Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/wU_800uLulMe1EPVw4lj1rSi9B4.roa
File: wU_800uLulMe1EPVw4lj1rSi9B4.roa (raw, json)
Hash identifier: Q20iRxQQnVZaLUqtriG4o2qirzLje44ytgJzhe/9Pik=
Subject key identifier: C1:4F:FC:D3:4B:8B:BA:53:1E:D4:43:D5:C3:89:63:D6:B4:A2:F4:1E
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 018F0F632D0B3885318DAC4E8711BF300DF4
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/wU_800uLulMe1EPVw4lj1rSi9B4.roa
Signing time: Wed 24 Apr 2024 09:15:08 +0000
ROA not before: Wed 24 Apr 2024 09:15:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204601
IP address blocks: 5.8.248.0/24 maxlen: 24
45.81.224.0/22 maxlen: 22
45.82.68.0/22 maxlen: 22
45.82.176.0/22 maxlen: 22
45.87.0.0/22 maxlen: 22
45.136.84.0/24 maxlen: 24
45.136.85.0/24 maxlen: 24
45.136.86.0/24 maxlen: 24
45.136.87.0/24 maxlen: 24
45.137.64.0/22 maxlen: 22
46.18.107.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
77.220.212.0/22 maxlen: 22
77.220.212.0/24 maxlen: 24
77.220.213.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
81.31.197.0/24 maxlen: 24
91.201.25.0/24 maxlen: 24
91.208.127.0/24 maxlen: 24
91.209.226.0/24 maxlen: 24
91.228.56.0/24 maxlen: 24
94.124.78.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
178.159.43.0/24 maxlen: 24
185.23.108.0/24 maxlen: 24
185.51.121.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.93.6.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
185.201.252.0/24 maxlen: 24
185.204.109.0/24 maxlen: 24
185.229.251.0/24 maxlen: 24
185.232.164.0/24 maxlen: 24
185.235.128.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.237.165.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.241.61.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.216.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.244.218.0/24 maxlen: 24
185.244.219.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.206.0/24 maxlen: 24
185.250.207.0/24 maxlen: 24
185.251.25.0/24 maxlen: 24
185.253.7.0/24 maxlen: 24
193.3.168.0/24 maxlen: 24
193.22.21.0/24 maxlen: 24
193.56.8.0/24 maxlen: 24
193.163.7.0/24 maxlen: 24
193.163.113.0/24 maxlen: 24
193.169.105.0/24 maxlen: 24
194.15.46.0/24 maxlen: 24
194.29.53.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
212.8.246.0/24 maxlen: 24
212.23.221.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
212.162.152.0/22 maxlen: 24
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0f:63:2d:0b:38:85:31:8d:ac:4e:87:11:bf:30:0d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Apr 24 09:15:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c14ffcd34b8bba531ed443d5c38963d6b4a2f41e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9a:d4:4e:b2:a5:09:96:d9:6f:3d:a1:e7:aa:
fa:4e:59:10:1f:b3:e5:9e:58:30:f4:6e:42:ea:93:
2e:94:fc:1b:55:68:8f:12:db:b9:9a:3a:45:6c:46:
6f:c0:48:99:bb:b2:e4:1f:ca:b9:06:08:aa:12:d5:
46:ed:5c:8c:57:81:53:f4:38:77:35:f9:ae:fb:3b:
51:38:50:6d:7f:c5:0e:69:5b:c0:36:09:a9:b2:ca:
7b:97:2c:c7:d5:f6:b0:8c:54:fe:2d:5c:4f:de:c7:
82:a2:c3:2d:e3:be:d8:88:b9:aa:d8:1c:ad:33:49:
96:ff:52:ea:54:14:6c:c8:34:a0:3e:6e:a5:57:25:
b0:ef:cd:bc:05:01:df:b5:79:b7:7b:b7:eb:bd:7b:
ae:e1:af:21:b2:a2:5f:a5:b2:92:bd:18:4b:f6:9f:
8b:a6:2a:ee:2c:8d:a7:a2:d7:e2:bb:19:b5:d5:5a:
fc:55:b6:10:da:9b:ad:35:fb:06:d1:35:bc:cf:bd:
84:aa:c3:27:93:dc:46:04:24:45:72:87:74:cc:ea:
72:6d:8c:3e:3a:af:27:e4:55:29:ac:9f:d6:c4:6a:
5d:81:a6:0e:73:05:54:bc:b3:c4:4a:5e:36:a8:cc:
28:0c:50:68:80:3a:d8:f6:bd:ee:70:d7:10:cd:03:
db:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:4F:FC:D3:4B:8B:BA:53:1E:D4:43:D5:C3:89:63:D6:B4:A2:F4:1E
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/wU_800uLulMe1EPVw4lj1rSi9B4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.248.0/24
45.81.224.0/22
45.82.68.0/22
45.82.176.0/22
45.87.0.0/22
45.136.84.0/22
45.137.64.0/22
46.18.107.0/24
46.21.250.0/24
77.220.212.0/22
81.31.197.0/24
91.201.25.0/24
91.208.127.0/24
91.209.226.0/24
91.228.56.0/24
94.124.78.0/24
178.159.38.0/23
178.159.42.0/23
185.23.108.0/24
185.51.121.0/24
185.51.246.0/23
185.93.6.0/24
185.107.237.0/24
185.201.252.0/24
185.204.109.0/24
185.229.251.0/24
185.232.164.0/24
185.235.128.0/22
185.237.165.0/24
185.241.52.0/22
185.241.61.0/24
185.244.216.0/22
185.250.204.0/22
185.251.25.0/24
185.253.7.0/24
193.3.168.0/24
193.22.21.0/24
193.56.8.0/24
193.163.7.0/24
193.163.113.0/24
193.169.105.0/24
194.15.46.0/24
194.29.53.0/24
212.8.244.0/24
212.8.246.0/24
212.23.221.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.86.114.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
06:e1:7a:3a:54:32:c2:19:2e:56:63:36:6c:0d:c1:6a:b2:e2:
91:ef:94:eb:44:a9:b4:30:87:bc:bd:fa:96:64:fd:62:ed:2c:
ad:08:0c:1f:96:b8:be:59:56:54:4a:f6:b2:f2:95:78:d3:60:
96:9a:f6:57:4f:d5:f8:5d:0b:11:a5:5f:55:74:d8:b3:c9:67:
de:e5:b6:4e:90:27:e3:ce:4e:f2:3f:d8:d4:26:c5:7a:fd:32:
d3:ca:e5:89:c9:75:59:48:ba:73:3c:af:0c:b6:96:c5:2e:14:
5a:81:e8:01:30:11:80:f5:d5:f3:2f:61:be:2a:44:6b:08:95:
fe:4a:e2:a4:3a:3d:6c:ed:63:8b:cd:f3:9b:48:fd:93:7d:75:
9f:2b:16:31:b0:2c:a7:9e:55:27:dc:8b:c5:1c:cd:be:fb:04:
5c:59:f1:5c:02:7e:7c:9f:a8:fb:83:05:76:2e:5a:10:8c:c5:
13:85:54:72:2d:5a:70:be:fc:cf:60:cc:df:d1:93:b3:79:73:
c2:1a:4a:30:34:e4:8a:8a:33:f9:f6:2d:03:51:a3:a1:93:a5:
53:13:96:fc:c4:45:59:5e:b5:42:1a:f1:af:4b:29:33:96:f7:
85:fb:6a:99:02:3a:08:d1:ab:e7:b3:a6:53:03:3f:13:ce:bb:
b4:86:d7:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:55:37 2024 by rpki-client on console.sobornost.net