Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/OrCVGykIMXyPYpqlPTqLIeozZz0.roa
File: OrCVGykIMXyPYpqlPTqLIeozZz0.roa (raw, json)
Hash identifier: A1J10Z4DWPbMlrDxqvhMqPqFaQzplk8vUPd3RdWRluM=
Subject key identifier: 3A:B0:95:1B:29:08:31:7C:8F:62:9A:A5:3D:3A:8B:21:EA:33:67:3D
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01962E9FB355B2D3C9BF6879E3A49807C495
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/OrCVGykIMXyPYpqlPTqLIeozZz0.roa
Signing time: Sun 13 Apr 2025 10:08:59 +0000
ROA not before: Sun 13 Apr 2025 10:08:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209372
IP address blocks: 46.3.10.0/24 maxlen: 24
46.3.11.0/24 maxlen: 24
46.3.12.0/22 maxlen: 24
46.3.20.0/22 maxlen: 24
46.3.31.0/24 maxlen: 24
46.3.48.0/20 maxlen: 24
46.3.76.0/24 maxlen: 24
46.3.77.0/24 maxlen: 24
46.3.78.0/24 maxlen: 24
46.3.79.0/24 maxlen: 24
46.3.84.0/22 maxlen: 24
46.3.84.0/24 maxlen: 24
46.3.86.0/24 maxlen: 24
46.3.87.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.116.0/24 maxlen: 24
46.3.135.0/24 maxlen: 24
46.3.136.0/22 maxlen: 22
46.3.144.0/22 maxlen: 22
46.3.148.0/22 maxlen: 22
46.3.152.0/24 maxlen: 24
46.3.153.0/24 maxlen: 24
46.3.154.0/24 maxlen: 24
46.3.155.0/24 maxlen: 24
46.3.156.0/24 maxlen: 24
46.3.157.0/24 maxlen: 24
46.3.158.0/24 maxlen: 24
46.3.159.0/24 maxlen: 24
46.3.164.0/23 maxlen: 23
46.3.166.0/23 maxlen: 23
46.3.168.0/21 maxlen: 24
46.3.205.0/24 maxlen: 24
46.3.232.0/22 maxlen: 22
46.3.238.0/24 maxlen: 24
46.3.239.0/24 maxlen: 24
46.232.0.0/17 maxlen: 24
46.232.21.0/24 maxlen: 24
46.232.22.0/24 maxlen: 24
46.232.23.0/24 maxlen: 24
46.232.112.0/23 maxlen: 23
46.232.114.0/23 maxlen: 23
80.243.128.0/20 maxlen: 24
149.126.192.0/18 maxlen: 24
149.126.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2e:9f:b3:55:b2:d3:c9:bf:68:79:e3:a4:98:07:c4:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Apr 13 10:08:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3ab0951b2908317c8f629aa53d3a8b21ea33673d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1e:59:df:8f:2f:27:3b:33:af:f7:95:e2:59:
65:02:60:a0:f8:30:8c:02:ee:59:e0:04:5f:89:4d:
a7:85:f1:ee:2f:0d:1c:c2:dd:f3:89:51:ec:6a:40:
19:33:12:58:cf:e8:4b:63:98:7b:4f:03:73:81:d8:
d0:52:cf:ef:af:ef:e8:b5:ad:92:cf:5b:c9:bf:ef:
89:88:30:c8:96:02:22:16:5a:ee:ae:3c:5d:38:d5:
c7:18:03:50:d9:5e:e8:02:07:72:cc:3f:37:e7:a4:
65:aa:61:0f:9a:c1:c7:41:fd:54:59:2c:42:7e:ed:
bc:3f:c4:84:59:dd:75:48:79:93:b3:59:ad:30:fb:
17:90:a9:e1:c8:e1:9d:01:f9:4a:15:4b:ab:b6:c1:
39:b9:42:59:1b:64:a1:f6:24:b6:ad:95:f9:ad:84:
fa:e8:cd:51:20:6d:92:fb:a2:9d:3c:64:49:c1:7b:
62:8e:c6:57:54:ad:6f:8d:12:98:1f:6c:c9:89:9b:
54:f3:6a:0e:2f:7b:83:1d:2a:33:11:c7:d3:d9:f0:
c4:a1:df:cf:29:ca:ee:da:30:a2:1a:a4:e1:bf:d0:
cb:e0:dd:1e:3d:cc:b2:b2:ba:d1:c0:6f:42:83:b7:
ff:62:e4:a8:a7:b9:83:e4:16:79:37:24:6f:59:cf:
17:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B0:95:1B:29:08:31:7C:8F:62:9A:A5:3D:3A:8B:21:EA:33:67:3D
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/OrCVGykIMXyPYpqlPTqLIeozZz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.10.0-46.3.15.255
46.3.20.0/22
46.3.31.0/24
46.3.48.0/20
46.3.76.0/22
46.3.84.0-46.3.88.255
46.3.116.0/24
46.3.135.0-46.3.139.255
46.3.144.0/20
46.3.164.0-46.3.175.255
46.3.205.0/24
46.3.232.0/22
46.3.238.0/23
46.232.0.0/17
80.243.128.0/20
149.126.192.0/18
Signature Algorithm: sha256WithRSAEncryption
34:b4:35:b5:a3:db:a7:2d:6e:f3:f9:b3:8c:da:55:be:f7:65:
bb:ab:fd:a6:68:45:35:b3:ec:48:36:fa:f6:6a:b0:af:ea:1e:
d4:f1:ff:b6:04:57:44:a8:82:f1:fc:0f:86:8c:5d:6b:aa:09:
9b:8e:b7:3a:e5:c9:7c:bc:b5:6b:91:00:7f:3c:72:f5:0e:50:
d8:57:b2:c6:2a:10:f0:27:88:cf:13:d2:95:42:95:1d:4f:87:
5f:17:a6:ee:61:64:1c:06:7c:e7:ee:47:90:4a:06:dd:35:c0:
c7:90:91:b5:9c:63:93:74:bf:0a:3d:85:d0:d5:dd:a5:eb:80:
ee:aa:3d:64:28:bf:fc:d9:4d:45:e6:65:0e:01:0c:ae:af:ef:
47:a1:0e:59:32:1e:64:96:59:ee:98:93:cb:c4:90:6f:8a:2f:
66:19:09:d3:00:b6:1a:e2:13:7e:df:02:9a:58:0b:c5:2d:38:
52:da:25:b7:2d:53:f3:01:bf:de:89:5d:5f:61:02:1b:5e:6e:
b6:99:6b:3a:56:8f:97:9b:59:3c:28:d9:2f:42:ac:84:f1:9f:
c7:2c:30:d7:d1:2c:7d:db:6d:e6:39:d4:62:cb:f9:60:1b:dc:
fe:25:8e:dd:c8:db:9b:9b:12:e3:b6:c2:57:0b:32:c3:5e:f1:
4c:04:0c:36
-----BEGIN CERTIFICATE-----
MIIFfDCCBGSgAwIBAgISAZYun7NVstPJv2h546SYB8SVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjUwNDEzMTAwODU5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYWIwOTUxYjI5MDgzMTdjOGY2MjlhYTUzZDNhOGIyMWVhMzM2NzNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0R5Z348vJzszr/eV4lllAmCg+DCM
Au5Z4ARfiU2nhfHuLw0cwt3ziVHsakAZMxJYz+hLY5h7TwNzgdjQUs/vr+/ota2S
z1vJv++JiDDIlgIiFlrurjxdONXHGANQ2V7oAgdyzD8356RlqmEPmsHHQf1UWSxC
fu28P8SEWd11SHmTs1mtMPsXkKnhyOGdAflKFUurtsE5uUJZG2Sh9iS2rZX5rYT6
6M1RIG2S+6KdPGRJwXtijsZXVK1vjRKYH2zJiZtU82oOL3uDHSozEcfT2fDEod/P
Kcru2jCiGqThv9DL4N0ePcyysrrRwG9Cg7f/YuSop7mD5BZ5NyRvWc8XQQIDAQAB
o4ICiDCCAoQwHQYDVR0OBBYEFDqwlRspCDF8j2KapT06iyHqM2c9MB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvT3JDVkd5a0lNWHlQWXBxbFBUcUxJZW96WnowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGdBggrBgEFBQcBBwEB/wSBjTCBijCBhwQCAAEwgYAwDAME
AS4DCgMEBC4DAAMEAi4DFAMEAC4DHwMEBC4DMAMEAi4DTDAMAwQCLgNUAwQALgNY
AwQALgN0MAwDBAAuA4cDBAIuA4gDBAQuA5AwDAMEAi4DpAMEBC4DoAMEAC4DzQME
Ai4D6AMEAS4D7gMEBy7oAAMEBFDzgAMEBpV+wDANBgkqhkiG9w0BAQsFAAOCAQEA
NLQ1taPbpy1u8/mzjNpVvvdlu6v9pmhFNbPsSDb69mqwr+oe1PH/tgRXRKiC8fwP
hoxda6oJm463OuXJfLy1a5EAfzxy9Q5Q2FeyxioQ8CeIzxPSlUKVHU+HXxem7mFk
HAZ85+5HkEoG3TXAx5CRtZxjk3S/Cj2F0NXdpeuA7qo9ZCi//NlNReZlDgEMrq/v
R6EOWTIeZJZZ7piTy8SQb4ovZhkJ0wC2GuITft8CmlgLxS04Utolty1T8wG/3old
X2ECG15utplrOlaPl5tZPCjZL0KshPGfxyww19Esfdtt5jnUYsv5YBvc/iWO3cjb
m5sS47bCVwsyw17xTAQMNg==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:32 2025 by rpki-client on console.sobornost.net