Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/xlkkoDtcxpoL9470SYUwdesBd0U.roa
File: xlkkoDtcxpoL9470SYUwdesBd0U.roa (raw, json)
Hash identifier: E5i1JoD4+1v4NgDajZkbyhzpzTtWx/xCOYZCaaoJ38U=
Subject key identifier: C6:59:24:A0:3B:5C:C6:9A:0B:F7:8E:F4:49:85:30:75:EB:01:77:45
Certificate issuer: /CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6
Certificate serial: 019421B1CCD15991B124B8A3905FBEDDB7B7
Authority key identifier: 58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/xlkkoDtcxpoL9470SYUwdesBd0U.roa
Signing time: Wed 01 Jan 2025 11:48:07 +0000
ROA not before: Wed 01 Jan 2025 11:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35228
IP address blocks: 82.132.138.0/23 maxlen: 24
82.132.160.0/23 maxlen: 24
82.132.162.0/23 maxlen: 24
82.132.164.0/23 maxlen: 24
82.132.166.0/23 maxlen: 24
82.132.168.0/23 maxlen: 24
82.132.170.0/23 maxlen: 24
82.132.172.0/23 maxlen: 24
82.132.174.0/23 maxlen: 24
82.132.176.0/23 maxlen: 24
82.132.180.0/23 maxlen: 24
82.132.182.0/23 maxlen: 24
82.132.184.0/22 maxlen: 24
82.132.198.0/23 maxlen: 24
82.132.199.0/24 maxlen: 24
82.132.210.0/23 maxlen: 24
82.132.212.0/22 maxlen: 24
82.132.216.0/22 maxlen: 24
82.132.220.0/22 maxlen: 24
82.132.224.0/22 maxlen: 24
82.132.228.0/22 maxlen: 24
82.132.232.0/22 maxlen: 24
82.132.236.0/22 maxlen: 24
82.132.240.0/22 maxlen: 24
82.132.244.0/22 maxlen: 24
82.132.248.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:cc:d1:59:91:b1:24:b8:a3:90:5f:be:dd:b7:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6
Validity
Not Before: Jan 1 11:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c65924a03b5cc69a0bf78ef449853075eb017745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:de:f9:7c:dd:06:88:0d:20:6c:9f:9a:99:56:
d8:de:15:7b:ed:05:98:09:54:ba:bf:bb:39:f7:0c:
cb:e7:1e:9b:45:d5:6d:dc:60:d7:37:5c:36:69:7f:
e2:32:24:51:71:30:9b:0a:ce:b3:b2:2c:2b:ec:78:
83:29:df:90:c2:6c:bd:f0:be:a5:31:27:03:80:83:
47:00:af:ef:b4:e1:a6:ac:ba:78:7f:50:0d:7a:d3:
77:8b:8a:97:63:b9:56:b9:9b:ac:c5:7f:f4:c8:6d:
b3:27:fa:17:1a:4b:87:8a:9b:69:95:2d:0c:2f:e2:
89:ce:51:14:9d:43:01:c7:99:b1:46:91:7f:5d:d3:
79:39:b9:59:1a:c1:f0:5e:4b:d6:b2:9d:19:ce:5d:
54:6c:c9:3f:cd:c0:90:87:ee:9a:a0:23:89:b9:f3:
4c:d5:7b:82:31:9d:49:11:38:7b:51:db:c7:48:b1:
45:41:77:fb:89:98:5b:c5:f2:5b:c3:8c:b6:e3:2b:
21:42:f4:07:cd:6f:74:eb:d0:27:d4:39:a0:a3:de:
dc:b3:32:ce:96:5c:1c:28:48:b8:59:27:07:b8:81:
f9:73:39:5c:68:eb:3d:5a:ea:7f:17:85:46:0e:f5:
f0:3a:da:13:b6:7e:2a:2a:10:84:31:29:9d:f0:ff:
c7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:59:24:A0:3B:5C:C6:9A:0B:F7:8E:F4:49:85:30:75:EB:01:77:45
X509v3 Authority Key Identifier:
keyid:58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/xlkkoDtcxpoL9470SYUwdesBd0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/WLKee4oN25w2xuDj9JV3gXsOo6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.132.138.0/23
