Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/jjbE1RnOSZ2q761YRZ132c8JiG8.roa
File: jjbE1RnOSZ2q761YRZ132c8JiG8.roa (raw, json)
Hash identifier: dQGgrXxlcNXkPaPmlJTPvKt0F6rOcsVsYCx7icARUrQ=
Subject key identifier: 8E:36:C4:D5:19:CE:49:9D:AA:EF:AD:58:45:9D:77:D9:CF:09:88:6F
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 0195FA89CDD81B64D51D5782D59ED20A69EA
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/jjbE1RnOSZ2q761YRZ132c8JiG8.roa
Signing time: Thu 03 Apr 2025 07:24:49 +0000
ROA not before: Thu 03 Apr 2025 07:24:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42065
IP address blocks: 91.108.0.0/22 maxlen: 24
91.108.24.0/21 maxlen: 24
91.108.32.0/23 maxlen: 24
91.108.52.0/24 maxlen: 24
94.124.176.0/22 maxlen: 23
94.124.178.0/23 maxlen: 24
95.140.92.0/24 maxlen: 24
95.140.94.0/24 maxlen: 24
95.161.0.0/18 maxlen: 24
95.161.88.0/22 maxlen: 24
95.161.95.0/24 maxlen: 24
95.161.96.0/23 maxlen: 24
95.161.102.0/23 maxlen: 24
95.161.104.0/23 maxlen: 24
95.161.124.0/24 maxlen: 24
95.161.125.0/24 maxlen: 24
95.161.127.0/24 maxlen: 24
185.51.60.0/22 maxlen: 24
2a00:11d8::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:fa:89:cd:d8:1b:64:d5:1d:57:82:d5:9e:d2:0a:69:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Apr 3 07:24:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8e36c4d519ce499daaefad58459d77d9cf09886f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5f:55:be:97:ac:50:e9:a6:20:f7:44:90:a2:
c6:d6:3d:ea:7e:dc:33:5e:08:f6:7d:4a:46:d8:6b:
44:7e:cb:58:23:cf:f7:cf:ad:8b:c8:ed:47:45:36:
0d:22:3a:03:6d:91:56:81:08:07:40:70:60:38:3f:
58:b1:7c:2a:ed:94:c3:6a:2e:38:03:19:49:08:e1:
ea:b9:71:fa:e0:0d:ef:3c:d0:b9:a9:61:0b:4a:73:
73:b1:7c:65:46:da:65:73:02:30:4f:8f:02:86:6d:
59:3e:8e:61:ce:d6:13:c2:10:e6:85:b0:f1:87:cb:
67:fc:59:05:76:cb:40:32:c3:9e:74:c2:f8:f4:65:
2f:7f:b5:71:d4:0d:8f:57:0d:53:06:df:b1:85:86:
38:a6:03:6a:7e:fe:8f:7a:25:18:9d:13:af:ab:59:
eb:69:d4:53:3d:ac:81:7a:c8:63:b4:5b:a6:e6:29:
ad:d3:24:3d:05:ab:44:6b:23:de:10:52:9c:25:23:
2a:eb:9c:47:9e:4f:69:00:ec:b2:d6:56:4e:ab:92:
d0:e3:95:3c:a5:ab:51:7e:88:57:5a:76:46:49:07:
36:44:68:ae:f1:a5:85:e0:80:c9:70:86:47:e0:93:
0d:31:7d:c5:a2:3e:f1:fd:fb:1d:81:ed:e5:19:06:
14:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:36:C4:D5:19:CE:49:9D:AA:EF:AD:58:45:9D:77:D9:CF:09:88:6F
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/jjbE1RnOSZ2q761YRZ132c8JiG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.0.0/22
91.108.24.0-91.108.33.255
91.108.52.0/24
94.124.176.0/22
95.140.92.0/24
95.140.94.0/24
95.161.0.0/18
95.161.88.0/22
95.161.95.0-95.161.97.255
95.161.102.0-95.161.105.255
