Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/4r39zvWrkYP2asO0kOUkjIaBE5M.roa
File: 4r39zvWrkYP2asO0kOUkjIaBE5M.roa (raw, json)
Hash identifier: v58EqYlL6LzlpEJ1F9DVvqr5mbMv8/9nhYAa/WADapg=
Subject key identifier: E2:BD:FD:CE:F5:AB:91:83:F6:6A:C3:B4:90:E5:24:8C:86:81:13:93
Certificate issuer: /CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Certificate serial: 019424B33ED7E0D738277A2216C788EE2635
Authority key identifier: 9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/4r39zvWrkYP2asO0kOUkjIaBE5M.roa
Signing time: Thu 02 Jan 2025 01:48:34 +0000
ROA not before: Thu 02 Jan 2025 01:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47548
IP address blocks: 5.149.176.0/20 maxlen: 20
5.149.176.0/24 maxlen: 24
5.149.177.0/24 maxlen: 24
5.149.178.0/24 maxlen: 24
5.149.179.0/24 maxlen: 24
5.149.180.0/24 maxlen: 24
5.149.181.0/24 maxlen: 24
5.149.182.0/24 maxlen: 24
5.149.183.0/24 maxlen: 24
5.149.184.0/24 maxlen: 24
5.149.185.0/24 maxlen: 24
5.149.186.0/24 maxlen: 24
5.149.187.0/24 maxlen: 24
5.149.188.0/23 maxlen: 23
5.149.190.0/23 maxlen: 23
185.216.36.0/22 maxlen: 22
185.216.36.0/24 maxlen: 24
185.216.37.0/24 maxlen: 24
185.216.38.0/24 maxlen: 24
185.216.39.0/24 maxlen: 24
2a00:b7c0::/32 maxlen: 32
2a00:b7c0:100::/40 maxlen: 40
2a00:b7c0:200::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:3e:d7:e0:d7:38:27:7a:22:16:c7:88:ee:26:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Validity
Not Before: Jan 2 01:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e2bdfdcef5ab9183f66ac3b490e5248c86811393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ca:16:47:10:e2:74:8f:ab:d8:23:a8:dd:0b:
e2:4f:9a:a9:74:32:fa:1f:18:b9:6a:c6:42:d5:86:
ef:36:a9:79:13:05:f7:af:5f:17:3b:7a:42:ed:d1:
32:c7:d7:49:c8:05:4e:67:88:ee:59:a8:aa:2c:cc:
4a:d3:22:c4:1b:60:ef:9f:4d:13:a4:2f:9c:48:eb:
03:17:bb:c0:7d:e6:91:55:c5:7f:72:d4:1b:33:7f:
b5:21:50:76:7c:d1:36:1b:de:e2:e9:ab:62:a4:6c:
8e:c7:34:40:c8:f0:d0:e4:7f:b9:e9:e8:2e:f2:96:
08:39:22:05:96:2b:81:0b:53:d8:c0:86:48:43:78:
6d:28:ac:8e:65:7f:ed:7f:19:d1:d5:20:04:1e:3e:
31:d1:28:62:0a:8e:1f:48:02:3e:f0:b6:da:43:ca:
44:84:18:0a:08:94:65:f4:d7:8c:cb:be:44:d8:03:
9a:e1:bb:b9:cb:52:7a:89:c6:86:e8:d3:ee:b6:a0:
cf:67:6e:5d:be:0f:f0:c0:29:35:29:de:4f:73:ad:
9a:94:c2:be:08:e6:5c:9d:f9:76:92:3f:47:b6:5c:
a3:7d:66:3b:e5:b3:33:36:b3:20:45:64:07:a1:53:
75:fb:b5:af:08:1d:e6:ee:a9:8d:be:5d:31:65:1f:
17:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:BD:FD:CE:F5:AB:91:83:F6:6A:C3:B4:90:E5:24:8C:86:81:13:93
X509v3 Authority Key Identifier:
keyid:9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/4r39zvWrkYP2asO0kOUkjIaBE5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.176.0/20
185.216.36.0/22
IPv6:
2a00:b7c0::/32
Signature Algorithm: sha256WithRSAEncryption
21:96:c9:6b:5c:cb:d1:c2:90:f0:84:bb:69:42:dc:4c:3c:41:
1c:95:3a:ab:ff:01:48:45:8c:7f:b8:b7:a3:5a:e8:00:f7:a0:
a9:69:fc:09:e2:e6:58:e4:de:46:4c:66:24:20:c0:19:5b:c1:
17:b9:e3:bd:26:86:cd:52:73:92:1b:1f:81:09:ee:5e:59:3d:
66:6d:a2:40:49:14:8e:7a:5c:9f:f7:d3:8c:4a:d4:5b:56:6a:
ac:c9:38:20:4b:64:43:71:6d:3b:47:a2:9f:ff:61:f5:fb:c7:
37:1f:c5:03:b3:ad:40:4e:2a:61:e3:e9:5f:18:c6:9d:60:6c:
ff:05:60:62:28:c7:95:62:98:fe:f5:b3:66:e9:49:99:a9:26:
03:ed:17:ec:51:15:1c:10:c5:09:02:7c:8c:5b:c3:2e:db:d6:
7f:09:2c:6f:9a:19:fa:5e:df:20:17:a1:96:22:86:0e:b2:b9:
3f:57:0f:63:78:e4:df:0d:68:ab:56:27:56:c1:06:72:af:dc:
3c:47:20:5f:65:33:6c:64:9c:67:31:7b:36:54:e8:66:6a:4d:
c0:5f:22:d6:3b:bd:1c:9d:1d:18:90:d2:fa:3c:2f:60:3e:b3:
53:bc:50:41:92:3f:c5:42:29:e0:34:cd:08:42:de:e0:4a:52:
64:f7:e9:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:38 2025 by rpki-client on console.sobornost.net