Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/096eaf-634b-4c49-b68e-c2c61518589f/1/WmIdnk_9nH4b99INea_I2KNfOsk.roa
File: WmIdnk_9nH4b99INea_I2KNfOsk.roa (raw, json)
Hash identifier: M5AL1LDO4kJuImuQDNFPsC6NQYMR6AeQGyLWZ0QYZSI=
Subject key identifier: 5A:62:1D:9E:4F:FD:9C:7E:1B:F7:D2:0D:79:AF:C8:D8:A3:5F:3A:C9
Certificate issuer: /CN=6e8b028d18274d21a7316aea3ccce9158b54f481
Certificate serial: 0194228D7B36576FE566D4B490C99FCC0F1B
Authority key identifier: 6E:8B:02:8D:18:27:4D:21:A7:31:6A:EA:3C:CC:E9:15:8B:54:F4:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bosCjRgnTSGnMWrqPMzpFYtU9IE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/096eaf-634b-4c49-b68e-c2c61518589f/1/WmIdnk_9nH4b99INea_I2KNfOsk.roa
Signing time: Wed 01 Jan 2025 15:48:04 +0000
ROA not before: Wed 01 Jan 2025 15:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198913
IP address blocks: 31.220.147.0/24 maxlen: 24
46.243.120.0/21 maxlen: 21
46.243.121.0/24 maxlen: 24
46.243.122.0/24 maxlen: 24
46.243.123.0/24 maxlen: 24
46.243.124.0/24 maxlen: 24
46.243.125.0/24 maxlen: 24
46.243.126.0/24 maxlen: 24
46.243.127.0/24 maxlen: 24
185.132.24.0/22 maxlen: 22
185.132.24.0/24 maxlen: 24
185.132.25.0/24 maxlen: 24
185.132.26.0/24 maxlen: 24
185.132.27.0/24 maxlen: 24
185.173.228.0/22 maxlen: 22
185.173.228.0/24 maxlen: 24
185.173.229.0/24 maxlen: 24
185.173.230.0/24 maxlen: 24
185.173.231.0/24 maxlen: 24
217.19.13.0/24 maxlen: 24
2a03:d400::/32 maxlen: 32
2a03:d400:13::/48 maxlen: 48
2a03:d400:24::/48 maxlen: 48
2a03:d400:25::/48 maxlen: 48
2a03:d400:26::/48 maxlen: 48
2a03:d400:27::/48 maxlen: 48
2a03:d400:120::/48 maxlen: 48
2a03:d400:121::/48 maxlen: 48
2a03:d400:122::/48 maxlen: 48
2a03:d400:123::/48 maxlen: 48
2a03:d400:124::/48 maxlen: 48
2a03:d400:125::/48 maxlen: 48
2a03:d400:126::/48 maxlen: 48
2a03:d400:127::/48 maxlen: 48
2a03:d400:228::/48 maxlen: 48
2a03:d400:229::/48 maxlen: 48
2a03:d400:230::/48 maxlen: 48
2a03:d400:231::/48 maxlen: 48
2a03:d400:1337::/48 maxlen: 48
2a0b:6f00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:7b:36:57:6f:e5:66:d4:b4:90:c9:9f:cc:0f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e8b028d18274d21a7316aea3ccce9158b54f481
Validity
Not Before: Jan 1 15:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a621d9e4ffd9c7e1bf7d20d79afc8d8a35f3ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:57:df:65:c8:8c:dd:78:9d:3d:34:95:1d:90:
d6:4b:1a:4f:4e:63:c5:40:e2:ab:9d:77:27:0c:ad:
8c:1d:78:c2:bc:81:ae:37:74:d8:d2:fa:3d:ae:d6:
01:b0:0b:a3:df:bf:ff:72:5b:03:2f:9c:2c:75:57:
67:eb:0b:28:24:8e:e1:52:3e:0d:31:9e:f0:d0:79:
22:6e:9c:46:04:08:e1:92:ae:69:41:22:3a:a0:7f:
22:d8:77:4c:20:e6:b6:66:f6:ad:a7:12:79:54:ec:
6d:cb:32:eb:17:91:53:17:7b:27:53:16:1f:79:e9:
26:28:d4:47:52:6a:e5:da:f7:be:56:5a:54:d2:9a:
5c:b7:73:7c:52:d6:ff:26:67:0f:a5:0f:1a:27:bf:
24:f4:6c:43:9d:a8:a3:6d:07:dd:b2:93:a2:84:3b:
97:22:6d:73:6d:7d:f2:7d:00:0f:bc:bf:04:62:d5:
11:d0:aa:a1:bd:ab:90:09:ad:e1:24:b6:28:23:db:
70:d3:17:90:a4:73:75:0e:8e:59:83:18:85:1d:e7:
21:3e:39:ea:84:25:02:fa:a3:e6:f8:57:9d:91:d5:
0d:f7:1f:bf:d3:31:39:6c:88:fb:29:87:b9:34:b1:
3b:72:6c:76:e1:d2:20:1d:f0:6b:c8:4a:e5:b7:70:
5c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:62:1D:9E:4F:FD:9C:7E:1B:F7:D2:0D:79:AF:C8:D8:A3:5F:3A:C9
X509v3 Authority Key Identifier:
keyid:6E:8B:02:8D:18:27:4D:21:A7:31:6A:EA:3C:CC:E9:15:8B:54:F4:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bosCjRgnTSGnMWrqPMzpFYtU9IE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/096eaf-634b-4c49-b68e-c2c61518589f/1/WmIdnk_9nH4b99INea_I2KNfOsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/096eaf-634b-4c49-b68e-c2c61518589f/1/bosCjRgnTSGnMWrqPMzpFYtU9IE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.147.0/24
46.243.120.0/21
185.132.24.0/22
185.173.228.0/22
217.19.13.0/24
IPv6:
2a03:d400::/32
2a0b:6f00::/29
Signature Algorithm: sha256WithRSAEncryption
4c:18:e1:b4:24:9d:54:54:28:69:89:e5:a8:d9:da:01:82:be:
2a:21:b7:d5:f6:15:04:6f:ca:32:c5:93:2c:92:65:07:47:d4:
64:19:21:83:08:2d:bc:1e:e2:11:5c:75:08:48:83:bf:1a:4a:
ed:53:e2:48:cb:3b:ae:8d:9f:fd:97:01:a8:ef:d5:02:f2:b3:
6d:ca:dc:8f:0e:4d:e5:5e:52:e7:fd:0c:ac:9b:72:fa:c9:f7:
0f:e4:3a:58:6e:bc:7c:3e:20:c1:fa:02:8d:94:c1:d2:20:4d:
2c:62:8d:e2:86:71:01:71:55:b3:d4:31:af:cc:a1:71:71:42:
9d:45:2e:55:b2:b7:32:57:cf:9d:b7:11:f7:1c:3e:5a:9f:1b:
c1:2d:62:7c:b8:4a:42:cc:52:bb:6d:77:69:83:00:6f:de:f8:
40:f2:a7:d8:34:6b:61:36:b0:4c:71:ec:1d:e7:01:82:2f:c9:
01:03:cb:64:1c:36:a1:73:05:46:ae:7d:36:99:83:b4:df:54:
b8:94:43:f8:f7:69:e6:36:25:31:91:b8:c6:0d:c2:51:f9:15:
f9:3f:1c:7a:8e:86:6c:4e:54:14:5b:c4:18:0a:a8:8f:80:aa:
9a:4b:11:20:16:e5:c7:99:6f:f4:26:4e:c7:09:f7:6f:32:cf:
fb:c5:04:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:05 2025 by rpki-client on console.sobornost.net