Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ti8NVm6_QsqkAiEBabgjTKzWG30.roa
File: ti8NVm6_QsqkAiEBabgjTKzWG30.roa (raw, json)
Hash identifier: qCMNmh+P62T3oDa788K0m/tpkTRYF1SmX3SmphthJws=
Subject key identifier: B6:2F:0D:56:6E:BF:42:CA:A4:02:21:01:69:B8:23:4C:AC:D6:1B:7D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01962F907B63921D00B6C0EEF656B4F85B66
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ti8NVm6_QsqkAiEBabgjTKzWG30.roa
Signing time: Sun 13 Apr 2025 14:31:59 +0000
ROA not before: Sun 13 Apr 2025 14:31:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
5.231.225.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.7.0/24 maxlen: 24
89.144.8.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2f:90:7b:63:92:1d:00:b6:c0:ee:f6:56:b4:f8:5b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 13 14:31:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b62f0d566ebf42caa402210169b8234cacd61b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:44:ee:65:bb:d1:00:35:d2:fc:bd:21:33:fb:
4e:44:cd:4f:fe:8b:15:73:9e:84:39:9f:c8:62:6e:
8b:3f:8a:1a:17:7c:89:e6:3e:63:0a:0f:ae:72:81:
d4:f4:21:ae:46:ea:55:2d:5e:c7:4c:e1:5e:d5:f1:
21:b7:18:5f:ff:d6:07:81:ca:b4:83:30:90:c1:1a:
4f:70:82:0b:99:01:c4:43:b2:3f:99:6c:a3:d4:8b:
f6:eb:aa:e5:5a:07:00:53:4d:b5:7c:1c:15:40:5b:
37:40:af:29:09:d9:b6:22:d8:d4:91:2f:0e:39:36:
cd:b8:7c:25:0e:41:3b:b1:80:b2:3f:0d:92:01:73:
90:67:d7:b5:be:8e:79:6a:0d:42:8d:a9:e5:2c:8a:
90:2d:f7:fe:a6:9c:2b:22:7a:15:e4:ff:70:6b:33:
3e:7b:e6:d4:46:1b:0e:e5:b0:d9:e5:ce:c5:72:dc:
99:cf:77:80:1f:f5:cb:a6:bd:27:8a:71:11:e4:72:
e2:d4:b1:15:32:7c:c0:2a:66:a4:34:fc:6c:a0:3d:
fa:ab:ea:ee:bc:13:4c:49:97:6e:d5:73:18:a4:5c:
49:f1:f8:c4:67:37:99:a3:ac:1f:4b:5f:44:7b:79:
07:55:92:7a:6a:6d:42:47:08:71:d7:64:36:42:c5:
73:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:2F:0D:56:6E:BF:42:CA:A4:02:21:01:69:B8:23:4C:AC:D6:1B:7D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ti8NVm6_QsqkAiEBabgjTKzWG30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
5.231.225.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
89.106.70.0/24
89.144.7.0-89.144.8.255
89.144.14.0/24
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
94.249.153.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
50:92:a0:bd:04:01:93:45:ca:fc:ce:9f:93:d6:80:54:87:b3:
a7:fa:56:a9:2e:8b:c7:0b:45:ab:9a:9f:ae:2e:a6:52:5b:4a:
69:f5:90:49:c9:b2:e8:5e:14:83:2f:da:bd:47:95:7f:e5:0a:
72:ef:eb:66:da:ad:d2:22:7d:8e:2f:94:96:43:a9:66:42:ef:
c1:a7:e0:28:f0:4e:fc:e5:69:66:d5:4e:8a:7e:d2:60:02:95:
83:34:17:10:c4:0b:dc:28:b5:b6:1e:7b:1f:bc:56:25:c8:18:
10:61:be:5e:8e:1f:be:cf:de:bb:06:90:55:f3:b2:1b:bc:8e:
87:20:51:82:ca:81:87:f8:99:29:e1:6e:ff:18:45:03:94:d5:
f2:95:09:d7:0b:cf:33:d8:78:bf:9e:a1:4f:c9:1b:11:47:fc:
66:64:59:c9:f2:09:ab:1b:a9:ba:ed:c6:3f:b8:10:e2:ad:f3:
d0:9b:c8:c0:d2:33:ab:01:61:ea:3a:9d:8d:d3:38:06:87:a0:
15:6b:57:78:35:cf:a7:94:b5:95:f8:34:93:e6:c9:83:4f:b4:
09:97:9a:e3:c2:04:42:1c:7f:ef:78:56:09:4c:45:f2:a7:81:
36:72:93:d7:c9:0b:da:13:e0:85:a5:c3:34:4f:8b:00:0c:9f:
a7:98:3c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:01 2025 by rpki-client on console.sobornost.net