Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/Q5lprEAu1AjZg8eC8e9vCRTQc5c.roa
File: Q5lprEAu1AjZg8eC8e9vCRTQc5c.roa (raw, json)
Hash identifier: 1TVaYcq6pwwmReP0rlqvmkebRDkja4y3qu5GJXEAYFk=
Subject key identifier: 43:99:69:AC:40:2E:D4:08:D9:83:C7:82:F1:EF:6F:09:14:D0:73:97
Certificate issuer: /CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Certificate serial: 019422201574D273C26F8DB54BFDCEB364A2
Authority key identifier: E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/Q5lprEAu1AjZg8eC8e9vCRTQc5c.roa
Signing time: Wed 01 Jan 2025 13:48:35 +0000
ROA not before: Wed 01 Jan 2025 13:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24651
IP address blocks: 46.23.32.0/20 maxlen: 32
77.93.0.0/19 maxlen: 32
82.193.64.0/19 maxlen: 32
82.193.67.0/24 maxlen: 27
82.193.67.0/27 maxlen: 27
82.193.83.0/24 maxlen: 32
83.99.128.0/17 maxlen: 32
83.99.167.0/24 maxlen: 24
83.99.167.0/26 maxlen: 27
85.158.72.0/21 maxlen: 24
89.221.112.0/20 maxlen: 24
89.221.121.0/24 maxlen: 24
89.221.122.0/23 maxlen: 23
89.221.122.0/24 maxlen: 24
89.221.123.0/24 maxlen: 24
89.221.124.0/23 maxlen: 24
89.221.124.0/24 maxlen: 24
89.221.125.0/24 maxlen: 24
89.221.126.0/23 maxlen: 24
89.221.127.0/24 maxlen: 24
109.73.96.0/20 maxlen: 32
185.31.44.0/22 maxlen: 32
185.75.236.0/22 maxlen: 32
185.141.52.0/22 maxlen: 32
188.92.16.0/21 maxlen: 32
188.92.16.0/24 maxlen: 32
195.130.205.0/24 maxlen: 24
212.142.64.0/18 maxlen: 32
217.195.48.0/20 maxlen: 32
2a01:4e0::/29 maxlen: 29
2a01:4e0::/32 maxlen: 32
2a01:4e1:460:1::/64 maxlen: 64
2a01:4e1:cc1::/64 maxlen: 64
2a01:4e1:1745::/64 maxlen: 64
2a04:4e00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:15:74:d2:73:c2:6f:8d:b5:4b:fd:ce:b3:64:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Validity
Not Before: Jan 1 13:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=439969ac402ed408d983c782f1ef6f0914d07397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ca:f5:8c:0e:4c:12:20:0e:1a:fb:9a:d9:e1:
7f:b9:2f:d6:8b:f1:47:44:64:39:ae:e4:1a:6b:ff:
71:a1:bf:53:fb:e8:0a:9e:75:c2:59:a3:52:be:55:
38:7f:56:e3:b4:33:bc:88:d4:4d:23:7b:58:f9:31:
40:c2:b8:01:bc:47:27:2a:50:23:69:cd:e6:4c:8a:
b3:64:f4:a8:2d:1d:c6:70:73:43:69:31:34:e4:b6:
91:64:7f:2c:a9:1c:b2:7f:a7:cf:26:8e:c1:28:79:
7b:fa:22:8e:3f:53:2a:f2:0d:38:f8:69:71:82:de:
5c:d0:79:0a:6e:34:0d:ae:99:b9:99:d0:e8:c1:a3:
1b:a5:4c:fc:14:0a:fa:d3:79:fa:56:33:2a:06:7c:
27:1c:87:c7:5e:c2:7c:6a:6e:24:25:71:bb:16:a7:
40:0a:59:f9:96:1e:da:56:76:b7:9c:e8:69:87:bd:
93:f3:a4:5c:99:9c:88:0e:6d:e9:d1:08:f6:0f:6c:
46:24:a2:82:cb:d5:c8:c3:c6:f9:87:dd:51:06:c4:
35:d8:d1:03:cd:05:d2:04:dc:f5:0b:7f:e2:19:36:
44:86:33:aa:a9:6f:8f:66:99:56:f5:7f:ba:74:cf:
5d:8e:06:46:26:02:aa:53:10:12:68:8f:92:68:9d:
24:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:99:69:AC:40:2E:D4:08:D9:83:C7:82:F1:EF:6F:09:14:D0:73:97
X509v3 Authority Key Identifier:
keyid:E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/Q5lprEAu1AjZg8eC8e9vCRTQc5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/5aGzZVL52sy5KsXDtEtCbWQ3SeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.32.0/20
77.93.0.0/19
82.193.64.0/19
83.99.128.0/17
85.158.72.0/21
89.221.112.0/20
109.73.96.0/20
185.31.44.0/22
185.75.236.0/22
185.141.52.0/22
188.92.16.0/21
195.130.205.0/24
212.142.64.0/18
217.195.48.0/20
IPv6:
2a01:4e0::/29
2a04:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
45:6e:f0:73:ea:79:35:d0:0f:08:77:71:ff:5f:02:70:ce:43:
1d:ba:40:35:3b:19:be:8b:e6:60:b4:db:10:66:f6:42:bb:30:
66:ae:44:36:b9:0e:84:14:4d:08:fb:91:6d:e8:4a:c1:b6:92:
10:0b:f4:ff:bd:ad:e0:ba:4a:e0:f2:61:df:93:13:d8:40:62:
d5:17:ea:61:9b:7d:75:3a:51:f8:fd:bf:b4:1b:60:4d:e0:80:
3e:ac:99:38:01:31:12:9b:01:a4:e2:f5:bc:41:50:50:15:4a:
d1:84:a5:06:0b:2f:93:7b:90:54:d8:0d:46:e0:8b:be:a9:9d:
fb:a5:0d:27:1a:40:6d:da:bb:dd:08:7e:ca:b4:cc:21:77:70:
c5:da:40:e9:f6:17:88:76:8e:93:4e:44:f2:bd:fd:62:49:49:
ad:42:af:a3:54:4f:6b:9e:a6:78:3a:d4:65:66:54:94:d4:e5:
2a:80:29:ae:c9:f1:07:5f:bc:d0:34:4c:6a:ee:af:ee:11:f8:
64:cd:0c:f0:cd:68:ea:62:c6:16:b7:74:61:58:83:05:dc:d6:
9c:b0:19:d9:5d:76:a3:56:d2:52:50:f4:f4:62:9f:ec:79:59:
75:fa:02:7c:c5:00:37:2a:5b:79:7d:a2:74:4e:08:0c:5c:de:
4b:5f:0e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:53 2025 by rpki-client on console.sobornost.net