Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/tbZopt6ge7TsUbVPfaPw685LkGI.roa
File: tbZopt6ge7TsUbVPfaPw685LkGI.roa (raw, json)
Hash identifier: HK1CPw/EwysdBcIfwmH+gCqSRVIljaLjYESmXDDYzrw=
Subject key identifier: B5:B6:68:A6:DE:A0:7B:B4:EC:51:B5:4F:7D:A3:F0:EB:CE:4B:90:62
Certificate issuer: /CN=aebf394e2f1b251c88d988a87161084580786ef5
Certificate serial: 0192952E4BAFAB1573399916BA0A399948CA
Authority key identifier: AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/tbZopt6ge7TsUbVPfaPw685LkGI.roa
Signing time: Wed 16 Oct 2024 11:54:51 +0000
ROA not before: Wed 16 Oct 2024 11:54:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16347
IP address blocks: 5.182.252.0/22 maxlen: 24
37.18.160.0/20 maxlen: 24
37.58.128.0/17 maxlen: 24
37.157.8.0/23 maxlen: 24
37.157.10.0/24 maxlen: 24
37.157.12.0/22 maxlen: 24
37.157.60.0/22 maxlen: 24
45.142.172.0/22 maxlen: 24
45.145.124.0/22 maxlen: 24
46.20.160.0/20 maxlen: 24
62.102.224.0/19 maxlen: 24
62.244.70.0/23 maxlen: 24
62.244.72.0/22 maxlen: 24
62.244.80.0/23 maxlen: 24
62.244.90.0/23 maxlen: 24
62.244.92.0/23 maxlen: 24
79.98.96.0/21 maxlen: 24
81.22.216.0/21 maxlen: 24
91.103.232.0/21 maxlen: 24
91.206.156.0/23 maxlen: 24
91.217.94.0/23 maxlen: 24
91.229.230.0/23 maxlen: 24
92.61.72.0/21 maxlen: 24
94.127.8.0/21 maxlen: 24
103.73.172.0/22 maxlen: 24
103.77.32.0/22 maxlen: 24
103.229.36.0/23 maxlen: 24
103.232.172.0/22 maxlen: 24
109.69.192.0/21 maxlen: 24
109.237.240.0/20 maxlen: 24
128.127.128.0/20 maxlen: 24
146.247.88.0/21 maxlen: 24
149.255.136.0/21 maxlen: 24
149.255.136.0/22 maxlen: 24
178.249.160.0/21 maxlen: 24
185.15.128.0/22 maxlen: 24
185.42.132.0/22 maxlen: 24
185.49.120.0/23 maxlen: 24
185.49.122.0/24 maxlen: 24
185.65.224.0/22 maxlen: 24
185.67.88.0/22 maxlen: 24
185.79.148.0/22 maxlen: 24
185.90.96.0/22 maxlen: 24
185.95.120.0/22 maxlen: 24
185.149.8.0/22 maxlen: 24
185.172.16.0/22 maxlen: 24
185.196.248.0/22 maxlen: 24
185.204.140.0/22 maxlen: 24
185.208.248.0/22 maxlen: 24
185.247.248.0/22 maxlen: 24
188.66.56.0/22 maxlen: 24
193.27.194.0/23 maxlen: 24
193.41.95.0/24 maxlen: 24
193.47.139.0/24 maxlen: 24
193.108.197.0/24 maxlen: 24
193.222.142.0/23 maxlen: 24
193.222.188.0/23 maxlen: 24
194.177.32.0/19 maxlen: 24
195.214.240.0/21 maxlen: 24
212.51.160.0/19 maxlen: 24
213.108.64.0/21 maxlen: 24
213.151.166.0/24 maxlen: 24
213.151.168.0/23 maxlen: 24
213.151.171.0/24 maxlen: 24
213.151.172.0/23 maxlen: 24
213.151.174.0/24 maxlen: 24
213.151.175.0/24 maxlen: 24
2a01:6d8::/32 maxlen: 32
2a01:728::/29 maxlen: 48
2a03:4c00::/29 maxlen: 48
2a03:bf40::/32 maxlen: 32
2a05:df00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:95:2e:4b:af:ab:15:73:39:99:16:ba:0a:39:99:48:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aebf394e2f1b251c88d988a87161084580786ef5
Validity
Not Before: Oct 16 11:54:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5b668a6dea07bb4ec51b54f7da3f0ebce4b9062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:65:66:1f:90:90:1f:ac:da:85:21:78:62:f2:
11:dc:6c:8e:0d:64:62:36:24:64:44:7b:86:a6:8d:
