Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/f77aca-ad91-403f-b98d-de73a81e357d/1/xluZlF8Y4lWty9UIZc07EvSCNPk.roa
File: xluZlF8Y4lWty9UIZc07EvSCNPk.roa (raw, json)
Hash identifier: HE/HrixCaKLjFQb4O8UjaXRfk5ZIsq5yeFLDR8AlCNU=
Subject key identifier: C6:5B:99:94:5F:18:E2:55:AD:CB:D5:08:65:CD:3B:12:F4:82:34:F9
Certificate issuer: /CN=2ff8cf7561fcd6d766b7aad31dbf785f029149f0
Certificate serial: 019424455B5AD3EE9C6E3041A3E045816EDA
Authority key identifier: 2F:F8:CF:75:61:FC:D6:D7:66:B7:AA:D3:1D:BF:78:5F:02:91:49:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L_jPdWH81tdmt6rTHb94XwKRSfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/f77aca-ad91-403f-b98d-de73a81e357d/1/xluZlF8Y4lWty9UIZc07EvSCNPk.roa
Signing time: Wed 01 Jan 2025 23:48:32 +0000
ROA not before: Wed 01 Jan 2025 23:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59455
IP address blocks: 185.80.12.0/22 maxlen: 22
194.147.241.0/24 maxlen: 24
194.147.244.0/24 maxlen: 24
194.147.255.0/24 maxlen: 24
194.149.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:5b:5a:d3:ee:9c:6e:30:41:a3:e0:45:81:6e:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ff8cf7561fcd6d766b7aad31dbf785f029149f0
Validity
Not Before: Jan 1 23:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c65b99945f18e255adcbd50865cd3b12f48234f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fd:80:d1:91:8f:9d:cf:77:49:f1:5b:36:ea:
ea:e5:a5:9b:94:5b:dd:cd:5e:d5:70:31:96:5e:f6:
10:b4:bc:a0:38:af:56:ba:ee:2b:02:52:5e:b1:7a:
71:66:16:fd:2e:49:72:62:cf:5d:7b:49:17:1b:f2:
96:5d:eb:65:0f:31:24:7d:fe:55:0d:b7:a0:d8:d8:
bc:aa:f1:72:b4:ff:4f:15:4d:ad:70:02:b9:7e:74:
29:c9:15:b1:db:5e:21:2b:7b:63:5c:11:d3:73:a6:
dd:5c:c3:c5:fd:c9:35:c5:eb:f4:28:36:04:35:7c:
69:7e:47:16:6b:3c:82:d6:d3:b7:b3:d2:35:56:76:
ec:df:a4:22:7e:98:b5:97:d8:2c:03:46:f3:2c:0b:
46:19:4f:c7:d8:e9:9d:4b:d7:de:19:92:0a:98:2e:
ac:f4:a5:66:e8:b4:e6:26:42:20:15:f6:d6:2b:2f:
86:20:ce:c2:d3:80:06:b4:4a:38:1c:80:1e:34:4b:
16:73:24:1e:c9:90:0c:6e:55:b8:60:ba:e5:a9:84:
f1:c0:c6:71:b7:ff:c2:01:0c:18:28:b7:fa:c3:2c:
83:cd:e1:5a:a3:ae:5b:e7:26:2c:21:20:b9:da:77:
c3:ac:cc:f6:e5:bc:aa:a0:e8:f6:9f:fe:3c:ec:e2:
9d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:5B:99:94:5F:18:E2:55:AD:CB:D5:08:65:CD:3B:12:F4:82:34:F9
X509v3 Authority Key Identifier:
keyid:2F:F8:CF:75:61:FC:D6:D7:66:B7:AA:D3:1D:BF:78:5F:02:91:49:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L_jPdWH81tdmt6rTHb94XwKRSfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77aca-ad91-403f-b98d-de73a81e357d/1/xluZlF8Y4lWty9UIZc07EvSCNPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77aca-ad91-403f-b98d-de73a81e357d/1/L_jPdWH81tdmt6rTHb94XwKRSfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.12.0/22
