Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/938abd-1019-4e7a-aa82-ee1126a28195/1/vonpangiqHURQRIAAZ54iS3bBJk.roa
File: vonpangiqHURQRIAAZ54iS3bBJk.roa (raw, json)
Hash identifier: g5yrh+5lurfJ3g8rOhPqIrp3XKEKQHr4n1wiabTLz94=
Subject key identifier: BE:89:E9:6A:78:22:A8:75:11:41:12:00:01:9E:78:89:2D:DB:04:99
Certificate issuer: /CN=574cca899ef5bf4237f0f6bdd1779221b20052f3
Certificate serial: 01939CFA30ADA84A15A7A3DBD8E26F5320FD
Authority key identifier: 57:4C:CA:89:9E:F5:BF:42:37:F0:F6:BD:D1:77:92:21:B2:00:52:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V0zKiZ71v0I38Pa90XeSIbIAUvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/938abd-1019-4e7a-aa82-ee1126a28195/1/vonpangiqHURQRIAAZ54iS3bBJk.roa
Signing time: Fri 06 Dec 2024 17:17:42 +0000
ROA not before: Fri 06 Dec 2024 17:17:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12365
IP address blocks: 81.95.224.0/20 maxlen: 20
81.95.224.96/27 maxlen: 27
81.95.224.192/26 maxlen: 26
82.215.66.0/23 maxlen: 23
82.215.68.0/23 maxlen: 23
82.215.72.0/22 maxlen: 22
82.215.77.0/24 maxlen: 24
82.215.78.0/23 maxlen: 23
82.215.80.0/22 maxlen: 22
82.215.85.0/24 maxlen: 24
82.215.86.0/23 maxlen: 23
82.215.88.0/21 maxlen: 21
82.215.88.0/22 maxlen: 22
82.215.92.0/22 maxlen: 22
82.215.112.0/22 maxlen: 22
82.215.116.0/22 maxlen: 22
82.215.120.0/22 maxlen: 22
82.215.124.0/22 maxlen: 22
89.146.64.0/18 maxlen: 18
89.146.64.0/22 maxlen: 22
89.146.68.0/22 maxlen: 22
89.146.72.0/22 maxlen: 22
89.146.76.0/22 maxlen: 22
89.146.80.0/22 maxlen: 22
89.146.84.0/22 maxlen: 22
89.146.88.0/22 maxlen: 22
89.146.92.0/22 maxlen: 22
89.146.96.0/22 maxlen: 22
89.146.100.0/22 maxlen: 22
89.146.104.0/22 maxlen: 22
89.146.108.0/22 maxlen: 22
89.146.112.0/22 maxlen: 22
89.146.116.0/22 maxlen: 22
89.146.120.0/22 maxlen: 22
89.146.124.0/22 maxlen: 22
185.78.136.0/22 maxlen: 22
2a00:8840::/32 maxlen: 32
2a00:8840:c000::/36 maxlen: 36
2a00:8840:d000::/36 maxlen: 36
2a00:8840:e000::/36 maxlen: 36
2a00:8840:f000::/36 maxlen: 36
2a00:8841::/32 maxlen: 32
2a00:8842::/32 maxlen: 32
2a00:8843::/32 maxlen: 32
2a00:8844::/32 maxlen: 32
2a00:8845::/32 maxlen: 32
2a00:8846::/32 maxlen: 32
2a00:8847::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9c:fa:30:ad:a8:4a:15:a7:a3:db:d8:e2:6f:53:20:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=574cca899ef5bf4237f0f6bdd1779221b20052f3
Validity
Not Before: Dec 6 17:17:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be89e96a7822a87511411200019e78892ddb0499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d6:36:85:f7:da:8a:b3:ba:7b:a4:49:6e:50:
74:24:29:79:64:f1:74:19:26:47:47:6b:a8:cb:dd:
8c:92:79:f8:e0:21:b0:32:c5:f9:d1:78:a4:cc:52:
7a:1c:ba:71:2a:76:4a:d6:0b:da:df:29:bc:c8:97:
b9:41:08:7f:39:70:49:2a:da:ac:07:d9:8c:1c:b7:
f5:6d:e8:21:b2:9b:47:7e:56:6a:d1:dd:3d:f4:82:
9c:42:f8:60:42:1e:b2:0e:e0:a5:3e:57:1d:3d:42:
f3:4c:a7:f5:65:ee:a0:9c:e5:8a:fc:fd:a1:76:8d:
a5:98:f1:cf:5d:63:46:83:1c:1d:ec:64:e0:c3:34:
6e:39:c4:a3:33:f5:15:b4:fc:6c:d4:86:17:60:97:
22:36:a9:d8:33:2f:1a:44:e0:e3:41:71:6e:41:68:
5f:0e:fb:87:dd:25:88:fe:2d:5d:2c:d5:27:5b:48:
43:4d:8b:02:66:52:9c:27:71:38:26:a5:7b:be:9d:
4d:e4:ef:c4:5b:b4:fd:05:37:7b:e9:a7:a7:32:76:
86:1f:5a:6c:92:74:86:c7:cb:d9:1b:f4:58:89:cf:
f0:37:e0:65:ad:12:dc:b3:09:2f:f9:07:b4:7b:44:
a1:1e:fd:25:26:9d:69:57:66:8a:4f:fa:fa:90:25:
cf:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:89:E9:6A:78:22:A8:75:11:41:12:00:01:9E:78:89:2D:DB:04:99
X509v3 Authority Key Identifier:
keyid:57:4C:CA:89:9E:F5:BF:42:37:F0:F6:BD:D1:77:92:21:B2:00:52:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V0zKiZ71v0I38Pa90XeSIbIAUvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/938abd-1019-4e7a-aa82-ee1126a28195/1/vonpangiqHURQRIAAZ54iS3bBJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/938abd-1019-4e7a-aa82-ee1126a28195/1/V0zKiZ71v0I38Pa90XeSIbIAUvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.95.224.0/20
82.215.66.0-82.215.69.255
82.215.72.0/22
82.215.77.0-82.215.83.255
82.215.85.0-82.215.95.255
82.215.112.0/20
89.146.64.0/18
185.78.136.0/22
IPv6:
2a00:8840::/29
Signature Algorithm: sha256WithRSAEncryption
08:17:73:a3:9b:67:d4:6a:51:9e:16:7d:97:f8:db:f1:ed:30:
6f:b6:c1:fb:d0:95:ee:de:e7:55:bd:8f:e8:45:48:1b:ed:a2:
69:87:67:23:f4:98:fe:55:1b:9b:73:5b:3e:5c:fe:02:ef:f0:
c2:65:67:25:d7:64:55:10:19:bf:4d:70:22:8a:69:8c:3f:3f:
39:6f:77:46:76:b7:5f:9b:15:87:43:e7:27:a0:26:fe:0d:db:
53:18:6d:b4:96:14:d9:53:4e:89:1d:1b:e5:b1:73:fa:7b:fc:
2e:cf:4c:4d:69:28:4f:89:fe:eb:18:7c:97:4a:1f:f4:c3:27:
4a:2d:ff:58:98:84:c2:f0:57:4c:b7:0a:e0:ea:9b:c4:9f:57:
e7:72:36:bb:99:53:03:15:0b:f3:64:84:84:c7:ee:1d:31:6a:
0b:a1:30:ea:8d:dc:6c:a5:92:6c:61:3c:53:b5:e7:b3:af:43:
a5:bf:62:86:2a:be:3a:28:da:4d:2e:9c:e7:e7:62:e5:13:61:
8b:06:5e:23:bd:b6:d5:b1:06:05:c9:b1:28:7d:9d:a7:00:5d:
46:ee:11:bd:f9:64:d6:75:85:66:91:04:51:26:ed:8a:90:18:
53:5e:99:b4:0e:39:6b:7a:2f:88:18:48:99:27:ce:33:68:8a:
34:65:5e:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:27 2024 by rpki-client on console.sobornost.net