Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/00144f-85f3-4557-b1d6-9e3e9aafbce4/1/MrFlnTciZWg6d5AqneKivrwpXHY.roa
File: MrFlnTciZWg6d5AqneKivrwpXHY.roa (raw, json)
Hash identifier: FLxls8UmKZo8IiJFx4AFIzBNESyxcnNxQs1Lj9129+s=
Subject key identifier: 32:B1:65:9D:37:22:65:68:3A:77:90:2A:9D:E2:A2:BE:BC:29:5C:76
Certificate issuer: /CN=17e568417f59a21129fb2487f5e57bc171631f7b
Certificate serial: 019421B1FD357D9E58320FDAAF28BE7AD068
Authority key identifier: 17:E5:68:41:7F:59:A2:11:29:FB:24:87:F5:E5:7B:C1:71:63:1F:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F-VoQX9ZohEp-ySH9eV7wXFjH3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/00144f-85f3-4557-b1d6-9e3e9aafbce4/1/MrFlnTciZWg6d5AqneKivrwpXHY.roa
Signing time: Wed 01 Jan 2025 11:48:20 +0000
ROA not before: Wed 01 Jan 2025 11:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30873
IP address blocks: 5.100.160.0/21 maxlen: 21
5.255.0.0/21 maxlen: 21
5.255.8.0/21 maxlen: 21
5.255.16.0/21 maxlen: 21
5.255.24.0/21 maxlen: 21
31.31.176.0/21 maxlen: 21
31.31.184.0/21 maxlen: 21
46.35.64.0/21 maxlen: 21
46.35.72.0/21 maxlen: 21
46.35.80.0/21 maxlen: 21
46.35.88.0/21 maxlen: 21
46.161.224.0/21 maxlen: 21
46.161.232.0/21 maxlen: 21
46.161.240.0/21 maxlen: 21
46.161.248.0/21 maxlen: 21
78.137.64.0/21 maxlen: 21
78.137.72.0/21 maxlen: 21
78.137.80.0/21 maxlen: 21
78.137.88.0/21 maxlen: 21
80.253.176.0/21 maxlen: 21
80.253.184.0/21 maxlen: 21
81.91.24.0/21 maxlen: 21
82.114.160.0/21 maxlen: 21
82.114.160.0/22 maxlen: 22
82.114.164.0/22 maxlen: 22
82.114.168.0/21 maxlen: 21
82.114.176.0/21 maxlen: 21
82.114.184.0/21 maxlen: 21
89.189.64.0/21 maxlen: 21
89.189.72.0/21 maxlen: 21
89.189.80.0/21 maxlen: 21
89.189.88.0/21 maxlen: 21
94.26.192.0/21 maxlen: 21
94.26.200.0/21 maxlen: 21
94.26.208.0/21 maxlen: 21
94.26.216.0/21 maxlen: 21
109.74.32.0/21 maxlen: 21
109.74.40.0/21 maxlen: 21
109.200.160.0/21 maxlen: 21
109.200.168.0/21 maxlen: 21
109.200.176.0/21 maxlen: 21
109.200.184.0/21 maxlen: 21
110.238.32.0/21 maxlen: 21
110.238.40.0/21 maxlen: 21
110.238.48.0/21 maxlen: 21
110.238.56.0/21 maxlen: 21
131.117.160.0/21 maxlen: 21
134.35.0.0/21 maxlen: 21
134.35.8.0/21 maxlen: 21
134.35.16.0/21 maxlen: 21
134.35.24.0/21 maxlen: 21
134.35.32.0/21 maxlen: 21
134.35.40.0/21 maxlen: 21
134.35.48.0/21 maxlen: 21
134.35.56.0/21 maxlen: 21
134.35.64.0/21 maxlen: 21
134.35.72.0/21 maxlen: 21
134.35.80.0/21 maxlen: 21
134.35.88.0/21 maxlen: 21
134.35.96.0/21 maxlen: 21
134.35.104.0/21 maxlen: 21
134.35.112.0/21 maxlen: 21
134.35.120.0/21 maxlen: 21
134.35.128.0/21 maxlen: 21
134.35.136.0/21 maxlen: 21
134.35.144.0/21 maxlen: 21
134.35.152.0/21 maxlen: 21
134.35.160.0/21 maxlen: 21
134.35.168.0/21 maxlen: 21
134.35.176.0/21 maxlen: 21
134.35.184.0/21 maxlen: 21
134.35.192.0/21 maxlen: 21
134.35.200.0/21 maxlen: 21
134.35.208.0/21 maxlen: 21
134.35.216.0/21 maxlen: 21
134.35.224.0/21 maxlen: 21
134.35.232.0/21 maxlen: 21
134.35.240.0/21 maxlen: 21
134.35.248.0/21 maxlen: 21
175.110.0.0/21 maxlen: 21
175.110.8.0/21 maxlen: 21