194.147.241.0/24
194.147.244.0/24
194.147.255.0/24
194.149.89.0/24
Signature Algorithm: sha256WithRSAEncryption
49:46:92:64:1c:2b:b6:1f:9d:66:28:4d:60:c9:9a:c0:73:ac:
19:55:a4:75:c9:4d:b0:e1:ba:16:4c:0e:e8:5a:8b:bf:68:f2:
3a:a6:b0:73:c4:5f:e9:c9:82:17:f3:f4:03:fb:ab:ff:a4:e5:
0a:fa:49:b0:fe:06:ff:4b:04:c3:d2:b7:7c:79:a6:19:da:0e:
68:2c:ab:b9:2d:c5:ed:48:c7:9b:7e:7a:6c:b4:7a:b2:85:f5:
3c:13:ba:8c:7a:f4:17:0b:bb:f5:63:eb:d3:dd:c2:82:0b:94:
7a:57:fd:39:05:24:6f:33:fd:79:42:26:f3:d4:2f:fd:81:96:
60:75:9e:02:01:1b:e7:74:f1:88:6c:91:b0:98:3d:37:38:08:
d6:95:1b:c3:d5:8f:1b:06:5b:42:ef:b4:43:a2:9c:3b:01:8d:
4e:14:ef:28:54:93:19:04:1c:dc:4e:b2:f7:a1:9d:16:6b:90:
ea:51:02:1e:70:c7:8e:ea:bb:82:db:cd:84:60:24:3b:c8:cc:
30:04:81:ee:9d:58:8f:83:09:90:6d:27:41:e6:16:7c:6c:95:
a4:91:fd:cc:5b:23:18:74:88:f3:55:bc:af:81:af:10:82:b6:
7b:bc:c1:29:c0:f2:75:58:39:5e:b9:39:b9:79:95:60:19:7c:
0a:65:d8:e9
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAZQkRVta0+6cbjBBo+BFgW7aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmZjhjZjc1NjFmY2Q2ZDc2NmI3YWFkMzFkYmY3ODVmMDI5
MTQ5ZjAwHhcNMjUwMTAxMjM0ODMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjViOTk5NDVmMThlMjU1YWRjYmQ1MDg2NWNkM2IxMmY0ODIzNGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtv2A0ZGPnc93SfFbNurq5aWblFvd
zV7VcDGWXvYQtLygOK9Wuu4rAlJesXpxZhb9LklyYs9de0kXG/KWXetlDzEkff5V
Dbeg2Ni8qvFytP9PFU2tcAK5fnQpyRWx214hK3tjXBHTc6bdXMPF/ck1xev0KDYE
NXxpfkcWazyC1tO3s9I1Vnbs36Qifpi1l9gsA0bzLAtGGU/H2OmdS9feGZIKmC6s
9KVm6LTmJkIgFfbWKy+GIM7C04AGtEo4HIAeNEsWcyQeyZAMblW4YLrlqYTxwMZx
t//CAQwYKLf6wyyDzeFao65b5yYsISC52nfDrMz25byqoOj2n/487OKddQIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFMZbmZRfGOJVrcvVCGXNOxL0gjT5MB8GA1UdIwQY
MBaAFC/4z3Vh/NbXZreq0x2/eF8CkUnwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTF9qUGRXSDgxdGRtdDZyVEhiOTRYd0tSU2ZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9mNzdhY2EtYWQ5MS00MDNmLWI5OGQt
ZGU3M2E4MWUzNTdkLzEveGx1WmxGOFk0bFd0eTlVSVpjMDdFdlNDTlBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi9mNzdhY2EtYWQ5MS00MDNmLWI5OGQtZGU3M2E4MWUzNTdk
LzEvTF9qUGRXSDgxdGRtdDZyVEhiOTRYd0tSU2ZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCuVAMAwQA
wpPxAwQAwpP0AwQAwpP/AwQAwpVZMA0GCSqGSIb3DQEBCwUAA4IBAQBJRpJkHCu2
H51mKE1gyZrAc6wZVaR1yU2w4boWTA7oWou/aPI6prBzxF/pyYIX8/QD+6v/pOUK
+kmw/gb/SwTD0rd8eaYZ2g5oLKu5LcXtSMebfnpstHqyhfU8E7qMevQXC7v1Y+vT
3cKCC5R6V/05BSRvM/15Qibz1C/9gZZgdZ4CARvndPGIbJGwmD03OAjWlRvD1Y8b
BltC77RDopw7AY1OFO8oVJMZBBzcTrL3oZ0Wa5DqUQIecMeO6ruC282EYCQ7yMww
BIHunViPgwmQbSdB5hZ8bJWkkf3MWyMYdIjzVbyvga8QgrZ7vMEpwPJ1WDleuTm5
eZVgGXwKZdjp
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net