Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/OEdGesotoj84GxuNu6GfkrGddIs.roa
File: OEdGesotoj84GxuNu6GfkrGddIs.roa (raw, json)
Hash identifier: g/QaKIww+8qRRyqXJKKSebMK9yjoRm1FrbDZkf7XRpU=
Subject key identifier: 38:47:46:7A:CA:2D:A2:3F:38:1B:1B:8D:BB:A1:9F:92:B1:9D:74:8B
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0196237FFB8B1A485E25902CCF826162DFAC
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/OEdGesotoj84GxuNu6GfkrGddIs.roa
Signing time: Fri 11 Apr 2025 06:18:32 +0000
ROA not before: Fri 11 Apr 2025 06:18:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.63.0/24 maxlen: 24
163.5.66.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.97.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.144.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.164.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.173.0/24 maxlen: 24
163.5.175.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.209.0/24 maxlen: 24
163.5.216.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.233.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:23:7f:fb:8b:1a:48:5e:25:90:2c:cf:82:61:62:df:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Apr 11 06:18:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3847467aca2da23f381b1b8dbba19f92b19d748b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e4:00:ab:ba:6e:ba:6d:1d:9d:33:c1:eb:fb:
95:04:4f:79:64:71:b1:d1:23:f1:28:42:cc:73:03:
c4:53:0e:61:68:19:92:c8:df:55:13:5d:ce:e0:45:
86:02:82:e3:49:b5:61:35:b9:fd:96:dd:08:3d:96:
2b:00:41:73:70:a7:6a:73:be:5d:55:5e:ad:e8:1b:
38:43:3b:d3:c5:ad:b9:97:1e:1c:f7:b0:4d:81:ab:
7d:b5:35:cd:5c:7a:f9:22:69:b6:c7:b0:fb:d5:79:
dd:26:3a:58:58:90:2a:20:04:e3:45:85:bf:7b:7b:
12:32:65:08:e3:96:8f:7e:be:80:f6:35:34:5d:4f:
15:4d:69:e7:78:76:18:49:31:4d:fa:6c:b3:cd:6a:
44:99:8e:b9:b5:25:9f:b9:46:1e:17:60:ab:68:b0:
6e:b4:8a:14:dc:c0:ef:1d:9f:0e:dc:df:b9:a1:38:
bf:49:d0:21:e1:cb:f9:fe:b3:4e:b8:54:a8:d4:18:
21:f3:a6:36:e6:67:73:58:c8:c4:55:bc:54:78:b2:
84:c1:6c:0e:94:7e:80:60:d3:d6:fa:fb:f6:b0:81:
e5:dd:6e:71:fd:f2:05:ae:28:2f:a2:4a:54:2b:62:
5d:14:31:c8:39:cc:41:89:56:1b:fb:ef:b5:4a:ad:
0a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:47:46:7A:CA:2D:A2:3F:38:1B:1B:8D:BB:A1:9F:92:B1:9D:74:8B
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/OEdGesotoj84GxuNu6GfkrGddIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.34.0/24
163.5.59.0/24
163.5.63.0/24
163.5.66.0/24
163.5.73.0/24
163.5.97.0/24
163.5.112.0/23
163.5.118.0/23
163.5.121.0/24
163.5.128.0/23
163.5.131.0/24
163.5.133.0/24
163.5.138.0/23
163.5.142.0-163.5.144.255
163.5.146.0/24
163.5.151.0/24
163.5.156.0/24
163.5.158.0/24
163.5.160.0/24
163.5.162.0/24
163.5.164.0/24
163.5.167.0/24
163.5.173.0/24
163.5.175.0/24
163.5.178.0/23
163.5.182.0/24
163.5.186.0/24
163.5.189.0/24
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.209.0/24
163.5.216.0/24
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.233.0/24
163.5.241.0/24
163.5.246.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:47:c4:e6:3a:91:df:7f:29:ff:19:11:01:18:46:60:c6:92:
2d:98:1f:5a:9c:8f:6a:9d:7f:aa:4e:fb:3f:2c:2a:0b:5f:d1:
b5:e9:59:6f:3a:4e:5c:a4:da:f5:e8:b4:4d:93:5d:92:f3:4b:
d6:17:1d:b0:85:2a:75:bd:4c:60:01:01:19:50:e8:4e:e4:74:
09:fe:82:6b:ed:f3:9f:27:16:51:45:ec:e4:ba:4e:64:0d:49:
16:50:e5:1e:e0:52:d2:33:db:89:79:d4:91:20:dd:1e:b2:6d:
ed:6c:60:b7:fb:65:12:ad:30:b0:74:0d:0d:b3:ee:ad:f8:33:
9e:ab:44:5b:15:12:15:4d:ce:ba:b6:bc:8f:49:16:f1:4d:03:
0e:58:da:34:75:ff:ee:48:dc:8b:27:66:9c:6d:d1:d9:9d:26:
f7:c0:29:6f:ac:ed:0f:37:13:ec:ec:11:5d:14:9d:78:42:a7:
9c:72:e4:ff:3e:b2:47:65:c7:27:d6:69:ea:42:47:1d:ba:3f:
10:32:d8:2b:16:ac:8f:8a:a4:db:18:c8:d1:9e:2a:53:43:64:
58:79:11:80:b2:e7:ad:7c:1b:26:4c:99:bb:fd:7b:b0:79:f4:
c8:f1:9f:7d:61:b5:8d:9c:c6:de:62:24:0a:c6:16:4c:8f:ab:
30:42:b0:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:03 2025 by rpki-client on console.sobornost.net