Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/f1TqBUgG1mRe6oElr-IjF9FOLlU.roa
File: f1TqBUgG1mRe6oElr-IjF9FOLlU.roa (raw, json)
Hash identifier: vxJdpcHjd14tPTY1bi/P0Ycf0Mjr6s6hHMwBvOWc0wE=
Subject key identifier: 7F:54:EA:05:48:06:D6:64:5E:EA:81:25:AF:E2:23:17:D1:4E:2E:55
Certificate issuer: /CN=178235df535526d9e6d6aff6fa7ac52293a92c71
Certificate serial: 01942747EA046CA3DF971D5C56AEDAFE6CE7
Authority key identifier: 17:82:35:DF:53:55:26:D9:E6:D6:AF:F6:FA:7A:C5:22:93:A9:2C:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F4I131NVJtnm1q_2-nrFIpOpLHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/f1TqBUgG1mRe6oElr-IjF9FOLlU.roa
Signing time: Thu 02 Jan 2025 13:50:11 +0000
ROA not before: Thu 02 Jan 2025 13:50:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25467
IP address blocks: 81.17.228.0/23 maxlen: 23
81.17.228.0/24 maxlen: 24
81.17.229.0/24 maxlen: 24
82.214.66.0/24 maxlen: 24
82.214.76.0/23 maxlen: 23
82.214.76.0/24 maxlen: 24
82.214.77.0/24 maxlen: 24
82.214.78.0/24 maxlen: 24
82.214.84.0/23 maxlen: 23
82.214.84.0/24 maxlen: 24
82.214.85.0/24 maxlen: 24
82.214.96.0/21 maxlen: 21
82.214.96.0/24 maxlen: 24
82.214.97.0/24 maxlen: 24
82.214.98.0/24 maxlen: 24
82.214.99.0/24 maxlen: 24
82.214.100.0/24 maxlen: 24
82.214.101.0/24 maxlen: 24
82.214.102.0/24 maxlen: 24
82.214.103.0/24 maxlen: 24
82.214.108.0/22 maxlen: 22
82.214.110.0/24 maxlen: 24
82.214.111.0/24 maxlen: 24
82.214.112.0/21 maxlen: 21
82.214.112.0/24 maxlen: 24
82.214.113.0/24 maxlen: 24
82.214.114.0/24 maxlen: 24
82.214.115.0/24 maxlen: 24
82.214.116.0/24 maxlen: 24
82.214.117.0/24 maxlen: 24
82.214.118.0/24 maxlen: 24
82.214.119.0/24 maxlen: 24
82.214.120.0/23 maxlen: 23
82.214.120.0/24 maxlen: 24
82.214.121.0/24 maxlen: 24
2a02:2230:200::/40 maxlen: 40
2a02:2230:1200::/40 maxlen: 40
2a02:2230:2200::/40 maxlen: 40
2a02:2230:3200::/40 maxlen: 40
2a02:2230:4200::/40 maxlen: 40
2a02:2230:6200::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:ea:04:6c:a3:df:97:1d:5c:56:ae:da:fe:6c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=178235df535526d9e6d6aff6fa7ac52293a92c71
Validity
Not Before: Jan 2 13:50:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7f54ea054806d6645eea8125afe22317d14e2e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b3:a6:8e:52:81:aa:52:ae:4d:6f:6d:c9:6d:
4e:a5:f7:23:fa:4b:87:eb:3f:5d:f9:90:0a:fc:78:
37:0e:71:75:20:52:07:ff:62:8e:4d:c0:de:78:c9:
2d:1a:4c:43:51:58:59:9f:ea:9e:8d:43:f8:cc:f8:
0c:df:15:01:90:b5:aa:ee:1e:76:8c:06:18:b2:ea:
d3:16:79:c1:47:b3:c8:1d:bc:cc:5c:b4:99:c9:c3:
5a:75:77:5c:07:7b:c3:23:7e:c1:b9:f1:c9:e2:66:
7e:19:1a:34:77:05:eb:16:37:39:bc:d5:b0:01:e9:
ca:0e:c8:a6:3b:26:7d:82:27:38:d6:c1:d4:12:30:
54:3d:a5:1d:98:9e:61:a8:b8:6c:be:e1:a2:25:7b:
a4:b1:91:27:cd:23:1e:46:6a:3f:f6:d0:34:03:4b:
e7:a1:fa:c5:64:89:de:ee:86:27:cf:f9:4d:08:23:
5b:3f:23:e8:2d:84:b4:85:d8:e2:b4:75:ca:51:27:
8d:52:72:a5:1d:34:e4:f8:a7:7e:fa:e3:a7:01:8a:
eb:70:fa:b6:0f:88:47:dd:2a:67:b9:b0:f8:16:0a:
aa:66:b7:84:58:8d:ad:12:4b:a4:19:32:68:8d:3f:
73:56:ff:22:27:e1:f8:b2:b0:26:16:1d:fe:b1:30:
81:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:54:EA:05:48:06:D6:64:5E:EA:81:25:AF:E2:23:17:D1:4E:2E:55
X509v3 Authority Key Identifier:
keyid:17:82:35:DF:53:55:26:D9:E6:D6:AF:F6:FA:7A:C5:22:93:A9:2C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F4I131NVJtnm1q_2-nrFIpOpLHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/f1TqBUgG1mRe6oElr-IjF9FOLlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/F4I131NVJtnm1q_2-nrFIpOpLHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.17.228.0/23
82.214.66.0/24
82.214.76.0-82.214.78.255
82.214.84.0/23
82.214.96.0/21
82.214.108.0-82.214.121.255
IPv6:
2a02:2230:200::/40
2a02:2230:1200::/40
2a02:2230:2200::/40
2a02:2230:3200::/40
2a02:2230:4200::/40
2a02:2230:6200::/40
Signature Algorithm: sha256WithRSAEncryption
0b:98:00:a9:8d:09:fa:e9:48:ab:1b:ed:5c:6c:07:f0:5c:48:
45:9b:e1:90:a6:33:ee:16:8a:0b:f6:de:71:99:54:de:57:f6:
71:ca:92:71:c9:21:a2:fb:83:3c:fb:ff:8d:49:ab:8f:54:13:
41:c8:cd:85:6a:bd:2f:87:24:02:a6:c2:f2:84:65:91:83:6d:
cd:49:21:5e:41:44:51:e0:f8:e2:d7:83:b0:f7:a1:9a:4f:84:
ad:2e:91:cd:65:33:9e:3a:01:4c:30:86:a9:10:e5:2a:c8:10:
8c:17:ca:3c:60:26:96:c2:e3:2a:cc:2c:28:21:f1:28:bd:84:
be:81:5a:8f:9c:87:a0:82:a1:5c:56:30:ed:c2:b8:dd:73:46:
eb:57:92:ad:b4:ef:83:a3:ba:8c:38:c1:43:64:bf:f1:09:6c:
b9:01:4c:5f:a5:d9:fe:bd:c9:d3:d7:1e:ae:57:da:db:33:d2:
43:d2:92:3f:27:83:8e:f8:a8:55:10:fb:15:7d:a5:ed:c5:be:
8d:bd:2b:b2:fd:bc:40:40:f1:5a:30:09:f7:fe:53:dc:95:80:
e5:46:1c:02:e7:d6:85:4c:48:f0:a5:64:85:eb:65:1e:aa:2d:
b1:ea:cb:aa:9f:fa:b5:65:5f:20:8b:c0:56:f3:55:14:fb:13:
ba:2b:b3:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 21 15:03:55 2025 by rpki-client on console.sobornost.net