Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/oOzxGzdEWQIgbFv64kXdt-HJ4kk.roa
File: oOzxGzdEWQIgbFv64kXdt-HJ4kk.roa (raw, json)
Hash identifier: 1yDuhSu3gVL+cSpcnkTlIz74TkUNp57z39zCFLrNSaM=
Subject key identifier: A0:EC:F1:1B:37:44:59:02:20:6C:5B:FA:E2:45:DD:B7:E1:C9:E2:49
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01962EB694D74391166375F13C27261715AE
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/oOzxGzdEWQIgbFv64kXdt-HJ4kk.roa
Signing time: Sun 13 Apr 2025 10:33:59 +0000
ROA not before: Sun 13 Apr 2025 10:33:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50670
IP address blocks: 81.21.8.0/22 maxlen: 22
81.21.8.0/24 maxlen: 24
81.21.9.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
109.237.192.0/20 maxlen: 24
109.237.192.0/24 maxlen: 24
109.237.193.0/24 maxlen: 24
109.237.194.0/24 maxlen: 24
109.237.195.0/24 maxlen: 24
109.237.196.0/24 maxlen: 24
109.237.197.0/24 maxlen: 24
109.237.198.0/24 maxlen: 24
109.237.199.0/24 maxlen: 24
109.237.200.0/24 maxlen: 24
109.237.201.0/24 maxlen: 24
109.237.202.0/24 maxlen: 24
109.237.203.0/24 maxlen: 24
109.237.204.0/24 maxlen: 24
109.237.205.0/24 maxlen: 24
109.237.206.0/24 maxlen: 24
109.237.207.0/24 maxlen: 24
176.241.64.0/21 maxlen: 24
176.241.64.0/24 maxlen: 24
176.241.65.0/24 maxlen: 24
176.241.66.0/24 maxlen: 24
176.241.67.0/24 maxlen: 24
176.241.68.0/24 maxlen: 24
176.241.69.0/24 maxlen: 24
176.241.70.0/24 maxlen: 24
176.241.71.0/24 maxlen: 24
178.20.184.0/21 maxlen: 24
178.20.184.0/24 maxlen: 24
178.20.185.0/24 maxlen: 24
178.20.186.0/24 maxlen: 24
178.20.187.0/24 maxlen: 24
178.20.188.0/24 maxlen: 24
178.20.189.0/24 maxlen: 24
178.20.190.0/24 maxlen: 24
178.20.191.0/24 maxlen: 24
185.51.212.0/22 maxlen: 22
185.51.212.0/24 maxlen: 24
185.51.213.0/24 maxlen: 24
185.51.214.0/24 maxlen: 24
185.51.215.0/24 maxlen: 24
185.193.176.0/22 maxlen: 22
185.193.176.0/24 maxlen: 24
185.193.177.0/24 maxlen: 24
185.193.178.0/24 maxlen: 24
185.193.179.0/24 maxlen: 24
2a01:1d0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2e:b6:94:d7:43:91:16:63:75:f1:3c:27:26:17:15:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Apr 13 10:33:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a0ecf11b37445902206c5bfae245ddb7e1c9e249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:0c:c1:09:0a:29:53:06:95:54:22:80:f4:6d:
f5:14:2a:d7:ca:09:74:44:0f:c7:c2:23:25:41:8e:
41:31:b7:67:3f:89:f4:aa:ee:7c:94:8b:b4:f8:93:
0f:e9:37:c3:97:8a:ea:88:c5:e6:23:47:5e:0f:18:
31:0d:4b:ab:97:8d:57:c4:1c:f3:fd:e0:92:6e:8d:
41:66:50:8d:ed:4b:9a:c9:5c:3e:9b:fc:cb:8b:71:
a7:dc:d0:b4:fa:f0:4d:26:b0:63:49:f2:34:a6:27:
26:f5:34:1b:81:f0:79:85:b2:f3:b6:4c:fd:02:cd:
38:f8:11:58:67:0b:f4:81:92:3f:d7:9b:e5:55:b9:
34:58:df:c4:18:d6:24:2d:8f:be:8d:bd:fd:d7:ca:
5e:53:e3:4c:92:50:e0:68:3e:81:31:b8:41:54:d2:
4d:45:68:5a:56:f1:9a:75:fd:d4:11:90:a6:36:2e:
30:6f:e8:6b:7c:0e:e6:5f:34:a1:95:13:2a:63:f8:
1f:a6:d6:0b:87:83:60:db:83:39:74:55:42:27:5e:
e8:50:41:af:90:26:b1:e8:28:0b:bb:a8:21:ea:c5:
52:3e:8f:ab:7a:24:8d:f0:88:35:0e:29:66:de:08:
f8:cb:9c:23:36:93:3f:de:4d:af:7f:fd:20:f9:51:
5b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:EC:F1:1B:37:44:59:02:20:6C:5B:FA:E2:45:DD:B7:E1:C9:E2:49
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/oOzxGzdEWQIgbFv64kXdt-HJ4kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.8.0/22
81.21.14.0/24
109.237.192.0/20
176.241.64.0/21
178.20.184.0/21
185.51.212.0/22
185.193.176.0/22
IPv6:
2a01:1d0::/32
Signature Algorithm: sha256WithRSAEncryption
3f:e6:63:d1:b8:b9:0d:b7:3f:09:47:16:bb:9d:bf:77:fe:79:
15:f8:80:7f:96:e4:78:51:17:40:92:30:6f:4e:08:85:d7:f7:
90:20:73:c6:bb:3f:24:46:cd:f5:ba:d3:c4:d1:47:90:bc:c6:
02:42:c4:68:09:74:97:c8:5a:8e:62:59:d1:61:a9:4d:dc:b3:
be:08:36:2c:55:a0:2e:8f:8b:3d:c7:c7:47:e8:e3:06:fd:81:
2d:b3:5b:88:4c:5d:bf:3e:6d:2d:e6:40:12:4a:c6:10:9b:84:
5e:6c:fc:d6:8a:4e:04:21:80:c4:af:18:05:b0:30:76:22:84:
f2:ef:06:a0:eb:51:18:54:8c:de:67:3f:ee:a6:e1:94:95:c5:
e8:26:34:35:11:59:9a:0d:76:b4:93:27:ac:43:87:bf:07:29:
79:5a:10:64:87:dc:70:7d:9a:b0:fe:3f:70:e9:50:ee:0e:66:
60:96:d1:2e:10:c2:68:88:d3:8e:83:67:02:35:78:9d:d4:5a:
cc:fb:c5:0e:f4:e8:1c:e5:01:e0:0e:e6:b8:b1:73:ba:02:15:
c1:0a:49:04:be:7d:15:72:6b:48:a0:40:81:e1:82:4d:07:23:
27:b3:db:b3:72:8d:2a:b1:97:fd:e1:e6:81:ee:ef:c5:29:94:
d3:ac:33:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:41 2025 by rpki-client on console.sobornost.net