Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/nWNBsKGmUV1S3rr52oPhp1IkRh8.roa
File: nWNBsKGmUV1S3rr52oPhp1IkRh8.roa (raw, json)
Hash identifier: pD3rM9TW2P18+nnZb74W7Gp3eRbYbRg+mK+BLXJCm1M=
Subject key identifier: 9D:63:41:B0:A1:A6:51:5D:52:DE:BA:F9:DA:83:E1:A7:52:24:46:1F
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 0195EB2E87D514FD32733DDC0570C9A23A82
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/nWNBsKGmUV1S3rr52oPhp1IkRh8.roa
Signing time: Mon 31 Mar 2025 07:50:49 +0000
ROA not before: Mon 31 Mar 2025 07:50:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34665
IP address blocks: 5.8.0.0/21 maxlen: 22
5.8.8.0/22 maxlen: 22
5.8.8.0/23 maxlen: 23
5.8.8.0/24 maxlen: 24
5.8.9.0/24 maxlen: 24
5.8.10.0/23 maxlen: 23
5.8.10.0/24 maxlen: 24
5.8.11.0/24 maxlen: 24
5.8.12.0/22 maxlen: 22
5.8.16.0/24 maxlen: 24
5.8.48.0/22 maxlen: 22
5.8.48.0/23 maxlen: 23
5.8.48.0/24 maxlen: 24
5.8.49.0/24 maxlen: 24
5.8.50.0/23 maxlen: 23
5.8.50.0/24 maxlen: 24
5.8.51.0/24 maxlen: 24
5.8.52.0/22 maxlen: 22
5.8.52.0/23 maxlen: 23
5.8.52.0/24 maxlen: 24
5.8.53.0/24 maxlen: 24
5.8.54.0/23 maxlen: 23
5.8.54.0/24 maxlen: 24
5.8.55.0/24 maxlen: 24
5.8.60.0/23 maxlen: 23
5.8.65.0/24 maxlen: 24
5.8.80.0/21 maxlen: 23
5.101.0.0/22 maxlen: 22
5.101.0.0/23 maxlen: 23
5.101.0.0/24 maxlen: 24
5.101.1.0/24 maxlen: 24
5.101.2.0/23 maxlen: 23
5.101.2.0/24 maxlen: 24
5.101.3.0/24 maxlen: 24
5.101.4.0/22 maxlen: 22
5.101.4.0/23 maxlen: 23
5.101.4.0/24 maxlen: 24
5.101.5.0/24 maxlen: 24
5.101.6.0/23 maxlen: 23
5.101.6.0/24 maxlen: 24
5.101.7.0/24 maxlen: 24
5.101.32.0/22 maxlen: 24
5.101.64.0/22 maxlen: 22
5.101.64.0/23 maxlen: 23
5.101.64.0/24 maxlen: 24
5.101.65.0/24 maxlen: 24
5.101.66.0/23 maxlen: 23
5.101.66.0/24 maxlen: 24
5.101.67.0/24 maxlen: 24
5.101.80.0/21 maxlen: 21
5.101.90.0/23 maxlen: 23
5.188.44.0/22 maxlen: 22
5.188.44.0/23 maxlen: 23
5.188.44.0/24 maxlen: 24
5.188.45.0/24 maxlen: 24
5.188.46.0/23 maxlen: 23
5.188.46.0/24 maxlen: 24
5.188.47.0/24 maxlen: 24
5.188.49.0/24 maxlen: 24
5.188.62.0/24 maxlen: 24
5.188.208.0/23 maxlen: 23
5.188.210.0/24 maxlen: 24
5.188.211.0/24 maxlen: 24
5.188.223.0/24 maxlen: 24
5.188.233.0/24 maxlen: 24
5.188.234.0/23 maxlen: 23
31.44.188.0/22 maxlen: 32
31.184.192.0/22 maxlen: 22
31.184.192.0/23 maxlen: 23
31.184.192.0/24 maxlen: 24
