Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/8bvXixUZ6wxmHb9BO65Xgk_X2NE.roa
File: 8bvXixUZ6wxmHb9BO65Xgk_X2NE.roa (raw, json)
Hash identifier: xyUR4jB0XZ4RDdv/dpkzHAG9J2cSxgvsAFpx9lXz3XY=
Subject key identifier: F1:BB:D7:8B:15:19:EB:0C:66:1D:BF:41:3B:AE:57:82:4F:D7:D8:D1
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0195EE15052A1A0190E83104E27ED6FE8152
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/8bvXixUZ6wxmHb9BO65Xgk_X2NE.roa
Signing time: Mon 31 Mar 2025 21:21:49 +0000
ROA not before: Mon 31 Mar 2025 21:21:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25693
IP address blocks: 5.253.38.0/24 maxlen: 24
45.15.143.0/24 maxlen: 24
45.92.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ee:15:05:2a:1a:01:90:e8:31:04:e2:7e:d6:fe:81:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Mar 31 21:21:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1bbd78b1519eb0c661dbf413bae57824fd7d8d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:4b:1a:30:33:aa:d5:b9:f5:b5:84:0d:2e:18:
7e:f3:f0:80:41:4d:69:ea:40:a4:ef:cd:0e:94:c4:
3c:52:3f:e1:70:cb:23:d4:ea:6a:49:cc:f5:5e:84:
9f:a5:e8:74:e8:fa:08:ab:ff:98:c1:16:6f:92:6e:
e5:8e:53:ee:3c:91:17:d3:7a:0a:c5:c7:da:eb:b7:
8e:35:c6:c8:62:b7:d8:ac:6a:90:c4:29:50:cd:fc:
eb:cb:ac:65:e3:a7:42:56:75:8e:1f:a6:c7:39:5a:
bf:bf:17:6a:6a:dd:a5:51:fc:60:10:f5:a4:72:52:
13:f2:8b:1a:98:75:ca:f6:c0:90:af:99:ba:20:c5:
38:c7:fa:0d:d3:b5:54:b6:22:56:80:9c:58:f9:b2:
f9:54:07:28:cc:e9:48:fd:a3:a4:bb:fe:bf:62:68:
8c:56:50:60:3a:a2:59:6c:7c:1c:ba:95:4b:88:47:
cb:9a:6e:be:f4:9c:b9:c7:86:80:ec:4c:0c:b0:c1:
ee:ea:8b:2d:49:60:1b:ea:38:88:d1:8b:10:6d:bf:
35:03:33:21:d6:fc:c4:0d:8c:8b:38:e0:74:4c:c0:
15:05:8e:59:d3:d9:36:2e:11:04:dd:b7:2f:1e:61:
6b:9f:1f:c0:7e:fc:76:31:ba:de:1b:aa:17:7c:87:
b5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:BB:D7:8B:15:19:EB:0C:66:1D:BF:41:3B:AE:57:82:4F:D7:D8:D1
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/8bvXixUZ6wxmHb9BO65Xgk_X2NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.38.0/24
45.15.143.0/24
45.92.195.0/24
Signature Algorithm: sha256WithRSAEncryption
69:7e:84:af:df:95:58:84:96:8f:cd:fe:83:cd:67:01:79:4d:
f4:eb:d5:a8:b9:12:4b:18:7d:90:72:58:f1:d2:84:e7:31:0a:
6d:15:c7:d0:07:cb:85:c6:96:08:44:07:5f:30:cd:b1:7b:71:
e9:4c:14:a1:cb:a6:bc:7b:1e:24:9f:7b:ba:2e:de:39:59:d3:
19:19:56:ba:56:32:aa:41:d6:6b:d4:c9:db:d9:67:92:9c:61:
1c:cd:cb:60:ac:0c:1d:e4:7b:f6:93:af:7b:82:c6:41:93:2a:
5b:dc:b9:d8:d4:2c:4e:a9:d4:bd:9e:f7:89:89:72:06:b4:f1:
51:84:13:85:07:ac:0d:bf:db:64:24:fd:06:76:bd:ce:a4:b5:
bb:10:5e:d8:f6:c9:ce:16:56:2a:a1:a9:3a:94:46:59:12:b8:
5c:b5:5d:7b:c6:20:02:0b:20:cd:71:a8:2e:2d:51:dc:36:08:
2b:25:6c:ec:ed:93:17:7e:ba:63:65:45:0a:8a:e0:e3:86:55:
9a:7b:82:d2:20:e0:72:a9:76:a9:31:23:c5:ba:79:23:c7:95:
e9:91:f1:f2:c4:9d:49:65:43:4a:34:1a:3f:80:f2:c2:62:e6:
40:00:af:34:c4:43:21:e9:5f:5a:ef:2b:b4:70:70:96:a7:b8:
b1:09:a8:cf
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZXuFQUqGgGQ6DEE4n7W/oFSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjUwMzMxMjEyMTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMWJiZDc4YjE1MTllYjBjNjYxZGJmNDEzYmFlNTc4MjRmZDdkOGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+UsaMDOq1bn1tYQNLhh+8/CAQU1p
6kCk780OlMQ8Uj/hcMsj1OpqScz1XoSfpeh06PoIq/+YwRZvkm7ljlPuPJEX03oK
xcfa67eONcbIYrfYrGqQxClQzfzry6xl46dCVnWOH6bHOVq/vxdqat2lUfxgEPWk
clIT8osamHXK9sCQr5m6IMU4x/oN07VUtiJWgJxY+bL5VAcozOlI/aOku/6/YmiM
VlBgOqJZbHwcupVLiEfLmm6+9Jy5x4aA7EwMsMHu6ostSWAb6jiI0YsQbb81AzMh
1vzEDYyLOOB0TMAVBY5Z09k2LhEE3bcvHmFrnx/Afvx2MbreG6oXfIe1KwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFPG714sVGesMZh2/QTuuV4JP19jRMB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvOGJ2WGl4VVo2d3htSGI5Qk82NVhna19YMk5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABf0mAwQA
LQ+PAwQALVzDMA0GCSqGSIb3DQEBCwUAA4IBAQBpfoSv35VYhJaPzf6DzWcBeU30
69WouRJLGH2Qcljx0oTnMQptFcfQB8uFxpYIRAdfMM2xe3HpTBShy6a8ex4kn3u6
Lt45WdMZGVa6VjKqQdZr1Mnb2WeSnGEczctgrAwd5Hv2k697gsZBkypb3LnY1CxO
qdS9nveJiXIGtPFRhBOFB6wNv9tkJP0Gdr3OpLW7EF7Y9snOFlYqoak6lEZZErhc
tV17xiACCyDNcaguLVHcNggrJWzs7ZMXfrpjZUUKiuDjhlWae4LSIOByqXapMSPF
unkjx5XpkfHyxJ1JZUNKNBo/gPLCYuZAAK80xEMh6V9a7yu0cHCWp7ixCajP
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:40 2025 by rpki-client on console.sobornost.net