Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/P1A1BXCqCADzQosrk4MwUKPYxTk.roa
File: P1A1BXCqCADzQosrk4MwUKPYxTk.roa (raw, json)
Hash identifier: LXH4t2ODNhUtfiB03lL7Y51z/AGbNaW0Y11NO+KNqsc=
Subject key identifier: 3F:50:35:05:70:AA:08:00:F3:42:8B:2B:93:83:30:50:A3:D8:C5:39
Certificate issuer: /CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Certificate serial: 0194221FF5B9A4C318FC75F4B217C8FCE200
Authority key identifier: 4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/P1A1BXCqCADzQosrk4MwUKPYxTk.roa
Signing time: Wed 01 Jan 2025 13:48:27 +0000
ROA not before: Wed 01 Jan 2025 13:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8508
IP address blocks: 83.230.64.0/20 maxlen: 20
83.230.64.0/21 maxlen: 21
83.230.96.0/19 maxlen: 19
83.230.110.0/24 maxlen: 24
83.230.118.0/23 maxlen: 23
83.230.123.0/24 maxlen: 24
157.158.0.0/16 maxlen: 16
185.126.188.0/22 maxlen: 22
212.106.176.0/20 maxlen: 20
212.106.176.0/24 maxlen: 24
212.106.177.0/24 maxlen: 24
212.106.183.0/24 maxlen: 24
212.106.184.0/22 maxlen: 22
213.227.80.0/20 maxlen: 20
213.227.88.0/21 maxlen: 21
213.227.96.0/19 maxlen: 19
2a01:1d8::/30 maxlen: 30
2a01:1dc::/32 maxlen: 32
2a01:1dd::/32 maxlen: 32
2a01:1de::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:f5:b9:a4:c3:18:fc:75:f4:b2:17:c8:fc:e2:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Validity
Not Before: Jan 1 13:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f50350570aa0800f3428b2b93833050a3d8c539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:38:bb:85:48:2c:5a:ee:aa:9f:64:f1:da:66:
88:f1:c8:6a:06:36:85:2d:dd:a7:af:6d:ee:c1:86:
29:50:f9:f6:13:fb:45:91:18:ae:61:36:ab:02:89:
ae:ff:e0:01:63:ae:6f:68:e7:f7:23:67:3e:a4:86:
b7:9c:6d:a9:35:cc:03:bc:df:d3:9a:90:ac:f4:42:
24:ba:63:a7:15:5c:4d:cf:5c:9e:d0:98:b2:c3:9a:
6a:17:df:11:bc:9d:e7:ca:71:5c:65:f2:02:27:be:
8a:48:58:48:88:9c:03:78:6e:88:4f:98:c2:54:bb:
41:09:73:e4:f9:79:d4:51:ca:c6:10:50:34:6b:e9:
c2:b1:11:7f:ad:95:63:5d:e7:07:62:bf:37:5a:5f:
ad:19:76:63:e4:de:de:bf:6b:19:3a:28:cc:d6:d6:
ce:90:88:af:bf:50:a3:72:b3:0e:31:d0:66:13:1f:
60:47:ab:77:2a:ef:70:89:67:bb:53:9c:1f:48:2c:
6d:ab:a4:aa:1b:e2:1d:8c:23:8c:da:ed:f2:e5:8d:
ee:95:6c:90:7d:cb:3f:4f:fe:ff:e0:c6:b6:b9:97:
23:16:4f:9b:69:dc:58:de:ff:a1:8b:79:39:12:1b:
79:3b:e1:ff:89:33:b1:25:2d:a7:5e:1b:4d:29:72:
77:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:50:35:05:70:AA:08:00:F3:42:8B:2B:93:83:30:50:A3:D8:C5:39
X509v3 Authority Key Identifier:
keyid:4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/P1A1BXCqCADzQosrk4MwUKPYxTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/S0BcqrNLv95rjuZsYAhgxs6W8ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.230.64.0/20
83.230.96.0/19
157.158.0.0/16
185.126.188.0/22
