Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/1ffKjQocjrQNsazj1CAi9JjVS5M.roa
File: 1ffKjQocjrQNsazj1CAi9JjVS5M.roa (raw, json)
Hash identifier: LGq8PY1XybDfBXT9FGzMq8PfJwuGWsOSqjxZ40jc9hQ=
Subject key identifier: D5:F7:CA:8D:0A:1C:8E:B4:0D:B1:AC:E3:D4:20:22:F4:98:D5:4B:93
Certificate issuer: /CN=1ed3d8e29e063b9d2740ab3de6c72255ec8d0557
Certificate serial: 01942521EC28A4879C97C2627824B7E649BD
Authority key identifier: 1E:D3:D8:E2:9E:06:3B:9D:27:40:AB:3D:E6:C7:22:55:EC:8D:05:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtPY4p4GO50nQKs95sciVeyNBVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/1ffKjQocjrQNsazj1CAi9JjVS5M.roa
Signing time: Thu 02 Jan 2025 03:49:27 +0000
ROA not before: Thu 02 Jan 2025 03:49:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5400
IP address blocks: 62.5.0.0/17 maxlen: 17
62.102.0.0/17 maxlen: 17
62.134.0.0/16 maxlen: 16
62.173.192.0/18 maxlen: 18
62.180.0.0/16 maxlen: 16
82.150.0.0/19 maxlen: 19
185.94.0.0/22 maxlen: 22
194.213.64.0/19 maxlen: 19
195.90.64.0/19 maxlen: 19
195.100.0.0/16 maxlen: 16
195.163.0.0/16 maxlen: 16
195.182.96.0/19 maxlen: 19
212.8.160.0/19 maxlen: 19
212.21.192.0/19 maxlen: 19
212.31.192.0/19 maxlen: 19
212.41.128.0/19 maxlen: 19
212.108.0.0/19 maxlen: 19
212.127.0.0/19 maxlen: 19
212.162.192.0/18 maxlen: 18
213.15.0.0/16 maxlen: 16
213.137.160.0/19 maxlen: 19
213.194.0.0/18 maxlen: 18
213.236.64.0/18 maxlen: 18
2001:740::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:ec:28:a4:87:9c:97:c2:62:78:24:b7:e6:49:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed3d8e29e063b9d2740ab3de6c72255ec8d0557
Validity
Not Before: Jan 2 03:49:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d5f7ca8d0a1c8eb40db1ace3d42022f498d54b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c8:84:36:09:47:bd:0a:f4:79:dc:2e:f3:3e:
12:fb:ec:52:38:af:80:45:15:0d:ae:78:f7:0c:7e:
de:17:6d:22:5f:97:cd:30:c6:17:37:98:71:26:03:
4b:20:fa:34:fd:b4:33:78:84:c6:73:30:07:38:47:
47:49:e9:a1:4c:81:22:c3:ec:16:49:94:79:0a:f6:
da:0b:97:3c:f6:38:42:28:45:6a:da:70:7a:21:43:
05:11:d6:11:3c:68:ed:08:1c:a4:d5:b7:7c:dc:cf:
78:92:22:cf:28:b6:4b:27:23:67:f5:66:e8:a6:b5:
15:5e:b0:5e:05:19:7c:22:71:4f:ca:52:42:1b:d3:
4c:29:43:12:42:05:3d:cf:89:35:ae:2a:24:d2:71:
32:3c:3a:d3:62:98:64:3f:2c:33:27:be:41:17:24:
a3:eb:20:69:77:99:71:d1:7d:60:3b:cc:b9:65:cc:
0a:0f:67:4c:b4:e8:7a:fa:a4:61:37:bb:37:94:37:
f2:a3:b1:1e:65:6c:70:75:48:6a:a6:a0:aa:4d:2b:
30:8d:18:ed:59:5c:a9:a5:53:da:34:97:a7:b9:dd:
bf:3e:a1:1e:0d:6f:b3:94:97:b9:cb:45:4d:07:9d:
f2:8d:6c:c2:5f:e1:41:ef:30:5d:6b:5a:df:aa:f6:
fd:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F7:CA:8D:0A:1C:8E:B4:0D:B1:AC:E3:D4:20:22:F4:98:D5:4B:93
X509v3 Authority Key Identifier:
keyid:1E:D3:D8:E2:9E:06:3B:9D:27:40:AB:3D:E6:C7:22:55:EC:8D:05:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtPY4p4GO50nQKs95sciVeyNBVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/1ffKjQocjrQNsazj1CAi9JjVS5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/HtPY4p4GO50nQKs95sciVeyNBVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.5.0.0/17
62.102.0.0/17
62.134.0.0/16