31.184.193.0/24 maxlen: 24
31.184.194.0/23 maxlen: 23
31.184.194.0/24 maxlen: 24
31.184.195.0/24 maxlen: 24
31.184.196.0/22 maxlen: 22
31.184.196.0/23 maxlen: 23
31.184.196.0/24 maxlen: 24
31.184.197.0/24 maxlen: 24
31.184.198.0/23 maxlen: 23
31.184.198.0/24 maxlen: 24
31.184.199.0/24 maxlen: 24
31.184.238.0/23 maxlen: 23
31.184.243.0/24 maxlen: 24
37.9.48.0/24 maxlen: 24
37.139.53.0/24 maxlen: 24
37.139.54.0/23 maxlen: 23
37.139.56.0/22 maxlen: 22
37.139.56.0/23 maxlen: 23
37.139.56.0/24 maxlen: 24
37.139.57.0/24 maxlen: 24
37.139.58.0/23 maxlen: 23
37.139.58.0/24 maxlen: 24
37.139.59.0/24 maxlen: 24
46.161.2.0/23 maxlen: 23
46.161.8.0/24 maxlen: 24
46.161.10.0/24 maxlen: 24
46.161.14.0/23 maxlen: 23
46.161.20.0/22 maxlen: 22
46.161.32.0/22 maxlen: 22
46.161.44.0/22 maxlen: 22
46.161.48.0/22 maxlen: 22
46.161.48.0/23 maxlen: 23
46.161.48.0/24 maxlen: 24
46.161.49.0/24 maxlen: 24
46.161.50.0/23 maxlen: 23
46.161.50.0/24 maxlen: 24
46.161.51.0/24 maxlen: 24
91.243.48.0/22 maxlen: 22
91.243.48.0/23 maxlen: 23
91.243.48.0/24 maxlen: 24
91.243.49.0/24 maxlen: 24
91.243.50.0/23 maxlen: 23
91.243.50.0/24 maxlen: 24
91.243.51.0/24 maxlen: 24
91.243.60.0/24 maxlen: 24
91.243.61.0/24 maxlen: 24
91.243.90.0/24 maxlen: 24
91.243.91.0/24 maxlen: 24
91.243.93.0/24 maxlen: 24
95.215.0.0/22 maxlen: 24
95.215.0.0/23 maxlen: 23
95.215.0.0/24 maxlen: 24
95.215.1.0/24 maxlen: 24
95.215.2.0/23 maxlen: 23
95.215.2.0/24 maxlen: 24
95.215.3.0/24 maxlen: 24
146.185.223.0/24 maxlen: 24
146.185.224.0/21 maxlen: 21
188.143.232.0/22 maxlen: 22
188.143.232.0/23 maxlen: 23
188.143.232.0/24 maxlen: 24
188.143.233.0/24 maxlen: 24
188.143.235.0/24 maxlen: 24
195.2.240.0/23 maxlen: 24
2a00:1d78:100:1c0::/58 maxlen: 58
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:eb:2e:87:d5:14:fd:32:73:3d:dc:05:70:c9:a2:3a:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Mar 31 07:50:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9d6341b0a1a6515d52debaf9da83e1a75224461f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:dc:94:c3:04:bb:75:b1:e1:b5:e9:6f:2a:d3:
1c:3c:d8:da:94:55:64:ce:b3:fa:ee:97:5d:ec:ab:
f5:c8:7d:fa:36:62:3b:cd:4d:b5:b4:ea:9a:3e:00:
97:e5:0b:5f:98:7a:f6:4d:6f:6e:94:19:48:82:f0:
3e:72:7d:13:b4:a5:a4:05:a9:35:06:8d:8f:73:bb:
5b:99:ff:0c:ab:00:1b:97:5d:22:35:17:81:bb:f4:
05:cc:87:1c:b2:ce:49:ab:58:df:11:1b:99:bb:8f:
8c:bf:83:f2:da:a2:98:58:35:15:23:6d:b0:30:23:
e4:34:11:67:f0:c6:a8:75:f2:36:22:86:dc:63:2a:
49:a0:a8:ee:10:c8:3b:57:b8:46:cf:f5:bb:27:7b:
e5:7e:39:97:59:f8:54:eb:4c:e3:e2:13:55:37:5e:
aa:7d:27:6a:c8:b6:0d:27:e8:ba:21:7e:0a:92:81:
f7:a6:94:00:16:1d:53:c4:80:3c:92:99:56:47:cd:
cc:72:92:f6:5b:de:c4:8a:8d:6a:ad:88:f0:3d:fd:
68:88:4e:fa:46:39:54:45:5d:89:6a:27:0b:72:c9:
a9:dc:1c:95:98:2e:a7:72:46:d6:62:26:6e:55:ca:
1a:d3:99:51:04:ed:4b:a7:30:66:52:6c:b0:e4:40:
a1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:63:41:B0:A1:A6:51:5D:52:DE:BA:F9:DA:83:E1:A7:52:24:46:1F
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/nWNBsKGmUV1S3rr52oPhp1IkRh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.0.0-5.8.16.255
5.8.48.0/21
5.8.60.0/23
5.8.65.0/24
5.8.80.0/21
5.101.0.0/21
5.101.32.0/22
5.101.64.0/22
5.101.80.0/21
5.101.90.0/23
5.188.44.0/22
5.188.49.0/24
5.188.62.0/24
5.188.208.0/22
5.188.223.0/24
5.188.233.0-5.188.235.255
31.44.188.0/22
31.184.192.0/21
31.184.238.0/23
31.184.243.0/24
37.9.48.0/24
37.139.53.0-37.139.59.255
46.161.2.0/23
46.161.8.0/24
46.161.10.0/24
46.161.14.0/23
46.161.20.0/22
46.161.32.0/22
46.161.44.0-46.161.51.255
91.243.48.0/22
91.243.60.0/23
91.243.90.0/23
91.243.93.0/24
95.215.0.0/22
146.185.223.0-146.185.231.255
188.143.232.0/22
195.2.240.0/23
IPv6:
2a00:1d78:100:1c0::/58
Signature Algorithm: sha256WithRSAEncryption
09:08:2e:4f:23:a4:88:b7:e2:a9:47:26:24:82:13:1a:cf:1d:
32:55:68:39:b7:af:b5:39:b4:f3:40:17:71:15:04:97:1c:cd:
d2:14:b5:74:23:eb:39:4f:a1:58:c7:fe:22:43:e5:6c:e6:20:
d8:ca:22:cf:e7:3e:75:03:16:c4:56:fb:3a:5b:3b:cc:e2:3f:
3c:81:ad:30:e6:61:1d:86:eb:eb:af:d9:bb:18:d3:cf:d4:6b:
66:48:04:03:41:2c:1e:df:5d:fd:f1:3f:94:44:94:28:ea:98:
64:59:27:a0:74:26:a6:95:d3:97:6d:5d:00:8c:df:b7:2c:ac:
9f:4d:15:8e:2d:c7:86:63:cb:64:30:e6:da:5a:bd:84:f9:f4:
83:3f:88:0e:2f:e9:69:66:cd:81:b7:82:c9:c0:a8:ed:f6:55:
7d:9b:4d:92:c4:7c:80:d9:27:c2:b9:95:c4:61:67:3e:2d:d5:
92:03:8e:90:87:ef:20:a1:ab:5c:28:ff:a5:0d:8c:a2:c8:b4:
ca:9e:aa:c1:98:9f:e9:10:fb:4d:f2:98:a6:80:1d:83:43:e7:
f8:a8:6a:ee:7c:ff:12:f3:c1:d9:ab:a8:a9:c9:63:50:f9:fa:
a7:c6:26:dd:1d:84:cb:52:fa:3d:3d:d5:18:a6:b1:97:94:dc:
b6:9b:ee:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 23:48:44 2025 by rpki-client on console.sobornost.net