82.132.160.0-82.132.177.255
82.132.180.0-82.132.187.255
82.132.198.0/23
82.132.210.0-82.132.249.255
Signature Algorithm: sha256WithRSAEncryption
91:bb:08:f7:3d:62:88:4a:ca:06:2e:1e:f2:c0:1c:ce:5e:54:
81:52:46:e7:6d:8f:8c:b2:95:31:97:a0:b1:db:5a:d6:23:9a:
73:c7:02:31:41:02:76:06:2e:47:25:fb:d1:ff:cf:a5:ca:06:
59:13:cc:5e:04:b4:5f:e4:65:9c:2b:76:1b:a7:86:26:30:d2:
5c:27:e3:aa:4b:6b:2b:5b:59:6d:bf:85:e9:c6:cd:38:0c:6a:
b6:ae:1d:ee:19:f8:51:17:9f:5c:24:d3:53:e7:f1:64:dc:33:
1a:c1:e4:5a:d6:cc:bf:b6:5a:70:94:b4:9c:37:66:e0:cf:20:
5b:51:10:54:73:a7:23:48:24:90:70:28:4e:b2:7a:de:74:06:
ed:5d:17:27:3a:5b:ff:5b:3e:99:8f:2f:86:5c:a4:e6:98:76:
6d:29:66:e0:6b:bb:48:30:62:9f:1d:8a:10:2f:4c:bf:b4:3c:
f5:a1:90:e3:14:d2:62:70:07:e5:e0:d2:b1:77:84:f5:8f:ce:
9e:cd:df:0f:33:a2:84:95:c6:3b:e6:f2:f8:15:2b:be:ca:9a:
f9:15:65:d3:8b:48:4b:ab:15:5b:02:6b:b1:07:5b:bd:bc:93:
70:73:02:41:dc:c4:92:d9:06:89:e0:e6:de:ac:7e:a2:6d:c8:
4a:5d:70:46
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAZQhsczRWZGxJLijkF++3be3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YjI5ZTdiOGEwZGRiOWMzNmM2ZTBlM2Y0OTU3NzgxN2Iw
ZWEzYTYwHhcNMjUwMTAxMTE0ODA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjU5MjRhMDNiNWNjNjlhMGJmNzhlZjQ0OTg1MzA3NWViMDE3NzQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAst75fN0GiA0gbJ+amVbY3hV77QWY
CVS6v7s59wzL5x6bRdVt3GDXN1w2aX/iMiRRcTCbCs6zsiwr7HiDKd+Qwmy98L6l
MScDgINHAK/vtOGmrLp4f1ANetN3i4qXY7lWuZusxX/0yG2zJ/oXGkuHiptplS0M
L+KJzlEUnUMBx5mxRpF/XdN5OblZGsHwXkvWsp0Zzl1UbMk/zcCQh+6aoCOJufNM
1XuCMZ1JETh7UdvHSLFFQXf7iZhbxfJbw4y24yshQvQHzW9069An1Dmgo97cszLO
llwcKEi4WScHuIH5czlcaOs9Wup/F4VGDvXwOtoTtn4qKhCEMSmd8P/HjwIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFMZZJKA7XMaaC/eO9EmFMHXrAXdFMB8GA1UdIwQY
MBaAFFiynnuKDducNsbg4/SVd4F7DqOmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0xLZWU0b04yNXcyeHVEajlKVjNnWHNPbzZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8yY2IzYmItMGVkMS00ZWNmLThhZjUt
ZWU3M2ZlMjFlZDIzLzEveGxra29EdGN4cG9MOTQ3MFNZVXdkZXNCZDBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8yY2IzYmItMGVkMS00ZWNmLThhZjUtZWU3M2ZlMjFlZDIz
LzEvV0xLZWU0b04yNXcyeHVEajlKVjNnWHNPbzZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQBUoSKMAwD
BAVShKADBAFShLAwDAMEAlKEtAMEAlKEuAMEAVKExjAMAwQBUoTSAwQBUoT4MA0G
CSqGSIb3DQEBCwUAA4IBAQCRuwj3PWKISsoGLh7ywBzOXlSBUkbnbY+MspUxl6Cx
21rWI5pzxwIxQQJ2Bi5HJfvR/8+lygZZE8xeBLRf5GWcK3Ybp4YmMNJcJ+OqS2sr
W1ltv4Xpxs04DGq2rh3uGfhRF59cJNNT5/Fk3DMaweRa1sy/tlpwlLScN2bgzyBb
URBUc6cjSCSQcChOsnredAbtXRcnOlv/Wz6Zjy+GXKTmmHZtKWbga7tIMGKfHYoQ
L0y/tDz1oZDjFNJicAfl4NKxd4T1j86ezd8PM6KElcY75vL4FSu+ypr5FWXTi0hL
qxVbAmuxB1u9vJNwcwJB3MSS2QaJ4OberH6ibchKXXBG
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net