Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/lSha5Wm1AgUjCgGABpafPBZjS50.roa
File: lSha5Wm1AgUjCgGABpafPBZjS50.roa (raw, json)
Hash identifier: BPbTBbYR+uvr/9DN7lUHGR7MZUoeybcUf0UXWdAmxDE=
Subject key identifier: 95:28:5A:E5:69:B5:02:05:23:0A:01:80:06:96:9F:3C:16:63:4B:9D
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0194266C5DE3F24BB32515D8D3A70C1BD6A5
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/lSha5Wm1AgUjCgGABpafPBZjS50.roa
Signing time: Thu 02 Jan 2025 09:50:23 +0000
ROA not before: Thu 02 Jan 2025 09:50:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15468
IP address blocks: 5.143.176.0/20 maxlen: 21
5.143.184.0/21 maxlen: 21
31.172.192.0/19 maxlen: 19
31.172.192.0/20 maxlen: 20
31.172.192.0/21 maxlen: 21
31.172.200.0/21 maxlen: 21
31.172.208.0/20 maxlen: 20
31.172.208.0/21 maxlen: 21
31.172.216.0/21 maxlen: 21
62.148.128.0/19 maxlen: 19
62.148.128.0/20 maxlen: 20
62.148.144.0/20 maxlen: 20
94.242.128.0/18 maxlen: 18
94.242.128.0/19 maxlen: 19
94.242.128.0/20 maxlen: 20
94.242.144.0/20 maxlen: 20
94.242.144.0/24 maxlen: 24
94.242.145.0/24 maxlen: 24
94.242.146.0/24 maxlen: 24
94.242.147.0/24 maxlen: 24
94.242.148.0/24 maxlen: 24
94.242.149.0/24 maxlen: 24
94.242.150.0/24 maxlen: 24
94.242.151.0/24 maxlen: 24
94.242.160.0/19 maxlen: 19
94.242.160.0/20 maxlen: 20
94.242.176.0/20 maxlen: 20
95.107.16.0/20 maxlen: 20
95.107.16.0/21 maxlen: 21
95.107.24.0/21 maxlen: 21
95.107.112.0/20 maxlen: 20
95.107.112.0/21 maxlen: 21
95.107.120.0/21 maxlen: 21
109.225.0.0/18 maxlen: 18
109.225.0.0/19 maxlen: 19
109.225.0.0/20 maxlen: 20
109.225.16.0/20 maxlen: 20
109.225.32.0/19 maxlen: 20
109.225.40.0/22 maxlen: 22
212.106.32.0/19 maxlen: 19
212.106.32.0/20 maxlen: 20
212.106.32.0/21 maxlen: 21
212.106.40.0/21 maxlen: 21
212.106.48.0/20 maxlen: 20
212.106.48.0/21 maxlen: 21
212.106.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:5d:e3:f2:4b:b3:25:15:d8:d3:a7:0c:1b:d6:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 09:50:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=95285ae569b50205230a018006969f3c16634b9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2b:59:75:aa:b7:0f:60:71:0c:36:4f:ba:39:
76:a4:11:3d:67:a9:5f:2d:11:26:18:63:43:1a:8a:
e4:f0:75:fc:6e:3e:d6:d2:0d:86:66:f2:8c:2a:1b:
c5:3a:17:4c:46:c7:56:89:c7:9a:32:50:f0:f2:75:
54:55:0f:3c:b7:21:37:6f:01:e5:f2:3e:5c:0d:1f:
6d:c3:fd:1b:9e:fc:d9:1c:1d:84:d9:fb:b6:40:41:
8d:0d:3e:54:1d:be:70:8e:ae:a1:d2:0c:0d:17:3c:
60:54:1e:ef:8d:10:1e:ac:92:17:88:52:1c:1c:a3:
7f:42:5f:ff:92:34:a4:aa:fd:ae:53:18:f8:7a:25:
f8:66:4f:f5:f9:3c:47:05:6d:3c:e1:cb:b7:ee:73:
e0:2f:d0:5d:86:e7:8c:e3:d3:e6:29:24:d9:3c:8b:
0a:b7:87:43:8d:40:fa:f5:70:a0:41:bb:47:ff:16:
69:c1:3a:1f:96:9f:7e:3a:76:db:67:67:a4:7d:09:
a3:c0:a3:54:5f:8b:07:24:db:66:ee:77:05:b4:2d:
37:f8:4e:2c:ca:cc:e8:9d:de:93:0f:bf:82:8e:9c:
83:df:c7:46:4b:ac:5d:27:46:0b:cc:e2:57:1f:34:
5d:96:70:23:69:ed:a3:74:4f:0f:a0:d5:0c:cb:01:
13:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:28:5A:E5:69:B5:02:05:23:0A:01:80:06:96:9F:3C:16:63:4B:9D
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/lSha5Wm1AgUjCgGABpafPBZjS50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.143.176.0/20
31.172.192.0/19
62.148.128.0/19
94.242.128.0/18
95.107.16.0/20
95.107.112.0/20
109.225.0.0/18
212.106.32.0/19
Signature Algorithm: sha256WithRSAEncryption
13:ea:64:04:78:53:c7:b9:30:75:03:12:0f:46:a5:21:95:ae:
16:6a:40:e9:1a:a0:e7:47:c8:e2:c7:ed:b7:ac:da:5a:bb:5c:
f3:ed:8f:b2:fd:05:4e:bf:5f:70:c6:d1:dd:03:39:74:57:a4:
f0:e0:14:24:88:72:e1:f1:d0:7d:5a:da:42:c4:30:96:37:35:
fe:78:d0:00:aa:a5:2f:e5:f7:4b:33:eb:e7:a8:36:9d:74:71:
50:77:60:ba:50:aa:93:ce:98:47:24:39:d7:21:80:5e:2b:0d:
9e:3e:1b:3b:fc:82:82:70:88:e1:d6:52:30:19:82:a7:df:ba:
e8:b2:a6:a6:1b:af:d7:2f:56:01:60:9a:5e:bf:06:8b:b6:ce:
1e:c9:c1:c8:88:ff:bc:c7:50:55:b6:57:fe:f9:2c:f0:8a:9e:
05:44:ad:68:55:5d:c3:ee:3e:c3:f1:c1:21:63:ed:da:04:ba:
29:18:ef:4e:00:13:a6:2a:6b:18:9f:eb:39:1a:9c:0c:b2:76:
f8:ed:2c:74:cf:dd:81:ed:86:16:03:52:9e:d5:2c:83:7d:99:
2f:20:9f:ff:2e:20:c1:5d:0d:4c:ac:b6:01:85:46:1d:51:76:
d9:a6:4c:26:40:5b:4d:21:fc:cf:19:78:e6:39:90:6e:fe:2a:
e7:10:2f:ef
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAZQmbF3j8kuzJRXY06cMG9alMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjUwMTAyMDk1MDIzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTI4NWFlNTY5YjUwMjA1MjMwYTAxODAwNjk2OWYzYzE2NjM0YjlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmStZdaq3D2BxDDZPujl2pBE9Z6lf
LREmGGNDGork8HX8bj7W0g2GZvKMKhvFOhdMRsdWiceaMlDw8nVUVQ88tyE3bwHl
8j5cDR9tw/0bnvzZHB2E2fu2QEGNDT5UHb5wjq6h0gwNFzxgVB7vjRAerJIXiFIc
HKN/Ql//kjSkqv2uUxj4eiX4Zk/1+TxHBW084cu37nPgL9BdhueM49PmKSTZPIsK
t4dDjUD69XCgQbtH/xZpwToflp9+OnbbZ2ekfQmjwKNUX4sHJNtm7ncFtC03+E4s
yszond6TD7+CjpyD38dGS6xdJ0YLzOJXHzRdlnAjae2jdE8PoNUMywETywIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFJUoWuVptQIFIwoBgAaWnzwWY0udMB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvbFNoYTVXbTFBZ1VqQ2dHQUJwYWZQQlpqUzUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQEBY+wAwQF
H6zAAwQFPpSAAwQGXvKAAwQEX2sQAwQEX2twAwQGbeEAAwQF1GogMA0GCSqGSIb3
DQEBCwUAA4IBAQAT6mQEeFPHuTB1AxIPRqUhla4WakDpGqDnR8jix+23rNpau1zz
7Y+y/QVOv19wxtHdAzl0V6Tw4BQkiHLh8dB9WtpCxDCWNzX+eNAAqqUv5fdLM+vn
qDaddHFQd2C6UKqTzphHJDnXIYBeKw2ePhs7/IKCcIjh1lIwGYKn37rosqamG6/X
L1YBYJpevwaLts4eycHIiP+8x1BVtlf++Szwip4FRK1oVV3D7j7D8cEhY+3aBLop
GO9OABOmKmsYn+s5GpwMsnb47Sx0z92B7YYWA1Ke1SyDfZkvIJ//LiDBXQ1MrLYB
hUYdUXbZpkwmQFtNIfzPGXjmOZBu/irnEC/v
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:07 2025 by rpki-client on console.sobornost.net