Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/cee70d-8b52-4c11-a77c-074305735ac2/1/a85p_GEp5p6Bf3FjSd5TigV6wZQ.roa
File: a85p_GEp5p6Bf3FjSd5TigV6wZQ.roa (raw, json)
Hash identifier: wqCCsxCv3hdKMkQBIvYu4j0t7kjF+iiKKHzp3iWmOnw=
Subject key identifier: 6B:CE:69:FC:61:29:E6:9E:81:7F:71:63:49:DE:53:8A:05:7A:C1:94
Certificate issuer: /CN=c57e58c346e7b415550c13aeadd2cf90edd07895
Certificate serial: 019421B201269D63068DF1A2B962D8B795F1
Authority key identifier: C5:7E:58:C3:46:E7:B4:15:55:0C:13:AE:AD:D2:CF:90:ED:D0:78:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xX5Yw0bntBVVDBOurdLPkO3QeJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/cee70d-8b52-4c11-a77c-074305735ac2/1/a85p_GEp5p6Bf3FjSd5TigV6wZQ.roa
Signing time: Wed 01 Jan 2025 11:48:21 +0000
ROA not before: Wed 01 Jan 2025 11:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39611
IP address blocks: 185.49.24.0/24 maxlen: 24
185.49.25.0/24 maxlen: 24
185.49.26.0/24 maxlen: 24
185.49.27.0/24 maxlen: 24
213.207.32.0/19 maxlen: 19
213.207.32.0/20 maxlen: 20
213.207.32.0/22 maxlen: 22
213.207.32.0/24 maxlen: 24
213.207.33.0/24 maxlen: 24
213.207.34.0/24 maxlen: 24
213.207.35.0/24 maxlen: 24
213.207.36.0/22 maxlen: 22
213.207.36.0/24 maxlen: 24
213.207.37.0/24 maxlen: 24
213.207.38.0/24 maxlen: 24
213.207.39.0/24 maxlen: 24
213.207.40.0/22 maxlen: 22
213.207.40.0/24 maxlen: 24
213.207.41.0/24 maxlen: 24
213.207.42.0/24 maxlen: 24
213.207.43.0/24 maxlen: 24
213.207.44.0/22 maxlen: 22
213.207.44.0/24 maxlen: 24
213.207.45.0/24 maxlen: 24
213.207.46.0/24 maxlen: 24
213.207.47.0/24 maxlen: 24
213.207.48.0/20 maxlen: 20
213.207.48.0/21 maxlen: 21
213.207.48.0/22 maxlen: 22
213.207.48.0/24 maxlen: 24
213.207.49.0/24 maxlen: 24
213.207.50.0/24 maxlen: 24
213.207.51.0/24 maxlen: 24
213.207.52.0/22 maxlen: 22
213.207.52.0/24 maxlen: 24
213.207.53.0/24 maxlen: 24
213.207.54.0/24 maxlen: 24
213.207.55.0/24 maxlen: 24
213.207.56.0/21 maxlen: 21
213.207.56.0/22 maxlen: 22
213.207.56.0/24 maxlen: 24
213.207.57.0/24 maxlen: 24
213.207.58.0/24 maxlen: 24
213.207.59.0/24 maxlen: 24
213.207.60.0/22 maxlen: 22
213.207.60.0/24 maxlen: 24
213.207.61.0/24 maxlen: 24
213.207.62.0/24 maxlen: 24
213.207.63.0/24 maxlen: 24
2a01:9d20::/29 maxlen: 29
2a01:9d20::/31 maxlen: 31
2a01:9d22::/31 maxlen: 31
2a01:9d24::/31 maxlen: 31
2a01:9d26::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:01:26:9d:63:06:8d:f1:a2:b9:62:d8:b7:95:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c57e58c346e7b415550c13aeadd2cf90edd07895
