Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/ly88KD5bMOpCHQjGiZJKcr-EsMc.roa
File: ly88KD5bMOpCHQjGiZJKcr-EsMc.roa (raw, json)
Hash identifier: 4y5SQKlyTZn9ttV7oFkgOff7ZDqveixNvFXNcIkI2KU=
Subject key identifier: 97:2F:3C:28:3E:5B:30:EA:42:1D:08:C6:89:92:4A:72:BF:84:B0:C7
Certificate issuer: /CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Certificate serial: 0191FF9A4FFE87BF9BD6D0527A86482ED5DC
Authority key identifier: 76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/ly88KD5bMOpCHQjGiZJKcr-EsMc.roa
Signing time: Tue 17 Sep 2024 10:49:48 +0000
ROA not before: Tue 17 Sep 2024 10:49:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44702
IP address blocks: 5.199.184.0/22 maxlen: 22
5.199.184.0/24 maxlen: 24
5.199.185.0/24 maxlen: 24
5.199.186.0/24 maxlen: 24
5.199.187.0/24 maxlen: 24
45.142.196.0/22 maxlen: 22
45.142.196.0/24 maxlen: 24
45.142.197.0/24 maxlen: 24
45.142.198.0/24 maxlen: 24
45.142.199.0/24 maxlen: 24
79.134.128.0/20 maxlen: 20
79.134.128.0/22 maxlen: 22
79.134.128.0/23 maxlen: 23
79.134.128.0/24 maxlen: 24
79.134.129.0/24 maxlen: 24
79.134.130.0/24 maxlen: 24
79.134.131.0/24 maxlen: 24
79.134.132.0/22 maxlen: 22
79.134.132.0/24 maxlen: 24
79.134.133.0/24 maxlen: 24
79.134.134.0/24 maxlen: 24
79.134.135.0/24 maxlen: 24
79.134.136.0/22 maxlen: 22
79.134.136.0/24 maxlen: 24
79.134.137.0/24 maxlen: 24
79.134.138.0/24 maxlen: 24
79.134.139.0/24 maxlen: 24
79.134.140.0/22 maxlen: 22
79.134.140.0/24 maxlen: 24
79.134.141.0/24 maxlen: 24
79.134.142.0/24 maxlen: 24
79.134.143.0/24 maxlen: 24
79.134.144.0/22 maxlen: 22
79.134.144.0/24 maxlen: 24
79.134.145.0/24 maxlen: 24
79.134.146.0/24 maxlen: 24
79.134.147.0/24 maxlen: 24
79.134.148.0/22 maxlen: 22
79.134.148.0/24 maxlen: 24
79.134.149.0/24 maxlen: 24
79.134.150.0/24 maxlen: 24
79.134.151.0/24 maxlen: 24
79.134.152.0/22 maxlen: 22
79.134.152.0/24 maxlen: 24
79.134.153.0/24 maxlen: 24
79.134.154.0/24 maxlen: 24
79.134.155.0/24 maxlen: 24
79.134.156.0/22 maxlen: 22
79.134.156.0/24 maxlen: 24
79.134.157.0/24 maxlen: 24
79.134.158.0/24 maxlen: 24
79.134.159.0/24 maxlen: 24
185.139.220.0/22 maxlen: 22
185.139.220.0/24 maxlen: 24
185.139.221.0/24 maxlen: 24
185.139.222.0/24 maxlen: 24
185.139.223.0/24 maxlen: 24
2a07:140::/29 maxlen: 29
2a07:140::/32 maxlen: 32
2a07:141::/32 maxlen: 32
2a07:142::/32 maxlen: 32
2a07:143::/32 maxlen: 32
2a07:144::/32 maxlen: 32
2a07:145::/32 maxlen: 32
2a07:146::/32 maxlen: 32