95.161.124.0/23
95.161.127.0/24
185.51.60.0/22
IPv6:
2a00:11d8::/32
Signature Algorithm: sha256WithRSAEncryption
46:94:9b:46:df:d9:19:53:36:5a:84:6b:08:7c:e3:07:83:34:
e5:86:e2:0c:39:43:af:5e:aa:18:32:48:32:d9:00:a3:2a:3a:
75:36:fc:02:7b:b3:da:7d:9b:0b:fc:dc:06:1e:04:a0:22:6f:
18:e8:52:ca:c9:a1:8c:a3:11:1b:d9:63:7c:b9:2e:ba:30:f8:
55:3b:b3:74:59:d9:a8:1c:d6:e3:1e:6d:c4:31:87:65:68:a1:
57:dc:32:1f:60:76:60:c0:64:dd:6b:48:7e:2d:62:57:d3:87:
83:58:8e:02:8e:f8:90:01:96:38:3f:86:11:b2:a3:23:a4:56:
53:2d:55:a3:51:64:c1:da:53:9b:9f:d2:58:d5:b7:95:b9:61:
4c:33:08:99:4f:41:27:3b:41:bb:e7:a9:b2:d2:14:b1:0e:ad:
54:9b:2b:00:e3:cc:29:30:da:3e:d4:95:1c:b5:d8:22:db:d5:
1b:d4:a6:40:68:39:e9:00:5e:e3:97:45:3c:58:5a:68:49:32:
62:a0:58:14:52:0e:12:4f:66:82:5b:02:bf:e6:7a:a6:09:de:
a3:25:2f:20:86:91:27:fa:cb:0f:8b:00:70:1e:d9:de:22:b6:
04:9d:27:98:9b:cd:8e:4f:2f:f5:5c:b8:79:bf:00:cf:b1:49:
28:50:31:08
-----BEGIN CERTIFICATE-----
MIIFbTCCBFWgAwIBAgISAZX6ic3YG2TVHVeC1Z7SCmnqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMjhlN2UwMWZhZGE0OWMxYTUyZmExM2YzNjI2YzQxYjQx
YTUxYjgwHhcNMjUwNDAzMDcyNDQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZTM2YzRkNTE5Y2U0OTlkYWFlZmFkNTg0NTlkNzdkOWNmMDk4ODZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu19VvpesUOmmIPdEkKLG1j3qftwz
Xgj2fUpG2GtEfstYI8/3z62LyO1HRTYNIjoDbZFWgQgHQHBgOD9YsXwq7ZTDai44
AxlJCOHquXH64A3vPNC5qWELSnNzsXxlRtplcwIwT48Chm1ZPo5hztYTwhDmhbDx
h8tn/FkFdstAMsOedML49GUvf7Vx1A2PVw1TBt+xhYY4pgNqfv6PeiUYnROvq1nr
adRTPayBeshjtFum5imt0yQ9BatEayPeEFKcJSMq65xHnk9pAOyy1lZOq5LQ45U8
patRfohXWnZGSQc2RGiu8aWF4IDJcIZH4JMNMX3Foj7x/fsdge3lGQYUKwIDAQAB
o4ICeTCCAnUwHQYDVR0OBBYEFI42xNUZzkmdqu+tWEWdd9nPCYhvMB8GA1UdIwQY
MBaAFGIo5+AfraScGlL6E/NibEG0GlG4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUt
NzY3NDE2NTI1MTBkLzEvampiRTFSbk9TWjJxNzYxWVJaMTMyYzhKaUc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUtNzY3NDE2NTI1MTBk
LzEvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGOBggrBgEFBQcBBwEB/wR/MH0wbAQCAAEwZgMEAltsADAM
AwQDW2wYAwQBW2wgAwQAW2w0AwQCXnywAwQAX4xcAwQAX4xeAwQGX6EAAwQCX6FY
MAwDBABfoV8DBAFfoWAwDAMEAV+hZgMEAV+haAMEAV+hfAMEAF+hfwMEArkzPDAN
BAIAAjAHAwUAKgAR2DANBgkqhkiG9w0BAQsFAAOCAQEARpSbRt/ZGVM2WoRrCHzj
B4M05YbiDDlDr16qGDJIMtkAoyo6dTb8Anuz2n2bC/zcBh4EoCJvGOhSysmhjKMR
G9ljfLkuujD4VTuzdFnZqBzW4x5txDGHZWihV9wyH2B2YMBk3WtIfi1iV9OHg1iO
Ao74kAGWOD+GEbKjI6RWUy1Vo1FkwdpTm5/SWNW3lblhTDMImU9BJztBu+epstIU
sQ6tVJsrAOPMKTDaPtSVHLXYItvVG9SmQGg56QBe45dFPFhaaEkyYqBYFFIOEk9m
glsCv+Z6pgneoyUvIIaRJ/rLD4sAcB7Z3iK2BJ0nmJvNjk8v9Vy4eb8Az7FJKFAx
CA==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:51 2025 by rpki-client on console.sobornost.net