Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b9178b-c7ba-4d4e-af9e-6acd21d4baf8/1/pe-h0g6N0Y23HKrAKsDD9huS1mE.roa
File: pe-h0g6N0Y23HKrAKsDD9huS1mE.roa (raw, json)
Hash identifier: ylxKfNsAYg9jbE4bG9j7buLcVQFIUsPKCa1+TwgGN2I=
Subject key identifier: A5:EF:A1:D2:0E:8D:D1:8D:B7:1C:AA:C0:2A:C0:C3:F6:1B:92:D6:61
Certificate issuer: /CN=e224e450eafed4c259b6dc0a34e306f1ad284bc4
Certificate serial: 019425FDDC05B43077B927B2C70F2CEA58E5
Authority key identifier: E2:24:E4:50:EA:FE:D4:C2:59:B6:DC:0A:34:E3:06:F1:AD:28:4B:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4iTkUOr-1MJZttwKNOMG8a0oS8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b9178b-c7ba-4d4e-af9e-6acd21d4baf8/1/pe-h0g6N0Y23HKrAKsDD9huS1mE.roa
Signing time: Thu 02 Jan 2025 07:49:41 +0000
ROA not before: Thu 02 Jan 2025 07:49:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19905
IP address blocks: 95.131.152.0/24 maxlen: 24
95.131.153.0/24 maxlen: 24
95.131.154.0/24 maxlen: 24
95.131.155.0/24 maxlen: 24
95.131.156.0/24 maxlen: 24
95.131.157.0/24 maxlen: 24
95.131.158.0/24 maxlen: 24
95.131.159.0/24 maxlen: 24
195.14.64.0/24 maxlen: 24
195.14.65.0/24 maxlen: 24
195.14.66.0/24 maxlen: 24
195.14.67.0/24 maxlen: 24
195.14.68.0/24 maxlen: 24
195.14.69.0/24 maxlen: 24
195.14.70.0/24 maxlen: 24
195.14.71.0/24 maxlen: 24
195.14.72.0/24 maxlen: 24
195.14.73.0/24 maxlen: 24
195.14.74.0/24 maxlen: 24
195.14.75.0/24 maxlen: 24
195.14.76.0/24 maxlen: 24
195.14.77.0/24 maxlen: 24
195.14.78.0/24 maxlen: 24
195.14.79.0/24 maxlen: 24
195.14.80.0/24 maxlen: 24
195.14.81.0/24 maxlen: 24
195.14.82.0/24 maxlen: 24
195.14.83.0/24 maxlen: 24
195.14.84.0/24 maxlen: 24
195.14.85.0/24 maxlen: 24
195.14.86.0/24 maxlen: 24
195.14.87.0/24 maxlen: 24
195.14.88.0/24 maxlen: 24
195.14.89.0/24 maxlen: 24
195.14.90.0/24 maxlen: 24
195.14.91.0/24 maxlen: 24
195.14.92.0/24 maxlen: 24
195.14.93.0/24 maxlen: 24
195.14.94.0/24 maxlen: 24
195.14.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:dc:05:b4:30:77:b9:27:b2:c7:0f:2c:ea:58:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e224e450eafed4c259b6dc0a34e306f1ad284bc4
Validity
Not Before: Jan 2 07:49:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a5efa1d20e8dd18db71caac02ac0c3f61b92d661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7a:6c:4c:a4:c2:19:d4:87:ec:3c:a3:c3:6a:
82:1a:97:06:f1:ca:9f:9d:87:1a:14:3c:59:c7:1b:
26:59:ac:be:3a:27:cc:99:e0:00:f0:12:c2:09:3b:
7d:df:bd:a4:29:47:47:45:33:1f:8a:6c:ce:fa:31:
87:1d:82:cb:a4:c9:92:12:0d:67:b4:d9:9f:af:98:
36:ac:8c:6a:3f:ac:54:d6:f8:d9:41:ca:45:b1:f8:
4d:55:f1:2e:a1:4f:e3:49:66:bc:17:51:8f:f4:15:
a2:ed:ee:d8:0e:74:db:6c:bb:21:55:4b:b5:f2:68:
be:9b:06:d6:3c:e6:71:38:35:bb:a2:ec:37:06:ab:
c2:db:45:d9:4d:0f:0f:de:1c:60:3a:11:12:d3:a1:
ae:e9:5b:32:63:c4:7b:2f:89:18:fe:d4:48:6a:0f:
41:2a:24:e5:ff:01:eb:38:94:80:22:e7:79:b9:ca:
af:bf:8d:33:78:7a:2f:9f:92:e8:f9:c7:c3:37:eb:
67:d6:63:20:7c:d2:28:e9:5f:bf:f3:88:72:e8:04:
df:0d:45:47:0c:eb:7f:e9:ad:17:af:2d:f5:f6:e9:
e4:f1:de:7f:90:4d:fe:b4:51:af:b6:97:8c:85:c6:
2f:0e:db:00:fb:52:c8:0b:0f:c3:54:bc:e1:c9:7a:
33:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:EF:A1:D2:0E:8D:D1:8D:B7:1C:AA:C0:2A:C0:C3:F6:1B:92:D6:61
X509v3 Authority Key Identifier:
keyid:E2:24:E4:50:EA:FE:D4:C2:59:B6:DC:0A:34:E3:06:F1:AD:28:4B:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4iTkUOr-1MJZttwKNOMG8a0oS8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b9178b-c7ba-4d4e-af9e-6acd21d4baf8/1/pe-h0g6N0Y23HKrAKsDD9huS1mE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b9178b-c7ba-4d4e-af9e-6acd21d4baf8/1/4iTkUOr-1MJZttwKNOMG8a0oS8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.131.152.0/21
195.14.64.0/19
Signature Algorithm: sha256WithRSAEncryption
76:33:84:1e:4a:c1:67:a3:d5:c4:62:c6:a8:4c:5e:a3:9e:5b:
2b:a6:e0:3b:50:90:1c:3a:7a:50:bb:2a:e7:4e:3e:c8:83:3b:
73:ba:af:82:b9:87:9d:9e:83:b0:d9:33:7a:39:ad:aa:c1:90:
83:13:c8:2f:fd:fb:2a:13:64:e6:85:e0:61:d5:94:6d:3f:5d:
42:67:66:a8:24:31:6e:79:c8:af:44:80:30:c6:d7:a4:95:a3:
f8:4b:37:30:e9:95:09:f4:c4:cc:13:02:af:3d:0c:b2:50:0d:
eb:3c:b6:ec:90:8f:af:d8:d3:d2:72:63:63:ae:f1:f5:cd:f6:
b0:33:21:e8:da:26:ac:07:2e:eb:03:da:d1:a3:dd:9e:e8:2f:
fd:65:9f:20:75:97:76:e5:00:8e:e4:4e:6a:c3:b9:98:ed:c6:
f9:15:12:89:33:18:31:c5:20:97:3f:02:5c:75:85:1c:f7:17:
c3:71:0c:c2:bf:8a:f1:83:a8:d6:54:4a:32:88:28:80:1c:92:
e1:86:bc:0e:3e:df:4d:b7:49:bd:bf:ef:b6:48:4d:aa:46:3b:
fd:d3:15:22:0b:9a:b6:64:fb:23:56:e5:d7:ca:f8:a7:8a:99:
dc:6a:b8:5f:ef:c9:6b:7b:44:99:7d:b4:b8:85:d3:08:51:1c:
b9:cf:7c:8e
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQl/dwFtDB3uSeyxw8s6ljlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyMjRlNDUwZWFmZWQ0YzI1OWI2ZGMwYTM0ZTMwNmYxYWQy
ODRiYzQwHhcNMjUwMTAyMDc0OTQxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNWVmYTFkMjBlOGRkMThkYjcxY2FhYzAyYWMwYzNmNjFiOTJkNjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw3psTKTCGdSH7Dyjw2qCGpcG8cqf
nYcaFDxZxxsmWay+OifMmeAA8BLCCTt9372kKUdHRTMfimzO+jGHHYLLpMmSEg1n
tNmfr5g2rIxqP6xU1vjZQcpFsfhNVfEuoU/jSWa8F1GP9BWi7e7YDnTbbLshVUu1
8mi+mwbWPOZxODW7ouw3BqvC20XZTQ8P3hxgOhES06Gu6VsyY8R7L4kY/tRIag9B
KiTl/wHrOJSAIud5ucqvv40zeHovn5Lo+cfDN+tn1mMgfNIo6V+/84hy6ATfDUVH
DOt/6a0Xry319unk8d5/kE3+tFGvtpeMhcYvDtsA+1LICw/DVLzhyXoznQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKXvodIOjdGNtxyqwCrAw/YbktZhMB8GA1UdIwQY
MBaAFOIk5FDq/tTCWbbcCjTjBvGtKEvEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGlUa1VPci0xTUpadHR3S05PTUc4YTBvUzhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9iOTE3OGItYzdiYS00ZDRlLWFmOWUt
NmFjZDIxZDRiYWY4LzEvcGUtaDBnNk4wWTIzSEtyQUtzREQ5aHVTMW1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9iOTE3OGItYzdiYS00ZDRlLWFmOWUtNmFjZDIxZDRiYWY4
LzEvNGlUa1VPci0xTUpadHR3S05PTUc4YTBvUzhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDX4OYAwQF
ww5AMA0GCSqGSIb3DQEBCwUAA4IBAQB2M4QeSsFno9XEYsaoTF6jnlsrpuA7UJAc
OnpQuyrnTj7Igztzuq+CuYednoOw2TN6Oa2qwZCDE8gv/fsqE2TmheBh1ZRtP11C
Z2aoJDFuecivRIAwxteklaP4Szcw6ZUJ9MTMEwKvPQyyUA3rPLbskI+v2NPScmNj
rvH1zfawMyHo2iasBy7rA9rRo92e6C/9ZZ8gdZd25QCO5E5qw7mY7cb5FRKJMxgx
xSCXPwJcdYUc9xfDcQzCv4rxg6jWVEoyiCiAHJLhhrwOPt9Nt0m9v++2SE2qRjv9
0xUiC5q2ZPsjVuXXyvinipncarhf78lre0SZfbS4hdMIURy5z3yO
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:29 2025 by rpki-client on console.sobornost.net