Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/dwh4D1mLE-BJM3O3JRIbCS8CiAE.roa
File: dwh4D1mLE-BJM3O3JRIbCS8CiAE.roa (raw, json)
Hash identifier: 0ebutZnVkcZLLmshdUGZMamHfBLJzhHs685jtIwVRjk=
Subject key identifier: 77:08:78:0F:59:8B:13:E0:49:33:73:B7:25:12:1B:09:2F:02:88:01
Certificate issuer: /CN=6dfa4a1ffc749b1c4fa3b6da819b6dbb9ae885a0
Certificate serial: 0194274833167A30E34D3F2822B43C6F79BE
Authority key identifier: 6D:FA:4A:1F:FC:74:9B:1C:4F:A3:B6:DA:81:9B:6D:BB:9A:E8:85:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfpKH_x0mxxPo7bagZttu5rohaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/dwh4D1mLE-BJM3O3JRIbCS8CiAE.roa
Signing time: Thu 02 Jan 2025 13:50:30 +0000
ROA not before: Thu 02 Jan 2025 13:50:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39642
IP address blocks: 5.206.192.0/21 maxlen: 21
31.185.64.0/19 maxlen: 19
37.128.208.0/20 maxlen: 20
45.14.140.0/22 maxlen: 22
45.80.92.0/22 maxlen: 22
46.32.32.0/19 maxlen: 19
62.107.0.0/16 maxlen: 16
78.157.96.0/19 maxlen: 19
85.218.128.0/17 maxlen: 17
86.52.0.0/16 maxlen: 16
89.184.128.0/19 maxlen: 19
94.138.64.0/19 maxlen: 19
95.154.0.0/18 maxlen: 18
178.132.224.0/20 maxlen: 20
178.155.128.0/17 maxlen: 17
185.5.164.0/22 maxlen: 22
185.37.84.0/22 maxlen: 22
212.10.0.0/16 maxlen: 16
212.37.128.0/19 maxlen: 19
212.112.128.0/19 maxlen: 19
2a00:1b70::/29 maxlen: 32
2a02:2b98::/32 maxlen: 32
2a02:6940::/32 maxlen: 32
2a03:7400::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:33:16:7a:30:e3:4d:3f:28:22:b4:3c:6f:79:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfa4a1ffc749b1c4fa3b6da819b6dbb9ae885a0
Validity
Not Before: Jan 2 13:50:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7708780f598b13e0493373b725121b092f028801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8c:37:a6:2b:a9:39:f5:85:0e:18:7e:e8:a7:
87:a3:9d:e3:43:34:6c:97:3b:de:42:38:ab:86:82:
25:e1:52:27:5b:1e:ed:b3:1e:f3:d9:d6:66:9f:0d:
e3:57:a5:6d:71:9f:10:6b:5c:5e:8f:35:fc:51:45:
a8:4c:d3:43:4a:ac:43:97:b8:dc:dc:5a:be:9e:05:
d1:30:df:d9:c1:d0:e9:31:bf:ec:46:72:49:6c:dd:
58:49:1e:e6:9d:40:6e:12:26:6c:4e:71:b8:71:f4:
50:b6:08:2a:69:85:57:79:f2:3f:3c:f3:b7:53:2d:
7f:93:46:4c:7c:1c:ba:14:48:bc:e8:84:dc:16:10:
63:3c:fc:a6:a6:2f:e1:97:10:b3:46:9b:a4:19:3d:
d2:55:cc:ed:8e:81:20:30:bc:18:62:c1:47:ca:18:
89:48:d2:46:e1:06:1b:63:ab:9e:16:c4:ca:79:10:
5e:4e:9b:6b:03:f6:f0:22:b9:7b:21:47:0c:dc:49:
2c:99:2b:5c:97:3a:54:c5:41:6b:bc:50:52:2b:6c:
1c:51:ae:97:4c:bb:e3:a0:25:1f:8e:e7:3a:82:0b:
da:77:e9:c1:5d:b9:93:3e:d7:e5:cd:55:ec:dd:e9:
5b:8a:4b:29:d7:8f:2f:0b:91:23:77:32:f5:12:97:
ef:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:08:78:0F:59:8B:13:E0:49:33:73:B7:25:12:1B:09:2F:02:88:01
X509v3 Authority Key Identifier:
keyid:6D:FA:4A:1F:FC:74:9B:1C:4F:A3:B6:DA:81:9B:6D:BB:9A:E8:85:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfpKH_x0mxxPo7bagZttu5rohaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/dwh4D1mLE-BJM3O3JRIbCS8CiAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/f2f1c5-866c-42b5-8b46-38669d1e2301/1/bfpKH_x0mxxPo7bagZttu5rohaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.206.192.0/21
31.185.64.0/19
37.128.208.0/20
45.14.140.0/22
45.80.92.0/22
46.32.32.0/19
62.107.0.0/16
78.157.96.0/19
85.218.128.0/17
86.52.0.0/16
89.184.128.0/19
94.138.64.0/19
95.154.0.0/18
178.132.224.0/20
178.155.128.0/17
185.5.164.0/22
185.37.84.0/22
212.10.0.0/16
212.37.128.0/19
212.112.128.0/19
IPv6:
2a00:1b70::/29
2a02:2b98::/32
2a02:6940::/32
2a03:7400::/29
Signature Algorithm: sha256WithRSAEncryption
14:0e:a9:7d:97:28:b6:c4:ce:94:e4:ad:e2:68:91:31:08:ce:
cb:2f:24:7b:44:32:11:e7:59:a8:36:e0:57:9b:c5:8c:31:fa:
5c:79:ac:8b:17:68:93:a4:12:b7:2b:ba:99:7f:70:fd:98:05:
44:1c:92:c4:c4:ba:13:bc:52:9b:c4:52:d6:52:4d:34:8b:48:
aa:61:38:1c:36:0f:25:67:f4:6d:2f:25:82:7c:ad:c0:89:2c:
f8:4d:4f:01:e3:32:63:9b:e8:0c:9a:d3:4c:1b:a2:71:5c:49:
21:67:aa:08:e5:47:d7:de:5d:e6:27:5b:61:4d:44:da:8a:66:
3e:c9:e6:87:15:d0:3d:73:35:48:a2:d7:49:92:67:f2:a4:b6:
4b:cb:46:4b:88:70:d4:46:73:e3:4c:30:a9:e3:02:c4:ae:1d:
8b:56:8e:ca:1e:7c:76:1d:12:b5:e3:7f:4f:92:92:8f:df:24:
71:c1:22:4b:1a:ef:d0:2e:9b:04:85:2e:5e:f5:17:5d:aa:db:
2d:69:15:f0:13:f3:a5:74:b3:86:3f:c8:4e:2f:41:cc:b3:98:
82:e3:6f:39:d0:1a:b8:d3:10:65:42:04:c2:af:48:f9:77:32:
7b:ec:0c:02:e8:7f:50:05:70:c5:0e:be:ea:dd:2b:19:ba:33:
a3:37:20:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:42 2025 by rpki-client on console.sobornost.net