Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/t5VhEfYoQPJemaJk-Oaai2fpQ0w.roa
File: t5VhEfYoQPJemaJk-Oaai2fpQ0w.roa (raw, json)
Hash identifier: /yMDr/zYfKv0HrE9er6jyN9+By/XW43IM7UPvt1ML0Q=
Subject key identifier: B7:95:61:11:F6:28:40:F2:5E:99:A2:64:F8:E6:9A:8B:67:E9:43:4C
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 019427B63BAAB3C6B6699B11C6AB854E05EB
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/t5VhEfYoQPJemaJk-Oaai2fpQ0w.roa
Signing time: Thu 02 Jan 2025 15:50:41 +0000
ROA not before: Thu 02 Jan 2025 15:50:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44709
IP address blocks: 5.100.248.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.251.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.253.0/24 maxlen: 24
5.100.254.0/24 maxlen: 24
5.100.255.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.95.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
91.226.76.0/24 maxlen: 24
91.228.126.0/23 maxlen: 23
103.45.244.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
185.47.173.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
185.139.231.0/24 maxlen: 24
185.159.72.0/24 maxlen: 24
185.159.73.0/24 maxlen: 24
185.159.74.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.91.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
2a06:c5c0::/48 maxlen: 48
2a06:c5c0:700::/48 maxlen: 48
2a06:c5c0:900::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:3b:aa:b3:c6:b6:69:9b:11:c6:ab:85:4e:05:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jan 2 15:50:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b7956111f62840f25e99a264f8e69a8b67e9434c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0d:39:65:2e:da:59:c3:08:a4:f8:44:8d:25:
dc:10:af:79:f1:e2:dc:08:70:37:9c:25:ca:fe:c8:
e0:e0:57:a6:1b:39:af:33:39:ab:22:dc:e6:05:69:
b6:e1:fc:cd:a5:4b:b1:3b:c1:fc:40:e7:01:89:3f:
a7:6b:72:c6:06:be:8b:62:2b:11:a4:af:53:05:f5:
d6:0f:dc:0d:54:ac:ff:59:0b:cb:70:09:89:aa:d5:
b8:7d:02:1d:a6:d2:c0:68:e2:3d:a5:82:65:d2:92:
6b:5f:0b:e3:9f:30:54:a5:31:88:81:19:9a:2e:1e:
95:74:5c:8e:5a:f3:98:3a:ca:07:e7:44:ad:1f:ea:
b4:5f:f3:b7:05:93:bb:28:bc:d4:8c:1b:46:0d:1a:
d9:7d:10:50:3c:31:ef:8d:0d:ba:b3:e9:c1:b7:86:
df:c9:0e:66:ad:c1:15:d5:bd:8d:00:b9:2b:14:1b:
d1:95:c4:03:4a:f5:4e:08:55:d6:8e:a8:8e:5b:0b:
7f:cc:9a:8a:9b:54:d8:28:4d:16:67:ee:02:53:f5:
a9:45:cf:7c:e4:e5:62:e8:be:00:d0:8a:b9:8e:9d:
6d:39:1c:b8:25:63:0b:76:3e:92:53:eb:25:29:05:
ba:a0:61:1a:73:a2:cc:74:9f:24:5f:2c:c1:0b:ab:
f2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:95:61:11:F6:28:40:F2:5E:99:A2:64:F8:E6:9A:8B:67:E9:43:4C
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/t5VhEfYoQPJemaJk-Oaai2fpQ0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.226.76.0/24
91.228.126.0/23
103.45.244.0/24
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.173.0/24
185.47.175.0/24
185.56.72.0/22
185.139.231.0/24
185.159.72.0-185.159.74.255
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0::/48
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
6e:b9:75:3d:c3:b4:c5:dd:83:4c:2c:2d:5d:51:b1:05:75:ca:
bb:32:2e:e6:a5:24:5c:c4:be:95:75:13:36:36:c3:4a:f2:42:
84:c8:ab:fb:a3:7a:53:cd:10:64:fc:1b:10:92:3a:f4:a2:bc:
97:85:06:86:ec:02:12:9d:50:81:d2:ea:95:98:55:40:fc:db:
65:d6:1a:e1:2c:de:6b:14:06:34:df:71:bf:ee:61:ce:2d:3a:
97:47:e9:e8:ce:9d:db:1d:f4:e1:bb:2b:0b:af:d5:14:4a:fb:
dc:04:1c:8f:c8:63:43:e9:54:ae:22:cd:be:6c:05:9b:66:6b:
fa:f0:df:4b:a2:ac:ff:2a:20:e1:a5:2b:f9:bb:df:7b:24:30:
36:27:e8:ff:f5:16:43:9f:67:35:6c:c4:87:cc:20:a0:bb:da:
cc:0c:cb:3b:1b:2d:9f:23:9d:1c:fd:3b:7a:0c:d7:f0:39:15:
33:6f:52:05:f1:98:70:52:fc:07:99:d7:a6:fb:35:df:08:4b:
d1:28:b8:4e:8e:3d:c9:e5:46:69:93:27:e8:32:ca:b8:9b:2e:
d7:92:1a:37:c0:81:14:75:54:fd:f3:59:19:c0:55:c5:a2:38:
a2:bd:5c:d2:3b:7f:68:9a:f0:3c:d6:b7:5e:28:46:6a:fd:f9:
0e:49:78:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 03:46:44 2025 by rpki-client