Validity
Not Before: Jan 1 11:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6bce69fc6129e69e817f716349de538a057ac194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ae:23:ea:b4:ac:88:38:c3:06:5b:9a:a1:cc:
89:5f:9d:70:da:7e:2f:6f:88:96:46:87:53:d5:db:
b5:b1:8b:12:78:c5:d2:4b:c0:75:62:a2:38:ae:07:
43:8d:32:62:f9:cb:64:8d:75:18:6d:d2:fb:b1:9d:
5f:ab:5d:9c:fb:49:8b:14:d8:4c:29:3b:19:cc:53:
db:bb:cd:b4:ba:8b:9d:47:98:3d:9b:14:38:bd:72:
6e:74:bb:8b:c1:84:e1:68:2e:10:41:c0:15:2a:4b:
dc:1b:20:65:a6:87:a1:43:35:a3:91:f7:46:ed:a7:
ca:f5:d4:65:9c:5f:10:24:60:07:c3:12:2b:76:e6:
9d:e6:31:f9:4e:68:21:03:34:0e:14:b0:49:ad:92:
ba:be:35:36:29:c7:d9:9e:d7:21:bc:ea:22:d1:b3:
27:3d:92:0b:51:58:92:f3:96:02:7a:50:97:57:f1:
c2:b3:34:f2:d8:fe:af:c6:69:0f:97:a3:0a:8c:3c:
6a:46:39:36:db:b4:95:63:63:c7:50:31:43:fc:55:
77:ac:36:86:a0:c1:51:f3:b1:dc:7f:73:26:a2:02:
6d:3f:b6:03:cc:3c:9d:61:12:fd:98:d5:fe:7e:d8:
59:44:b2:a0:fe:4d:47:db:59:f2:01:f0:8b:04:c7:
05:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:CE:69:FC:61:29:E6:9E:81:7F:71:63:49:DE:53:8A:05:7A:C1:94
X509v3 Authority Key Identifier:
keyid:C5:7E:58:C3:46:E7:B4:15:55:0C:13:AE:AD:D2:CF:90:ED:D0:78:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xX5Yw0bntBVVDBOurdLPkO3QeJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/cee70d-8b52-4c11-a77c-074305735ac2/1/a85p_GEp5p6Bf3FjSd5TigV6wZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/cee70d-8b52-4c11-a77c-074305735ac2/1/xX5Yw0bntBVVDBOurdLPkO3QeJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.24.0/22
213.207.32.0/19
IPv6:
2a01:9d20::/29
Signature Algorithm: sha256WithRSAEncryption
15:71:a0:df:1a:4d:15:e6:7f:58:a4:a8:aa:64:d6:a8:95:80:
8c:5c:3a:17:d2:2c:9c:98:5b:73:48:0e:de:e4:82:f0:c4:ae:
ae:c3:7e:b8:52:c9:6d:f3:fd:b7:6c:2a:6b:36:8b:f1:7c:3d:
84:6a:65:fc:10:5e:ab:4a:4a:73:e9:0a:2e:9c:b6:cb:0c:2e:
cf:e4:a5:57:5f:5f:04:49:5c:fb:77:85:3b:79:5a:6c:9c:43:
25:53:41:29:a7:82:87:04:0d:dd:27:8c:45:67:59:ec:12:54:
79:2f:a0:58:3b:79:ad:5c:56:69:80:da:dd:6e:c6:0e:de:c5:
10:97:e6:80:b0:a6:a7:fb:1a:7d:0a:9d:c9:3d:ac:86:76:15:
cc:91:f1:61:41:e0:9e:61:29:ae:a3:73:50:de:94:70:c7:f7:
8c:2f:1d:8c:37:63:d2:d9:c6:ad:fa:6d:1c:11:a9:a9:86:b6:
40:a9:48:a8:95:48:4f:66:5d:45:86:44:69:4c:4c:08:3e:a6:
09:0c:47:2d:ea:9e:5b:48:01:ec:05:79:73:ca:e0:05:c7:1e:
cd:2d:a6:a2:40:7e:9c:8b:78:fc:bc:b0:39:76:96:f4:41:03:
7f:d8:19:11:bf:fe:7b:90:c0:9e:b2:03:54:93:54:fb:35:dd:
8f:1b:a3:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:47 2025 by rpki-client on console.sobornost.net