Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/SNFkGPa1Q0B1c9km14MAwhZ9ti8.roa
File: SNFkGPa1Q0B1c9km14MAwhZ9ti8.roa (raw, json)
Hash identifier: 9VrusVxKbIVzijVJ2xQuHdyiMDBy61h99xYGxGbMVp4=
Subject key identifier: 48:D1:64:18:F6:B5:43:40:75:73:D9:26:D7:83:00:C2:16:7D:B6:2F
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0193054A63D804C3014F8D4198BE8F40C1CF
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/SNFkGPa1Q0B1c9km14MAwhZ9ti8.roa
Signing time: Thu 07 Nov 2024 06:23:01 +0000
ROA not before: Thu 07 Nov 2024 06:23:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25490
IP address blocks: 62.183.0.0/17 maxlen: 17
62.183.0.0/19 maxlen: 19
62.183.32.0/20 maxlen: 20
62.183.48.0/23 maxlen: 23
62.183.50.0/24 maxlen: 24
62.183.52.0/22 maxlen: 22
62.183.56.0/22 maxlen: 22
62.183.60.0/22 maxlen: 22
62.183.64.0/21 maxlen: 21
62.183.64.0/24 maxlen: 24
62.183.72.0/22 maxlen: 22
62.183.88.0/22 maxlen: 22
62.183.96.0/22 maxlen: 22
83.239.0.0/18 maxlen: 18
83.239.0.0/20 maxlen: 20
83.239.16.0/20 maxlen: 20
83.239.32.0/19 maxlen: 19
83.239.32.0/21 maxlen: 21
83.239.40.0/22 maxlen: 22
83.239.48.0/20 maxlen: 20
83.239.64.0/19 maxlen: 19
83.239.96.0/20 maxlen: 20
83.239.200.0/21 maxlen: 24
83.239.224.0/20 maxlen: 20
83.239.240.0/22 maxlen: 22
83.239.244.0/22 maxlen: 22
85.172.0.0/19 maxlen: 19
85.172.32.0/19 maxlen: 19
85.172.64.0/21 maxlen: 21
85.172.72.0/22 maxlen: 22
85.172.79.0/24 maxlen: 24
85.172.82.0/23 maxlen: 23
85.172.84.0/22 maxlen: 22
85.172.96.0/20 maxlen: 20
85.172.96.0/21 maxlen: 21
85.172.160.0/21 maxlen: 21
85.173.4.0/22 maxlen: 22
85.173.144.0/20 maxlen: 20
85.174.128.0/18 maxlen: 18
85.174.143.0/24 maxlen: 24
85.174.224.0/20 maxlen: 20
85.174.240.0/20 maxlen: 20
85.175.0.0/16 maxlen: 23
85.175.0.0/19 maxlen: 19
85.175.32.0/21 maxlen: 21
85.175.46.0/24 maxlen: 24
85.175.62.0/23 maxlen: 23
85.175.65.0/24 maxlen: 24
85.175.66.0/23 maxlen: 23
85.175.71.0/24 maxlen: 24
85.175.72.0/22 maxlen: 22
85.175.82.0/23 maxlen: 23
85.175.91.0/24 maxlen: 24
85.175.96.0/22 maxlen: 22
85.175.100.0/23 maxlen: 23
85.175.152.0/23 maxlen: 23
85.175.170.0/23 maxlen: 23
85.175.192.0/20 maxlen: 20
85.175.216.0/22 maxlen: 22
85.175.226.0/23 maxlen: 23
85.175.236.0/24 maxlen: 24
94.233.144.0/21 maxlen: 21
94.233.160.0/20 maxlen: 20
109.172.72.0/24 maxlen: 24
178.34.0.0/17 maxlen: 17