212.106.176.0/20
213.227.80.0-213.227.127.255
IPv6:
2a01:1d8::-2a01:1de:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
55:a8:64:82:af:d0:2b:16:c7:a7:80:f0:6e:07:6f:d5:68:57:
db:2a:18:47:83:3e:2c:2a:8a:ea:35:c1:ff:9a:55:a3:a0:94:
1f:aa:41:99:0d:d7:34:3f:34:e1:ff:71:85:b9:3e:a4:99:05:
c5:26:cc:e3:68:fd:b3:61:5b:d0:79:af:00:ec:20:1e:a2:88:
43:7a:b4:08:2b:fe:16:dc:4e:fb:55:fb:3f:76:bb:eb:67:02:
b4:d5:59:d4:37:e5:56:de:6f:a0:58:af:3b:e2:f1:78:45:1f:
66:02:b1:62:c6:3f:d2:b7:3b:f7:ad:af:2d:16:4f:7b:e1:b8:
05:db:81:7e:80:d4:89:c0:62:4f:c5:9a:43:b7:df:61:b7:0c:
1c:38:b0:4e:9b:67:27:ee:fe:d0:02:bf:ed:82:69:41:f3:28:
bf:d7:b6:6d:39:d9:9f:d3:38:0f:3e:5a:2f:fd:8f:cb:86:95:
0d:ce:41:40:2f:6f:ac:e0:f4:08:20:7f:71:bd:cb:25:34:ec:
2e:21:cd:56:e4:15:97:96:05:f5:70:d7:66:7c:16:e4:0d:da:
8e:06:8c:ff:e1:1f:7c:b0:42:72:c7:e9:42:59:89:54:08:69:
a5:1f:f0:90:a8:06:01:c0:c7:b2:31:c7:63:b5:f6:72:64:f8:
8c:6c:ba:73
-----BEGIN CERTIFICATE-----
MIIFOjCCBCKgAwIBAgISAZQiH/W5pMMY/HX0shfI/OIAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiNDA1Y2FhYjM0YmJmZGU2YjhlZTY2YzYwMDg2MGM2Y2U5
NmYzMmIwHhcNMjUwMTAxMTM0ODI3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZjUwMzUwNTcwYWEwODAwZjM0MjhiMmI5MzgzMzA1MGEzZDhjNTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzi7hUgsWu6qn2Tx2maI8chqBjaF
Ld2nr23uwYYpUPn2E/tFkRiuYTarAomu/+ABY65vaOf3I2c+pIa3nG2pNcwDvN/T
mpCs9EIkumOnFVxNz1ye0Jiyw5pqF98RvJ3nynFcZfICJ76KSFhIiJwDeG6IT5jC
VLtBCXPk+XnUUcrGEFA0a+nCsRF/rZVjXecHYr83Wl+tGXZj5N7ev2sZOijM1tbO
kIivv1CjcrMOMdBmEx9gR6t3Ku9wiWe7U5wfSCxtq6SqG+IdjCOM2u3y5Y3ulWyQ
fcs/T/7/4Ma2uZcjFk+badxY3v+hi3k5Eht5O+H/iTOxJS2nXhtNKXJ31QIDAQAB
o4ICRjCCAkIwHQYDVR0OBBYEFD9QNQVwqggA80KLK5ODMFCj2MU5MB8GA1UdIwQY
MBaAFEtAXKqzS7/ea47mbGAIYMbOlvMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzBCY3FyTkx2OTVyanVac1lBaGd4czZXOHlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS85MTRkMzktMzAyMC00Yjc5LWFkMjYt
ZDg3YWZmYjhiYzYxLzEvUDFBMUJYQ3FDQUR6UW9zcms0TXdVS1BZeFRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS85MTRkMzktMzAyMC00Yjc5LWFkMjYtZDg3YWZmYjhiYzYx
LzEvUzBCY3FyTkx2OTVyanVac1lBaGd4czZXOHlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFwGCCsGAQUFBwEHAQH/BE0wSzAxBAIAATArAwQEU+ZAAwQF
U+ZgAwMAnZ4DBAK5frwDBATUarAwDAMEBNXjUAMEB9XjADAWBAIAAjAQMA4DBQMq
AQHYAwUAKgEB3jANBgkqhkiG9w0BAQsFAAOCAQEAVahkgq/QKxbHp4Dwbgdv1WhX
2yoYR4M+LCqK6jXB/5pVo6CUH6pBmQ3XND804f9xhbk+pJkFxSbM42j9s2Fb0Hmv
AOwgHqKIQ3q0CCv+FtxO+1X7P3a762cCtNVZ1DflVt5voFivO+LxeEUfZgKxYsY/
0rc7962vLRZPe+G4BduBfoDUicBiT8WaQ7ffYbcMHDiwTptnJ+7+0AK/7YJpQfMo
v9e2bTnZn9M4Dz5aL/2Py4aVDc5BQC9vrOD0CCB/cb3LJTTsLiHNVuQVl5YF9XDX
ZnwW5A3ajgaM/+EffLBCcsfpQlmJVAhppR/wkKgGAcDHsjHHY7X2cmT4jGy6cw==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:54 2025 by rpki-client on console.sobornost.net