Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/RpILInX8NStLNGo-i8gOsmzL6zY.roa
File: RpILInX8NStLNGo-i8gOsmzL6zY.roa (raw, json)
Hash identifier: FpLee9KVIm2tnuSw+HOBh77bwO/f6Y21iVU1yWYIf/s=
Subject key identifier: 46:92:0B:22:75:FC:35:2B:4B:34:6A:3E:8B:C8:0E:B2:6C:CB:EB:36
Certificate issuer: /CN=b30e3011a0fb3111fbe8493c1230974aef532704
Certificate serial: 019421B2272709F9649ABB92C3F15E18521A
Authority key identifier: B3:0E:30:11:A0:FB:31:11:FB:E8:49:3C:12:30:97:4A:EF:53:27:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/RpILInX8NStLNGo-i8gOsmzL6zY.roa
Signing time: Wed 01 Jan 2025 11:48:31 +0000
ROA not before: Wed 01 Jan 2025 11:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208951
IP address blocks: 31.44.0.0/24 maxlen: 24
31.44.1.0/24 maxlen: 24
31.44.2.0/24 maxlen: 24
31.44.3.0/24 maxlen: 24
45.14.48.0/24 maxlen: 24
45.14.49.0/24 maxlen: 24
45.14.50.0/24 maxlen: 24
45.14.51.0/24 maxlen: 24
45.138.24.0/24 maxlen: 24
45.138.25.0/24 maxlen: 24
45.138.26.0/24 maxlen: 24
78.111.84.0/24 maxlen: 24
92.246.130.0/24 maxlen: 24
92.246.131.0/24 maxlen: 24
94.141.96.0/24 maxlen: 24
94.141.97.0/24 maxlen: 24
94.141.98.0/24 maxlen: 24
94.141.99.0/24 maxlen: 24
109.207.168.0/24 maxlen: 24
109.207.169.0/24 maxlen: 24
109.207.171.0/24 maxlen: 24
109.207.172.0/24 maxlen: 24
188.227.57.0/24 maxlen: 24
188.227.58.0/24 maxlen: 24
188.227.59.0/24 maxlen: 24
188.227.84.0/24 maxlen: 24
188.227.85.0/24 maxlen: 24
188.227.86.0/24 maxlen: 24
188.227.87.0/24 maxlen: 24
188.227.106.0/24 maxlen: 24
188.227.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:27:27:09:f9:64:9a:bb:92:c3:f1:5e:18:52:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b30e3011a0fb3111fbe8493c1230974aef532704
Validity
Not Before: Jan 1 11:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=46920b2275fc352b4b346a3e8bc80eb26ccbeb36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:45:db:04:d6:36:f9:17:e4:11:a5:51:56:4d:
44:09:61:07:d1:34:61:af:92:57:bf:d3:7e:a2:f3:
8c:79:23:61:94:98:47:1a:ca:35:7f:04:78:8e:ba:
2a:17:dd:27:92:46:d9:71:3a:b2:e5:af:3e:9e:0f:
22:91:b2:9b:3b:86:eb:e0:79:9a:26:f3:ee:f7:17:
22:a7:93:3b:78:7f:64:6e:c5:9c:47:58:6d:1f:e0:
ce:71:f0:39:dd:da:1d:d2:ce:80:7c:79:33:fa:1c:
bf:5c:d9:0b:95:d1:6b:ad:c7:5f:a7:83:7c:c9:a0:
db:13:ff:0d:5b:8a:68:c6:31:84:fb:cc:22:19:cb:
32:4e:d6:b2:10:01:38:44:60:2d:30:d9:f4:fa:e9:
aa:de:ba:f1:76:07:33:ca:e4:3c:04:27:e6:96:e1:
9f:e8:ec:34:56:e0:23:e5:b5:a0:a3:3c:fe:29:6d:
36:1f:e2:93:b3:8f:fd:14:aa:2b:5c:08:4a:b8:b1:
aa:41:b5:f0:f9:70:af:e5:88:85:68:06:06:b0:2c:
c0:27:c8:76:9d:0b:c1:84:f6:03:b2:4c:05:ef:12:
de:44:b4:29:51:52:f0:51:20:a1:e0:18:1d:c2:dc:
d4:6a:82:7d:1e:74:a1:19:be:56:cd:26:a0:de:50:
24:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:92:0B:22:75:FC:35:2B:4B:34:6A:3E:8B:C8:0E:B2:6C:CB:EB:36
X509v3 Authority Key Identifier:
keyid:B3:0E:30:11:A0:FB:31:11:FB:E8:49:3C:12:30:97:4A:EF:53:27:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/RpILInX8NStLNGo-i8gOsmzL6zY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.0.0/22
