Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/oEKdXw4w7e_1s4z2e7tOx4lNx0c.roa
File: oEKdXw4w7e_1s4z2e7tOx4lNx0c.roa (raw, json)
Hash identifier: YjHL6/typreJGiDTssJHq0i4gZ1mztxzHYUdqtYA8ns=
Subject key identifier: A0:42:9D:5F:0E:30:ED:EF:F5:B3:8C:F6:7B:BB:4E:C7:89:4D:C7:47
Certificate issuer: /CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Certificate serial: 019513154877E52C24E305FAAEF26FE8E04A
Authority key identifier: 97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/oEKdXw4w7e_1s4z2e7tOx4lNx0c.roa
Signing time: Mon 17 Feb 2025 08:45:16 +0000
ROA not before: Mon 17 Feb 2025 08:45:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41833
IP address blocks: 46.227.248.0/21 maxlen: 21
46.227.248.0/24 maxlen: 24
46.227.249.0/24 maxlen: 24
46.227.250.0/24 maxlen: 24
46.227.251.0/24 maxlen: 24
46.227.252.0/24 maxlen: 24
46.227.253.0/24 maxlen: 24
46.227.254.0/24 maxlen: 24
46.227.255.0/24 maxlen: 24
89.249.208.0/20 maxlen: 20
89.249.208.0/24 maxlen: 24
89.249.209.0/24 maxlen: 24
89.249.210.0/24 maxlen: 24
89.249.211.0/24 maxlen: 24
89.249.212.0/24 maxlen: 24
89.249.212.0/28 maxlen: 28
89.249.213.0/24 maxlen: 24
89.249.214.0/24 maxlen: 24
89.249.215.0/24 maxlen: 24
89.249.216.0/24 maxlen: 24
89.249.217.0/24 maxlen: 24
89.249.218.0/24 maxlen: 24
89.249.219.0/24 maxlen: 24
89.249.220.0/24 maxlen: 24
89.249.221.0/24 maxlen: 24
89.249.221.80/29 maxlen: 29
89.249.222.0/24 maxlen: 24
89.249.223.0/24 maxlen: 24
93.185.224.0/20 maxlen: 20
93.185.224.0/24 maxlen: 24
93.185.225.0/24 maxlen: 24
93.185.226.0/24 maxlen: 24
93.185.227.0/24 maxlen: 24
93.185.228.0/24 maxlen: 24
93.185.229.0/24 maxlen: 24
93.185.229.0/30 maxlen: 30
93.185.230.0/24 maxlen: 24
93.185.231.0/24 maxlen: 24
93.185.231.0/29 maxlen: 29
93.185.232.0/24 maxlen: 24
93.185.233.0/24 maxlen: 24
93.185.234.0/24 maxlen: 24
93.185.235.0/24 maxlen: 24
93.185.236.0/24 maxlen: 24
93.185.236.136/29 maxlen: 29
93.185.237.0/24 maxlen: 24
93.185.238.0/24 maxlen: 24
93.185.239.0/24 maxlen: 24
95.141.48.0/20 maxlen: 20
95.141.48.0/24 maxlen: 24
95.141.49.0/24 maxlen: 24
95.141.50.0/24 maxlen: 24
95.141.51.0/24 maxlen: 24
95.141.52.0/24 maxlen: 24
95.141.53.0/24 maxlen: 24
95.141.54.0/24 maxlen: 24
95.141.55.0/24 maxlen: 24
95.141.56.0/24 maxlen: 24
95.141.57.0/24 maxlen: 24
95.141.58.0/24 maxlen: 24
95.141.59.0/24 maxlen: 24
95.141.60.0/24 maxlen: 24
95.141.61.0/24 maxlen: 24
95.141.62.0/24 maxlen: 24
95.141.63.0/24 maxlen: 24
141.138.176.0/20 maxlen: 20
141.138.176.0/24 maxlen: 24
141.138.177.0/24 maxlen: 24
141.138.178.0/24 maxlen: 24
141.138.179.0/24 maxlen: 24
141.138.180.0/24 maxlen: 24
141.138.181.0/24 maxlen: 24
141.138.182.0/24 maxlen: 24
141.138.183.0/24 maxlen: 24
141.138.184.0/24 maxlen: 24
141.138.185.0/24 maxlen: 24
141.138.186.0/24 maxlen: 24
141.138.186.96/29 maxlen: 29
