Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c4b211-c089-4c05-803b-80ce45861239/1/Ln1C_YgxE2WGWgP1KdQJY5Zikas.roa
File: Ln1C_YgxE2WGWgP1KdQJY5Zikas.roa (raw, json)
Hash identifier: 3EUFd8IxwHmwZnC3ljBW7KIOpmaBqqwxBLml7yaPCxE=
Subject key identifier: 2E:7D:42:FD:88:31:13:65:86:5A:03:F5:29:D4:09:63:96:62:91:AB
Certificate issuer: /CN=a968adf120a74a5d10809cfd3cb6814fc89b1f46
Certificate serial: 019423D734B85C081B0B3E3FB56E27A39CFF
Authority key identifier: A9:68:AD:F1:20:A7:4A:5D:10:80:9C:FD:3C:B6:81:4F:C8:9B:1F:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qWit8SCnSl0QgJz9PLaBT8ibH0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c4b211-c089-4c05-803b-80ce45861239/1/Ln1C_YgxE2WGWgP1KdQJY5Zikas.roa
Signing time: Wed 01 Jan 2025 21:48:13 +0000
ROA not before: Wed 01 Jan 2025 21:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39507
IP address blocks: 46.253.208.0/20 maxlen: 20
91.221.158.0/23 maxlen: 23
91.222.72.0/22 maxlen: 22
91.224.196.0/23 maxlen: 23
91.231.32.0/23 maxlen: 23
91.234.100.0/22 maxlen: 22
91.237.219.0/24 maxlen: 24
91.237.224.0/22 maxlen: 22
91.237.228.0/23 maxlen: 23
95.171.192.0/19 maxlen: 19
176.101.80.0/21 maxlen: 21
176.101.128.0/20 maxlen: 20
185.3.60.0/22 maxlen: 22
185.23.44.0/22 maxlen: 22
185.41.80.0/22 maxlen: 22
185.95.196.0/22 maxlen: 22
185.107.140.0/22 maxlen: 22
185.234.232.0/22 maxlen: 22
185.245.44.0/22 maxlen: 22
185.253.64.0/22 maxlen: 22
188.191.216.0/21 maxlen: 21
194.180.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:34:b8:5c:08:1b:0b:3e:3f:b5:6e:27:a3:9c:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a968adf120a74a5d10809cfd3cb6814fc89b1f46
Validity
Not Before: Jan 1 21:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e7d42fd88311365865a03f529d40963966291ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ef:90:af:cc:0e:2b:0f:20:fc:e8:5f:77:2b:
94:05:34:5f:e9:47:9d:fe:80:e7:c4:8e:c4:7d:ce:
11:1e:08:63:1b:bc:ae:65:6b:29:43:f3:7e:69:39:
01:2f:4a:e9:b0:bb:b8:94:fe:81:62:2e:39:d4:ba:
e3:fb:14:b6:d0:a1:f2:af:09:a4:3d:e3:c2:5c:02:
38:1e:cf:7e:a3:bf:b1:f7:59:e0:8f:91:b6:95:65:
8e:4e:9d:34:1b:41:e8:89:22:3a:8c:86:24:d2:77:
2f:4f:84:e9:c9:0d:d2:d7:b9:9d:e6:27:cc:1a:1a:
f8:13:06:36:24:ff:4a:a1:fa:87:74:77:fb:32:7f:
30:2c:b8:12:20:2d:b8:be:62:d6:de:d7:a4:e4:c3:
1d:3e:86:04:59:42:a3:5f:81:6d:f9:2d:a4:32:83:
40:1f:06:f9:00:64:5d:47:89:3b:ba:f5:b5:14:3f:
51:1c:2e:fd:e2:65:68:d3:53:b7:0f:e8:59:b7:0c:
62:eb:6c:28:bf:f5:02:d2:fa:f9:a8:af:84:ed:a1:
36:00:fb:2e:c8:51:cd:8d:fb:76:9d:66:fb:7f:9d:
c9:ad:0e:35:ee:24:d5:b1:b4:79:8a:36:e0:6a:1c:
65:f3:5c:eb:c2:85:72:e2:0b:07:bc:bb:f2:57:de:
99:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:7D:42:FD:88:31:13:65:86:5A:03:F5:29:D4:09:63:96:62:91:AB
X509v3 Authority Key Identifier:
keyid:A9:68:AD:F1:20:A7:4A:5D:10:80:9C:FD:3C:B6:81:4F:C8:9B:1F:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qWit8SCnSl0QgJz9PLaBT8ibH0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c4b211-c089-4c05-803b-80ce45861239/1/Ln1C_YgxE2WGWgP1KdQJY5Zikas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c4b211-c089-4c05-803b-80ce45861239/1/qWit8SCnSl0QgJz9PLaBT8ibH0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.208.0/20
91.221.158.0/23
91.222.72.0/22
91.224.196.0/23
91.231.32.0/23
91.234.100.0/22
91.237.219.0/24
91.237.224.0-91.237.229.255
95.171.192.0/19
176.101.80.0/21
176.101.128.0/20
185.3.60.0/22
185.23.44.0/22
185.41.80.0/22
185.95.196.0/22
185.107.140.0/22
185.234.232.0/22
185.245.44.0/22
185.253.64.0/22
188.191.216.0/21
194.180.220.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:a7:25:14:1c:74:8e:ea:bd:8c:ed:1d:57:2a:e9:f2:13:75:
33:27:ba:30:b3:e0:62:5a:62:08:da:8c:b6:7d:38:cd:d5:86:
78:b9:7b:40:c3:fc:34:06:42:f3:8f:dc:77:4e:9b:4f:00:99:
4d:f6:26:1e:0d:d9:72:43:46:7f:2a:fc:bc:a1:69:e0:ee:b8:
b2:01:8d:f0:2e:ad:bd:b4:1d:58:08:86:40:4a:8e:94:8b:c0:
30:12:9f:83:c3:69:5f:ea:fc:ee:4a:2f:50:64:76:d4:7e:a7:
9d:e0:0c:8b:68:f2:60:57:65:5e:91:1d:fe:e4:a8:b7:1a:bb:
75:a7:e1:23:34:9a:33:47:38:bf:22:36:32:fe:6f:50:00:1f:
e1:21:60:16:77:ed:54:be:53:5f:89:4e:78:fd:99:16:50:76:
86:54:f9:92:fc:fe:f3:1b:25:cb:6b:fd:a6:aa:dd:78:c5:d0:
82:d5:91:13:e9:3f:1d:c6:86:45:88:72:fe:2e:46:60:a1:97:
39:61:8b:7b:4f:9e:2d:89:cb:23:23:f8:22:f1:e3:a8:d4:19:
76:f9:c7:6b:1b:d6:a4:b8:87:9e:0d:54:24:eb:24:5f:5f:63:
5d:93:c4:ef:56:11:91:b9:87:83:e6:9e:3b:be:54:88:de:8b:
bf:19:d1:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:06 2025 by rpki-client on console.sobornost.net