Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/MOy3y_lcyrr-_uZmr0leY3-7Nxk.roa
File: MOy3y_lcyrr-_uZmr0leY3-7Nxk.roa (raw, json)
Hash identifier: YOHkYivCptCzJR0V0Ab30X03x2LQcY2S2U8MBsC/It0=
Subject key identifier: 30:EC:B7:CB:F9:5C:CA:BA:FE:FE:E6:66:AF:49:5E:63:7F:BB:37:19
Certificate issuer: /CN=baaa64cd29c94ccde14448f61a172c763b1e4050
Certificate serial: 019427B540865D2C7406394FCFFBF2446D82
Authority key identifier: BA:AA:64:CD:29:C9:4C:CD:E1:44:48:F6:1A:17:2C:76:3B:1E:40:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/MOy3y_lcyrr-_uZmr0leY3-7Nxk.roa
Signing time: Thu 02 Jan 2025 15:49:37 +0000
ROA not before: Thu 02 Jan 2025 15:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30815
IP address blocks: 88.209.128.0/22 maxlen: 22
88.209.128.0/24 maxlen: 24
88.209.130.0/24 maxlen: 24
88.209.132.0/22 maxlen: 22
88.209.132.0/24 maxlen: 24
88.209.135.0/24 maxlen: 24
88.209.136.0/24 maxlen: 24
88.209.137.0/24 maxlen: 24
88.209.138.0/24 maxlen: 24
88.209.160.0/21 maxlen: 21
88.209.160.0/22 maxlen: 22
88.209.160.0/24 maxlen: 24
88.209.161.0/24 maxlen: 24
88.209.162.0/24 maxlen: 24
88.209.163.0/24 maxlen: 24
88.209.164.0/22 maxlen: 22
88.209.164.0/23 maxlen: 23
88.209.164.0/24 maxlen: 24
88.209.165.0/24 maxlen: 24
88.209.166.0/24 maxlen: 24
88.209.167.0/24 maxlen: 24
88.209.190.0/24 maxlen: 24
88.209.191.0/24 maxlen: 24
93.189.96.0/21 maxlen: 21
93.189.96.0/23 maxlen: 23
93.189.96.0/24 maxlen: 24
93.189.97.0/24 maxlen: 24
93.189.98.0/23 maxlen: 23
93.189.98.0/24 maxlen: 24
93.189.99.0/24 maxlen: 24
93.189.100.0/23 maxlen: 23
93.189.100.0/24 maxlen: 24
93.189.101.0/24 maxlen: 24
93.189.102.0/23 maxlen: 23
93.189.102.0/24 maxlen: 24
93.189.103.0/24 maxlen: 24
185.63.232.0/22 maxlen: 22
185.63.232.0/23 maxlen: 23
185.63.232.0/24 maxlen: 24
185.63.233.0/24 maxlen: 24
185.63.234.0/24 maxlen: 24
185.63.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:40:86:5d:2c:74:06:39:4f:cf:fb:f2:44:6d:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa64cd29c94ccde14448f61a172c763b1e4050
Validity
Not Before: Jan 2 15:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=30ecb7cbf95ccabafefee666af495e637fbb3719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:68:b7:77:f3:ff:78:94:4b:40:61:dd:c2:5f:
db:d3:79:61:e0:dd:ad:e7:bf:ba:0d:7e:74:50:8a:
81:23:1b:79:02:b4:f1:23:92:0f:92:2a:3f:57:68:
a7:78:40:4f:18:30:e3:d5:5f:df:f5:13:03:1b:b9:
4c:ab:69:e3:4d:0f:9a:1e:53:ab:ad:af:5b:b3:58:
b2:df:32:a6:00:bb:74:ca:6c:69:7e:cc:f5:21:40:
23:db:9b:52:df:f6:00:4d:ca:cc:63:eb:39:a9:28:
8e:4c:02:67:ec:05:ec:75:19:9b:f3:59:68:6b:22:
5f:e4:7d:ce:95:ab:12:e2:22:37:02:d5:43:00:1a:
75:59:31:e6:94:f1:1b:53:47:9d:a5:78:6b:0b:44:
6b:12:20:88:e3:cf:40:2e:a7:3f:0e:65:65:9c:e7:
d9:85:99:84:2e:75:af:e4:68:92:61:b0:d0:49:61:
68:df:fb:12:f6:3e:d3:a0:8d:4b:27:d5:86:9c:b3:
66:fe:ac:53:b4:ff:a0:4c:ef:49:47:95:90:d7:12:
62:4e:99:ec:b0:15:c9:20:e4:92:5b:3e:ab:b0:fb:
9e:04:4b:00:bc:97:79:81:40:47:e3:5d:5f:bf:f4:
73:99:2f:dc:c4:92:08:b7:5c:24:40:1e:17:f4:1e:
c4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EC:B7:CB:F9:5C:CA:BA:FE:FE:E6:66:AF:49:5E:63:7F:BB:37:19
X509v3 Authority Key Identifier:
keyid:BA:AA:64:CD:29:C9:4C:CD:E1:44:48:F6:1A:17:2C:76:3B:1E:40:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/MOy3y_lcyrr-_uZmr0leY3-7Nxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.128.0-88.209.138.255
88.209.160.0/21
88.209.190.0/23
93.189.96.0/21
185.63.232.0/22
Signature Algorithm: sha256WithRSAEncryption
71:16:07:f3:39:3a:ba:38:73:fd:a6:5c:d6:f4:99:b6:39:d6:
b6:6c:13:74:5c:05:7d:55:97:fe:8d:57:6e:5c:63:02:7f:40:
de:21:c3:07:2c:6e:92:51:71:a0:bc:86:8d:ad:97:01:eb:f5:
ed:39:fe:ab:e6:89:e7:1e:03:9b:00:1c:4c:bd:fe:0c:de:ff:
fb:0a:ba:49:0c:0d:0b:76:b8:46:5d:90:af:d4:8a:59:2c:9f:
8a:ab:e2:29:49:9a:a3:2e:fc:94:5d:55:0b:26:2f:45:6b:04:
84:49:d9:c1:0a:9a:3f:68:66:74:67:27:e3:a5:5f:6c:de:b6:
a4:57:94:9a:c2:c0:10:69:ce:09:db:e8:a0:96:11:97:44:75:
b9:b3:a3:04:ae:f0:a3:48:2b:ae:c9:04:02:7d:83:42:c7:20:
3a:20:60:7f:c4:4d:9f:1a:8e:c7:c1:91:12:22:a9:6f:4e:09:
40:99:bb:54:02:fd:f6:b5:70:69:ca:10:d8:d8:7c:6f:35:14:
10:38:a1:2f:35:c5:04:ae:b3:f0:c5:4b:fe:2d:78:13:7d:68:
cc:b7:95:e5:f0:57:59:bf:6b:68:8c:8a:32:9f:12:28:64:59:
08:a8:1e:e7:3c:01:b9:1f:a2:5b:35:fe:ca:de:ea:1e:a8:2a:
40:cd:c3:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 23:54:13 2025 by rpki-client on console.sobornost.net