Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/nlnL1KrlFfXQEwGDosct7b61rpQ.roa
File: nlnL1KrlFfXQEwGDosct7b61rpQ.roa (raw, json)
Hash identifier: qhnchUWmXUGxeLQaDoPZCE17/L9LF/P0wpk8nhaLzWw=
Subject key identifier: 9E:59:CB:D4:AA:E5:15:F5:D0:13:01:83:A2:C7:2D:ED:BE:B5:AE:94
Certificate issuer: /CN=fef918c5a9330dbbe6eee17cb9a1d62fbc855bde
Certificate serial: 0194506DF8E49B0D73B7E709DB1FE58F38D6
Authority key identifier: FE:F9:18:C5:A9:33:0D:BB:E6:EE:E1:7C:B9:A1:D6:2F:BC:85:5B:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_vkYxakzDbvm7uF8uaHWL7yFW94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/nlnL1KrlFfXQEwGDosct7b61rpQ.roa
Signing time: Fri 10 Jan 2025 13:36:11 +0000
ROA not before: Fri 10 Jan 2025 13:36:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59395
IP address blocks: 5.133.16.0/21 maxlen: 21
46.31.80.0/21 maxlen: 21
46.31.168.0/21 maxlen: 21
46.231.64.0/21 maxlen: 21
82.144.224.0/19 maxlen: 19
87.238.216.0/21 maxlen: 21
89.105.0.0/19 maxlen: 19
109.235.120.0/21 maxlen: 21
185.7.188.0/22 maxlen: 22
185.36.248.0/22 maxlen: 22
185.45.24.0/22 maxlen: 22
185.63.80.0/22 maxlen: 22
185.65.24.0/22 maxlen: 22
185.74.232.0/21 maxlen: 21
185.74.232.0/22 maxlen: 22
185.74.236.0/22 maxlen: 22
185.159.216.0/22 maxlen: 22
185.175.112.0/22 maxlen: 22
217.119.128.0/24 maxlen: 24
217.119.137.0/24 maxlen: 24
2a02:73c0::/32 maxlen: 32
2a05:4b80::/29 maxlen: 29
2a05:4bc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:50:6d:f8:e4:9b:0d:73:b7:e7:09:db:1f:e5:8f:38:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fef918c5a9330dbbe6eee17cb9a1d62fbc855bde
Validity
Not Before: Jan 10 13:36:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9e59cbd4aae515f5d0130183a2c72dedbeb5ae94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9c:ea:09:b2:b1:85:61:2e:51:b1:2c:cd:c9:
d9:cb:62:94:c8:8c:a4:12:33:db:a4:cd:2e:01:d3:
83:cf:f1:33:ba:17:41:85:f9:53:31:3a:93:e8:5b:
9f:e6:2b:be:f1:e0:60:32:c2:b6:d7:74:0b:39:d4:
0d:3c:40:a3:55:ed:a7:f2:e5:c1:52:88:4e:e4:11:
9f:2f:f8:bc:f1:0a:75:fe:bf:07:4f:88:e2:f8:df:
07:32:89:2c:ba:f6:11:70:2f:ad:e5:fb:d5:d6:fc:
85:0e:8a:71:f2:ac:aa:26:33:39:52:70:2d:12:8e:
1b:ea:1c:cd:f9:39:7e:52:26:90:8d:4a:c8:d6:db:
b9:05:ea:ad:6c:d7:3c:e4:40:2c:e9:50:d0:90:11:
5d:6c:0a:f2:bc:e2:38:b9:40:37:9e:85:6e:9d:3e:
8d:26:4f:98:a3:1e:7a:af:4e:09:87:ec:8d:8f:09:
a4:ef:86:d7:1f:29:02:28:3f:9c:45:e8:76:b5:cc:
dd:e8:e1:a4:ac:96:51:38:e4:b9:5d:ae:70:32:89:
66:2b:ad:d9:d9:8f:e2:6e:b9:89:53:ca:2d:88:91:
7e:36:5d:93:4d:ad:b2:19:d0:b3:6e:77:b1:51:3b:
11:69:b3:a2:4f:4f:7a:be:9e:38:74:35:03:4d:44:
d9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:59:CB:D4:AA:E5:15:F5:D0:13:01:83:A2:C7:2D:ED:BE:B5:AE:94
X509v3 Authority Key Identifier:
keyid:FE:F9:18:C5:A9:33:0D:BB:E6:EE:E1:7C:B9:A1:D6:2F:BC:85:5B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_vkYxakzDbvm7uF8uaHWL7yFW94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/nlnL1KrlFfXQEwGDosct7b61rpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/_vkYxakzDbvm7uF8uaHWL7yFW94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.16.0/21
46.31.80.0/21
46.31.168.0/21
46.231.64.0/21
82.144.224.0/19
87.238.216.0/21
89.105.0.0/19
109.235.120.0/21
185.7.188.0/22
185.36.248.0/22
185.45.24.0/22
185.63.80.0/22
185.65.24.0/22
185.74.232.0/21
185.159.216.0/22
185.175.112.0/22
217.119.128.0/24
217.119.137.0/24
IPv6:
2a02:73c0::/32
2a05:4b80::/29
2a05:4bc0::/29
Signature Algorithm: sha256WithRSAEncryption
13:74:1f:af:9e:b6:41:46:06:b9:2e:a8:21:a7:e5:51:64:e8:
cc:ac:2b:30:44:57:33:b6:3f:3a:f1:5f:09:b4:5a:a5:ab:e0:
d9:d3:46:89:93:72:24:bd:fb:bb:16:17:58:33:04:b6:e2:12:
02:ac:87:60:a6:a5:b7:04:39:38:5c:06:b3:49:00:e4:5e:09:
37:a2:4b:32:39:fd:91:8c:49:42:f1:0a:5b:cd:ba:76:76:a5:
1b:79:2f:cf:c4:28:85:68:34:da:ba:11:12:d9:3d:57:1b:99:
50:79:fd:d9:b5:d5:b7:07:b4:0c:2d:da:20:d1:28:f4:34:1a:
52:f5:2b:6d:1c:7e:b3:8c:ef:b4:0b:47:9f:fa:65:36:6a:f8:
b6:7d:fe:a8:d9:30:e3:02:07:b0:db:98:5d:c7:b5:0b:cd:90:
d4:86:03:65:bc:58:f0:d2:2e:a4:1a:18:7a:52:ba:1d:37:93:
ce:53:46:2f:f9:91:0e:20:a0:50:81:89:f1:64:8c:87:15:0a:
87:50:c8:cb:fb:ed:ca:fc:3f:cd:4b:bc:36:ac:47:b4:0c:ba:
06:30:e0:d9:b2:b4:b8:4d:bc:02:68:d8:d5:5f:c2:de:b2:7a:
59:6a:76:4b:ca:2b:d0:99:0a:a3:de:b5:89:b8:c0:d2:9f:b9:
46:63:27:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:09 2025 by rpki-client on console.sobornost.net