Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/RE-zXdBlVxEXiV-IMA8dTn5nuzo.roa
File: RE-zXdBlVxEXiV-IMA8dTn5nuzo.roa (raw, json)
Hash identifier: MP6SCbqKxwPCX8XylOr8sGUvodKFrt+I0pxem5BSoIE=
Subject key identifier: 44:4F:B3:5D:D0:65:57:11:17:89:5F:88:30:0F:1D:4E:7E:67:BB:3A
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 0194266B676FBB52664B220418882D10CB0E
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/RE-zXdBlVxEXiV-IMA8dTn5nuzo.roa
Signing time: Thu 02 Jan 2025 09:49:20 +0000
ROA not before: Thu 02 Jan 2025 09:49:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42908
IP address blocks: 5.102.48.0/20 maxlen: 20
31.10.56.0/21 maxlen: 21
45.159.116.0/22 maxlen: 22
46.183.56.0/21 maxlen: 21
77.95.192.0/21 maxlen: 21
78.136.128.0/18 maxlen: 18
80.78.136.0/22 maxlen: 22
80.79.0.0/22 maxlen: 22
80.251.240.0/20 maxlen: 20
93.92.48.0/21 maxlen: 21
93.93.32.0/21 maxlen: 21
94.241.64.0/18 maxlen: 18
109.108.96.0/19 maxlen: 19
185.108.60.0/22 maxlen: 22
185.157.240.0/22 maxlen: 22
188.119.96.0/22 maxlen: 22
193.107.252.0/22 maxlen: 22
2001:67c:13c4::/48 maxlen: 48
2a01:9f40::/29 maxlen: 29
2a02:2428::/32 maxlen: 32
2a03:7a00::/32 maxlen: 32
2a03:a820::/32 maxlen: 32
2a07:cc80::/29 maxlen: 29
2a0c:8b40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:67:6f:bb:52:66:4b:22:04:18:88:2d:10:cb:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: Jan 2 09:49:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=444fb35dd065571117895f88300f1d4e7e67bb3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f2:b2:77:bf:5c:20:dd:ff:86:d3:e8:8e:78:
bf:96:8e:7f:97:42:c4:5a:62:06:01:98:53:ef:a5:
22:05:e6:15:88:15:e5:79:a0:81:e6:f0:b8:f5:68:
59:8a:72:68:93:2d:1c:85:f0:96:36:f0:a4:c3:14:
7e:f7:42:92:cf:62:e6:99:60:25:ae:c5:da:a6:fd:
4d:54:1a:64:63:13:22:30:28:9c:e7:38:c5:53:d9:
95:39:04:81:64:37:80:57:62:b7:6d:61:68:3d:64:
ed:f3:6d:83:04:ed:9d:d5:9f:95:69:41:24:1d:99:
ed:be:57:c1:95:98:c4:f8:a8:ec:ca:81:13:b3:90:
e8:cc:a2:99:a4:31:b0:30:a0:19:6b:e4:5c:c6:df:
dc:16:13:bf:5d:fc:a8:4e:7e:6d:f6:8b:11:5a:53:
26:26:f8:20:f5:6b:fe:84:2c:b7:3b:ee:e5:65:6e:
91:03:b6:53:d2:36:8d:03:8a:43:05:f8:f4:19:93:
c8:ad:fc:4a:ea:9e:81:28:35:2e:a2:e5:72:07:ce:
83:f9:62:e8:5a:f1:3d:5b:dd:42:e9:87:93:64:bc:
74:56:23:60:97:77:0a:0c:40:02:7d:14:01:08:5a:
98:16:14:03:9f:35:b1:07:f7:b1:24:b2:ac:b5:23:
c0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:4F:B3:5D:D0:65:57:11:17:89:5F:88:30:0F:1D:4E:7E:67:BB:3A
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/RE-zXdBlVxEXiV-IMA8dTn5nuzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.48.0/20
31.10.56.0/21
45.159.116.0/22
46.183.56.0/21
77.95.192.0/21
78.136.128.0/18
80.78.136.0/22
80.79.0.0/22
80.251.240.0/20
93.92.48.0/21
93.93.32.0/21
94.241.64.0/18
109.108.96.0/19
185.108.60.0/22
185.157.240.0/22
188.119.96.0/22
193.107.252.0/22
IPv6:
2001:67c:13c4::/48
2a01:9f40::/29
