Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/sPVz6CXeimsgpxuXKMYY5ra1yXI.roa
File: sPVz6CXeimsgpxuXKMYY5ra1yXI.roa (raw, json)
Hash identifier: uGVCkdoP9XZVNq6UA53Y8OgwaBktr5jNaHV/XYvmoPk=
Subject key identifier: B0:F5:73:E8:25:DE:8A:6B:20:A7:1B:97:28:C6:18:E6:B6:B5:C9:72
Certificate issuer: /CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6
Certificate serial: 019421B1CC8784CD4A9BB2B09A4F025D63BF
Authority key identifier: 58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/sPVz6CXeimsgpxuXKMYY5ra1yXI.roa
Signing time: Wed 01 Jan 2025 11:48:07 +0000
ROA not before: Wed 01 Jan 2025 11:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29180
IP address blocks: 82.132.128.0/22 maxlen: 24
82.132.132.0/22 maxlen: 24
82.132.136.0/23 maxlen: 24
82.132.140.0/23 maxlen: 24
82.132.142.0/23 maxlen: 24
82.132.144.0/21 maxlen: 24
82.132.152.0/21 maxlen: 24
82.132.178.0/23 maxlen: 24
82.132.188.0/23 maxlen: 24
82.132.190.0/23 maxlen: 24
82.132.192.0/23 maxlen: 24
82.132.194.0/23 maxlen: 24
82.132.196.0/23 maxlen: 24
82.132.200.0/23 maxlen: 24
82.132.202.0/23 maxlen: 24
82.132.204.0/23 maxlen: 24
82.132.206.0/23 maxlen: 24
82.132.208.0/23 maxlen: 24
82.132.250.0/23 maxlen: 24
82.132.254.0/23 maxlen: 24
185.238.16.0/23 maxlen: 24
185.238.18.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:cc:87:84:cd:4a:9b:b2:b0:9a:4f:02:5d:63:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6
Validity
Not Before: Jan 1 11:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b0f573e825de8a6b20a71b9728c618e6b6b5c972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b6:46:16:cf:0b:00:86:e8:db:12:9f:f1:6f:
14:89:5b:d7:d0:d7:11:8d:8d:f7:6f:0e:ab:70:40:
90:9a:37:6e:6b:51:9b:06:38:87:d8:b5:4c:61:4b:
12:57:95:b6:e5:52:b4:ba:29:5c:c3:a2:55:1e:48:
83:f6:ff:4e:89:0a:ac:72:4f:a6:9e:19:18:f9:1e:
87:3e:6f:fc:e6:bd:25:1b:e6:f2:d3:bf:24:5f:e7:
8d:ad:87:f9:4e:b1:38:17:2a:cf:e0:43:ed:e8:52:
0e:8b:0f:45:c3:e1:bf:49:50:5c:7d:8f:b5:8e:b0:
ad:85:6a:0a:2f:34:56:97:35:2e:5e:d5:bf:c5:c3:
a9:04:9d:42:6c:a6:54:da:9c:84:e2:20:fd:af:f8:
98:ba:3a:6c:b1:f6:2f:7b:cb:64:ed:98:9b:4f:a9:
c8:71:d6:ce:61:d8:d4:e4:cb:60:b5:e7:da:6a:ae:
1d:67:43:5c:ca:6e:e6:85:89:1f:b0:20:8f:93:41:
da:d9:38:ff:57:b3:8d:2c:38:fe:d3:b8:04:da:9e:
63:62:02:a3:43:b7:fa:17:94:36:c2:e0:be:94:4f:
d6:41:09:53:62:49:ad:f0:a2:8e:04:74:b1:d3:83:
9e:67:49:7f:fd:57:86:60:eb:34:b2:fd:1c:f6:f1:
b2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F5:73:E8:25:DE:8A:6B:20:A7:1B:97:28:C6:18:E6:B6:B5:C9:72
X509v3 Authority Key Identifier:
keyid:58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/sPVz6CXeimsgpxuXKMYY5ra1yXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/WLKee4oN25w2xuDj9JV3gXsOo6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.132.128.0-82.132.137.255
82.132.140.0-82.132.159.255
82.132.178.0/23
82.132.188.0-82.132.197.255
82.132.200.0-82.132.209.255
82.132.250.0/23
82.132.254.0/23
185.238.16.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:9a:ce:6d:7a:dc:8f:c8:a1:8b:b0:d8:cd:f6:a2:03:70:64:
ff:d3:77:4d:f7:48:f9:c3:e9:bb:95:9d:b9:f5:a2:3b:5b:57:
bf:2b:1d:e7:5b:d1:e2:63:01:b4:4d:05:fe:af:59:06:49:25:
69:cb:f9:67:96:3a:17:72:58:86:8b:99:fe:fa:f0:6d:ab:63:
b6:76:79:b7:4d:6d:84:51:b0:cb:6f:97:22:af:2d:32:99:23:
9d:51:fb:b5:20:9c:9b:fd:b9:71:cf:a2:4a:8f:35:9e:0b:77:
78:7e:05:47:97:f8:18:44:09:5c:37:09:af:b6:0e:69:40:85:
9e:96:62:35:82:bc:51:cd:b6:ce:1e:ba:7e:65:31:5e:bd:4c:
27:1f:e2:fb:a7:63:10:a2:ed:1d:d7:9a:e1:10:29:7f:19:96:
d5:fe:3b:d4:47:94:02:49:8e:bf:a5:37:1f:9b:fd:44:89:bb:
1c:a6:62:da:42:62:35:3a:d3:e1:d1:c9:68:62:ac:7f:f5:e4:
ed:fb:73:82:45:9c:8f:b3:06:30:8e:0b:c2:6e:a8:90:82:bf:
2c:58:72:b5:90:4b:01:c5:4c:e4:74:5a:92:95:ad:df:11:1f:
72:d4:6a:4d:fc:bd:33:9a:f8:90:c2:73:89:8e:f8:63:2f:1e:
15:ce:56:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net