Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/qitb7VLMgvff1nrPh9k84ZNCZis.roa
File: qitb7VLMgvff1nrPh9k84ZNCZis.roa (raw, json)
Hash identifier: 5aKxoc3/ZFGyn8GlrxxZrkPDb3gc2rupmpy/hBVwGfg=
Subject key identifier: AA:2B:5B:ED:52:CC:82:F7:DF:D6:7A:CF:87:D9:3C:E1:93:42:66:2B
Certificate issuer: /CN=1c5c72ee422c61667e3056de6b3ffce034305175
Certificate serial: 019422FB38131D6DE425F2065B66BE481CA1
Authority key identifier: 1C:5C:72:EE:42:2C:61:66:7E:30:56:DE:6B:3F:FC:E0:34:30:51:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFxy7kIsYWZ-MFbeaz_84DQwUXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/qitb7VLMgvff1nrPh9k84ZNCZis.roa
Signing time: Wed 01 Jan 2025 17:47:56 +0000
ROA not before: Wed 01 Jan 2025 17:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35645
IP address blocks: 95.66.128.0/19 maxlen: 19
95.66.160.0/19 maxlen: 19
95.66.192.0/22 maxlen: 22
95.66.196.0/23 maxlen: 23
95.66.200.0/23 maxlen: 23
95.66.202.0/23 maxlen: 23
95.66.204.0/23 maxlen: 23
95.66.206.0/23 maxlen: 23
95.66.208.0/22 maxlen: 22
95.66.212.0/22 maxlen: 22
95.66.216.0/22 maxlen: 22
95.66.220.0/23 maxlen: 23
95.66.222.0/23 maxlen: 23
95.66.224.0/23 maxlen: 23
95.66.227.0/24 maxlen: 24
95.66.228.0/23 maxlen: 23
95.66.230.0/23 maxlen: 23
95.66.237.0/24 maxlen: 24
95.66.238.0/23 maxlen: 23
95.66.240.0/22 maxlen: 22
95.66.244.0/24 maxlen: 24
95.66.245.0/24 maxlen: 24
95.66.246.0/24 maxlen: 24
95.66.247.0/24 maxlen: 24
95.66.248.0/23 maxlen: 23
95.66.250.0/23 maxlen: 23
95.66.252.0/23 maxlen: 23
95.66.254.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:38:13:1d:6d:e4:25:f2:06:5b:66:be:48:1c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5c72ee422c61667e3056de6b3ffce034305175
Validity
Not Before: Jan 1 17:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aa2b5bed52cc82f7dfd67acf87d93ce19342662b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:24:5d:45:97:9f:46:7b:57:66:b3:f0:20:60:
4a:20:0d:b5:70:9c:45:a2:08:5d:de:1f:fb:81:cc:
b4:36:81:86:22:5f:49:d4:9e:59:9c:1c:66:51:c1:
5a:99:49:b9:45:96:5e:44:be:0c:08:08:90:f8:af:
9a:56:e0:6e:a2:06:f6:13:0a:6a:88:f6:e6:a6:18:
41:a2:fd:17:e6:bc:e5:5a:80:00:6d:62:3d:95:d4:
2c:73:f5:2f:d7:1d:5a:46:c4:0d:7c:59:86:e9:90:
79:d5:99:3b:c1:5b:f2:b2:9a:93:fc:52:66:1e:c2:
22:f0:2c:2c:66:0a:5e:58:d3:eb:80:ef:c3:46:66:
09:98:f3:aa:3e:69:26:d6:c6:63:03:3d:c7:65:5c:
7e:1e:fe:44:c6:22:7e:d2:6b:1e:4c:a0:b3:71:3f:
0b:fa:66:70:2d:a7:35:3c:30:13:28:2a:cb:4e:86:
6e:a5:27:fa:5b:17:18:2c:c4:0c:f3:1e:a0:8e:a3:
b9:5a:78:c0:e7:d9:9f:e9:ce:3c:a8:f9:6f:32:59:
7a:47:e7:20:62:af:12:ff:62:b6:e2:bc:ac:a8:60:
bc:98:98:05:90:9f:ab:4c:ae:2a:93:73:17:7f:93:
41:c9:a4:ed:4b:eb:8b:ad:10:c8:02:a1:27:8d:9e:
8e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:2B:5B:ED:52:CC:82:F7:DF:D6:7A:CF:87:D9:3C:E1:93:42:66:2B
X509v3 Authority Key Identifier:
keyid:1C:5C:72:EE:42:2C:61:66:7E:30:56:DE:6B:3F:FC:E0:34:30:51:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFxy7kIsYWZ-MFbeaz_84DQwUXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/qitb7VLMgvff1nrPh9k84ZNCZis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/HFxy7kIsYWZ-MFbeaz_84DQwUXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.66.128.0-95.66.197.255
95.66.200.0-95.66.225.255
95.66.227.0-95.66.231.255
95.66.237.0-95.66.255.255
Signature Algorithm: sha256WithRSAEncryption
24:a3:f4:d9:37:70:cb:70:5d:ba:08:b9:08:a5:a5:45:3a:ce:
ed:c0:90:fb:74:19:0e:12:9b:6f:63:f9:15:0c:5a:91:de:67:
02:32:45:82:43:3f:e7:c3:2c:84:33:b3:e4:7f:3d:d3:2c:7c:
e7:ff:60:3b:73:0c:e7:70:f5:aa:63:a7:7f:de:d1:ba:f1:0e:
be:e6:0b:67:f6:3e:08:f5:95:2b:79:ca:70:ab:af:39:3e:94:
79:99:5c:44:57:95:a8:de:01:ec:81:dd:70:3d:22:b2:db:c9:
2b:87:2c:e7:d5:cb:7a:2d:55:f9:07:ae:77:85:05:bd:70:3e:
78:f7:99:2a:89:43:f7:96:82:d7:34:5e:b5:eb:ef:e6:77:09:
d5:1c:27:3f:00:e3:ac:ca:69:fb:12:7f:8d:e7:ff:75:f2:cc:
92:5c:17:86:a3:96:37:aa:64:86:ad:4b:b4:40:6d:b2:b8:01:
3e:7f:86:d3:8f:2c:1a:6b:a7:63:a4:f0:0e:1d:cb:bc:78:a7:
86:d7:c9:65:56:e0:fe:c9:8f:9b:00:7a:07:c8:9b:b4:59:54:
ef:3e:69:17:35:b4:ec:f8:41:4f:98:17:0a:a6:8b:d7:88:7c:
03:ea:0e:5a:da:d9:99:d3:8e:51:bc:1c:0a:80:36:67:47:3e:
f1:a4:55:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:13 2025 by rpki-client on console.sobornost.net