Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/FkzaRDm_51Hgkpb9h40ypfBQo5w.roa
File: FkzaRDm_51Hgkpb9h40ypfBQo5w.roa (raw, json)
Hash identifier: qr0lThizCSthXqwfu8LAts8hWTlZUgIQg/XXd+ZpuKM=
Subject key identifier: 16:4C:DA:44:39:BF:E7:51:E0:92:96:FD:87:8D:32:A5:F0:50:A3:9C
Certificate issuer: /CN=aebf394e2f1b251c88d988a87161084580786ef5
Certificate serial: 019392449B97A6B92F7688EAD1B8CD21C9AF
Authority key identifier: AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/FkzaRDm_51Hgkpb9h40ypfBQo5w.roa
Signing time: Wed 04 Dec 2024 15:23:09 +0000
ROA not before: Wed 04 Dec 2024 15:23:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16347
IP address blocks: 5.182.252.0/22 maxlen: 24
37.18.160.0/20 maxlen: 24
37.58.128.0/17 maxlen: 24
37.157.8.0/23 maxlen: 24
37.157.10.0/24 maxlen: 24
37.157.12.0/22 maxlen: 24
37.157.60.0/22 maxlen: 24
45.142.172.0/22 maxlen: 24
45.145.124.0/22 maxlen: 24
46.20.160.0/20 maxlen: 24
62.102.224.0/19 maxlen: 24
62.244.70.0/23 maxlen: 24
62.244.72.0/22 maxlen: 24
62.244.80.0/23 maxlen: 24
62.244.90.0/23 maxlen: 24
62.244.92.0/23 maxlen: 24
79.98.96.0/21 maxlen: 24
81.22.216.0/21 maxlen: 24
91.103.232.0/21 maxlen: 24
91.206.156.0/23 maxlen: 24
91.217.94.0/23 maxlen: 24
91.229.230.0/23 maxlen: 24
92.61.72.0/21 maxlen: 24
94.127.8.0/21 maxlen: 24
103.73.172.0/22 maxlen: 24
103.77.32.0/22 maxlen: 24
103.229.36.0/23 maxlen: 24
103.232.172.0/22 maxlen: 24
109.69.192.0/21 maxlen: 24
109.237.240.0/20 maxlen: 24
128.127.128.0/20 maxlen: 24
146.247.88.0/21 maxlen: 24
149.255.136.0/21 maxlen: 24
178.249.160.0/21 maxlen: 24
185.15.128.0/22 maxlen: 24
185.42.132.0/22 maxlen: 24
185.49.120.0/23 maxlen: 24
185.49.122.0/24 maxlen: 24
185.65.224.0/22 maxlen: 24
185.67.88.0/22 maxlen: 24
185.79.148.0/22 maxlen: 24
185.90.96.0/22 maxlen: 24
185.95.120.0/22 maxlen: 24
185.149.8.0/22 maxlen: 24
185.172.16.0/22 maxlen: 24
185.196.248.0/22 maxlen: 24
185.204.140.0/22 maxlen: 24
185.208.248.0/22 maxlen: 24
185.247.248.0/22 maxlen: 24
188.66.56.0/22 maxlen: 24
193.27.194.0/23 maxlen: 24
193.41.95.0/24 maxlen: 24
193.47.139.0/24 maxlen: 24
193.108.197.0/24 maxlen: 24
193.222.142.0/23 maxlen: 24
193.222.188.0/23 maxlen: 24
194.177.32.0/19 maxlen: 24
195.214.240.0/21 maxlen: 24
212.51.160.0/19 maxlen: 24
213.108.64.0/21 maxlen: 24
213.151.166.0/24 maxlen: 24
213.151.168.0/23 maxlen: 24
213.151.171.0/24 maxlen: 24
213.151.172.0/23 maxlen: 24
213.151.174.0/24 maxlen: 24
213.151.175.0/24 maxlen: 24
2a00:bc80::/32 maxlen: 32
2a01:6d8::/32 maxlen: 32
2a01:728::/29 maxlen: 48
2a03:4c00::/29 maxlen: 48
2a03:bf40::/32 maxlen: 32
2a05:df00::/29 maxlen: 29
2a0d:4240::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:92:44:9b:97:a6:b9:2f:76:88:ea:d1:b8:cd:21:c9:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aebf394e2f1b251c88d988a87161084580786ef5
Validity
Not Before: Dec 4 15:23:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=164cda4439bfe751e09296fd878d32a5f050a39c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a6:f4:75:21:51:03:19:42:29:57:49:0e:07:
15:ed:30:40:67:52:c8:13:b5:02:9b:f3:a9:d4:74:
13:4a:37:3c:16:41:00:1f:12:ed:d5:80:50:d3:bc:
26:55:f7:35:8f:3a:65:73:bd:54:1b:27:3f:6d:f3:
da:e2:16:08:c7:68:1a:e6:5c:c8:3b:42:e1:0f:83:
3d:2f:92:cf:10:e5:f6:45:71:7d:53:a3:17:e4:cf:
38:1d:ca:79:e4:b3:ed:25:26:00:99:9f:0d:35:5c:
bf:21:5d:1a:06:49:95:e5:d2:6c:16:c5:94:59:b0:
6d:41:27:fd:1f:07:2b:e1:4a:84:f1:a5:44:d8:74:
fb:3a:4c:98:e4:48:c5:d5:82:09:89:25:d6:fc:6e:
52:70:07:25:bf:d2:d6:6b:80:a4:6f:4b:f0:ed:25:
ee:a5:9f:08:5a:bb:ee:4c:68:43:a3:b7:30:b8:06:
45:cc:63:2c:1d:46:4f:f5:ba:33:67:6e:7e:16:9a:
5a:6a:89:f6:98:a3:7c:90:fc:37:31:49:7a:83:25:
ad:6a:18:73:6c:e2:92:3c:92:f1:2f:00:b0:48:34:
ab:f1:c9:9e:3e:a8:cf:1d:89:19:c1:c3:53:de:fe:
10:b2:e3:51:b7:b1:56:eb:e4:67:fb:8a:52:cf:2e:
eb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:4C:DA:44:39:BF:E7:51:E0:92:96:FD:87:8D:32:A5:F0:50:A3:9C
X509v3 Authority Key Identifier:
keyid:AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/FkzaRDm_51Hgkpb9h40ypfBQo5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/rr85Ti8bJRyI2YiocWEIRYB4bvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.252.0/22
37.18.160.0/20
37.58.128.0/17
37.157.8.0-37.157.10.255
37.157.12.0/22
37.157.60.0/22
45.142.172.0/22
45.145.124.0/22
46.20.160.0/20
62.102.224.0/19
62.244.70.0-62.244.75.255
62.244.80.0/23
62.244.90.0-62.244.93.255
79.98.96.0/21
81.22.216.0/21
91.103.232.0/21
91.206.156.0/23
91.217.94.0/23
91.229.230.0/23
92.61.72.0/21
94.127.8.0/21
103.73.172.0/22
103.77.32.0/22
103.229.36.0/23
103.232.172.0/22
109.69.192.0/21
109.237.240.0/20
128.127.128.0/20
146.247.88.0/21
149.255.136.0/21
178.249.160.0/21
185.15.128.0/22
185.42.132.0/22
185.49.120.0-185.49.122.255
185.65.224.0/22
185.67.88.0/22
185.79.148.0/22
185.90.96.0/22
185.95.120.0/22
185.149.8.0/22
185.172.16.0/22
185.196.248.0/22
185.204.140.0/22
185.208.248.0/22
185.247.248.0/22
188.66.56.0/22
193.27.194.0/23
193.41.95.0/24
193.47.139.0/24
193.108.197.0/24
193.222.142.0/23
193.222.188.0/23
194.177.32.0/19
195.214.240.0/21
212.51.160.0/19
213.108.64.0/21
213.151.166.0/24
213.151.168.0/23
213.151.171.0-213.151.175.255
IPv6:
2a00:bc80::/32
2a01:6d8::/32
2a01:728::/29
2a03:4c00::/29
2a03:bf40::/32
2a05:df00::/29
2a0d:4240::/29
Signature Algorithm: sha256WithRSAEncryption
6b:a6:4a:6c:77:46:ab:93:8b:02:30:d1:c6:d0:86:0d:bf:86:
53:fc:38:52:6c:d5:1e:b5:94:48:e6:1e:f4:00:40:61:d5:fb:
8b:7d:c2:99:a3:0d:b1:b4:36:19:d6:02:b5:fe:ff:af:71:1b:
9d:bd:c1:0e:15:08:b0:92:4a:35:09:2a:86:73:d1:03:c3:27:
67:05:3b:83:87:fa:4a:67:a6:dc:fa:14:04:03:5c:b0:c4:c1:
d4:4e:19:e6:51:82:30:91:e4:7d:c7:11:bc:07:87:b9:c4:9e:
da:35:59:91:95:71:d2:49:4d:f2:c0:d9:8e:0f:fe:0b:de:ae:
3a:f9:8f:77:7a:84:52:59:b2:83:9b:61:53:a8:77:d3:6b:6e:
f2:5b:aa:58:f5:dc:35:89:3d:27:2f:8e:e5:c1:64:17:e4:c9:
2f:e9:a0:8b:09:2a:2e:6d:81:4a:63:60:33:2a:20:83:06:ca:
01:57:63:2b:1d:ed:f1:c1:b3:52:77:8a:2b:ea:ac:6e:20:6f:
9a:92:f3:a6:80:9f:b1:e6:24:d5:17:17:d6:93:70:43:81:be:
50:2b:99:9a:38:3c:50:d9:67:84:40:79:0e:8e:22:19:ca:d9:
57:d9:34:f4:60:da:f7:da:fd:2e:0f:07:a6:ee:77:7e:64:03:
59:59:56:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:51 2024 by rpki-client on console.sobornost.net