Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/lNPVFjFjWKIyClu2IQZU-eoTrMM.roa
File: lNPVFjFjWKIyClu2IQZU-eoTrMM.roa (raw, json)
Hash identifier: GYybvsMZJADovfSQAsucf05N7U7XXSXhg8nUztScVSM=
Subject key identifier: 94:D3:D5:16:31:63:58:A2:32:0A:5B:B6:21:06:54:F9:EA:13:AC:C3
Certificate issuer: /CN=301a648725ee26a460cb9b1cbcd9c9c832c449af
Certificate serial: 0192E155AD2FF172CA92CF42708DDAD35BC5
Authority key identifier: 30:1A:64:87:25:EE:26:A4:60:CB:9B:1C:BC:D9:C9:C8:32:C4:49:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MBpkhyXuJqRgy5scvNnJyDLESa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/lNPVFjFjWKIyClu2IQZU-eoTrMM.roa
Signing time: Thu 31 Oct 2024 06:49:01 +0000
ROA not before: Thu 31 Oct 2024 06:49:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57395
IP address blocks: 5.183.48.0/22 maxlen: 22
89.207.153.0/24 maxlen: 24
176.98.160.0/24 maxlen: 24
176.98.161.0/24 maxlen: 24
176.98.162.0/24 maxlen: 24
176.98.163.0/24 maxlen: 24
176.98.164.0/24 maxlen: 24
176.98.165.0/24 maxlen: 24
176.98.166.0/24 maxlen: 24
176.98.167.0/24 maxlen: 24
185.181.168.0/24 maxlen: 24
185.181.169.0/24 maxlen: 24
185.181.170.0/24 maxlen: 24
185.181.171.0/24 maxlen: 24
185.254.0.0/24 maxlen: 24
185.254.1.0/24 maxlen: 24
193.150.64.0/24 maxlen: 24
2a0b:33c0:1::/48 maxlen: 48
2a0b:33c0:2::/48 maxlen: 48
2a0b:33c0:3::/48 maxlen: 48
2a0b:33c0:6::/48 maxlen: 48
2a0b:33c0:10::/48 maxlen: 48
2a0b:33c0:50::/48 maxlen: 48
2a0b:33c0:51::/48 maxlen: 48
2a0b:33c0:107::/48 maxlen: 48
2a0b:33c0:112::/48 maxlen: 48
2a0b:33c0:113::/48 maxlen: 48
2a0b:33c0:114::/48 maxlen: 48
2a0b:33c0:117::/48 maxlen: 48
2a0b:33c0:118::/48 maxlen: 48
2a0e:d200::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e1:55:ad:2f:f1:72:ca:92:cf:42:70:8d:da:d3:5b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=301a648725ee26a460cb9b1cbcd9c9c832c449af
Validity
Not Before: Oct 31 06:49:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94d3d516316358a2320a5bb6210654f9ea13acc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4d:cb:2a:f8:7c:81:21:90:26:90:5b:9c:98:
e4:94:e0:65:79:8c:68:02:4a:14:39:60:ee:5e:9a:
db:ba:d4:56:93:df:f6:a3:d1:04:7e:ab:e8:0b:98:
b6:6a:da:e3:82:4c:df:43:45:c7:66:b1:9d:c9:94:
ea:f4:27:cd:39:14:b9:e5:9d:9b:48:0d:ef:6b:d0:
0c:e7:01:d3:2b:95:c2:55:b1:27:fd:90:2b:5b:51:
3f:5b:66:e9:3f:b6:65:83:ac:5a:e8:ab:e2:6d:7b:
f1:0a:4f:c6:6f:0e:b2:aa:1d:f0:36:1d:dd:fd:b0:
1b:35:1f:75:8e:ff:66:67:b3:47:87:ee:fe:d2:18:
f7:9c:80:b5:98:e3:f2:c2:69:a3:74:db:db:2f:80:
83:f2:06:3b:9c:9b:bd:49:40:85:2e:c4:32:59:41:
71:f9:25:7b:96:9d:a0:d1:9d:a9:73:88:cc:e3:25:
e7:28:3d:d3:1a:58:ff:5e:7c:98:81:b2:56:3c:bb:
70:9f:18:9d:52:5a:1f:b9:ba:4a:86:ce:e9:1f:0e:
57:5e:1c:a5:45:ff:4e:cb:44:b7:ef:09:05:73:0b:
57:f8:ef:73:97:ac:29:c4:6b:44:bf:5c:21:44:f8:
fc:e5:74:8b:d9:b8:68:09:35:39:a7:56:44:b3:98:
94:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:D3:D5:16:31:63:58:A2:32:0A:5B:B6:21:06:54:F9:EA:13:AC:C3
X509v3 Authority Key Identifier:
keyid:30:1A:64:87:25:EE:26:A4:60:CB:9B:1C:BC:D9:C9:C8:32:C4:49:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MBpkhyXuJqRgy5scvNnJyDLESa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/lNPVFjFjWKIyClu2IQZU-eoTrMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/MBpkhyXuJqRgy5scvNnJyDLESa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.48.0/22
89.207.153.0/24
176.98.160.0/21
185.181.168.0/22
185.254.0.0/23
193.150.64.0/24
IPv6:
2a0b:33c0:1::-2a0b:33c0:3:ffff:ffff:ffff:ffff:ffff
2a0b:33c0:6::/48
2a0b:33c0:10::/48
2a0b:33c0:50::/47
2a0b:33c0:107::/48
2a0b:33c0:112::-2a0b:33c0:114:ffff:ffff:ffff:ffff:ffff
2a0b:33c0:117::-2a0b:33c0:118:ffff:ffff:ffff:ffff:ffff
2a0e:d200::/29
Signature Algorithm: sha256WithRSAEncryption
09:c0:80:2f:29:ca:4d:61:b7:b0:8e:1c:c3:97:99:eb:49:9d:
ee:1b:6d:94:73:a6:6a:74:cb:a6:d4:2b:5a:72:a2:92:f8:f9:
fb:40:49:d5:e9:08:6e:43:99:34:80:da:9b:8d:65:1b:3b:b0:
06:66:93:77:a9:c0:70:b0:f1:c9:55:5b:4e:da:4a:44:40:05:
81:da:95:96:de:cb:ae:f3:10:4b:2b:88:a6:dc:a2:5d:65:0b:
94:cb:f8:ce:b0:4e:cc:c1:47:ec:56:b8:fc:15:b9:5b:9a:06:
96:f1:af:15:bd:3a:d2:b9:f9:2c:e9:30:80:23:e8:6f:b1:7b:
7c:54:60:5e:25:c2:21:35:34:b3:26:c8:2d:6f:5e:ee:6f:eb:
5a:fe:b6:20:b2:6c:73:6b:0c:68:c5:d1:68:f3:16:d1:13:df:
c1:18:c4:3a:0f:5f:23:17:2f:6f:ef:a8:e3:5c:b6:7d:bd:a9:
b0:60:90:5d:bd:1d:69:51:ce:37:65:34:15:91:fe:0e:ea:35:
a4:7e:f5:45:20:3d:eb:47:fd:c0:07:2d:b0:38:be:b8:cd:5a:
25:17:17:af:0c:6c:9a:89:99:44:ca:99:29:b8:92:44:63:c8:
6e:8b:57:ba:b6:e5:7f:9e:52:90:f7:f5:26:35:47:4c:2a:63:
0e:31:14:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:29 2024 by rpki-client on console.sobornost.net