62.173.192.0/18
62.180.0.0/16
82.150.0.0/19
185.94.0.0/22
194.213.64.0/19
195.90.64.0/19
195.100.0.0/16
195.163.0.0/16
195.182.96.0/19
212.8.160.0/19
212.21.192.0/19
212.31.192.0/19
212.41.128.0/19
212.108.0.0/19
212.127.0.0/19
212.162.192.0/18
213.15.0.0/16
213.137.160.0/19
213.194.0.0/18
213.236.64.0/18
IPv6:
2001:740::/32
Signature Algorithm: sha256WithRSAEncryption
70:97:8c:93:c4:6d:31:1b:8c:4b:5b:2c:73:db:ef:95:87:16:
11:1b:05:ae:90:b7:ba:ab:af:11:14:b0:d0:48:e7:3b:9e:2b:
c4:f1:c7:72:3c:90:26:49:bf:5a:42:cf:27:4a:3c:b9:b1:15:
b6:f7:42:ec:95:2d:33:a5:0b:40:64:60:47:47:a2:ae:ea:f5:
5b:b1:94:ec:ea:76:dc:2b:02:7f:89:6e:d1:db:32:4b:a4:6f:
a9:77:fb:4c:b4:bf:0a:2a:7e:0f:8f:e4:c3:4a:68:60:85:16:
a6:c6:d1:21:01:96:be:62:67:f8:85:ef:bb:d2:bc:ee:e2:f1:
3c:76:2e:98:23:80:87:1e:8d:d9:c0:b4:30:f6:c3:84:47:d8:
49:ee:19:09:f3:42:46:20:9b:d9:76:da:c1:74:ba:c8:68:a0:
8f:30:a6:9a:cc:9b:ed:93:5f:88:44:27:bf:47:59:9d:4d:cb:
95:6f:f7:23:d3:e7:db:c3:09:69:b2:89:8f:ad:c3:89:00:9d:
05:1c:7a:d4:19:93:ec:f7:7b:ee:7e:4c:92:57:78:79:81:93:
65:01:12:31:21:0e:e6:00:8f:a7:37:54:33:8f:39:1f:9f:2d:
b9:b4:a2:5f:50:c8:54:8d:27:6f:1f:16:bf:6f:b1:2c:7d:80:
8b:17:43:d0
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgISAZQlIewopIecl8JieCS35km9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlZDNkOGUyOWUwNjNiOWQyNzQwYWIzZGU2YzcyMjU1ZWM4
ZDA1NTcwHhcNMjUwMTAyMDM0OTI3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNWY3Y2E4ZDBhMWM4ZWI0MGRiMWFjZTNkNDIwMjJmNDk4ZDU0YjkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsiENglHvQr0edwu8z4S++xSOK+A
RRUNrnj3DH7eF20iX5fNMMYXN5hxJgNLIPo0/bQzeITGczAHOEdHSemhTIEiw+wW
SZR5CvbaC5c89jhCKEVq2nB6IUMFEdYRPGjtCByk1bd83M94kiLPKLZLJyNn9Wbo
prUVXrBeBRl8InFPylJCG9NMKUMSQgU9z4k1riok0nEyPDrTYphkPywzJ75BFySj
6yBpd5lx0X1gO8y5ZcwKD2dMtOh6+qRhN7s3lDfyo7EeZWxwdUhqpqCqTSswjRjt
WVyppVPaNJenud2/PqEeDW+zlJe5y0VNB53yjWzCX+FB7zBda1rfqvb9BQIDAQAB
o4ICnDCCApgwHQYDVR0OBBYEFNX3yo0KHI60DbGs49QgIvSY1UuTMB8GA1UdIwQY
MBaAFB7T2OKeBjudJ0CrPebHIlXsjQVXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHRQWTRwNEdPNTBuUUtzOTVzY2lWZXlOQlZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi80ZDljODMtZjk2MC00OGFjLWJiZjUt
OWRjYTVjYzgwZGQ5LzEvMWZmS2pRb2NqclFOc2F6ajFDQWk5SmpWUzVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi80ZDljODMtZjk2MC00OGFjLWJiZjUtOWRjYTVjYzgwZGQ5
LzEvSHRQWTRwNEdPNTBuUUtzOTVzY2lWZXlOQlZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGxBggrBgEFBQcBBwEB/wSBoTCBnjCBjAQCAAEwgYUDBAc+
BQADBAc+ZgADAwA+hgMEBj6twAMDAD60AwQFUpYAAwQCuV4AAwQFwtVAAwQFw1pA
AwMAw2QDAwDDowMEBcO2YAMEBdQIoAMEBdQVwAMEBdQfwAMEBdQpgAMEBdRsAAME
BdR/AAMEBtSiwAMDANUPAwQF1YmgAwQG1cIAAwQG1exAMA0EAgACMAcDBQAgAQdA
MA0GCSqGSIb3DQEBCwUAA4IBAQBwl4yTxG0xG4xLWyxz2++VhxYRGwWukLe6q68R
FLDQSOc7nivE8cdyPJAmSb9aQs8nSjy5sRW290LslS0zpQtAZGBHR6Ku6vVbsZTs
6nbcKwJ/iW7R2zJLpG+pd/tMtL8KKn4Pj+TDSmhghRamxtEhAZa+Ymf4he+70rzu
4vE8di6YI4CHHo3ZwLQw9sOER9hJ7hkJ80JGIJvZdtrBdLrIaKCPMKaazJvtk1+I
RCe/R1mdTcuVb/cj0+fbwwlpsomPrcOJAJ0FHHrUGZPs93vufkySV3h5gZNlARIx
IQ7mAI+nN1Qzjzkfny25tKJfUMhUjSdvHxa/b7EsfYCLF0PQ
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:54 2025 by rpki-client on console.sobornost.net