Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/qD6fI4alTG9ugXyMXRWWgJQzBs8.roa
File: qD6fI4alTG9ugXyMXRWWgJQzBs8.roa (raw, json)
Hash identifier: c9Mt3ffCyuUeM6KsYFDSRY2Fev1A0MkGSCIdLfu/44w=
Subject key identifier: A8:3E:9F:23:86:A5:4C:6F:6E:81:7C:8C:5D:15:96:80:94:33:06:CF
Certificate issuer: /CN=7094a425595e923c4b53b9c000aa8f19ad923f20
Certificate serial: 0195415B145F2837AE912F387577B270A8B7
Authority key identifier: 70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/qD6fI4alTG9ugXyMXRWWgJQzBs8.roa
Signing time: Wed 26 Feb 2025 08:24:02 +0000
ROA not before: Wed 26 Feb 2025 08:24:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200738
IP address blocks: 45.129.20.0/24 maxlen: 24
45.129.21.0/24 maxlen: 24
45.129.22.0/24 maxlen: 24
45.129.23.0/24 maxlen: 24
77.83.124.0/22 maxlen: 22
92.114.56.0/22 maxlen: 22
93.114.240.0/22 maxlen: 22
109.230.216.0/23 maxlen: 23
109.230.222.0/24 maxlen: 24
134.255.215.0/24 maxlen: 24
176.100.208.0/22 maxlen: 22
176.100.212.0/22 maxlen: 22
176.100.224.0/20 maxlen: 20
176.100.224.0/24 maxlen: 24
176.100.225.0/24 maxlen: 24
185.97.168.0/22 maxlen: 22
185.159.252.0/22 maxlen: 22
185.170.147.0/24 maxlen: 24
188.215.8.0/22 maxlen: 22
193.26.148.0/22 maxlen: 22
193.31.36.0/22 maxlen: 22
193.35.14.0/23 maxlen: 23
193.35.26.0/23 maxlen: 23
2a06:6c0::/48 maxlen: 48
2a06:6c0:1::/48 maxlen: 48
2a06:6c0:2::/48 maxlen: 48
2a06:6c0:3::/48 maxlen: 48
2a06:6c0:11::/48 maxlen: 48
2a06:6c0:12::/48 maxlen: 48
2a06:6c0:21::/48 maxlen: 48
2a06:6c0:22::/48 maxlen: 48
2a06:6c0:23::/48 maxlen: 48
2a06:6c0:24::/48 maxlen: 48
2a06:6c0:25::/48 maxlen: 48
2a06:6c0:26::/48 maxlen: 48
2a06:6c0:254::/48 maxlen: 48
2a06:6c0:255::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:41:5b:14:5f:28:37:ae:91:2f:38:75:77:b2:70:a8:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7094a425595e923c4b53b9c000aa8f19ad923f20
Validity
Not Before: Feb 26 08:24:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a83e9f2386a54c6f6e817c8c5d159680943306cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ea:76:5e:8b:78:a7:89:35:32:69:16:96:cd:
48:f3:22:52:f4:65:2e:ce:e5:9b:d0:4a:6a:bb:d8:
b7:f1:92:7a:4b:c9:96:ea:54:73:6b:88:a5:e9:3e:
13:05:71:d2:f5:01:5d:43:53:21:13:9a:d5:29:39:
d6:30:09:10:fe:5f:1c:d3:be:94:43:6c:3f:14:72:
a6:d3:d4:a6:77:f2:f1:b1:bb:8d:d9:48:a8:17:6a:
b5:0c:31:79:9a:eb:93:33:08:80:70:a6:6c:04:8f:
54:7e:80:63:e8:2a:04:07:e3:18:2a:8f:d1:94:c9:
c4:92:d9:ba:78:38:a1:5b:2d:e2:23:aa:09:93:6c:
ba:2f:47:07:56:84:3a:69:6f:51:70:10:79:fc:ae:
ab:81:5b:6d:aa:46:a2:53:58:03:7c:c4:a6:7f:26:
c1:46:99:c0:46:0d:7c:5c:0e:2a:47:e1:81:4f:dd:
47:0a:18:0c:12:db:e7:20:eb:47:21:09:4d:bc:20:
a3:3f:fb:e6:a1:86:16:fb:ff:e8:ee:c6:eb:54:63:
ac:1a:9b:75:e4:67:bf:b1:b8:36:3b:59:c2:39:1e:
46:93:b8:dd:37:e3:d3:8e:f1:1c:cd:27:a7:ef:61:
6e:a5:e5:5c:96:d5:4e:fa:67:f9:61:0c:e9:6d:8c:
69:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3E:9F:23:86:A5:4C:6F:6E:81:7C:8C:5D:15:96:80:94:33:06:CF
X509v3 Authority Key Identifier:
keyid:70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/qD6fI4alTG9ugXyMXRWWgJQzBs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/cJSkJVlekjxLU7nAAKqPGa2SPyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.20.0/22
77.83.124.0/22
92.114.56.0/22
93.114.240.0/22
109.230.216.0/23
109.230.222.0/24
134.255.215.0/24
176.100.208.0/21
176.100.224.0/20
185.97.168.0/22
185.159.252.0/22
185.170.147.0/24
188.215.8.0/22
193.26.148.0/22
193.31.36.0/22
193.35.14.0/23
193.35.26.0/23
IPv6:
2a06:6c0::/46
2a06:6c0:11::-2a06:6c0:12:ffff:ffff:ffff:ffff:ffff
2a06:6c0:21::-2a06:6c0:26:ffff:ffff:ffff:ffff:ffff
2a06:6c0:254::/47
Signature Algorithm: sha256WithRSAEncryption
02:56:46:c3:89:a8:50:47:b5:14:d7:c3:f4:d6:ed:a0:ce:f1:
e2:c5:71:ef:11:90:cd:fc:64:a7:31:d6:13:29:dd:f2:55:85:
76:c5:67:c7:35:f6:08:d6:55:6f:20:50:aa:29:66:57:85:c5:
cc:8d:3c:92:ee:57:e4:97:0d:b1:4a:5f:f3:d6:51:db:31:02:
d5:e5:09:a6:b8:df:14:e8:71:8e:80:6f:40:58:ca:98:74:a5:
70:d7:a5:c3:12:92:c9:f0:58:dc:53:db:d7:a2:df:5d:5a:cb:
5e:22:0a:17:78:a4:e9:b2:85:f6:04:06:76:1f:c7:68:16:d4:
e6:06:04:6c:38:9c:24:c0:9e:29:c3:57:f3:e5:c3:6b:81:b0:
4f:5d:47:0e:56:fc:8e:9d:fc:3c:bb:80:f2:0a:d5:6f:7d:53:
92:54:70:b6:20:33:46:a2:8b:3a:04:a0:4c:93:64:80:64:50:
04:8b:ef:58:32:1b:e2:24:2a:25:86:ff:6e:e2:58:3e:3b:63:
7c:48:fc:db:97:b1:53:5d:f4:20:72:6d:4b:03:d8:1d:4c:31:
10:5b:2a:58:15:c0:ea:9a:ac:56:7c:0b:69:32:6c:bc:42:b2:
46:05:60:4f:31:a0:94:8b:b8:0f:67:f3:08:12:9b:54:25:cc:
a3:27:d1:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:29 2025 by rpki-client on console.sobornost.net