Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/W2N06bo8iEVj3MND-0JAHiLxvxg.roa
File: W2N06bo8iEVj3MND-0JAHiLxvxg.roa (raw, json)
Hash identifier: IfUBswKG3p9cJ5exxnjeIuTVTsjdF6z/UKkR7O3Lfdw=
Subject key identifier: 5B:63:74:E9:BA:3C:88:45:63:DC:C3:43:FB:42:40:1E:22:F1:BF:18
Certificate issuer: /CN=9b5895e7f6a6d4aba9c961f713b2e79715f021f0
Certificate serial: 0194228E191C81249AE8685DB599EF8438DF
Authority key identifier: 9B:58:95:E7:F6:A6:D4:AB:A9:C9:61:F7:13:B2:E7:97:15:F0:21:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1iV5_am1KupyWH3E7LnlxXwIfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/W2N06bo8iEVj3MND-0JAHiLxvxg.roa
Signing time: Wed 01 Jan 2025 15:48:45 +0000
ROA not before: Wed 01 Jan 2025 15:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51825
IP address blocks: 46.31.96.0/21 maxlen: 21
46.31.96.0/23 maxlen: 23
46.31.96.0/24 maxlen: 24
46.31.97.0/24 maxlen: 24
46.31.98.0/23 maxlen: 23
46.31.98.0/24 maxlen: 24
46.31.99.0/24 maxlen: 24
46.31.100.0/23 maxlen: 23
46.31.100.0/24 maxlen: 24
46.31.101.0/24 maxlen: 24
46.31.102.0/23 maxlen: 23
46.31.102.0/24 maxlen: 24
46.31.103.0/24 maxlen: 24
147.234.92.0/22 maxlen: 22
147.234.96.0/21 maxlen: 21
185.24.204.0/22 maxlen: 22
185.24.204.0/23 maxlen: 23
185.24.204.0/24 maxlen: 24
185.24.205.0/24 maxlen: 24
185.24.206.0/23 maxlen: 23
185.24.206.0/24 maxlen: 24
185.24.207.0/24 maxlen: 24
213.137.64.0/20 maxlen: 20
213.137.64.0/24 maxlen: 24
213.137.65.0/24 maxlen: 24
213.137.66.0/24 maxlen: 24
213.137.67.0/24 maxlen: 24
213.137.70.0/24 maxlen: 24
213.137.71.0/24 maxlen: 24
213.137.72.0/23 maxlen: 23
213.137.73.0/24 maxlen: 24
2a02:5080::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:19:1c:81:24:9a:e8:68:5d:b5:99:ef:84:38:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b5895e7f6a6d4aba9c961f713b2e79715f021f0
Validity
Not Before: Jan 1 15:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5b6374e9ba3c884563dcc343fb42401e22f1bf18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:07:5b:fb:b3:3f:65:93:d9:1e:8d:f8:7e:58:
fd:51:ef:90:c6:3e:a8:4a:b2:3f:48:8f:5e:81:ba:
eb:9b:14:72:3f:d0:dd:6b:2a:f2:2c:09:38:99:15:
d2:30:f4:b5:f6:c2:87:d2:6b:ab:87:7a:4d:24:57:
d5:fd:fc:b4:7f:46:8f:5c:1b:20:b1:6d:87:23:54:
65:06:9b:3b:a4:e7:45:d8:31:2c:b1:0e:eb:9c:96:
a7:fc:67:2e:99:de:6a:d1:cb:06:4f:32:6f:4d:3b:
fc:08:93:2a:e8:98:1c:c5:fc:5e:6e:67:44:ab:0a:
46:4f:33:86:61:26:9a:53:74:75:da:f8:a2:a9:cf:
9c:c1:01:1b:07:a5:57:9c:a2:b4:27:b3:50:2c:7f:
98:cd:4c:f7:e8:8a:fe:0f:8a:bd:d2:fd:09:c1:db:
d3:42:f4:be:44:67:59:b9:8c:db:28:d3:4e:19:3a:
04:06:39:55:2d:b8:a6:28:3f:29:2f:de:d0:34:38:
66:d6:a1:63:94:30:12:89:90:a4:82:ef:0e:b9:f5:
5b:ee:f3:45:3c:61:cd:76:3e:d2:94:5c:d2:99:4d:
71:84:16:8c:5b:27:2f:b8:c8:d2:79:3e:bf:90:cd:
cb:7a:54:88:26:0f:32:33:68:7a:a2:a2:f4:97:0f:
bc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:63:74:E9:BA:3C:88:45:63:DC:C3:43:FB:42:40:1E:22:F1:BF:18
X509v3 Authority Key Identifier:
keyid:9B:58:95:E7:F6:A6:D4:AB:A9:C9:61:F7:13:B2:E7:97:15:F0:21:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1iV5_am1KupyWH3E7LnlxXwIfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/W2N06bo8iEVj3MND-0JAHiLxvxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/m1iV5_am1KupyWH3E7LnlxXwIfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.96.0/21
147.234.92.0-147.234.103.255
185.24.204.0/22
213.137.64.0/20
IPv6:
2a02:5080::/32
Signature Algorithm: sha256WithRSAEncryption
56:71:45:83:5c:ec:1f:04:4a:80:0b:1d:a0:82:80:1d:e6:ed:
78:fb:74:4b:cc:b7:03:c6:09:dd:49:59:47:cb:ba:9c:59:f1:
1e:26:64:49:31:3d:2d:a1:dd:22:43:75:3b:f8:33:46:77:8d:
d8:16:a0:ae:db:b1:51:9c:8f:0f:6e:6c:55:65:b4:12:5a:bb:
46:95:2f:39:1b:29:52:e8:ca:e2:ba:77:63:84:3d:4c:8b:69:
76:db:42:c0:28:d5:24:49:de:3f:00:39:a0:8f:9f:98:d2:db:
e0:16:f5:47:b8:e2:bf:65:df:91:8f:4d:81:42:40:45:d1:3d:
5f:b7:cf:2a:3a:17:19:11:b0:e0:3a:a1:84:e9:b3:f6:4d:60:
d1:94:42:6f:0b:dd:db:f4:88:fa:46:d5:a6:78:6d:35:96:86:
66:1f:65:3e:d0:19:2b:01:e3:4f:f9:3b:7b:51:3a:85:bd:60:
bd:97:10:ac:2a:95:80:c2:ea:46:8e:22:f4:e7:bf:e6:34:34:
3a:95:6a:5f:f3:ed:a3:fd:59:3c:f7:20:98:cb:44:41:b5:78:
b6:dc:52:25:24:d1:16:7f:bd:43:70:56:36:d9:06:eb:50:41:
3a:5a:7e:78:c6:0a:c3:3d:a5:96:24:83:88:9e:d8:e5:91:d1:
b3:4d:68:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:02 2025 by rpki-client on console.sobornost.net