Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/0dNTZEq5DptnOPF9GxThQS9Incc.roa
File: 0dNTZEq5DptnOPF9GxThQS9Incc.roa (raw, json)
Hash identifier: K3IDAOMZPtmDCUQG3o12zOPhER5UUHk6V0HVvvgUY+o=
Subject key identifier: D1:D3:53:64:4A:B9:0E:9B:67:38:F1:7D:1B:14:E1:41:2F:48:9D:C7
Certificate issuer: /CN=f6eea10afacf3a9c26ea1b1ec488e955e4dfa06a
Certificate serial: 019423D6F1EE2CA4DE0F5C431500BB089198
Authority key identifier: F6:EE:A1:0A:FA:CF:3A:9C:26:EA:1B:1E:C4:88:E9:55:E4:DF:A0:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9u6hCvrPOpwm6hsexIjpVeTfoGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/0dNTZEq5DptnOPF9GxThQS9Incc.roa
Signing time: Wed 01 Jan 2025 21:47:56 +0000
ROA not before: Wed 01 Jan 2025 21:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31263
IP address blocks: 31.44.160.0/20 maxlen: 20
31.193.144.0/20 maxlen: 20
45.67.40.0/22 maxlen: 22
45.94.0.0/22 maxlen: 22
45.142.184.0/22 maxlen: 22
46.102.173.0/24 maxlen: 24
77.81.166.0/24 maxlen: 24
77.240.224.0/20 maxlen: 20
77.241.0.0/21 maxlen: 21
77.241.6.0/24 maxlen: 24
77.241.10.0/23 maxlen: 23
77.241.10.0/24 maxlen: 24
77.241.11.0/24 maxlen: 24
77.241.12.0/22 maxlen: 22
79.133.100.0/22 maxlen: 22
80.68.176.0/20 maxlen: 20
80.88.160.0/20 maxlen: 20
84.247.16.0/24 maxlen: 24
84.247.192.0/18 maxlen: 18
84.247.208.0/20 maxlen: 20
84.247.224.0/19 maxlen: 19
85.204.252.0/24 maxlen: 24
89.34.203.0/24 maxlen: 24
92.62.80.0/20 maxlen: 20
93.91.128.0/20 maxlen: 20
119.12.32.0/20 maxlen: 20
151.2.16.0/22 maxlen: 22
151.2.64.0/19 maxlen: 19
151.2.112.0/20 maxlen: 20
176.62.48.0/20 maxlen: 20
178.175.192.0/18 maxlen: 18
178.238.48.0/20 maxlen: 20
185.5.196.0/22 maxlen: 22
185.229.172.0/22 maxlen: 22
193.135.15.0/24 maxlen: 24
193.135.24.0/24 maxlen: 24
2a02:600::/29 maxlen: 29
2a07:580::/29 maxlen: 29
2a07:4f00::/29 maxlen: 29
2a07:55c0::/29 maxlen: 29
2a07:5ec0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:f1:ee:2c:a4:de:0f:5c:43:15:00:bb:08:91:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6eea10afacf3a9c26ea1b1ec488e955e4dfa06a
Validity
Not Before: Jan 1 21:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d1d353644ab90e9b6738f17d1b14e1412f489dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a5:77:14:15:59:d5:4e:d6:4a:c0:81:82:95:
e3:de:32:a5:c0:33:51:fd:21:21:89:f9:e2:9f:5d:
dc:ba:61:5e:de:04:7d:98:60:57:9a:2f:38:66:61:
02:4b:05:fe:ce:f8:83:26:17:1d:e3:e5:1a:1a:ad:
0e:ff:57:b2:c8:f5:84:fc:84:f1:af:8d:b1:73:21:
b6:0b:f2:d7:05:92:b0:e3:04:1d:8e:ec:30:f1:92:
0e:80:ab:9b:59:06:46:59:4e:47:56:f9:95:87:38:
4f:db:ca:05:61:f3:50:66:cd:c9:b3:13:fa:6e:ce:
a0:ff:69:80:92:0d:48:87:af:81:b6:19:21:0f:a9:
e3:94:80:ae:22:b8:0a:69:07:ba:e5:78:9e:bb:a0:
c9:ca:c5:94:8c:69:c3:69:42:c5:eb:73:7c:81:71:
f5:0f:2c:6b:c6:22:52:d9:b2:b9:a5:87:69:0d:88:
a4:6c:f0:89:48:f5:2c:e7:00:ae:23:95:9e:7a:5d:
db:8c:c2:85:b6:14:c4:72:6a:46:05:6b:1c:95:4a:
b2:ef:dd:89:f3:2b:68:19:1a:5a:02:5d:55:8c:42:
97:1e:b0:27:3e:7b:3f:07:e1:26:a4:4b:0b:34:09:
75:8a:5d:b0:e8:d6:06:50:55:a7:e9:0e:13:d1:9d:
0f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D3:53:64:4A:B9:0E:9B:67:38:F1:7D:1B:14:E1:41:2F:48:9D:C7
X509v3 Authority Key Identifier:
keyid:F6:EE:A1:0A:FA:CF:3A:9C:26:EA:1B:1E:C4:88:E9:55:E4:DF:A0:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9u6hCvrPOpwm6hsexIjpVeTfoGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/0dNTZEq5DptnOPF9GxThQS9Incc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/9u6hCvrPOpwm6hsexIjpVeTfoGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.160.0/20
31.193.144.0/20
45.67.40.0/22
45.94.0.0/22
45.142.184.0/22
46.102.173.0/24
77.81.166.0/24
77.240.224.0/20
77.241.0.0/21
77.241.10.0-77.241.15.255
79.133.100.0/22
80.68.176.0/20
80.88.160.0/20
84.247.16.0/24
84.247.192.0/18
85.204.252.0/24
89.34.203.0/24
92.62.80.0/20
93.91.128.0/20
119.12.32.0/20
151.2.16.0/22
151.2.64.0/19
151.2.112.0/20
176.62.48.0/20
178.175.192.0/18
178.238.48.0/20
185.5.196.0/22
185.229.172.0/22
193.135.15.0/24
193.135.24.0/24
IPv6:
2a02:600::/29
2a07:580::/29
2a07:4f00::/29
2a07:55c0::/29
2a07:5ec0::/29
Signature Algorithm: sha256WithRSAEncryption
04:94:dd:c2:b1:d6:53:a4:8e:aa:1f:6f:38:27:f7:76:c6:57:
04:4c:9b:23:e7:b6:2c:27:5b:47:7f:4d:da:95:43:a1:ab:40:
73:88:a8:29:bd:41:0c:73:33:93:12:71:49:2a:04:d9:83:4d:
f3:fc:de:91:43:f8:c3:8b:ab:7b:38:f2:54:d0:da:7f:ac:ed:
b8:0b:8a:75:a1:9d:b9:dd:64:36:f8:ce:fa:06:60:72:b1:00:
86:6b:86:41:84:62:a6:84:a0:c9:a3:55:cf:0f:e8:d5:a5:f0:
f6:03:aa:17:8e:7c:f7:48:bd:51:9c:79:aa:65:e2:1a:a6:99:
a9:65:bf:f1:ac:8a:7b:f6:4b:d7:db:ea:22:9e:22:4a:f9:58:
de:40:7e:54:f4:56:2b:29:72:f4:4a:34:b5:ee:0f:9a:2c:88:
4b:8f:63:45:73:a4:58:11:bb:7a:92:b7:02:a7:c5:7b:3c:56:
b9:b6:15:b3:05:9a:2b:6d:d1:84:e5:11:99:68:37:fa:66:a4:
f8:77:cf:00:cd:52:4d:b5:ed:83:b4:39:2d:96:6e:aa:d4:93:
29:83:91:42:5d:da:6f:12:ff:2b:b8:a9:5d:ff:4f:dd:11:df:
4e:7a:81:40:24:57:69:e8:19:a6:f3:fb:73:54:c3:1d:a5:4d:
a5:f6:45:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:43 2025 by rpki-client on console.sobornost.net