Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/k8Eun5Goe0kc6P_tH9L7P-DynBA.roa
File: k8Eun5Goe0kc6P_tH9L7P-DynBA.roa (raw, json)
Hash identifier: G5SN9S6nMJNt6/JqrH3wsKejF2c9wevKad08NNvTDTA=
Subject key identifier: 93:C1:2E:9F:91:A8:7B:49:1C:E8:FF:ED:1F:D2:FB:3F:E0:F2:9C:10
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0196237D3CEB66BF761EBCEF6E8502D102FE
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/k8Eun5Goe0kc6P_tH9L7P-DynBA.roa
Signing time: Fri 11 Apr 2025 06:15:32 +0000
ROA not before: Fri 11 Apr 2025 06:15:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.38.0/23 maxlen: 23
163.5.38.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.88.0/24 maxlen: 24
163.5.90.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.227.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.238.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:23:7d:3c:eb:66:bf:76:1e:bc:ef:6e:85:02:d1:02:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Apr 11 06:15:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=93c12e9f91a87b491ce8ffed1fd2fb3fe0f29c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:43:f9:71:66:d1:e8:6a:49:3c:5a:75:5f:a3:
6c:76:d3:3c:24:74:37:44:81:d0:29:b4:26:24:28:
cc:e8:7c:3b:f0:06:42:77:33:39:be:ca:a6:fc:65:
e3:d1:a0:50:0c:ba:9f:b1:1b:ef:e1:47:43:cf:82:
c8:ab:cd:c0:35:5b:ef:65:c9:04:27:54:62:25:72:
48:c0:67:47:e1:ed:1a:1d:4d:ca:72:d6:6c:9c:f1:
c4:1d:ab:52:30:0a:15:dd:54:50:9a:6a:7c:ea:92:
6f:84:ca:36:c3:56:e1:17:bb:60:13:7e:6f:f1:c8:
6b:bd:6a:91:af:f8:7b:85:22:5a:87:c6:33:7b:72:
a1:e3:d3:90:00:72:26:c7:c7:37:89:93:93:42:01:
ac:97:18:da:35:bc:9e:e4:7c:f9:9a:e2:18:1e:78:
1d:fc:0d:6a:84:ee:ee:95:a5:cf:60:bc:b9:eb:9a:
7b:77:57:21:2a:4b:dd:a2:d2:9c:92:72:c1:a6:5e:
8e:e0:48:9d:56:9d:1c:8d:5f:1a:9d:aa:5a:6d:f8:
8a:07:ce:1c:03:ae:9b:12:c4:93:6c:c0:f5:b2:d9:
2b:4a:f6:df:25:d2:5e:b0:a6:b1:74:e7:6c:d6:72:
56:59:2b:f0:91:41:59:ee:ac:14:7b:db:13:11:72:
27:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C1:2E:9F:91:A8:7B:49:1C:E8:FF:ED:1F:D2:FB:3F:E0:F2:9C:10
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/k8Eun5Goe0kc6P_tH9L7P-DynBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.38.0/23
163.5.60.0/24
163.5.88.0/24
163.5.90.0/24
163.5.93.0/24
163.5.100.0-163.5.102.255
163.5.108.0/23
163.5.114.0/24
163.5.116.0/23
163.5.130.0/24
163.5.147.0/24
163.5.174.0/24
163.5.189.0/24
163.5.192.0/24
163.5.226.0-163.5.228.255
163.5.238.0/24
163.5.240.0/24
163.5.243.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:2c:7a:fd:d9:c8:8d:4e:00:d0:89:3b:cf:0b:43:21:8e:4d:
41:a8:05:55:bb:f1:56:8a:98:1d:73:e2:75:06:70:e8:d2:e2:
a3:84:3b:8a:49:77:85:d6:34:11:c3:b9:85:02:a3:a6:30:8a:
d9:bc:74:12:21:e2:05:d3:e7:a1:81:52:1c:c9:ce:78:d1:36:
12:fa:73:17:bf:f3:48:fd:39:23:fa:67:b2:0d:f0:8e:dd:5b:
88:f8:52:49:dd:17:2a:a0:4a:8a:f1:d5:c5:36:f0:2d:25:13:
ce:f4:be:d6:1f:58:a4:40:0f:4b:ad:07:44:31:cb:66:3a:26:
37:3f:a8:7d:81:7d:5e:a6:17:ab:fd:52:e8:0f:d1:cc:e7:04:
de:9a:41:fb:4c:1f:32:2b:cb:30:fe:ec:16:f6:9e:97:0b:69:
84:ea:05:b9:26:5b:c2:05:e3:5f:cc:57:bd:5c:38:82:6f:b5:
54:35:77:19:fe:cd:6c:79:94:89:5e:f2:f1:2e:8e:bd:4f:6e:
24:2c:ae:60:e0:9d:3a:6c:93:7d:02:69:36:33:45:98:67:32:
9d:90:2c:7b:ba:ee:47:80:aa:08:c8:ec:74:ae:dc:6a:60:aa:
7d:df:6d:ba:23:19:9d:78:47:4f:ed:0f:a4:81:bc:97:77:57:
20:97:f1:fc
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAZYjfTzrZr92HrzvboUC0QL+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjUwNDExMDYxNTMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2MxMmU5ZjkxYTg3YjQ5MWNlOGZmZWQxZmQyZmIzZmUwZjI5YzEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtkP5cWbR6GpJPFp1X6NsdtM8JHQ3
RIHQKbQmJCjM6Hw78AZCdzM5vsqm/GXj0aBQDLqfsRvv4UdDz4LIq83ANVvvZckE
J1RiJXJIwGdH4e0aHU3KctZsnPHEHatSMAoV3VRQmmp86pJvhMo2w1bhF7tgE35v
8chrvWqRr/h7hSJah8Yze3Kh49OQAHImx8c3iZOTQgGslxjaNbye5Hz5muIYHngd
/A1qhO7ulaXPYLy565p7d1chKkvdotKcknLBpl6O4EidVp0cjV8anapabfiKB84c
A66bEsSTbMD1stkrSvbfJdJesKaxdOds1nJWWSvwkUFZ7qwUe9sTEXInswIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFJPBLp+RqHtJHOj/7R/S+z/g8pwQMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvazhFdW41R29lMGtjNlBfdEg5TDdQLUR5bkJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTCBggQCAAEwfAMEAaMF
JgMEAKMFPAMEAKMFWAMEAKMFWgMEAKMFXTAMAwQCowVkAwQAowVmAwQBowVsAwQA
owVyAwQBowV0AwQAowWCAwQAowWTAwQAowWuAwQAowW9AwQAowXAMAwDBAGjBeID
BACjBeQDBACjBe4DBACjBfADBACjBfMwDQYJKoZIhvcNAQELBQADggEBAGssev3Z
yI1OANCJO88LQyGOTUGoBVW78VaKmB1z4nUGcOjS4qOEO4pJd4XWNBHDuYUCo6Yw
itm8dBIh4gXT56GBUhzJznjRNhL6cxe/80j9OSP6Z7IN8I7dW4j4UkndFyqgSorx
1cU28C0lE870vtYfWKRAD0utB0Qxy2Y6Jjc/qH2BfV6mF6v9UugP0cznBN6aQftM
HzIryzD+7Bb2npcLaYTqBbkmW8IF41/MV71cOIJvtVQ1dxn+zWx5lIle8vEujr1P
biQsrmDgnTpsk30CaTYzRZhnMp2QLHu67keAqgjI7HSu3Gpgqn3fbbojGZ14R0/t
D6SBvJd3VyCX8fw=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:03 2025 by rpki-client on console.sobornost.net