175.110.16.0/21 maxlen: 21
175.110.24.0/21 maxlen: 21
175.110.32.0/21 maxlen: 21
175.110.40.0/21 maxlen: 21
175.110.48.0/21 maxlen: 21
175.110.56.0/21 maxlen: 21
176.123.16.0/21 maxlen: 21
176.123.24.0/21 maxlen: 21
178.130.64.0/21 maxlen: 21
178.130.72.0/21 maxlen: 21
178.130.80.0/21 maxlen: 21
178.130.88.0/21 maxlen: 21
178.130.96.0/21 maxlen: 21
178.130.104.0/21 maxlen: 21
178.130.112.0/21 maxlen: 21
178.130.120.0/21 maxlen: 21
185.11.8.0/22 maxlen: 22
188.209.224.0/21 maxlen: 21
188.209.232.0/21 maxlen: 21
188.209.240.0/21 maxlen: 21
188.209.248.0/21 maxlen: 21
188.240.96.0/21 maxlen: 21
188.240.104.0/21 maxlen: 21
188.240.112.0/21 maxlen: 21
188.240.120.0/21 maxlen: 21
213.246.0.0/21 maxlen: 21
213.246.8.0/21 maxlen: 21
213.246.16.0/21 maxlen: 21
213.246.24.0/21 maxlen: 21
2a02:2718::/32 maxlen: 32
2a02:2719::/32 maxlen: 32
2a02:2719:4100::/44 maxlen: 44
2a02:2719:4110::/44 maxlen: 44
2a02:2719:4300::/44 maxlen: 44
2a02:2719:4310::/44 maxlen: 44
2a02:2719:4400::/44 maxlen: 44
2a02:2719:4410::/44 maxlen: 44
2a02:271a::/32 maxlen: 32
2a02:271b::/32 maxlen: 32
2a02:271c::/32 maxlen: 32
2a02:271d::/32 maxlen: 32
2a02:271e::/32 maxlen: 32
2a02:271f::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:fd:35:7d:9e:58:32:0f:da:af:28:be:7a:d0:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17e568417f59a21129fb2487f5e57bc171631f7b
Validity
Not Before: Jan 1 11:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32b1659d372265683a77902a9de2a2bebc295c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a8:a5:9d:5e:e5:fb:55:64:f2:17:f7:59:f5:
61:7f:fa:a2:0a:8c:63:0d:3b:f4:9d:0b:ac:e5:16:
7d:fc:cc:fd:1e:b1:54:7c:54:f6:f0:44:ec:00:26:
72:be:c2:c9:09:a8:0b:1a:53:ba:43:e6:1b:a8:5f:
0c:8f:d6:92:00:8b:35:b5:cd:10:33:a9:11:fe:34:
e0:61:7f:6b:15:11:d5:36:5c:22:7b:3d:65:57:79:
c9:e1:19:60:fb:80:5f:4f:5e:3e:c5:ca:91:71:cf:
16:4d:65:39:4e:7f:93:fc:1d:65:b5:41:21:21:41:
86:fc:14:24:eb:fe:f0:0a:43:57:88:67:12:5c:f8:
81:35:d1:62:8f:95:8e:f7:cd:81:8f:00:22:c1:99:
a9:69:a6:cf:e8:92:b3:33:6f:ac:b9:50:18:84:93:
03:02:3d:59:5d:39:bd:ba:fe:82:fe:a0:d4:62:b3:
91:a5:e1:66:8d:ec:34:14:56:b0:11:a5:ff:93:46:
f6:62:5f:cf:21:42:49:c0:cb:d5:d3:66:98:97:4f:
84:7a:04:65:f8:50:af:5b:eb:73:05:2e:81:59:fc:
bb:cc:73:b4:8c:0d:fe:ba:03:91:b7:fc:bc:9e:76:
91:3b:23:8e:6e:67:07:76:da:8e:f6:b9:67:0a:16:
98:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B1:65:9D:37:22:65:68:3A:77:90:2A:9D:E2:A2:BE:BC:29:5C:76
X509v3 Authority Key Identifier:
keyid:17:E5:68:41:7F:59:A2:11:29:FB:24:87:F5:E5:7B:C1:71:63:1F:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F-VoQX9ZohEp-ySH9eV7wXFjH3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/00144f-85f3-4557-b1d6-9e3e9aafbce4/1/MrFlnTciZWg6d5AqneKivrwpXHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/00144f-85f3-4557-b1d6-9e3e9aafbce4/1/F-VoQX9ZohEp-ySH9eV7wXFjH3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.160.0/21
5.255.0.0/19
31.31.176.0/20
46.35.64.0/19
46.161.224.0/19
78.137.64.0/19
80.253.176.0/20
81.91.24.0/21
82.114.160.0/19
89.189.64.0/19
