Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/AfEH7asm69aFH1cA0_KG1h9Dj_Q.roa
File: AfEH7asm69aFH1cA0_KG1h9Dj_Q.roa (raw, json)
Hash identifier: 6fnNMMyhZ6Og4AfFDlEAWfLmMM9eY6V2RgsDeEBBgo0=
Subject key identifier: 01:F1:07:ED:AB:26:EB:D6:85:1F:57:00:D3:F2:86:D6:1F:43:8F:F4
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 019121CF62CAD9771C507D224C97BE923D2C
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/AfEH7asm69aFH1cA0_KG1h9Dj_Q.roa
Signing time: Mon 05 Aug 2024 09:12:04 +0000
ROA not before: Mon 05 Aug 2024 09:12:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48728
IP address blocks: 31.11.48.0/21 maxlen: 21
37.186.32.0/19 maxlen: 19
37.186.32.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.37.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.54.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.61.0/24 maxlen: 24
37.186.62.0/24 maxlen: 24
37.186.63.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.160.0/21 maxlen: 21
80.76.160.0/24 maxlen: 24
80.76.161.0/24 maxlen: 24
80.76.162.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.172.0/24 maxlen: 24
80.76.173.0/24 maxlen: 24
80.76.174.0/24 maxlen: 24
80.76.175.0/24 maxlen: 24
103.17.0.0/22 maxlen: 22
103.17.0.0/24 maxlen: 24
103.17.1.0/24 maxlen: 24
103.17.2.0/24 maxlen: 24
103.17.3.0/24 maxlen: 24
103.23.124.0/22 maxlen: 22
103.23.124.0/24 maxlen: 24
103.23.125.0/24 maxlen: 24
103.23.126.0/24 maxlen: 24
103.23.127.0/24 maxlen: 24
103.199.88.0/22 maxlen: 22
103.199.88.0/24 maxlen: 24
103.199.89.0/24 maxlen: 24
103.199.90.0/24 maxlen: 24
103.199.91.0/24 maxlen: 24
103.225.72.0/22 maxlen: 22
103.225.72.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
103.225.75.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.96.0/24 maxlen: 24
212.70.97.0/24 maxlen: 24
212.70.98.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.106.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.108.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.125.0/24 maxlen: 24
212.70.126.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
2a04:7f80::/29 maxlen: 29
2a04:7f80::/48 maxlen: 48
2a04:7f80:0:a::/64 maxlen: 64
2a04:7f80:2::/48 maxlen: 48
2a04:7f80:3::/48 maxlen: 48
2a04:7f80:4::/48 maxlen: 48
2a04:7f80:5::/48 maxlen: 48
2a04:7f80:10::/48 maxlen: 48
2a04:7f80:11::/48 maxlen: 48
2a04:7f80:12::/48 maxlen: 48
2a04:7f80:13::/48 maxlen: 48
2a04:7f80:14::/48 maxlen: 48
2a04:7f80:15::/48 maxlen: 48
2a04:7f80:16::/48 maxlen: 48
2a04:7f80:17::/48 maxlen: 48
2a04:7f80:19::/48 maxlen: 48
2a04:7f80:1a::/48 maxlen: 48
2a04:7f80:1b::/48 maxlen: 48
2a04:7f80:1c::/48 maxlen: 48
2a04:7f80:1d::/48 maxlen: 48
2a04:7f80:1e::/48 maxlen: 48
2a04:7f80:1f::/48 maxlen: 48
2a04:7f80:20::/44 maxlen: 44
2a04:7f80:40::/45 maxlen: 45
2a04:7f80:48::/45 maxlen: 45
2a04:7f80:50::/48 maxlen: 48
2a04:7f80:51::/48 maxlen: 48
