Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/mp_P58smkepPURIQ0OWZxTjk7YU.roa
File: mp_P58smkepPURIQ0OWZxTjk7YU.roa (raw, json)
Hash identifier: dgthwSpZuKmO50yEykTctg4zGl2a/soBiZBn4MrCwdc=
Subject key identifier: 9A:9F:CF:E7:CB:26:91:EA:4F:51:12:10:D0:E5:99:C5:38:E4:ED:85
Certificate issuer: /CN=c61953c08980adc94f2fa3a3c1ba95c40d21e7d3
Certificate serial: 0195FE39B5C58F0F5571F566B35D2C9621AE
Authority key identifier: C6:19:53:C0:89:80:AD:C9:4F:2F:A3:A3:C1:BA:95:C4:0D:21:E7:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhlTwImArclPL6OjwbqVxA0h59M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/mp_P58smkepPURIQ0OWZxTjk7YU.roa
Signing time: Fri 04 Apr 2025 00:35:49 +0000
ROA not before: Fri 04 Apr 2025 00:35:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24685
IP address blocks: 31.172.136.0/23 maxlen: 32
31.172.136.0/24 maxlen: 32
31.172.137.0/24 maxlen: 32
31.172.140.0/24 maxlen: 32
31.172.141.0/24 maxlen: 32
80.92.231.0/24 maxlen: 32
80.92.233.0/24 maxlen: 32
80.92.234.0/24 maxlen: 32
80.92.235.0/24 maxlen: 32
82.117.229.0/24 maxlen: 32
91.226.1.0/24 maxlen: 32
92.60.178.0/23 maxlen: 32
92.60.178.0/24 maxlen: 32
92.60.179.0/24 maxlen: 32
128.0.170.0/24 maxlen: 32
128.0.172.0/24 maxlen: 32
128.0.174.0/24 maxlen: 32
185.38.209.0/24 maxlen: 32
185.39.196.0/24 maxlen: 32
185.45.244.0/22 maxlen: 32
185.45.245.0/24 maxlen: 32
185.45.246.0/24 maxlen: 32
193.111.0.0/24 maxlen: 32
193.111.48.0/23 maxlen: 32
212.110.134.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:fe:39:b5:c5:8f:0f:55:71:f5:66:b3:5d:2c:96:21:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61953c08980adc94f2fa3a3c1ba95c40d21e7d3
Validity
Not Before: Apr 4 00:35:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9a9fcfe7cb2691ea4f511210d0e599c538e4ed85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:50:34:99:4e:33:28:5e:d4:df:71:82:59:de:
d7:f9:7c:f0:2c:8b:4b:50:9f:4a:a9:75:21:c7:7d:
e3:02:99:b5:e9:09:a3:3d:17:65:eb:b0:50:9e:70:
f5:7d:55:bf:ca:4d:da:ad:0f:bd:d6:79:a9:f7:12:
29:9a:ed:db:20:06:83:08:02:cc:09:02:30:4f:ae:
79:e9:b6:c3:14:06:70:96:9c:35:b8:77:84:23:f7:
d7:e4:15:7c:79:c2:7e:9c:f7:7c:04:e3:23:e3:58:
0d:74:aa:60:59:89:c1:72:1d:7c:67:6b:d2:79:42:
f9:45:ff:95:ca:04:39:9c:8d:03:5c:e5:c9:fe:39:
5b:09:0e:5f:fc:15:1c:a9:72:2b:02:ec:14:79:ee:
eb:65:15:e2:76:66:9b:52:db:75:7c:5e:0c:75:99:
f3:04:a0:8a:22:c9:67:03:42:86:cb:07:57:fe:ec:
e0:9f:45:68:28:08:87:70:7b:74:9a:cc:ee:31:d9:
0f:7c:22:7a:7a:0d:6c:10:57:fb:b9:c3:ab:c5:51:
83:61:80:9f:e6:0a:48:6e:70:b7:c5:42:21:47:03:
e5:4f:26:32:ee:fd:67:d2:0a:2a:e2:51:93:0e:18:
2e:51:3b:0a:fc:7d:57:f5:ad:43:71:db:a3:27:16:
6a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:9F:CF:E7:CB:26:91:EA:4F:51:12:10:D0:E5:99:C5:38:E4:ED:85
X509v3 Authority Key Identifier:
keyid:C6:19:53:C0:89:80:AD:C9:4F:2F:A3:A3:C1:BA:95:C4:0D:21:E7:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhlTwImArclPL6OjwbqVxA0h59M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/mp_P58smkepPURIQ0OWZxTjk7YU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/xhlTwImArclPL6OjwbqVxA0h59M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.136.0/23
31.172.140.0/23
80.92.231.0/24
80.92.233.0-80.92.235.255
82.117.229.0/24
91.226.1.0/24
92.60.178.0/23
128.0.170.0/24
128.0.172.0/24
128.0.174.0/24
185.38.209.0/24
185.39.196.0/24
185.45.244.0/22
193.111.0.0/24
193.111.48.0/23
212.110.134.0/23
Signature Algorithm: sha256WithRSAEncryption
84:16:4d:1c:73:71:6c:14:39:87:d0:c2:81:ea:33:f0:b2:5f:
57:c8:23:b6:95:dc:31:c9:4e:7a:e9:a1:ec:d3:1f:c1:41:d5:
e4:80:cb:82:b7:3f:8e:dd:a5:07:9d:df:00:a4:84:36:7a:f2:
89:ed:7e:d1:f7:1e:09:f8:24:c0:94:2b:7b:0e:40:a4:04:ed:
89:74:62:ef:62:eb:b8:26:f2:aa:2e:32:04:11:6b:fa:32:07:
07:97:ba:2d:29:b1:92:28:a6:9d:39:4d:9e:83:ad:5e:b0:d3:
dd:f5:57:bb:cc:7d:7b:cb:bc:17:48:7e:f4:38:0d:0f:3f:52:
cd:2c:06:fb:15:16:fe:8a:41:c6:3c:55:98:86:7b:40:03:9a:
b8:d4:a7:3b:55:ba:e4:58:f9:9d:01:75:20:82:3d:1c:20:9e:
9e:22:38:d6:8b:52:e6:e1:65:76:76:a2:2f:21:3f:04:25:fc:
68:b4:6e:44:f8:43:8a:b5:79:38:74:11:9a:3d:17:70:e9:66:
4b:38:2d:99:59:8a:64:cc:d4:f5:7f:bc:dd:76:96:ca:e1:5d:
8a:ff:3e:19:ac:bf:db:00:64:ba:1e:b4:20:55:0b:a7:17:a1:
ea:6f:ea:5f:43:98:85:02:45:2e:c0:3b:c2:cf:0e:a1:e0:f2:
af:02:7b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:32 2025 by rpki-client on console.sobornost.net