Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/n4Gl-s-Z4-ZJ7aZsYXedLjfUwYs.roa
File: n4Gl-s-Z4-ZJ7aZsYXedLjfUwYs.roa (raw, json)
Hash identifier: 2ovoFydr5EnhNhzcx+FRnrZsnjvX8pqDu1VDKcopbtk=
Subject key identifier: 9F:81:A5:FA:CF:99:E3:E6:49:ED:A6:6C:61:77:9D:2E:37:D4:C1:8B
Certificate issuer: /CN=fdd2b36206439bbce15b363f09eeff1d738cecc7
Certificate serial: 01955F8979A03965B52B947A742283CF6282
Authority key identifier: FD:D2:B3:62:06:43:9B:BC:E1:5B:36:3F:09:EE:FF:1D:73:8C:EC:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/n4Gl-s-Z4-ZJ7aZsYXedLjfUwYs.roa
Signing time: Tue 04 Mar 2025 05:03:19 +0000
ROA not before: Tue 04 Mar 2025 05:03:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16010
IP address blocks: 5.178.128.0/17 maxlen: 24
5.178.128.0/18 maxlen: 18
5.178.192.0/18 maxlen: 18
46.49.0.0/17 maxlen: 24
46.49.0.0/18 maxlen: 18
46.49.64.0/18 maxlen: 18
62.168.160.0/19 maxlen: 24
77.74.40.0/21 maxlen: 21
80.241.240.0/22 maxlen: 22
80.241.248.0/22 maxlen: 22
80.241.253.0/24 maxlen: 24
80.241.254.0/23 maxlen: 23
82.211.128.0/18 maxlen: 19
82.211.128.0/19 maxlen: 19
82.211.160.0/19 maxlen: 19
85.114.224.0/19 maxlen: 24
89.232.32.0/19 maxlen: 24
93.177.128.0/18 maxlen: 24
93.177.128.0/19 maxlen: 19
93.177.160.0/19 maxlen: 19
94.137.160.0/19 maxlen: 24
94.240.192.0/18 maxlen: 24
94.240.192.0/19 maxlen: 19
94.240.224.0/19 maxlen: 19
95.104.0.0/17 maxlen: 24
95.104.0.0/18 maxlen: 18
95.104.64.0/18 maxlen: 18
109.172.128.0/17 maxlen: 24
134.19.224.0/19 maxlen: 24
185.115.4.0/22 maxlen: 22
185.115.4.0/24 maxlen: 24
188.121.192.0/19 maxlen: 24
188.129.128.0/17 maxlen: 24
188.129.192.0/19 maxlen: 19
212.58.96.0/19 maxlen: 24
212.72.128.0/23 maxlen: 24
212.72.131.0/24 maxlen: 24
212.72.132.0/22 maxlen: 24
212.72.136.0/21 maxlen: 24
212.72.144.0/21 maxlen: 21
212.72.152.0/23 maxlen: 23
212.72.154.0/24 maxlen: 24
212.72.156.0/22 maxlen: 22
213.157.192.0/19 maxlen: 24
213.200.0.0/19 maxlen: 24
2a0b:6200::/29 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5f:89:79:a0:39:65:b5:2b:94:7a:74:22:83:cf:62:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd2b36206439bbce15b363f09eeff1d738cecc7
Validity
Not Before: Mar 4 05:03:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9f81a5facf99e3e649eda66c61779d2e37d4c18b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4c:0a:61:fe:00:da:98:d6:cb:c8:e6:f4:74:
4e:54:9e:cd:b1:15:16:ba:e1:d8:42:0a:45:ec:f6:
8d:d7:b1:82:a9:d1:50:97:b9:02:11:13:4b:45:3e:
98:6e:16:66:41:d0:04:9e:dc:78:af:dd:97:7c:b6:
ed:d4:8b:2b:82:6c:6e:75:b5:81:6d:c6:f7:e1:c1:
35:ff:fb:0a:63:f6:c2:4b:65:9e:41:75:b2:9f:d8:
3d:be:ce:d6:62:91:59:a5:9a:2e:f0:98:cf:16:9a:
8c:3d:12:a7:8c:6b:76:97:88:ab:90:00:ab:39:b2:
9b:5c:a6:85:db:12:4c:32:19:08:69:fe:0d:c8:0d:
96:50:ed:26:f8:9f:68:e3:93:52:ae:fe:1b:9a:9b:
5c:0d:4b:f0:78:39:c1:89:17:f7:2e:47:e9:ab:e3:
32:4c:e2:7d:e0:24:80:69:a8:94:9c:9c:d3:b3:04:
07:93:a5:8a:cd:30:f2:be:7b:88:a6:a0:72:25:7c:
56:ff:6a:74:07:ca:f7:75:df:6a:1c:ba:21:40:79:
d6:01:06:24:07:84:81:39:54:68:53:81:6f:06:7b:
25:5a:6b:7d:b4:5e:8b:d6:ae:75:da:5b:71:9d:47:
62:74:10:23:e5:c8:1a:7a:42:99:13:f5:aa:06:f5:
5e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:81:A5:FA:CF:99:E3:E6:49:ED:A6:6C:61:77:9D:2E:37:D4:C1:8B
X509v3 Authority Key Identifier:
keyid:FD:D2:B3:62:06:43:9B:BC:E1:5B:36:3F:09:EE:FF:1D:73:8C:EC:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/n4Gl-s-Z4-ZJ7aZsYXedLjfUwYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.128.0/17
46.49.0.0/17
62.168.160.0/19
77.74.40.0/21
80.241.240.0/22
80.241.248.0/22
80.241.253.0-80.241.255.255
82.211.128.0/18
85.114.224.0/19
89.232.32.0/19
93.177.128.0/18
94.137.160.0/19
94.240.192.0/18
95.104.0.0/17
109.172.128.0/17
134.19.224.0/19
185.115.4.0/22
188.121.192.0/19
188.129.128.0/17
212.58.96.0/19
212.72.128.0/23
212.72.131.0-212.72.154.255
212.72.156.0/22
213.157.192.0/19
213.200.0.0/19
IPv6:
2a0b:6200::/29
Signature Algorithm: sha256WithRSAEncryption
b2:3a:69:31:10:67:cb:66:1a:b3:56:e0:3e:01:7a:81:05:44:
b0:4c:db:02:5f:4b:9e:5c:6e:24:cb:04:4d:76:2c:9f:71:fc:
ce:20:d4:05:5e:7d:9e:ce:a2:93:63:da:d7:34:c3:77:81:b1:
ef:21:7f:be:5b:d4:8d:fe:fa:6c:20:b9:e0:7f:7b:49:eb:49:
cb:a9:3b:11:be:1d:50:a8:15:37:d0:ac:12:bd:99:8f:4d:8a:
17:bd:55:42:5a:2f:80:ee:55:8d:bf:3e:bc:83:f7:8e:46:ec:
8e:70:cf:7d:24:10:b8:f1:6a:77:f1:ed:96:e4:df:a6:59:60:
4e:4f:91:79:2b:77:40:63:36:7c:e2:6d:58:c2:6e:8f:f4:be:
45:db:29:8e:38:33:ff:10:8a:8e:be:70:ee:2d:27:46:bd:77:
9f:18:74:89:6c:74:7e:6e:dd:23:63:ca:42:93:10:d8:b2:62:
ca:03:c3:44:ad:35:ad:f3:00:fe:46:30:47:e8:df:7e:ed:80:
5d:8e:78:35:0f:70:8e:3c:43:c1:b5:c7:f0:dc:73:95:22:61:
38:c9:4e:36:7e:86:d6:89:2c:64:19:e6:e6:4b:8e:e6:06:09:
35:49:34:e4:6a:08:c8:60:b9:83:ae:ae:88:aa:56:2c:4a:8a:
05:ba:c0:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:47 2025 by rpki-client on console.sobornost.net