2a07:147::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ff:9a:4f:fe:87:bf:9b:d6:d0:52:7a:86:48:2e:d5:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Validity
Not Before: Sep 17 10:49:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=972f3c283e5b30ea421d08c689924a72bf84b0c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:90:ec:33:85:9a:42:1b:3e:31:49:4e:74:79:
94:d3:05:c0:c6:4d:50:f5:72:26:75:59:99:1f:fc:
e8:9f:90:8e:21:82:0b:cc:b0:83:d0:d2:f5:03:22:
2b:51:6e:0e:8e:ae:52:19:6c:46:62:b7:19:93:f5:
c7:a5:89:d9:b0:cc:3d:f6:7e:2c:1c:7d:8a:2f:fc:
0f:1e:6f:0d:84:2f:72:aa:43:65:14:ca:e0:1e:63:
ab:97:81:f2:33:99:c9:1f:0c:47:aa:1a:5d:f8:b9:
d4:2a:48:05:a9:6b:82:41:e1:d1:b1:42:fe:f0:35:
a5:26:72:d8:87:f7:d3:0d:b4:f0:62:89:bd:7f:69:
05:ce:2c:c9:82:c2:fd:94:3e:4e:73:be:19:84:ee:
d4:e2:7f:bc:8c:97:0a:54:32:bf:16:71:45:46:ad:
9f:2c:38:5f:93:57:a8:f2:83:14:3b:a8:5e:41:fe:
53:22:da:89:af:8d:4e:99:3b:52:8e:c9:ae:99:eb:
c2:30:e0:eb:f8:b1:8b:b6:69:2e:29:49:20:22:37:
d8:48:93:bd:fd:83:d4:85:50:ed:cb:be:92:59:9b:
03:ca:e7:8b:b7:28:11:28:21:0b:17:2b:4a:06:ee:
9d:6f:c2:53:ba:62:ce:61:67:39:b9:19:c8:93:72:
a7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:2F:3C:28:3E:5B:30:EA:42:1D:08:C6:89:92:4A:72:BF:84:B0:C7
X509v3 Authority Key Identifier:
keyid:76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/ly88KD5bMOpCHQjGiZJKcr-EsMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.199.184.0/22
45.142.196.0/22
79.134.128.0/19
185.139.220.0/22
IPv6:
2a07:140::/29
Signature Algorithm: sha256WithRSAEncryption
7a:2c:e0:08:b8:03:b5:91:5e:71:19:a2:b4:12:37:86:3c:87:
c0:70:2c:e2:64:77:99:78:7c:f8:e9:7d:b7:89:e6:4d:8d:9c:
47:c3:ce:18:2a:57:14:b5:ab:2b:c4:52:75:15:80:85:f5:eb:
38:d5:7b:9d:7e:d3:99:27:9d:e3:58:6b:3b:93:ce:7f:3e:0d:
e7:13:82:16:88:a9:a3:13:23:21:f0:33:ac:bd:88:dd:ba:21:
93:42:0d:c6:63:15:a2:07:5b:3b:6e:46:07:cc:a2:a5:5a:be:
eb:d0:b2:c2:51:12:71:a7:d5:e6:67:9d:4f:13:e4:43:64:58:
33:9a:38:d1:6e:9e:93:bc:03:b7:8c:5a:3d:17:1f:b1:6e:c5:
0f:c6:98:58:3b:5d:b1:65:81:3a:ae:42:4e:1f:92:d9:83:1c:
6d:83:94:02:a4:66:82:61:e0:d4:2e:97:c4:7e:df:e1:c8:9f:
51:26:36:69:c7:cd:5a:01:97:22:0e:84:e8:28:d9:41:8d:f6:
f9:c2:36:f6:fe:96:27:9a:3a:07:42:a1:cc:d8:f7:82:cb:92:
38:b2:fb:27:6a:68:36:10:35:e5:4f:66:b9:82:12:fd:ad:bd:
ea:18:a4:f8:10:68:c7:b8:22:bb:48:6f:f3:7a:37:c4:94:08:
52:51:84:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:03 2024 by rpki-client on console.sobornost.net