141.138.186.144/29 maxlen: 29
141.138.187.0/24 maxlen: 24
141.138.188.0/24 maxlen: 24
141.138.189.0/24 maxlen: 24
141.138.190.0/24 maxlen: 24
141.138.191.0/24 maxlen: 24
185.58.200.0/22 maxlen: 22
185.58.200.0/24 maxlen: 24
185.58.201.0/24 maxlen: 24
185.58.202.0/24 maxlen: 24
185.58.203.0/24 maxlen: 24
2a02:f50::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:13:15:48:77:e5:2c:24:e3:05:fa:ae:f2:6f:e8:e0:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Validity
Not Before: Feb 17 08:45:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a0429d5f0e30edeff5b38cf67bbb4ec7894dc747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2b:30:c7:b2:40:e8:05:bc:3c:08:30:89:e6:
a9:41:98:5d:55:4a:4c:dd:b0:9e:e1:3e:e0:74:f4:
f7:1c:cf:e3:94:fd:31:27:07:79:a1:d6:e1:8c:05:
41:e3:ab:98:7e:3d:68:98:c4:fe:10:5b:ae:79:90:
e6:75:5e:07:f3:9a:78:e7:23:28:a6:d2:76:65:03:
49:49:2d:6c:cb:4f:03:a3:a9:01:35:97:1d:88:60:
eb:57:f1:fe:bb:6a:49:7f:99:ca:09:20:52:39:db:
41:0d:e6:20:13:e2:65:6e:7c:d1:a8:3c:93:63:93:
71:8b:4f:ac:1a:4f:6c:e7:42:12:54:40:71:85:cf:
0a:52:b3:31:4e:67:58:78:a8:10:72:3c:ae:f4:48:
fe:c4:74:e7:c7:d6:fa:e1:3c:d2:69:0f:e4:9c:7d:
64:6e:bd:34:54:f8:d8:ce:97:3d:28:6b:a6:a7:f2:
3d:a6:84:fa:b7:d6:84:94:47:47:ce:21:8f:f3:ba:
05:c8:00:d1:ab:cc:30:3e:de:06:5a:3d:ca:08:81:
0c:b6:01:ac:5e:1f:f6:41:0d:43:de:fb:bc:e4:47:
76:80:3e:45:c4:31:d0:b9:67:84:51:95:e1:08:c8:
78:d3:c5:5e:aa:69:b6:f1:28:d9:13:07:2b:c6:5b:
7c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:42:9D:5F:0E:30:ED:EF:F5:B3:8C:F6:7B:BB:4E:C7:89:4D:C7:47
X509v3 Authority Key Identifier:
keyid:97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/oEKdXw4w7e_1s4z2e7tOx4lNx0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/l0Kd6LzDvkdKu9or4qidDzIIw4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.248.0/21
89.249.208.0/20
93.185.224.0/20
95.141.48.0/20
141.138.176.0/20
185.58.200.0/22
IPv6:
2a02:f50::/32
Signature Algorithm: sha256WithRSAEncryption
66:a4:e1:f2:7f:88:38:9f:e2:f1:c6:9a:d6:40:be:b5:e4:74:
a9:4b:e8:de:f4:b0:95:bb:3f:54:e3:d8:4c:05:3c:3b:05:9a:
5e:2e:f2:88:18:20:71:99:c6:e4:02:4f:01:1d:eb:66:9e:62:
18:14:b0:49:1b:45:2d:53:5b:1e:9e:88:96:2c:cb:26:91:69:
ec:02:23:c0:1f:de:21:89:7a:8d:80:24:a9:c7:0a:58:58:2c:
1c:7a:43:b2:bb:80:19:5e:dd:f2:25:1c:aa:e1:16:28:c3:36:
6a:9f:e5:a7:0c:7e:21:68:49:e9:23:d8:ee:5e:26:2b:e6:5d:
4f:6a:58:18:40:45:c6:55:03:96:6c:a8:76:c4:ca:7f:1c:e5:
6c:39:de:3d:fa:b2:cc:3b:34:7a:ea:d3:a0:5c:c2:81:90:3e:
b5:6a:7b:fd:46:10:4f:ab:b4:56:60:73:ed:1c:0f:4c:e4:2f:
09:1d:64:17:a6:31:3f:e9:b8:d1:a9:c7:87:ee:5e:b5:14:17:
45:12:ae:bd:28:a5:9e:aa:b3:09:db:d4:73:6b:1e:92:94:62:
a4:2a:e1:e7:cf:34:72:79:3d:bd:d6:7e:68:5f:03:1e:c6:cc:
e3:16:c7:b7:cb:75:e0:82:ca:43:81:5a:9f:2c:17:f0:2f:fa:
f1:43:58:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:51 2025 by rpki-client on console.sobornost.net