94.26.192.0/19
109.74.32.0/20
109.200.160.0/19
110.238.32.0/19
131.117.160.0/21
134.35.0.0/16
175.110.0.0/18
176.123.16.0/20
178.130.64.0/18
185.11.8.0/22
188.209.224.0/19
188.240.96.0/19
213.246.0.0/19
IPv6:
2a02:2718::/29
Signature Algorithm: sha256WithRSAEncryption
52:5e:7d:f1:f3:c9:e7:33:09:24:60:79:a7:3e:c7:33:a9:ff:
60:f4:8b:01:c8:8f:0d:85:f4:c9:5f:f3:e1:02:14:1d:b5:ae:
b9:c2:51:ab:2b:f7:8f:2b:12:b0:81:b1:a4:ee:2c:d2:71:40:
a1:fd:56:be:3b:aa:3e:92:8f:6f:a4:c8:88:21:29:a0:6e:8a:
f7:e2:c6:e3:c5:7b:a3:0b:97:32:db:4c:01:68:05:17:25:74:
2b:3f:07:b2:66:23:5e:f6:ee:8d:fc:d5:c9:d5:c4:2b:9d:d0:
2b:0e:c7:85:47:76:23:7d:50:07:01:bd:90:b0:49:02:27:a6:
9e:5f:23:b3:53:c0:98:09:33:e0:f4:01:b5:a2:cc:be:22:a4:
00:2b:ef:a9:bf:47:41:14:02:9a:0d:ef:4a:4c:48:c8:b5:56:
f5:58:15:1b:f0:18:22:d8:ef:d0:92:a9:e1:86:3b:f9:5f:34:
b4:5c:d7:cc:d7:a3:e5:35:2d:89:f2:a0:0a:bd:20:fc:ea:c9:
85:de:8f:c9:ab:3e:14:af:2a:0d:1f:41:b3:16:5b:13:0f:ff:
cd:1a:aa:0d:89:f9:77:ab:53:70:29:c7:f0:9f:00:79:04:05:
7b:82:b5:3d:0e:84:e8:8b:2e:4d:d9:bc:33:5e:26:8f:19:d2:
25:3a:b3:30
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAZQhsf01fZ5YMg/aryi+etBoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3ZTU2ODQxN2Y1OWEyMTEyOWZiMjQ4N2Y1ZTU3YmMxNzE2
MzFmN2IwHhcNMjUwMTAxMTE0ODIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmIxNjU5ZDM3MjI2NTY4M2E3NzkwMmE5ZGUyYTJiZWJjMjk1Yzc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh6ilnV7l+1Vk8hf3WfVhf/qiCoxj
DTv0nQus5RZ9/Mz9HrFUfFT28ETsACZyvsLJCagLGlO6Q+YbqF8Mj9aSAIs1tc0Q
M6kR/jTgYX9rFRHVNlwiez1lV3nJ4Rlg+4BfT14+xcqRcc8WTWU5Tn+T/B1ltUEh
IUGG/BQk6/7wCkNXiGcSXPiBNdFij5WO982BjwAiwZmpaabP6JKzM2+suVAYhJMD
Aj1ZXTm9uv6C/qDUYrORpeFmjew0FFawEaX/k0b2Yl/PIUJJwMvV02aYl0+EegRl
+FCvW+tzBS6BWfy7zHO0jA3+ugORt/y8nnaROyOObmcHdtqO9rlnChaYOwIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFDKxZZ03ImVoOneQKp3ior68KVx2MB8GA1UdIwQY
MBaAFBflaEF/WaIRKfskh/Xle8FxYx97MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRi1Wb1FYOVpvaEVwLXlTSDllVjd3WEZqSDNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8wMDE0NGYtODVmMy00NTU3LWIxZDYt
OWUzZTlhYWZiY2U0LzEvTXJGbG5UY2laV2c2ZDVBcW5lS2l2cndwWEhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny8wMDE0NGYtODVmMy00NTU3LWIxZDYtOWUzZTlhYWZiY2U0
LzEvRi1Wb1FYOVpvaEVwLXlTSDllVjd3WEZqSDNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG1BggrBgEFBQcBBwEB/wSBpTCBojCBkAQCAAEwgYkDBAMF
ZKADBAUF/wADBAQfH7ADBAUuI0ADBAUuoeADBAVOiUADBARQ/bADBANRWxgDBAVS
cqADBAVZvUADBAVeGsADBARtSiADBAVtyKADBAVu7iADBAODdaADAwCGIwMEBq9u
AAMEBLB7EAMEBrKCQAMEArkLCAMEBbzR4AMEBbzwYAMEBdX2ADANBAIAAjAHAwUD
KgInGDANBgkqhkiG9w0BAQsFAAOCAQEAUl598fPJ5zMJJGB5pz7HM6n/YPSLAciP
DYX0yV/z4QIUHbWuucJRqyv3jysSsIGxpO4s0nFAof1WvjuqPpKPb6TIiCEpoG6K
9+LG48V7owuXMttMAWgFFyV0Kz8HsmYjXvbujfzVydXEK53QKw7HhUd2I31QBwG9
kLBJAiemnl8js1PAmAkz4PQBtaLMviKkACvvqb9HQRQCmg3vSkxIyLVW9VgVG/AY
Itjv0JKp4YY7+V80tFzXzNej5TUtifKgCr0g/OrJhd6Pyas+FK8qDR9BsxZbEw//
zRqqDYn5d6tTcCnH8J8AeQQFe4K1PQ6E6IsuTdm8M14mjxnSJTqzMA==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:42 2025 by rpki-client on console.sobornost.net