Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/ca6XJ5NiIiIJ1gn26NWoBZY1OOE.roa
File: ca6XJ5NiIiIJ1gn26NWoBZY1OOE.roa (raw, json)
Hash identifier: m0MfY3W/yHtAcpQIPruy2IhGfS2aQQkvwxrvdJx1dpE=
Subject key identifier: 71:AE:97:27:93:62:22:22:09:D6:09:F6:E8:D5:A8:05:96:35:38:E1
Certificate issuer: /CN=29a9964e0cd35fb36757e5653ffa7626ac5deee8
Certificate serial: 0195D161013973CB92A0F40078A931992BFB
Authority key identifier: 29:A9:96:4E:0C:D3:5F:B3:67:57:E5:65:3F:FA:76:26:AC:5D:EE:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KamWTgzTX7NnV-VlP_p2Jqxd7ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/ca6XJ5NiIiIJ1gn26NWoBZY1OOE.roa
Signing time: Wed 26 Mar 2025 07:35:50 +0000
ROA not before: Wed 26 Mar 2025 07:35:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25144
IP address blocks: 31.223.128.0/19 maxlen: 19
31.223.128.0/21 maxlen: 21
31.223.136.0/21 maxlen: 21
31.223.144.0/21 maxlen: 21
31.223.152.0/21 maxlen: 21
45.131.116.0/22 maxlen: 23
45.131.118.0/23 maxlen: 23
46.239.0.0/18 maxlen: 18
62.101.144.0/20 maxlen: 20
81.93.64.0/19 maxlen: 19
81.93.66.0/24 maxlen: 24
81.93.67.0/24 maxlen: 24
81.93.69.0/24 maxlen: 24
81.93.73.0/24 maxlen: 24
81.93.84.0/24 maxlen: 24
81.93.86.0/24 maxlen: 24
81.93.91.0/24 maxlen: 24
81.93.92.0/24 maxlen: 24
89.111.192.0/18 maxlen: 18
89.111.192.0/19 maxlen: 19
89.111.192.0/24 maxlen: 24
89.111.200.0/24 maxlen: 24
89.111.224.0/19 maxlen: 19
89.111.225.0/24 maxlen: 24
89.111.226.0/24 maxlen: 24
89.111.227.0/24 maxlen: 24
89.111.231.0/24 maxlen: 24
89.111.235.0/24 maxlen: 24
89.111.236.0/24 maxlen: 24
89.111.240.0/24 maxlen: 24
89.111.244.0/22 maxlen: 22
89.111.246.0/24 maxlen: 24
89.111.248.0/22 maxlen: 22
94.250.0.0/18 maxlen: 18
94.250.18.0/24 maxlen: 24
94.250.64.0/18 maxlen: 18
109.165.128.0/17 maxlen: 17
185.35.156.0/22 maxlen: 22
185.125.120.0/22 maxlen: 22
217.24.128.0/20 maxlen: 20
2a00:cb00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d1:61:01:39:73:cb:92:a0:f4:00:78:a9:31:99:2b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a9964e0cd35fb36757e5653ffa7626ac5deee8
Validity
Not Before: Mar 26 07:35:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=71ae97279362222209d609f6e8d5a805963538e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f0:7d:64:a5:de:28:e7:9c:16:69:ff:09:a0:
ae:07:ce:20:27:27:b3:6f:69:54:90:85:a9:33:6c:
7b:e5:ce:df:09:2f:ca:60:1c:b2:86:44:be:24:6a:
53:91:86:ca:ca:4a:5b:1b:38:42:03:01:f3:e5:14:
45:21:a7:dd:14:6d:d0:ca:de:1c:ab:15:d9:c1:fa:
38:85:ca:04:ac:56:2a:f8:94:d9:b9:b1:30:ff:76:
df:9b:c1:ad:ce:b1:a4:ef:68:31:a7:2f:99:2f:a9:
20:f1:23:b3:81:37:50:31:d5:67:13:f2:47:f6:26:
33:92:f8:d1:f8:9a:78:1e:db:ba:bb:de:84:78:64:
4d:b4:fb:e5:0f:f1:dd:b4:24:c3:32:56:17:66:d8:
f7:a1:47:82:6f:a9:e5:74:5d:c5:54:8b:83:ef:56:
28:38:f9:ac:5c:9a:20:78:48:f8:1b:7a:c3:8a:ac:
21:b8:19:fe:36:16:bc:ec:7d:bb:df:b4:e0:a1:89:
5a:16:af:6f:d6:67:65:92:d4:02:10:0b:28:00:75:
29:48:a4:4d:e9:9f:2e:5a:ea:18:6d:f2:43:19:d9:
ad:eb:35:57:7e:73:9d:84:fd:86:a2:42:70:b3:31:
79:0a:c9:3a:bd:60:60:08:f3:cf:a7:87:2e:79:60:
86:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AE:97:27:93:62:22:22:09:D6:09:F6:E8:D5:A8:05:96:35:38:E1
X509v3 Authority Key Identifier:
keyid:29:A9:96:4E:0C:D3:5F:B3:67:57:E5:65:3F:FA:76:26:AC:5D:EE:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KamWTgzTX7NnV-VlP_p2Jqxd7ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/ca6XJ5NiIiIJ1gn26NWoBZY1OOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/KamWTgzTX7NnV-VlP_p2Jqxd7ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.128.0/19
45.131.116.0/22
46.239.0.0/18
62.101.144.0/20
81.93.64.0/19
89.111.192.0/18
94.250.0.0/17
109.165.128.0/17
185.35.156.0/22
185.125.120.0/22
217.24.128.0/20
IPv6:
2a00:cb00::/32
Signature Algorithm: sha256WithRSAEncryption
6c:18:8f:41:e5:c1:58:09:68:9d:de:16:b9:61:01:2d:d7:cf:
a9:0a:6e:d6:17:fb:91:47:3b:6b:3f:cd:8e:cd:13:e9:c2:84:
57:2a:5d:6f:04:f3:cd:bc:62:f2:9a:d6:3b:ab:0d:01:5b:46:
78:05:a5:c6:ee:ee:88:eb:3a:fb:9e:41:e6:d2:26:83:9b:44:
85:42:71:2e:aa:3e:40:bc:e9:80:a1:3f:a9:99:5e:46:d4:e6:
ef:1b:b6:09:ec:9d:d3:51:84:38:b2:b9:85:7e:dd:64:f4:9c:
01:b1:1d:aa:6a:9f:14:a7:5f:03:a6:fe:89:77:fb:13:e1:3b:
15:82:10:33:8f:70:48:6e:0b:94:3a:c1:d0:1c:4e:a4:e4:5f:
a8:80:0f:1d:b3:68:85:f3:1b:3d:09:69:12:0f:61:0a:34:6a:
d2:8a:e2:0d:fe:87:1a:b1:0b:3c:1d:db:37:7e:72:32:d9:28:
bd:5f:ac:f2:73:18:01:60:08:b6:b2:d9:c9:d8:c0:65:f6:04:
f7:ef:07:f0:f5:30:b4:a5:6f:7c:91:49:04:93:e9:a4:36:70:
89:1e:bb:50:ef:99:86:02:11:23:4a:02:00:9f:f5:90:f0:84:
11:63:25:7f:00:03:55:27:0a:cc:0d:20:5d:10:d0:18:05:79:
1b:00:66:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:46 2025 by rpki-client on console.sobornost.net