2a02:8040::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:05:4a:63:d8:04:c3:01:4f:8d:41:98:be:8f:40:c1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Nov 7 06:23:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48d16418f6b543407573d926d78300c2167db62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:33:1d:ac:bc:23:7d:63:f1:b5:ca:c5:2a:71:
5b:24:88:26:d7:15:93:ec:45:e3:87:4a:3a:05:f4:
1e:da:43:2c:68:c7:d8:54:0e:cc:f2:86:cf:ee:1d:
cd:c6:5a:44:e8:d7:6c:48:07:9e:86:3a:2f:b3:92:
6b:00:23:99:c0:f0:19:9a:70:c8:ce:30:1e:97:b8:
6d:f4:34:d5:5d:cf:e1:b3:a5:0a:62:05:f1:4c:8f:
b0:7c:36:06:76:e8:4e:18:17:e8:d3:a2:19:20:f3:
f1:65:29:3c:a0:fa:ca:31:0f:39:a5:4e:d1:d3:4c:
9c:5b:1e:4a:47:a3:5b:6b:e0:cf:fe:59:59:a0:1c:
a9:61:60:b3:82:38:29:7f:d9:dc:a8:c2:b0:5b:bf:
d0:97:0f:44:f8:d0:04:f5:cd:c8:1f:c5:28:a1:c0:
a7:ec:1b:d2:28:e7:2e:a1:fe:d7:f9:00:fa:5c:3f:
55:c4:14:8b:43:d7:72:7b:19:06:05:f5:0f:17:a6:
91:43:67:23:88:e0:f6:55:b6:a2:47:08:22:f6:40:
f7:50:22:05:d5:32:81:9b:c8:55:cd:bc:74:77:c0:
0b:3e:ad:3f:1b:11:d9:65:03:18:73:68:5c:8b:89:
67:a3:54:e5:c5:33:eb:a9:59:c5:4f:4d:05:d8:76:
09:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D1:64:18:F6:B5:43:40:75:73:D9:26:D7:83:00:C2:16:7D:B6:2F
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/SNFkGPa1Q0B1c9km14MAwhZ9ti8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.183.0.0/17
83.239.0.0-83.239.111.255
83.239.200.0/21
83.239.224.0-83.239.247.255
85.172.0.0-85.172.75.255
85.172.79.0/24
85.172.82.0-85.172.87.255
85.172.96.0/20
85.172.160.0/21
85.173.4.0/22
85.173.144.0/20
85.174.128.0/18
85.174.224.0-85.175.255.255
94.233.144.0/21
94.233.160.0/20
109.172.72.0/24
178.34.0.0/17
IPv6:
2a02:8040::/32
Signature Algorithm: sha256WithRSAEncryption
2b:14:78:65:77:88:3c:8b:aa:b0:53:89:5d:2e:f5:f1:f9:d4:
80:b9:6a:f7:4d:c1:d3:c5:df:c8:2e:aa:80:0a:35:8b:8f:d8:
41:84:69:b9:b3:8d:15:96:a8:16:f1:2f:23:40:31:77:60:44:
51:3f:61:76:6d:c4:88:7b:f9:21:f7:13:96:80:b2:b2:a9:41:
d1:1e:ad:d7:84:67:3f:d4:b3:87:3d:29:1e:42:3b:09:40:1b:
a2:51:64:e9:9d:a7:bf:32:a0:e6:d9:eb:29:fd:95:2b:76:78:
51:56:cd:0f:44:1b:c5:4a:f0:48:10:55:70:b1:54:71:98:74:
f3:b5:f4:08:5c:44:45:12:e0:88:f1:93:17:ab:9e:a6:42:6f:
8c:7f:48:bb:65:b0:09:49:75:f9:f5:e0:0b:4d:f4:2f:d7:1a:
1e:95:c6:7f:67:b5:5d:c9:0c:8a:9d:3a:25:f8:56:2f:87:89:
3c:89:95:b6:ad:72:e2:9b:77:a9:a9:7d:7e:6c:bc:43:97:8e:
5f:68:36:ef:9f:ad:94:30:50:b8:99:4c:33:c0:8c:db:e7:72:
b3:0a:c7:f5:4e:fd:fd:f5:22:b4:14:33:ba:40:7a:27:cb:e2:
67:a2:48:4c:96:dd:fa:31:ae:24:ad:22:e9:d7:cb:2e:94:5e:
ad:2e:79:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 18:15:54 2024 by rpki-client on console.sobornost.net