:17:d8:1f:5b:94:2e:e4:99:8c:e3:42:f0:37:84:32:2f:
51:99:91:d8:cf:b0:43:fd:3b:66:0b:ee:f7:1d:4a:0f:44:b0:
4d:bb:96:db:02:6f:82:f9:eb:68:dd:1c:bb:e9:dd:3c:ad:72:
8a:19:b7:2c:19:46:93:ef:a3:e8:af:23:46:d1:f5:8d:ef:85:
89:99:9a:66:62:3a:fd:3b:4e:b8:10:00:16:1a:ba:6a:6d:66:
03:98:c4:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net