Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/_-vCy7ICzJgkXfJZ75qxspKlSv8.roa
File: _-vCy7ICzJgkXfJZ75qxspKlSv8.roa (raw, json)
Hash identifier: jMbO+xgYxKlWrIGWglTequYy9eTc9dUkDdUL8kvtI4s=
Subject key identifier: FF:EB:C2:CB:B2:02:CC:98:24:5D:F2:59:EF:9A:B1:B2:92:A5:4A:FF
Certificate issuer: /CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Certificate serial: 019422FB3DBE9F41D6B09EBC388061F33F3B
Authority key identifier: B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/_-vCy7ICzJgkXfJZ75qxspKlSv8.roa
Signing time: Wed 01 Jan 2025 17:47:58 +0000
ROA not before: Wed 01 Jan 2025 17:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34636
IP address blocks: 88.135.40.0/22 maxlen: 22
88.135.40.0/23 maxlen: 23
88.135.40.0/24 maxlen: 24
88.135.41.0/24 maxlen: 24
88.135.42.0/23 maxlen: 23
88.135.42.0/24 maxlen: 24
88.135.43.0/24 maxlen: 24
88.135.44.0/24 maxlen: 24
88.135.46.0/24 maxlen: 24
88.135.47.0/24 maxlen: 24
185.67.100.0/22 maxlen: 22
185.67.100.0/24 maxlen: 24
185.67.101.0/24 maxlen: 24
185.67.102.0/24 maxlen: 24
185.67.103.0/24 maxlen: 24
185.132.80.0/22 maxlen: 22
185.132.80.0/23 maxlen: 23
185.132.80.0/24 maxlen: 24
185.132.81.0/24 maxlen: 24
185.132.82.0/23 maxlen: 23
185.132.83.0/24 maxlen: 24
185.189.120.0/22 maxlen: 22
185.189.120.0/23 maxlen: 23
185.189.120.0/24 maxlen: 24
185.189.121.0/24 maxlen: 24
185.189.122.0/23 maxlen: 23
185.189.122.0/24 maxlen: 24
185.189.123.0/24 maxlen: 24
185.233.12.0/22 maxlen: 22
185.233.12.0/24 maxlen: 24
185.233.13.0/24 maxlen: 24
185.233.14.0/24 maxlen: 24
185.233.15.0/24 maxlen: 24
185.237.8.0/22 maxlen: 22
185.237.8.0/24 maxlen: 24
185.237.9.0/24 maxlen: 24
185.237.10.0/24 maxlen: 24
185.237.11.0/24 maxlen: 24
2a04:f080::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:3d:be:9f:41:d6:b0:9e:bc:38:80:61:f3:3f:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Validity
Not Before: Jan 1 17:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ffebc2cbb202cc98245df259ef9ab1b292a54aff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2e:cf:fe:ee:94:b1:db:90:72:1d:b8:44:23:
a2:74:c5:0a:cf:4c:e1:50:50:47:b0:17:30:50:fc:
ee:de:5c:ec:e5:e2:d5:87:5f:e9:75:7b:66:b6:03:
8e:6c:e8:cd:7f:cf:bc:42:bf:d1:0c:84:25:5e:be:
7d:3a:a8:52:f6:62:f8:01:48:21:d7:fa:c6:cc:e4:
5b:61:59:f7:51:30:d1:8d:5c:ef:a4:a2:60:79:eb:
b8:56:77:b8:70:a2:70:bb:b8:d5:52:7d:ae:9d:54:
ad:b9:84:9e:03:67:78:8e:43:f0:72:8a:63:5f:56:
5a:4b:a0:78:9a:e9:67:df:f9:5a:b4:74:44:7d:98:
d3:c2:62:9f:62:fe:73:58:dd:15:47:83:cf:7e:94:
1b:e5:e1:81:7f:42:42:ca:39:74:60:42:18:56:6a:
c4:42:8d:15:ed:ca:a7:f7:41:8b:3e:ac:b2:a7:c7:
e2:5c:3f:7e:a4:54:4e:90:31:b8:7c:82:a2:02:81:
4c:b6:72:b5:5e:23:eb:56:a3:92:58:83:cb:19:4c:
d9:a5:16:de:23:47:57:ad:46:46:6e:32:d6:00:95:
9d:fc:51:26:0e:55:d9:c5:3b:89:f5:c4:e7:b5:7a:
4c:ef:65:09:8b:11:8c:40:2a:9c:27:fd:bf:53:98:
d3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:EB:C2:CB:B2:02:CC:98:24:5D:F2:59:EF:9A:B1:B2:92:A5:4A:FF
X509v3 Authority Key Identifier:
keyid:B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/_-vCy7ICzJgkXfJZ75qxspKlSv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.40.0-88.135.44.255
88.135.46.0/23
185.67.100.0/22
185.132.80.0/22
185.189.120.0/22
185.233.12.0/22
185.237.8.0/22
IPv6:
2a04:f080::/29
Signature Algorithm: sha256WithRSAEncryption
0c:84:8d:c9:39:68:86:e7:1c:81:fc:e7:b0:b2:4c:c3:c5:4b:
8f:7c:b5:59:5b:9a:36:5f:5c:23:7d:6d:31:2e:f8:9f:8f:ca:
c7:af:c2:62:f4:f8:b1:40:0e:75:17:96:71:14:67:83:9c:84:
fb:c9:6d:0e:50:8c:9c:61:f6:3d:84:24:63:3d:f8:75:5d:92:
68:bd:18:ea:0e:75:96:22:0c:b3:6e:fb:18:69:99:89:11:0a:
95:be:ab:e8:ab:0f:9f:26:71:36:59:77:9d:de:40:3d:5f:e8:
bf:d7:c0:ed:e0:67:ff:35:04:74:00:fc:33:20:c8:6d:c4:26:
ed:e3:d9:95:96:8a:01:84:d8:7c:f6:2d:b4:44:b6:a5:b2:04:
24:44:aa:ce:93:5b:e3:10:68:4f:ad:4c:e0:8d:79:1a:02:f2:
71:19:c0:b2:d7:9d:79:2e:d9:30:b4:40:13:a0:9c:9b:c1:20:
23:91:47:84:ea:52:62:de:70:cc:f6:9f:d3:c9:91:7c:75:10:
5b:54:f5:8e:2a:3c:5e:48:2e:27:21:37:b4:6d:a7:b5:f5:14:
d0:79:6e:51:c5:41:6c:aa:5a:b6:73:8d:71:06:88:81:05:cf:
5a:c5:0e:75:89:f8:71:d3:e3:d3:6c:6f:b0:a8:29:d3:14:ed:
42:6c:d6:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:25 2025 by rpki-client on console.sobornost.net