Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/FgtwQexIijsiy2UYh5s3NHupI_U.roa
File: FgtwQexIijsiy2UYh5s3NHupI_U.roa (raw, json)
Hash identifier: gAA0vHeWOanEfgm4YCjsO5KuF3+dtv6jFZrage6sq5I=
Subject key identifier: 16:0B:70:41:EC:48:8A:3B:22:CB:65:18:87:9B:37:34:7B:A9:23:F5
Certificate issuer: /CN=5975d519de239cf164cb94a6660c2530ceaef254
Certificate serial: 01957FE8D48273185A2897A9691B24B56BFB
Authority key identifier: 59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/FgtwQexIijsiy2UYh5s3NHupI_U.roa
Signing time: Mon 10 Mar 2025 11:55:19 +0000
ROA not before: Mon 10 Mar 2025 11:55:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207144
IP address blocks: 85.11.128.0/24 maxlen: 24
85.11.129.0/24 maxlen: 24
85.11.130.0/24 maxlen: 24
85.11.131.0/24 maxlen: 24
85.11.132.0/24 maxlen: 24
85.11.133.0/24 maxlen: 24
85.11.134.0/24 maxlen: 24
85.11.135.0/24 maxlen: 24
85.11.136.0/24 maxlen: 24
85.11.137.0/24 maxlen: 24
85.11.138.0/24 maxlen: 24
85.11.139.0/24 maxlen: 24
85.11.140.0/24 maxlen: 24
85.11.141.0/24 maxlen: 24
85.11.142.0/24 maxlen: 24
85.11.143.0/24 maxlen: 24
85.11.160.0/24 maxlen: 24
85.11.161.0/24 maxlen: 24
85.11.162.0/24 maxlen: 24
85.11.164.0/24 maxlen: 24
85.11.165.0/24 maxlen: 24
85.11.166.0/24 maxlen: 24
85.11.167.0/24 maxlen: 24
85.11.168.0/24 maxlen: 24
85.11.169.0/24 maxlen: 24
85.11.170.0/24 maxlen: 24
85.11.171.0/24 maxlen: 24
85.11.172.0/24 maxlen: 24
85.11.173.0/24 maxlen: 24
85.11.174.0/24 maxlen: 24
85.11.175.0/24 maxlen: 24
85.11.176.0/24 maxlen: 24
85.11.177.0/24 maxlen: 24
85.11.178.0/24 maxlen: 24
85.11.179.0/24 maxlen: 24
85.11.184.0/24 maxlen: 24
85.11.185.0/24 maxlen: 24
85.11.186.0/24 maxlen: 24
85.11.188.0/24 maxlen: 24
85.11.189.0/24 maxlen: 24
85.11.191.0/24 maxlen: 24
185.164.240.0/24 maxlen: 24
185.164.241.0/24 maxlen: 24
185.164.242.0/24 maxlen: 24
185.164.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:7f:e8:d4:82:73:18:5a:28:97:a9:69:1b:24:b5:6b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5975d519de239cf164cb94a6660c2530ceaef254
Validity
Not Before: Mar 10 11:55:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=160b7041ec488a3b22cb6518879b37347ba923f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3a:98:6a:8f:45:5f:3a:28:6a:25:40:55:47:
ef:33:92:46:b9:d1:bc:e0:75:aa:05:49:62:03:59:
89:71:9e:c3:bb:8f:c6:a1:5c:91:3f:b8:47:1f:24:
cc:96:ed:fe:e6:05:74:b9:c1:20:1e:47:e0:77:22:
bd:ab:06:0e:60:5a:25:fb:66:50:00:ef:5b:49:b2:
1f:7c:c7:a6:ac:76:0a:ab:8e:99:12:5e:1d:91:16:
8c:e1:7f:1d:ad:0a:71:f5:f7:a7:31:f7:c2:52:3e:
d8:14:2c:15:df:4a:c1:59:95:e9:40:92:ae:f5:51:
2b:27:40:4d:18:ba:16:33:f0:11:58:26:56:00:02:
00:66:b5:d7:12:0c:2a:1c:43:89:bf:b3:9d:a2:88:
80:4f:1f:1f:3e:7e:f0:67:f1:af:7b:97:80:92:ee:
d3:62:b3:09:f3:a3:25:66:ad:74:22:18:5f:bf:8b:
43:7d:c9:6a:8a:84:c2:19:c0:9b:14:07:9a:00:f1:
d9:c8:e5:a9:c1:f4:cc:bc:7f:af:39:7c:a8:df:9f:
d8:17:b9:99:79:1b:14:66:5c:57:4b:95:1a:c5:86:
8a:30:07:9e:84:0e:9f:3a:1d:84:0e:6c:bf:b0:c9:
77:26:a5:d6:87:ea:4e:54:f9:71:3a:6f:d6:89:4d:
cb:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0B:70:41:EC:48:8A:3B:22:CB:65:18:87:9B:37:34:7B:A9:23:F5
X509v3 Authority Key Identifier:
keyid:59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/FgtwQexIijsiy2UYh5s3NHupI_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/WXXVGd4jnPFky5SmZgwlMM6u8lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.11.128.0/20
85.11.160.0-85.11.162.255
85.11.164.0-85.11.179.255
85.11.184.0-85.11.186.255
85.11.188.0/23
85.11.191.0/24
185.164.240.0/22
Signature Algorithm: sha256WithRSAEncryption
94:14:18:fc:8e:62:7b:93:a9:48:f4:76:eb:dd:f1:b4:ab:d1:
9f:78:f5:fb:3f:a5:3e:e2:84:5c:18:a1:72:95:67:b7:9b:41:
1f:2c:3d:04:9b:d0:cb:bb:78:c5:97:9a:5d:7b:77:50:f1:e9:
70:10:b2:ce:16:56:6c:d4:70:59:a6:83:8a:c2:a6:75:39:d4:
0f:d3:33:ab:87:dd:3e:11:e5:1f:7f:7d:a4:8a:ce:2c:86:70:
1c:f4:8c:a0:98:78:8b:cf:ad:cf:01:51:01:38:ac:42:bf:8c:
e4:bc:d1:d9:b0:13:dc:15:72:07:a4:75:a3:38:a0:26:7d:c0:
e9:af:c4:83:67:80:99:60:ee:57:9f:af:91:8b:f6:28:5e:d6:
21:21:1c:db:6f:93:6f:ed:fe:26:f5:94:33:89:05:c4:8e:94:
08:3c:b9:23:e4:6c:2b:3a:4e:f6:2d:2f:a8:85:9d:fc:bd:d9:
6e:76:e3:37:9d:8d:eb:d0:9c:1f:ce:1e:ce:ee:a8:58:00:7b:
d1:fe:08:22:10:6a:a5:b0:53:72:2a:b0:22:ec:e3:e8:54:b0:
ba:42:ae:7d:71:f0:93:1f:07:02:14:6e:b8:ee:b8:c4:62:82:
56:9c:35:18:41:86:ef:4d:56:8b:56:e7:8b:e8:2d:47:b6:1c:
40:b7:dc:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net