Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/kUgI1mA5_ENWHHOTv7xZ7nhpRZ0.roa
File: kUgI1mA5_ENWHHOTv7xZ7nhpRZ0.roa (raw, json)
Hash identifier: BoqhqdzB4KyQbQDIjalhIm/FYHsHBteZQIcWquad3xQ=
Subject key identifier: 91:48:08:D6:60:39:FC:43:56:1C:73:93:BF:BC:59:EE:78:69:45:9D
Certificate issuer: /CN=5d6c15ca903d7d25453eaeb5f724a04e3aa65908
Certificate serial: 0195847BAC2828D4752595432AEAF58FC12F
Authority key identifier: 5D:6C:15:CA:90:3D:7D:25:45:3E:AE:B5:F7:24:A0:4E:3A:A6:59:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWwVypA9fSVFPq619ySgTjqmWQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/kUgI1mA5_ENWHHOTv7xZ7nhpRZ0.roa
Signing time: Tue 11 Mar 2025 09:14:12 +0000
ROA not before: Tue 11 Mar 2025 09:14:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6775
IP address blocks: 5.154.186.0/24 maxlen: 24
79.134.224.0/19 maxlen: 24
79.134.225.0/24 maxlen: 24
79.134.227.0/24 maxlen: 24
79.134.228.0/24 maxlen: 24
79.134.229.0/24 maxlen: 24
79.134.230.0/24 maxlen: 24
79.134.231.0/24 maxlen: 24
79.134.232.0/24 maxlen: 24
79.134.233.0/24 maxlen: 24
79.134.234.0/24 maxlen: 24
79.134.235.0/24 maxlen: 24
79.134.236.0/23 maxlen: 23
79.134.236.0/24 maxlen: 24
79.134.237.0/24 maxlen: 24
79.134.238.0/23 maxlen: 23
79.134.240.0/20 maxlen: 24
79.134.243.0/24 maxlen: 24
79.134.247.0/24 maxlen: 24
79.134.250.0/23 maxlen: 23
79.134.250.0/24 maxlen: 24
79.134.251.0/24 maxlen: 24
79.134.252.0/24 maxlen: 24
79.134.254.0/23 maxlen: 23
85.209.172.0/22 maxlen: 24
128.0.33.0/24 maxlen: 24
185.22.52.0/22 maxlen: 24
185.22.52.0/24 maxlen: 24
2001:4b28::/32 maxlen: 48
2a01:528::/32 maxlen: 48
2a04:1d40::/29 maxlen: 29
2a04:1d40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:84:7b:ac:28:28:d4:75:25:95:43:2a:ea:f5:8f:c1:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d6c15ca903d7d25453eaeb5f724a04e3aa65908
Validity
Not Before: Mar 11 09:14:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=914808d66039fc43561c7393bfbc59ee7869459d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cf:4c:ff:a1:39:b1:1f:27:ab:1d:bf:b9:12:
d4:b1:a3:90:66:e6:4e:f6:2e:75:c2:22:c1:49:ff:
c8:ef:5e:13:63:cb:02:e2:37:13:2e:33:ee:93:5b:
d7:8e:5f:f5:70:cf:c3:77:2f:11:89:78:16:3d:01:
06:a9:c1:6a:75:98:4d:4f:b0:e7:fa:0a:67:5e:dd:
60:07:1c:4a:9d:7c:78:46:f4:ba:3c:b1:cb:da:a1:
b9:da:79:ba:6c:54:ef:98:2e:a8:94:2f:e1:d0:e4:
0b:6e:59:3f:62:1c:47:fe:26:fe:e0:02:21:83:bf:
f1:82:95:12:a8:75:cc:96:17:ef:d5:e4:ea:85:65:
10:02:1a:c4:e6:e3:e8:56:fa:d6:45:a5:cf:0c:47:
33:7d:17:32:cd:96:ca:6b:13:6a:b8:aa:fa:a3:81:
ae:7f:b9:87:da:00:b9:2f:6c:db:36:e3:58:ea:c2:
25:79:f4:43:ed:78:cc:70:a6:7f:06:92:88:3b:dc:
be:d8:01:31:56:6c:35:e2:bb:07:11:2d:99:ba:cd:
90:b5:6f:40:60:c0:ed:3d:74:b9:21:04:ba:0d:7f:
e6:b2:6e:9d:ac:7b:ab:61:f9:00:f3:0a:45:59:e3:
05:e5:35:38:11:61:cb:f1:1c:99:74:b7:ac:2a:0a:
1b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:48:08:D6:60:39:FC:43:56:1C:73:93:BF:BC:59:EE:78:69:45:9D
X509v3 Authority Key Identifier:
keyid:5D:6C:15:CA:90:3D:7D:25:45:3E:AE:B5:F7:24:A0:4E:3A:A6:59:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWwVypA9fSVFPq619ySgTjqmWQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/kUgI1mA5_ENWHHOTv7xZ7nhpRZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/XWwVypA9fSVFPq619ySgTjqmWQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.186.0/24
79.134.224.0/19
85.209.172.0/22
128.0.33.0/24
185.22.52.0/22
IPv6:
2001:4b28::/32
2a01:528::/32
2a04:1d40::/29
Signature Algorithm: sha256WithRSAEncryption
6f:6a:0d:2c:2b:dc:63:9d:38:a5:73:75:ab:f5:16:23:91:8f:
99:2c:1c:bb:03:99:f9:9e:bb:4d:b1:19:a9:24:05:12:95:f5:
9c:8b:56:a3:4e:7f:3e:67:f1:9a:3a:76:43:a1:29:33:5e:2a:
87:ff:07:2c:b6:5d:61:96:44:63:b3:90:53:6f:26:03:9f:ff:
c4:bc:7a:04:98:a1:a1:c4:cd:ab:a5:03:a1:ba:f8:51:4a:78:
79:32:64:fb:cc:42:5e:f9:73:67:30:30:93:df:63:ac:05:ed:
5a:aa:c3:3a:36:aa:9b:21:41:dc:a9:2b:85:a2:39:32:70:b6:
b4:ce:c4:18:93:f5:a8:e7:35:f5:4c:d2:34:0e:40:f0:34:bf:
8e:4d:aa:a2:05:a0:75:ea:4d:32:e2:78:41:56:33:fa:37:7c:
32:f0:d7:45:2f:0e:09:03:23:6c:ca:a5:2b:df:40:c0:56:a6:
68:27:d5:f7:e6:db:8b:d4:9a:2e:bc:da:35:0e:e0:a7:b3:d1:
85:47:27:e8:ef:1a:70:a1:48:10:1c:ee:a8:f0:18:a2:25:38:
b7:d3:ab:02:a8:fa:29:8f:83:c5:5d:24:bc:92:85:8d:79:5a:
ae:b9:3a:77:68:24:e7:14:b5:23:dc:4a:db:19:35:2a:a2:e5:
64:12:75:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:31 2025 by rpki-client on console.sobornost.net