Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/m05UFQfMUkm8RmzIuHOsksJMdP0.roa
File: m05UFQfMUkm8RmzIuHOsksJMdP0.roa (raw, json)
Hash identifier: yGsV8HL3U4MAtVDLG2EGnsRjRnklyUH2zR9pUN6kEek=
Subject key identifier: 9B:4E:54:15:07:CC:52:49:BC:46:6C:C8:B8:73:AC:92:C2:4C:74:FD
Certificate issuer: /CN=1003cd25315330350d73f2a3579aa95e052b718d
Certificate serial: 019424459AFBE570210CB89F7EAE03682E01
Authority key identifier: 10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/m05UFQfMUkm8RmzIuHOsksJMdP0.roa
Signing time: Wed 01 Jan 2025 23:48:48 +0000
ROA not before: Wed 01 Jan 2025 23:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16116
IP address blocks: 37.25.32.0/24 maxlen: 24
37.25.33.0/24 maxlen: 24
37.25.34.0/24 maxlen: 24
37.25.35.0/24 maxlen: 24
37.25.36.0/24 maxlen: 24
37.25.37.0/24 maxlen: 24
37.25.38.0/24 maxlen: 24
37.25.39.0/24 maxlen: 24
46.19.80.0/21 maxlen: 24
46.19.83.0/24 maxlen: 24
46.19.84.0/24 maxlen: 24
62.112.0.0/22 maxlen: 24
85.159.160.0/21 maxlen: 24
85.159.161.0/24 maxlen: 24
85.159.162.0/24 maxlen: 24
85.159.163.0/24 maxlen: 24
85.159.164.0/24 maxlen: 24
85.159.165.0/24 maxlen: 24
85.159.166.0/24 maxlen: 24
85.159.167.0/24 maxlen: 24
89.37.236.0/22 maxlen: 24
89.40.66.0/24 maxlen: 24
89.41.188.0/24 maxlen: 24
89.43.48.0/24 maxlen: 24
91.135.96.0/20 maxlen: 24
93.113.31.0/24 maxlen: 24
130.185.96.0/21 maxlen: 24
141.226.88.0/21 maxlen: 24
141.226.90.0/24 maxlen: 24
147.189.144.0/22 maxlen: 24
147.189.148.0/23 maxlen: 24
185.80.108.0/22 maxlen: 24
185.196.126.0/23 maxlen: 24
185.246.252.0/23 maxlen: 24
185.246.254.0/24 maxlen: 24
185.246.255.0/24 maxlen: 24
188.64.200.0/21 maxlen: 24
188.64.200.0/24 maxlen: 24
188.64.201.0/24 maxlen: 24
188.64.202.0/24 maxlen: 24
188.64.203.0/24 maxlen: 24
188.64.204.0/24 maxlen: 24
188.64.205.0/24 maxlen: 24
193.41.202.0/24 maxlen: 24
193.41.208.0/23 maxlen: 24
193.41.209.0/24 maxlen: 24
195.133.152.0/21 maxlen: 24
212.90.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:9a:fb:e5:70:21:0c:b8:9f:7e:ae:03:68:2e:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1003cd25315330350d73f2a3579aa95e052b718d
Validity
Not Before: Jan 1 23:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9b4e541507cc5249bc466cc8b873ac92c24c74fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0f:11:91:b6:83:9b:50:1d:f3:08:69:7d:95:
01:08:fb:06:eb:77:8c:55:7a:27:fc:c4:e9:25:d2:
22:cb:27:b4:9a:a7:94:8d:70:d6:f5:7d:56:bb:a3:
ff:61:4f:6b:3b:e8:f7:7c:3b:0f:b1:84:c4:0c:b4:
4d:6f:c3:4c:a2:93:17:02:29:7d:32:54:74:17:2b:
40:01:07:3f:f2:3a:65:69:ad:be:66:1d:3a:15:f3:
7d:c8:80:2f:98:6c:07:52:ce:21:53:b4:9e:0b:ae:
92:29:ff:48:91:64:91:b2:df:fd:0b:8c:f3:f1:cd:
d1:12:d6:ad:07:56:a2:13:dc:f0:a4:6d:19:83:41:
c0:4b:8f:c8:2e:b4:89:d2:2f:9b:d6:60:b6:55:60:
6a:ca:14:be:37:e0:ea:f9:6b:f1:4e:32:bb:44:85:
a0:85:ee:bb:cd:0e:a8:ee:6e:79:1c:66:73:e4:d4:
f5:45:a8:8e:e6:96:06:39:af:7d:0b:e5:35:2c:b1:
2e:e0:d3:39:77:f1:c1:32:ec:ef:a1:dc:68:71:41:
b6:41:ca:48:39:26:fd:ab:f3:0e:0b:a4:7f:35:24:
e8:93:1b:54:5e:67:c3:dd:ba:7a:85:5f:4c:ec:c1:
e0:88:5d:2b:b9:70:b6:53:21:a2:36:a1:a4:e0:1a:
cf:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:4E:54:15:07:CC:52:49:BC:46:6C:C8:B8:73:AC:92:C2:4C:74:FD
X509v3 Authority Key Identifier:
keyid:10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/m05UFQfMUkm8RmzIuHOsksJMdP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/EAPNJTFTMDUNc_KjV5qpXgUrcY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.25.32.0/21
46.19.80.0/21
62.112.0.0/22
85.159.160.0/21
89.37.236.0/22
89.40.66.0/24
89.41.188.0/24
89.43.48.0/24
91.135.96.0/20
93.113.31.0/24
130.185.96.0/21
141.226.88.0/21
147.189.144.0-147.189.149.255
185.80.108.0/22
185.196.126.0/23
185.246.252.0/22
188.64.200.0/21
193.41.202.0/24
193.41.208.0/23
195.133.152.0/21
212.90.108.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:f7:4c:c5:6f:c1:8a:83:cb:34:8d:17:6c:91:5f:9b:59:3a:
93:b4:67:4c:b3:46:51:e0:72:14:16:8f:cb:62:65:d8:65:23:
a6:78:26:db:a0:22:85:05:8c:da:7c:79:da:88:77:82:8c:de:
90:cc:63:50:81:77:32:04:94:af:28:c5:73:94:04:ef:0e:11:
08:9e:46:4f:3e:dd:b1:eb:dd:0b:8f:ba:a3:7d:74:7a:32:d9:
ca:ae:ce:64:4b:12:12:bd:a6:79:ce:27:ac:15:51:f3:c4:0a:
8d:28:37:2c:bd:e4:59:29:1d:42:90:08:ae:22:f3:dd:c5:89:
bb:f9:f7:89:5c:25:4f:ce:4f:a5:a8:3b:82:02:f8:15:13:43:
cd:78:10:ac:c4:22:4f:b6:18:71:ab:79:22:9f:c2:18:95:37:
2e:fc:62:43:c7:39:51:75:ec:02:74:7d:bc:68:16:0c:ef:51:
6e:7a:18:51:52:53:82:0b:b4:b0:24:6d:9d:4d:c0:27:10:a5:
81:b1:42:4e:4e:eb:0b:1f:e1:b5:c9:b0:d3:d7:b6:6a:8d:94:
9c:cc:0c:9d:33:d8:c1:de:a0:a8:57:78:60:8c:c4:59:62:03:
c3:5e:38:ef:56:4b:35:68:b7:b0:39:31:62:83:53:ae:0d:9c:
2d:69:46:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:24 2025 by rpki-client on console.sobornost.net