Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/J5hR6qbnwqDQorjgQKA4nS-MMic.roa
File: J5hR6qbnwqDQorjgQKA4nS-MMic.roa (raw, json)
Hash identifier: K6vNh4g2g+c8tlGqdXpR0r75yDquSeuJCke6e2iRcws=
Subject key identifier: 27:98:51:EA:A6:E7:C2:A0:D0:A2:B8:E0:40:A0:38:9D:2F:8C:32:27
Certificate issuer: /CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Certificate serial: 019561B09F3DE547783BDC3057375B2A079E
Authority key identifier: 24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/J5hR6qbnwqDQorjgQKA4nS-MMic.roa
Signing time: Tue 04 Mar 2025 15:05:19 +0000
ROA not before: Tue 04 Mar 2025 15:05:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9141
IP address blocks: 31.178.0.0/17 maxlen: 17
31.178.128.0/17 maxlen: 17
31.179.0.0/17 maxlen: 17
31.179.128.0/17 maxlen: 24
31.186.192.0/19 maxlen: 19
77.236.0.0/21 maxlen: 21
77.236.8.0/21 maxlen: 21
77.236.16.0/21 maxlen: 21
77.236.24.0/21 maxlen: 21
81.18.192.0/22 maxlen: 22
81.18.196.0/22 maxlen: 22
81.18.200.0/22 maxlen: 22
81.18.204.0/22 maxlen: 22
81.18.208.0/22 maxlen: 22
81.18.212.0/22 maxlen: 22
81.18.216.0/22 maxlen: 22
81.18.220.0/22 maxlen: 22
83.144.64.0/19 maxlen: 19
83.144.96.0/19 maxlen: 19
83.175.176.0/20 maxlen: 20
84.10.0.0/18 maxlen: 18
84.10.64.0/18 maxlen: 18
84.10.128.0/18 maxlen: 18
84.10.192.0/18 maxlen: 18
85.222.0.0/19 maxlen: 19
85.222.32.0/19 maxlen: 19
85.222.52.0/22 maxlen: 22
85.222.64.0/19 maxlen: 19
85.222.96.0/19 maxlen: 19
87.206.0.0/17 maxlen: 17
87.206.128.0/17 maxlen: 17
87.207.0.0/17 maxlen: 17
87.207.128.0/17 maxlen: 17
89.64.0.0/14 maxlen: 14
89.68.0.0/14 maxlen: 14
89.70.108.0/22 maxlen: 22
89.72.0.0/14 maxlen: 14
89.72.228.0/22 maxlen: 22
89.76.0.0/14 maxlen: 14
89.77.216.0/22 maxlen: 22
91.150.192.0/20 maxlen: 20
91.150.208.0/20 maxlen: 20
92.244.32.0/21 maxlen: 21
92.244.40.0/21 maxlen: 21
92.244.48.0/21 maxlen: 21
92.244.56.0/21 maxlen: 21
94.75.64.0/20 maxlen: 20
94.75.80.0/20 maxlen: 20
94.75.96.0/20 maxlen: 20
94.75.112.0/20 maxlen: 20
94.172.0.0/18 maxlen: 18
94.172.64.0/18 maxlen: 18
94.172.128.0/18 maxlen: 18
94.172.192.0/18 maxlen: 18
95.158.64.0/19 maxlen: 19
95.158.96.0/19 maxlen: 19
178.73.0.0/20 maxlen: 20
178.73.16.0/20 maxlen: 20
178.73.32.0/20 maxlen: 20
178.73.48.0/20 maxlen: 20
185.182.244.0/22 maxlen: 22
188.93.160.0/22 maxlen: 22
188.93.164.0/22 maxlen: 22
193.47.158.0/24 maxlen: 24
193.47.159.0/24 maxlen: 24
193.47.160.0/24 maxlen: 24
194.187.40.0/23 maxlen: 23
194.187.42.0/23 maxlen: 23
195.34.208.0/23 maxlen: 23
195.34.210.0/23 maxlen: 23
212.76.32.0/21 maxlen: 21
212.76.40.0/21 maxlen: 21
212.76.48.0/21 maxlen: 21
212.76.56.0/21 maxlen: 21
213.134.160.0/20 maxlen: 20
213.134.176.0/20 maxlen: 20
217.119.64.0/20 maxlen: 20
2001:4050::/34 maxlen: 34
2001:4050:4000::/34 maxlen: 34
2001:4050:8000::/34 maxlen: 34
2001:4050:c000::/34 maxlen: 34
2a02:a300::/29 maxlen: 29
2a02:a308::/29 maxlen: 29
2a02:a310::/32 maxlen: 32
2a02:a311::/32 maxlen: 32
2a02:a312::/32 maxlen: 32
2a02:a313::/32 maxlen: 32
2a02:a314::/30 maxlen: 30