45.14.48.0/22
45.138.24.0-45.138.26.255
78.111.84.0/24
92.246.130.0/23
94.141.96.0/22
109.207.168.0/23
109.207.171.0-109.207.172.255
188.227.57.0-188.227.59.255
188.227.84.0/22
188.227.106.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:b1:0b:a2:19:e1:b4:5d:15:91:51:93:1a:04:06:58:1a:d4:
e5:cd:f2:c4:3f:e2:ac:51:db:54:1e:52:d2:2d:5a:11:6c:ea:
8f:82:2b:35:2e:d1:da:ef:6e:1d:f5:ee:b2:d7:f4:26:19:6a:
04:36:f9:08:cd:35:4e:8d:22:87:6f:5c:9c:a3:9b:cd:a2:3a:
36:b1:4c:da:d0:f4:bf:d4:0e:86:fd:40:fa:95:99:e8:55:b8:
b8:49:8f:99:b7:bd:35:2c:f4:38:b2:d7:ea:e5:21:0f:1e:83:
80:0e:5b:03:6d:7a:ac:f6:52:bb:65:b2:0c:67:7a:2f:c9:b9:
39:4f:60:36:24:b7:46:04:d6:7e:92:66:2a:a1:08:3c:72:92:
fe:7e:dd:23:89:06:ea:dc:ba:14:53:0c:9f:5b:5b:57:1e:b8:
a1:e8:09:57:fe:a1:c4:ec:a7:3e:01:d4:fb:2c:47:42:3d:3f:
4e:15:33:44:dc:ae:9c:18:cd:aa:2b:e9:a1:22:14:da:f3:5a:
bf:e7:bd:fe:f5:dc:b7:33:61:c6:e5:5a:7b:f7:19:16:57:cf:
bb:e2:2e:1f:19:70:74:5a:08:e9:4e:14:ae:94:cd:f8:83:f7:
dd:57:3b:e0:63:60:8e:1a:77:f8:c0:ce:92:10:7a:39:00:ca:
ab:35:e8:b3
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAZQhsicnCflkmruSw/FeGFIaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMGUzMDExYTBmYjMxMTFmYmU4NDkzYzEyMzA5NzRhZWY1
MzI3MDQwHhcNMjUwMTAxMTE0ODMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NjkyMGIyMjc1ZmMzNTJiNGIzNDZhM2U4YmM4MGViMjZjY2JlYjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUXbBNY2+RfkEaVRVk1ECWEH0TRh
r5JXv9N+ovOMeSNhlJhHGso1fwR4jroqF90nkkbZcTqy5a8+ng8ikbKbO4br4Hma
JvPu9xcip5M7eH9kbsWcR1htH+DOcfA53dod0s6AfHkz+hy/XNkLldFrrcdfp4N8
yaDbE/8NW4poxjGE+8wiGcsyTtayEAE4RGAtMNn0+umq3rrxdgczyuQ8BCfmluGf
6Ow0VuAj5bWgozz+KW02H+KTs4/9FKorXAhKuLGqQbXw+XCv5YiFaAYGsCzAJ8h2
nQvBhPYDskwF7xLeRLQpUVLwUSCh4BgdwtzUaoJ9HnShGb5WzSag3lAkVQIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFEaSCyJ1/DUrSzRqPovIDrJsy+s2MB8GA1UdIwQY
MBaAFLMOMBGg+zER++hJPBIwl0rvUycEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3c0d0VhRDdNUkg3NkVrOEVqQ1hTdTlUSndRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8wZmZiNjQtZWZjYi00OWY1LTgzNDIt
ZjlmYjM4Yzc3YzU1LzEvUnBJTEluWDhOU3RMTkdvLWk4Z09zbXpMNnpZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8wZmZiNjQtZWZjYi00OWY1LTgzNDItZjlmYjM4Yzc3YzU1
LzEvc3c0d0VhRDdNUkg3NkVrOEVqQ1hTdTlUSndRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQCHywAAwQC
LQ4wMAwDBAMtihgDBAAtihoDBABOb1QDBAFc9oIDBAJejWADBAFtz6gwDAMEAG3P
qwMEAG3PrDAMAwQAvOM5AwQCvOM4AwQCvONUAwQBvONqMA0GCSqGSIb3DQEBCwUA
A4IBAQAusQuiGeG0XRWRUZMaBAZYGtTlzfLEP+KsUdtUHlLSLVoRbOqPgis1LtHa
724d9e6y1/QmGWoENvkIzTVOjSKHb1yco5vNojo2sUza0PS/1A6G/UD6lZnoVbi4
SY+Zt701LPQ4stfq5SEPHoOADlsDbXqs9lK7ZbIMZ3ovybk5T2A2JLdGBNZ+kmYq
oQg8cpL+ft0jiQbq3LoUUwyfW1tXHrih6AlX/qHE7Kc+AdT7LEdCPT9OFTNE3K6c
GM2qK+mhIhTa81q/573+9dy3M2HG5Vp79xkWV8+74i4fGXB0WgjpThSulM34g/fd
VzvgY2COGnf4wM6SEHo5AMqrNeiz
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:09 2025 by rpki-client on console.sobornost.net