2a02:2428::/32
2a03:7a00::/32
2a03:a820::/32
2a07:cc80::/29
2a0c:8b40::/29
Signature Algorithm: sha256WithRSAEncryption
a6:78:63:7a:35:f3:bb:d8:8c:17:63:06:35:d6:d7:41:40:ac:
a0:43:7d:24:44:46:57:fe:5c:2d:70:ea:65:c8:57:25:be:92:
fd:4d:6f:1e:02:ba:82:3c:73:f5:6f:a4:e0:82:cc:7a:46:83:
41:f8:0f:af:32:db:9a:da:d9:50:19:57:4b:78:50:48:13:7c:
25:66:d7:43:f8:5c:6f:ac:f8:46:66:80:d9:5a:8a:91:a6:65:
78:db:f7:81:a6:9a:68:f1:5b:3a:9b:fa:ba:47:c8:59:aa:1b:
c3:d7:8e:46:10:1b:11:7d:58:0d:88:4a:fb:71:da:e6:e6:cb:
4d:82:f3:53:ea:3e:28:cd:68:ce:c3:30:8a:20:55:c2:5e:65:
32:b6:09:16:f7:0b:a9:2e:cb:19:8e:83:c2:dd:9b:7c:04:bd:
fb:a6:62:60:cf:b5:af:f9:24:aa:e2:6b:d7:05:ab:70:aa:40:
c6:47:13:d1:58:e3:2b:82:cd:27:fa:01:ca:9d:54:41:df:d9:
b3:5a:c8:99:b7:30:b6:ea:e6:70:0f:91:f1:9d:0d:f0:a4:7a:
16:0e:58:71:ff:7c:a5:f0:88:71:03:ec:df:f2:46:22:f2:6a:
04:62:cb:9b:16:f3:e6:25:ef:52:ac:9b:21:40:7f:70:f3:60:
eb:74:15:2b
-----BEGIN CERTIFICATE-----
MIIFmzCCBIOgAwIBAgISAZQma2dvu1JmSyIEGIgtEMsOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkMzlkMTViZDJmY2M4NDc3MWJhNmFhMjlhYTU0NDI4YjIx
Y2VmNjAwHhcNMjUwMTAyMDk0OTIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDRmYjM1ZGQwNjU1NzExMTc4OTVmODgzMDBmMWQ0ZTdlNjdiYjNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2/Kyd79cIN3/htPojni/lo5/l0LE
WmIGAZhT76UiBeYViBXleaCB5vC49WhZinJoky0chfCWNvCkwxR+90KSz2LmmWAl
rsXapv1NVBpkYxMiMCic5zjFU9mVOQSBZDeAV2K3bWFoPWTt822DBO2d1Z+VaUEk
HZntvlfBlZjE+KjsyoETs5DozKKZpDGwMKAZa+Rcxt/cFhO/XfyoTn5t9osRWlMm
Jvgg9Wv+hCy3O+7lZW6RA7ZT0jaNA4pDBfj0GZPIrfxK6p6BKDUuouVyB86D+WLo
WvE9W91C6YeTZLx0ViNgl3cKDEACfRQBCFqYFhQDnzWxB/exJLKstSPALwIDAQAB
o4ICpzCCAqMwHQYDVR0OBBYEFERPs13QZVcRF4lfiDAPHU5+Z7s6MB8GA1UdIwQY
MBaAFF050VvS/MhHcbpqopqlRCiyHO9gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFRuUlc5TDh5RWR4dW1xaW1xVkVLTEljNzJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jODA5MmUtOWY4Yy00NzE4LWI3NzAt
YzI5YjQ0ZGU1M2E4LzEvUkUtelhkQmxWeEVYaVYtSU1BOGRUbjVudXpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9jODA5MmUtOWY4Yy00NzE4LWI3NzAtYzI5YjQ0ZGU1M2E4
LzEvWFRuUlc5TDh5RWR4dW1xaW1xVkVLTEljNzJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG8BggrBgEFBQcBBwEB/wSBrDCBqTBsBAIAATBmAwQEBWYw
AwQDHwo4AwQCLZ90AwQDLrc4AwQDTV/AAwQGToiAAwQCUE6IAwQCUE8AAwQEUPvw
AwQDXVwwAwQDXV0gAwQGXvFAAwQFbWxgAwQCuWw8AwQCuZ3wAwQCvHdgAwQCwWv8
MDkEAgACMDMDBwAgAQZ8E8QDBQMqAZ9AAwUAKgIkKAMFACoDegADBQAqA6ggAwUD
KgfMgAMFAyoMi0AwDQYJKoZIhvcNAQELBQADggEBAKZ4Y3o187vYjBdjBjXW10FA
rKBDfSRERlf+XC1w6mXIVyW+kv1Nbx4CuoI8c/VvpOCCzHpGg0H4D68y25ra2VAZ
V0t4UEgTfCVm10P4XG+s+EZmgNlaipGmZXjb94GmmmjxWzqb+rpHyFmqG8PXjkYQ
GxF9WA2ISvtx2ubmy02C81PqPijNaM7DMIogVcJeZTK2CRb3C6kuyxmOg8Ldm3wE
vfumYmDPta/5JKria9cFq3CqQMZHE9FY4yuCzSf6AcqdVEHf2bNayJm3MLbq5nAP
kfGdDfCkehYOWHH/fKXwiHED7N/yRiLyagRiy5sW8+Yl71KsmyFAf3DzYOt0FSs=
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:09 2025 by rpki-client on console.sobornost.net