2a04:7f80:52::/48 maxlen: 48
2a04:7f80:53::/48 maxlen: 48
2a04:7f80:54::/48 maxlen: 48
2a04:7f80:55::/48 maxlen: 48
2a04:7f80:56::/48 maxlen: 48
2a04:7f80:57::/48 maxlen: 48
2a04:7f80:58::/48 maxlen: 48
2a04:7f80:5a::/48 maxlen: 48
2a04:7f80:5b::/48 maxlen: 48
2a04:7f80:5c::/48 maxlen: 48
2a04:7f80:5d::/48 maxlen: 48
2a04:7f80:5e::/48 maxlen: 48
2a04:7f80:5f::/48 maxlen: 48
2a04:7f80:84::/48 maxlen: 48
2a04:7f80:85::/48 maxlen: 48
2a04:7f80:90::/45 maxlen: 45
2a04:7f80:2000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:21:cf:62:ca:d9:77:1c:50:7d:22:4c:97:be:92:3d:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Aug 5 09:12:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01f107edab26ebd6851f5700d3f286d61f438ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:da:1a:50:05:27:f5:ae:d2:bd:03:5d:7f:27:
b2:bf:88:c1:32:be:42:e7:16:d6:1a:76:ea:09:b9:
19:a0:58:24:53:97:ec:1c:85:41:7a:4a:6e:a6:15:
12:eb:e6:f4:71:39:ef:97:da:53:d2:01:62:6d:a5:
12:56:c3:64:22:d4:14:0a:b8:2c:76:df:e2:a4:f7:
31:1d:7a:68:9a:0e:cd:59:ce:c1:17:6d:ff:7a:34:
4d:80:10:a9:ac:29:fb:2c:cd:4d:cb:f8:90:50:f4:
70:15:fd:fa:8a:35:ee:f4:39:44:98:a0:95:c6:b5:
af:00:eb:83:a0:34:36:a7:6b:ef:cb:d7:6f:e4:84:
3c:e7:f8:a0:15:72:2b:86:e3:d5:41:99:cc:a1:d9:
cd:5f:04:44:69:83:a9:47:70:ee:31:b0:28:d1:92:
ba:b9:42:81:b7:6c:be:8a:f2:8f:45:29:a6:68:f2:
e0:88:3a:b9:b6:5f:cb:d1:54:a7:06:7d:af:30:62:
3e:1a:cb:af:70:42:5d:18:59:36:f1:55:aa:99:7b:
d2:19:95:47:ac:29:12:04:e6:67:29:c4:3e:aa:d6:
95:61:e3:3c:04:0d:e0:b9:a1:ae:38:ac:eb:c3:2a:
eb:5a:12:6b:77:48:f8:70:ba:18:59:7c:23:f5:58:
88:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F1:07:ED:AB:26:EB:D6:85:1F:57:00:D3:F2:86:D6:1F:43:8F:F4
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/AfEH7asm69aFH1cA0_KG1h9Dj_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
103.17.0.0/22
103.23.124.0/22
103.199.88.0/22
103.225.72.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
32:e6:c8:06:c6:00:68:62:21:0d:ae:c6:de:66:8a:68:19:71:
cf:af:cf:52:e1:ab:a5:c8:c6:ed:1b:e8:c3:a1:34:20:5b:39:
68:ef:56:da:28:4b:c9:75:96:ff:90:3a:9a:ea:df:f1:52:15:
3a:6d:ba:1a:58:d5:e7:20:f1:04:2a:9a:2a:ec:ae:53:99:f5:
58:0f:a0:c7:a0:eb:bc:65:49:f2:d8:fb:e8:d0:3c:42:14:f1:
94:82:d3:87:94:e3:4e:1a:96:a3:e1:ef:c4:16:69:2f:ee:76:
9f:5d:e5:30:23:0f:26:98:c3:7f:1c:15:92:58:ac:0b:9f:29:
47:d0:32:33:01:55:08:3b:61:07:4c:9a:2b:e4:7e:f7:d6:8a:
c4:91:3b:b5:56:4e:ab:c7:4f:5a:b5:97:d4:03:91:65:a9:8e:
de:7c:71:7e:2a:a1:66:de:6e:1a:79:06:3e:cd:1b:d8:78:da:
bf:8a:30:99:06:1a:07:ee:5f:3c:ae:16:26:0e:fa:e7:0e:97:
66:a6:79:bd:21:ad:70:9e:e3:dd:c1:69:15:31:2d:05:ad:f1:
f3:2e:d6:5d:3e:da:24:e6:c2:50:5c:93:47:f4:98:cd:78:6a:
af:53:15:a9:da:12:3f:47:c7:f7:e5:16:f7:db:0a:da:b1:8c:
ea:86:0c:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 19:21:50 2024 by rpki-client on console.sobornost.net