2a02:a315:e500::/40 maxlen: 40
2a02:a316:e100::/40 maxlen: 40
2a02:a318::/30 maxlen: 30
2a02:a319:6000::/40 maxlen: 40
2a02:a31b:c400::/40 maxlen: 40
2a02:a31c::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:61:b0:9f:3d:e5:47:78:3b:dc:30:57:37:5b:2a:07:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Validity
Not Before: Mar 4 15:05:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=279851eaa6e7c2a0d0a2b8e040a0389d2f8c3227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4d:69:e1:a7:36:10:42:2d:d2:01:3f:b2:63:
98:d2:90:fe:a4:ec:85:31:96:32:e1:2f:23:88:d3:
33:ef:5b:2e:06:3a:57:7a:3a:8f:03:51:e5:9f:d8:
0b:55:2d:85:2a:14:39:7a:57:5d:9f:8c:a0:79:fa:
87:d5:04:cb:a1:82:9b:03:56:5f:5b:cb:77:47:e3:
71:4e:c8:77:86:d6:0f:42:ee:39:df:5d:c0:f8:da:
d9:0a:c8:ff:07:f8:32:e3:c7:0b:0a:9e:5c:ec:76:
04:f5:77:95:b5:ff:5f:b9:bd:66:e2:f8:0c:ce:3c:
b9:bc:92:e6:7e:c6:73:41:4c:41:3f:ff:dd:f9:e0:
2c:e8:19:64:a5:d2:c2:b6:9e:27:ef:1f:c2:86:fa:
d1:18:2a:c2:37:3a:24:c1:46:7f:24:14:a8:bb:c3:
e1:8d:6c:44:6d:09:f3:58:50:6b:bc:29:65:b4:81:
8f:a1:29:f7:6c:41:eb:84:18:72:57:69:bd:f1:2a:
ac:52:a5:34:7d:34:b7:16:75:ee:d3:b4:27:a6:ab:
32:80:2f:9f:7b:87:a4:75:b4:e4:3b:a5:8e:da:02:
6d:95:63:03:a8:62:2d:1b:57:b4:6d:aa:11:e2:9d:
63:7e:f5:21:12:3c:d4:80:50:80:50:6c:c0:ff:57:
a9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:98:51:EA:A6:E7:C2:A0:D0:A2:B8:E0:40:A0:38:9D:2F:8C:32:27
X509v3 Authority Key Identifier:
keyid:24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/J5hR6qbnwqDQorjgQKA4nS-MMic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/JBR8iz83hQ6fkHSZOEXE4Gn47-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.178.0.0/15
31.186.192.0/19
77.236.0.0/19
81.18.192.0/19
83.144.64.0/18
83.175.176.0/20
84.10.0.0/16
85.222.0.0/17
87.206.0.0/15
89.64.0.0/12
91.150.192.0/19
92.244.32.0/19
94.75.64.0/18
94.172.0.0/16
95.158.64.0/18
178.73.0.0/18
185.182.244.0/22
188.93.160.0/21
193.47.158.0-193.47.160.255
194.187.40.0/22
195.34.208.0/22
212.76.32.0/19
213.134.160.0/19
217.119.64.0/20
IPv6:
2001:4050::/32
2a02:a300::/27
Signature Algorithm: sha256WithRSAEncryption
24:b0:89:f6:40:bb:59:78:f3:31:98:82:6c:08:d6:a0:1c:32:
35:bf:d9:b3:23:95:80:70:69:e4:6d:6b:48:34:f5:90:ab:81:
59:c4:b1:e1:0b:e8:a3:65:f6:a2:3b:25:a6:ee:7f:d7:34:6e:
bd:e1:ab:63:81:17:da:d1:79:d1:e0:12:7a:45:c5:cd:ef:38:
a9:d1:48:27:b0:33:f7:dc:a4:5c:36:8d:40:d7:5c:9a:3d:51:
49:36:31:82:da:a1:b1:40:ed:f8:d1:f8:d1:0d:89:87:b3:da:
3f:14:c4:1a:07:b7:49:1e:e6:48:8f:35:b2:6c:f8:6a:f9:ae:
9b:67:28:70:dd:48:88:1f:d0:72:8e:33:be:69:53:8a:dd:72:
4f:c5:8d:31:33:f8:7a:d9:29:33:64:a9:50:83:c3:8f:ab:94:
48:e9:c3:f9:35:b9:3c:c0:1b:cd:19:ad:26:2a:60:8f:9c:09:
66:18:d8:41:87:0e:2f:5e:02:77:b3:ec:36:f2:ad:67:a4:cd:
42:c3:aa:05:a9:8a:61:fb:b2:eb:a0:e9:9c:38:35:a3:03:a1:
8b:b8:0d:34:8c:0a:41:25:70:8b:10:d5:c9:96:08:ec:de:6b:
40:6a:27:18:e6:95:e1:76:14:ba:a8:be:d4:6b:83:a8:ca:71:
1a:68:60:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:15 2025 by rpki-client on console.sobornost.net