9e:67:e5:43:fa:39:f2:a2:52:d9:61:29:21:91:f0:
a1:28:0c:ec:f5:61:68:fe:c0:8c:07:50:9b:bc:39:
e0:88:4c:53:1f:97:74:e5:92:c4:5a:35:13:d1:04:
68:a1:90:b1:3c:49:45:44:de:89:b6:12:0b:0d:a1:
35:78:79:f8:8d:66:5a:ed:e5:2a:b3:3d:9e:42:9b:
26:d7:b5:20:c3:88:4b:85:d9:5c:28:e1:0a:de:02:
87:19:81:f7:d4:4c:bd:b2:60:75:1d:70:c0:1d:4f:
04:59:5f:17:f1:80:f0:77:a3:f7:9e:96:c9:fe:42:
ae:ea:94:72:8a:2e:78:41:cf:b5:1d:84:be:0c:fd:
11:36:d5:9b:05:89:9b:c9:c5:8b:31:7c:0d:0d:44:
3f:10:b1:ba:f3:98:ac:5f:62:5a:98:00:c5:1a:dd:
5c:69:06:74:62:ac:50:54:f6:67:44:d7:00:51:70:
0e:c6:5a:78:f3:54:d3:db:d6:a4:cc:9d:7b:6b:0b:
0d:6a:43:f6:78:d5:d2:1f:71:cb:55:3b:70:c6:ff:
10:11:d8:71:d8:4d:15:63:4c:a6:92:e6:6c:1b:f8:
a6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B6:68:A6:DE:A0:7B:B4:EC:51:B5:4F:7D:A3:F0:EB:CE:4B:90:62
X509v3 Authority Key Identifier:
keyid:AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/tbZopt6ge7TsUbVPfaPw685LkGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/rr85Ti8bJRyI2YiocWEIRYB4bvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.252.0/22
37.18.160.0/20
37.58.128.0/17
37.157.8.0-37.157.10.255
37.157.12.0/22
37.157.60.0/22
45.142.172.0/22
45.145.124.0/22
46.20.160.0/20
62.102.224.0/19
62.244.70.0-62.244.75.255
62.244.80.0/23
62.244.90.0-62.244.93.255
79.98.96.0/21
81.22.216.0/21
91.103.232.0/21
91.206.156.0/23
91.217.94.0/23
91.229.230.0/23
92.61.72.0/21
94.127.8.0/21
103.73.172.0/22
103.77.32.0/22
103.229.36.0/23
103.232.172.0/22
109.69.192.0/21
109.237.240.0/20
128.127.128.0/20
146.247.88.0/21
149.255.136.0/21
178.249.160.0/21
185.15.128.0/22
185.42.132.0/22
185.49.120.0-185.49.122.255
185.65.224.0/22
185.67.88.0/22
185.79.148.0/22
185.90.96.0/22
185.95.120.0/22
185.149.8.0/22
185.172.16.0/22
185.196.248.0/22
185.204.140.0/22
185.208.248.0/22
185.247.248.0/22
188.66.56.0/22
193.27.194.0/23
193.41.95.0/24
193.47.139.0/24
193.108.197.0/24
193.222.142.0/23
193.222.188.0/23
194.177.32.0/19
195.214.240.0/21
212.51.160.0/19
213.108.64.0/21
213.151.166.0/24
213.151.168.0/23
213.151.171.0-213.151.175.255
IPv6:
2a01:6d8::/32
2a01:728::/29
2a03:4c00::/29
2a03:bf40::/32
2a05:df00::/29
Signature Algorithm: sha256WithRSAEncryption
24:79:8f:c3:a0:e0:97:e9:49:61:7d:6d:e0:57:b9:09:a2:02:
ef:ce:1b:80:cd:87:91:fe:a2:df:ae:f1:34:a9:46:4e:dd:71:
9f:b2:85:78:37:85:60:89:00:fc:15:b1:7c:a3:2a:f6:d3:8a:
33:26:b6:8b:fa:5b:65:db:19:89:1f:73:d7:4f:92:37:9b:20:
0a:f6:3f:94:01:67:f8:72:29:fc:da:e3:54:6c:6d:81:c8:0a:
da:e7:82:d9:a5:d1:89:10:bd:49:b2:98:87:bc:1b:15:38:5e:
b5:30:66:dd:59:fc:48:c6:96:53:22:d8:a8:20:19:25:14:c6:
8b:6d:23:cd:72:9c:b6:2c:cb:fa:c6:8f:d3:7b:80:d4:a8:71:
47:24:6a:8f:bb:cf:74:3c:d4:6b:71:84:61:f3:17:dc:45:50:
62:a1:f1:59:88:d4:65:09:80:2b:8f:5b:db:18:33:db:d9:ea:
0f:fe:bc:8f:0f:27:4c:e2:64:a8:2f:b1:1d:fc:ed:54:dc:b1:
1a:16:1f:25:77:5f:b0:04:6c:ab:d1:4e:2a:13:43:dc:4e:99:
1d:de:e3:2f:1c:cf:de:9e:17:d5:b0:6b:06:29:fe:2a:38:02:
cb:db:59:20:c6:8d:04:7b:94:05:c5:a2:21:dd:00:03:97:0e:
3b:d8:99:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 19:22:11 2024 by rpki-client on console.sobornost.net