Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/5xuyxqDkWp6sUwsrU1mIRGrHM2w.roa
File: 5xuyxqDkWp6sUwsrU1mIRGrHM2w.roa (raw, json)
Hash identifier: lebPrKHjL4O5yH7FuFsq2jm07Cv+D1xbndscFPSx6Og=
Subject key identifier: E7:1B:B2:C6:A0:E4:5A:9E:AC:53:0B:2B:53:59:88:44:6A:C7:33:6C
Certificate issuer: /CN=29a9964e0cd35fb36757e5653ffa7626ac5deee8
Certificate serial: 0190C4873968DBCCA6FEA1BC87A04D376D4E
Authority key identifier: 29:A9:96:4E:0C:D3:5F:B3:67:57:E5:65:3F:FA:76:26:AC:5D:EE:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KamWTgzTX7NnV-VlP_p2Jqxd7ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/5xuyxqDkWp6sUwsrU1mIRGrHM2w.roa
Signing time: Thu 18 Jul 2024 06:28:34 +0000
ROA not before: Thu 18 Jul 2024 06:28:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25144
IP address blocks: 31.223.128.0/19 maxlen: 19
31.223.128.0/21 maxlen: 21
31.223.136.0/21 maxlen: 21
31.223.144.0/21 maxlen: 21
31.223.152.0/21 maxlen: 21
45.131.118.0/23 maxlen: 23
46.239.0.0/18 maxlen: 18
62.101.144.0/20 maxlen: 20
81.93.64.0/19 maxlen: 19
81.93.66.0/24 maxlen: 24
81.93.67.0/24 maxlen: 24
81.93.69.0/24 maxlen: 24
81.93.73.0/24 maxlen: 24
81.93.84.0/24 maxlen: 24
81.93.86.0/24 maxlen: 24
81.93.91.0/24 maxlen: 24
81.93.92.0/24 maxlen: 24
89.111.192.0/18 maxlen: 18
89.111.192.0/19 maxlen: 19
89.111.192.0/24 maxlen: 24
89.111.200.0/24 maxlen: 24
89.111.224.0/19 maxlen: 19
89.111.225.0/24 maxlen: 24
89.111.226.0/24 maxlen: 24
89.111.227.0/24 maxlen: 24
89.111.231.0/24 maxlen: 24
89.111.235.0/24 maxlen: 24
89.111.236.0/24 maxlen: 24
89.111.240.0/24 maxlen: 24
89.111.244.0/22 maxlen: 22
89.111.246.0/24 maxlen: 24
89.111.248.0/22 maxlen: 22
94.250.0.0/18 maxlen: 18
94.250.18.0/24 maxlen: 24
94.250.64.0/18 maxlen: 18
109.165.128.0/17 maxlen: 17
185.35.156.0/22 maxlen: 22
217.24.128.0/20 maxlen: 20
2a00:cb00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c4:87:39:68:db:cc:a6:fe:a1:bc:87:a0:4d:37:6d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a9964e0cd35fb36757e5653ffa7626ac5deee8
Validity
Not Before: Jul 18 06:28:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e71bb2c6a0e45a9eac530b2b535988446ac7336c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:35:e5:db:0c:2c:c3:de:65:3c:d3:19:6a:75:
a4:6c:bb:63:89:91:2e:9a:ee:90:88:40:e2:11:46:
22:5f:49:38:4e:f1:77:21:a8:c4:63:a1:af:68:63:
03:3a:90:e0:d7:60:a6:24:83:5c:90:7a:1a:a9:2f:
b6:5a:af:0d:ba:05:73:b7:0c:82:fd:f3:36:d6:3e:
dc:ae:0b:cb:39:2b:ad:08:9f:f7:b2:32:8a:95:ef:
fe:0e:59:88:24:19:71:6a:b5:66:9b:32:5b:60:4a:
53:7e:84:4c:95:0e:4a:87:17:50:c6:6a:51:47:32:
fa:b3:50:45:2d:34:8a:09:1d:8a:15:57:98:92:e6:
e7:3f:77:e2:a4:69:29:63:a7:78:78:33:91:07:e7:
3b:fe:d9:ed:23:c9:9c:3f:f1:a2:7e:25:f5:40:d9:
f9:87:5d:df:5a:20:4c:66:e2:92:51:ff:41:9f:d3:
26:f0:d7:23:b1:18:4b:94:9e:81:8d:3d:95:dc:b6:
1e:a1:7a:73:a1:b1:fa:c7:1e:90:15:32:94:46:f6:
ff:76:b2:2c:40:a2:b9:69:c2:43:32:2b:e8:bc:b1:
7e:b3:37:1b:18:70:1c:90:84:04:88:4b:34:12:59:
db:96:ff:40:5a:40:5a:8f:4a:1a:17:74:7d:20:17:
53:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:1B:B2:C6:A0:E4:5A:9E:AC:53:0B:2B:53:59:88:44:6A:C7:33:6C
X509v3 Authority Key Identifier:
keyid:29:A9:96:4E:0C:D3:5F:B3:67:57:E5:65:3F:FA:76:26:AC:5D:EE:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KamWTgzTX7NnV-VlP_p2Jqxd7ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/5xuyxqDkWp6sUwsrU1mIRGrHM2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/KamWTgzTX7NnV-VlP_p2Jqxd7ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.128.0/19
45.131.118.0/23
46.239.0.0/18
62.101.144.0/20
81.93.64.0/19
89.111.192.0/18
94.250.0.0/17
109.165.128.0/17
185.35.156.0/22
217.24.128.0/20
IPv6:
2a00:cb00::/32
Signature Algorithm: sha256WithRSAEncryption
42:27:3a:7e:a4:15:d6:77:af:a8:31:c1:bf:e3:ad:d9:79:2d:
55:4b:91:e7:cb:42:75:88:cf:99:24:09:a7:e7:17:d1:8d:d4:
7d:41:ff:2e:23:19:e7:ca:b7:75:33:6b:7b:80:3d:8e:b0:db:
22:ae:2f:03:1e:5a:ed:11:0f:32:84:bb:45:5a:c9:f0:36:78:
db:0a:f1:74:a3:7d:e0:1a:25:72:9e:7c:5c:a4:82:18:86:e9:
86:cc:ff:5d:7e:5f:8c:63:bc:49:eb:3d:d6:ba:bf:3f:cc:5e:
1d:f5:a2:96:cd:79:8e:ca:b6:44:6c:20:e4:1f:04:ed:a4:3f:
53:21:84:ad:72:e6:dd:f9:a6:ee:7d:59:42:8b:68:81:8c:4c:
7c:74:ac:9a:b5:a3:df:e8:d9:87:3e:28:f7:7b:4e:eb:4f:d5:
4a:07:54:23:1c:f1:95:2b:2a:43:2a:33:4a:13:3f:71:48:b8:
bb:c1:fd:2e:98:35:98:02:15:ab:cc:b8:33:d0:6a:9d:1c:85:
4b:dc:d4:71:fc:b2:ff:a1:0e:2b:b4:e4:f4:05:5c:56:87:34:
ae:02:90:58:72:8a:ac:51:0b:09:de:d1:ef:e6:c4:7d:e2:5f:
62:b8:24:f9:52:b1:c6:8f:1c:78:3a:2f:8c:bc:59:74:56:d8:
11:1e:a2:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 02:15:18 2024 by rpki-client on console.sobornost.net