Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/9nLzr5t0tBQoEmKe93YfREhsmgQ.roa
File: 9nLzr5t0tBQoEmKe93YfREhsmgQ.roa (raw, json)
Hash identifier: nq8Jvz2+Wzwjp00FPjQjEXmCX9RK6kzLPfGyte9UFWI=
Subject key identifier: F6:72:F3:AF:9B:74:B4:14:28:12:62:9E:F7:76:1F:44:48:6C:9A:04
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 019192C0ED87CB8E556274FB891F8038B220
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/9nLzr5t0tBQoEmKe93YfREhsmgQ.roa
Signing time: Tue 27 Aug 2024 07:33:22 +0000
ROA not before: Tue 27 Aug 2024 07:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8439
IP address blocks: 5.28.16.0/20 maxlen: 20
31.28.32.0/19 maxlen: 19
37.9.144.0/20 maxlen: 20
62.106.96.0/19 maxlen: 19
62.106.96.0/20 maxlen: 20
62.106.112.0/21 maxlen: 21
62.106.120.0/21 maxlen: 21
81.28.160.0/19 maxlen: 19
85.114.160.0/19 maxlen: 19
92.240.128.0/20 maxlen: 20
95.128.160.0/22 maxlen: 22
95.128.164.0/22 maxlen: 22
109.226.64.0/18 maxlen: 18
185.10.180.0/22 maxlen: 22
185.50.8.0/22 maxlen: 22
188.122.224.0/19 maxlen: 19
193.106.240.0/22 maxlen: 22
213.178.32.0/21 maxlen: 21
213.178.40.0/21 maxlen: 21
213.178.48.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:92:c0:ed:87:cb:8e:55:62:74:fb:89:1f:80:38:b2:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Aug 27 07:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f672f3af9b74b4142812629ef7761f44486c9a04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:83:e2:c7:27:3b:63:bd:9f:6b:eb:c2:df:41:
99:97:88:84:37:d2:f7:75:60:9b:2c:03:2f:51:73:
96:40:ac:9f:7b:48:49:a0:57:83:73:0b:a0:1e:88:
64:57:db:23:42:18:1c:3c:18:e9:ba:6c:33:3d:44:
47:c0:6a:10:30:58:51:7b:a2:22:b9:8e:ea:2d:e7:
eb:44:2a:6d:41:a8:e7:6a:50:01:f9:a1:69:28:44:
9b:d3:48:27:ac:75:72:f0:f5:c8:c3:13:b6:c0:ee:
d4:3c:ca:be:94:b2:33:94:4b:6a:63:43:b3:29:9e:
f2:25:97:14:56:dc:0c:0b:0e:5d:db:5f:1a:3f:bd:
91:aa:da:89:cf:1e:40:0b:a3:2e:9a:3a:e1:21:74:
56:65:f6:aa:75:6e:24:48:b0:fb:3b:35:c9:87:1e:
8f:75:ce:78:bd:fe:01:77:1f:2f:f2:9c:f0:2f:6c:
bc:54:40:7b:0e:4a:e6:72:f9:23:0e:d8:b3:63:1b:
27:bd:76:d5:69:f3:f6:c9:10:9b:d3:1c:1c:c9:b9:
5b:a0:fd:74:4e:09:4f:da:3b:12:5f:1a:a6:c0:a8:
31:97:d7:c2:6d:2e:1f:97:1a:72:1f:06:c0:f0:a5:
06:99:14:e3:c9:dc:ef:a2:b3:d7:8d:92:7e:1f:c9:
c9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:72:F3:AF:9B:74:B4:14:28:12:62:9E:F7:76:1F:44:48:6C:9A:04
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/9nLzr5t0tBQoEmKe93YfREhsmgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.28.16.0/20
31.28.32.0/19
37.9.144.0/20
62.106.96.0/19
81.28.160.0/19
85.114.160.0/19
92.240.128.0/20
95.128.160.0/21
109.226.64.0/18
185.10.180.0/22
185.50.8.0/22
188.122.224.0/19
193.106.240.0/22
213.178.32.0/19
Signature Algorithm: sha256WithRSAEncryption
80:d8:7f:7b:4f:92:45:4c:b0:e3:d1:3f:00:2d:42:85:2e:bb:
25:e5:b4:1f:08:5c:45:2f:c8:5c:62:e6:9c:01:b4:ce:8a:df:
bb:2d:00:4d:0c:6c:cd:25:e1:18:38:c1:6a:8d:2e:d0:eb:75:
a8:b7:79:fd:54:c8:2c:2b:55:02:53:6e:d5:f5:4b:df:42:28:
be:67:1e:bf:53:34:8e:99:f0:a7:cc:42:cb:27:0b:de:17:4b:
ff:94:0d:3a:a5:37:78:94:c9:b1:78:75:e0:65:09:2e:36:be:
97:fb:76:7f:58:3c:10:1d:f9:46:88:67:5a:27:e4:ef:b3:5a:
3e:b4:1f:b3:74:6b:d0:e0:68:38:2d:71:d5:30:85:49:07:20:
0c:73:ea:03:ca:ba:4c:6c:e8:7e:70:4d:35:d8:5f:73:4e:7f:
fb:d7:d3:a9:47:68:9c:85:8a:89:1e:0a:97:43:f4:40:f0:5d:
d9:d8:ca:b5:16:a0:10:70:a1:ca:ca:85:f6:e7:01:b0:be:5d:
83:91:4e:fc:0c:f5:7a:a3:69:a6:98:8c:8b:89:7e:b0:4e:e2:
ea:a4:7e:2d:bd:58:2b:d0:5f:72:e2:7c:24:07:6c:03:b8:f3:
3a:89:3c:2f:df:50:74:a9:6f:bf:7f:05:17:4f:99:94:5a:c1:
56:93:9f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 00:32:27 2024 by rpki-client on console.sobornost.net