Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ofdyc5fwaMJLvBQDIAF4wwif2k4.roa
File: ofdyc5fwaMJLvBQDIAF4wwif2k4.roa (raw, json)
Hash identifier: 3qf0XApTr+AC21TFB284QEldCz3eAwORNEyrGQAkPwo=
Subject key identifier: A1:F7:72:73:97:F0:68:C2:4B:BC:14:03:20:01:78:C3:08:9F:DA:4E
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 019427B57D3436910EA566E0DEDB3684E74E
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ofdyc5fwaMJLvBQDIAF4wwif2k4.roa
Signing time: Thu 02 Jan 2025 15:49:52 +0000
ROA not before: Thu 02 Jan 2025 15:49:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9123
IP address blocks: 83.147.244.0/24 maxlen: 24
83.147.245.0/24 maxlen: 24
83.147.246.0/24 maxlen: 24
83.147.247.0/24 maxlen: 24
91.186.196.0/24 maxlen: 24
91.186.197.0/24 maxlen: 24
91.186.198.0/24 maxlen: 24
91.186.199.0/24 maxlen: 24
94.241.138.0/24 maxlen: 24
94.241.139.0/24 maxlen: 24
94.241.140.0/24 maxlen: 24
94.241.141.0/24 maxlen: 24
94.241.142.0/24 maxlen: 24
94.241.143.0/24 maxlen: 24
94.241.168.0/24 maxlen: 24
94.241.169.0/24 maxlen: 24
94.241.170.0/24 maxlen: 24
94.241.171.0/24 maxlen: 24
94.241.172.0/24 maxlen: 24
94.241.173.0/24 maxlen: 24
94.241.174.0/24 maxlen: 24
94.241.175.0/24 maxlen: 24
178.253.22.0/24 maxlen: 24
178.253.23.0/24 maxlen: 24
178.253.40.0/24 maxlen: 24
178.253.41.0/24 maxlen: 24
178.253.42.0/24 maxlen: 24
178.253.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:7d:34:36:91:0e:a5:66:e0:de:db:36:84:e7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 15:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a1f7727397f068c24bbc1403200178c3089fda4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:47:16:68:24:f5:d6:1d:d6:55:e1:b0:32:51:
b1:a4:6c:36:54:ee:fa:93:1a:94:fd:4f:61:65:2c:
e8:ef:3a:38:91:3d:be:32:4a:b9:93:9c:2a:f1:db:
f5:43:07:d0:48:05:41:22:8f:bb:d4:fc:3c:ed:cf:
5c:c0:8c:fe:c0:c8:e2:e3:60:16:0a:6e:c6:d4:0b:
c3:c3:62:45:d2:1b:63:3e:e3:14:85:dc:a7:e8:bd:
25:9d:93:c9:10:c4:d6:18:30:a2:22:03:c1:b6:2e:
84:c4:a3:e8:07:77:d3:96:d4:7a:1a:2e:0d:f5:4e:
ae:d9:ea:5b:ee:3e:fe:ef:15:1f:f8:33:d2:25:6b:
d0:ea:11:ea:60:dc:05:67:89:7a:15:f5:71:35:74:
e8:00:1f:e8:a3:0f:8d:60:d2:0c:ea:d1:d5:83:4a:
c4:5e:2a:e6:c6:19:4f:bd:d4:9b:6e:00:d0:43:f4:
dc:7c:ff:e0:46:92:bd:e6:86:86:ef:4b:06:b1:02:
fc:93:91:39:55:1d:29:c8:09:0a:35:73:b9:15:a8:
d8:56:35:68:65:03:13:aa:4d:9c:04:3d:df:a8:c2:
30:d8:df:2c:65:2e:22:b7:45:2c:5f:14:e6:6c:ed:
cf:12:73:63:11:c3:96:00:d1:e2:47:09:03:11:17:
6d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F7:72:73:97:F0:68:C2:4B:BC:14:03:20:01:78:C3:08:9F:DA:4E
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ofdyc5fwaMJLvBQDIAF4wwif2k4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.244.0/22
91.186.196.0/22
94.241.138.0-94.241.143.255
94.241.168.0/21
178.253.22.0/23
178.253.40.0/22
Signature Algorithm: sha256WithRSAEncryption
14:3f:24:28:a8:ee:b7:02:64:cb:ae:fb:d7:b5:53:bf:fb:d0:
b3:2e:70:8a:ec:c5:ec:c7:7a:72:44:68:b7:5a:cc:3b:c5:7d:
34:56:09:42:b1:62:5b:b8:bc:b1:3b:40:29:f2:44:6d:66:f9:
fa:82:b2:bc:fc:11:75:f3:1d:81:f5:91:31:01:8e:56:4e:5b:
ef:62:98:f7:bb:44:2e:19:ab:6c:fc:89:14:36:06:84:e1:69:
4e:58:4d:f4:e3:63:3e:44:4b:65:5f:b6:43:b5:39:65:98:7b:
46:05:2b:88:2a:6b:2e:14:02:27:c5:ef:ab:59:4f:dd:45:3e:
2a:9a:4b:61:e1:ab:d0:4d:a1:da:4c:27:3c:b1:0c:78:36:6d:
a7:a4:ef:ca:a0:89:2e:03:1b:c0:95:5a:24:54:6c:1c:c2:a9:
1a:e5:04:c0:78:32:76:fd:88:3b:d1:53:cb:8e:29:0e:67:89:
a7:78:bb:a1:46:33:9a:15:47:f4:62:df:18:46:e7:6b:fb:da:
7a:f4:d0:21:26:e3:94:bc:52:10:e6:f6:a1:81:01:e7:50:4e:
bc:35:9c:6a:ab:b7:48:d7:b1:c9:f5:1f:a9:ac:6c:d3:1e:ad:
fb:84:35:bf:c3:d6:9e:62:8a:6a:e4:5f:81:4c:23:ca:a9:2e:
e8:21:c4:ac
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgISAZQntX00NpEOpWbg3ts2hOdOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjUwMTAyMTU0OTUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMWY3NzI3Mzk3ZjA2OGMyNGJiYzE0MDMyMDAxNzhjMzA4OWZkYTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0cWaCT11h3WVeGwMlGxpGw2VO76
kxqU/U9hZSzo7zo4kT2+Mkq5k5wq8dv1QwfQSAVBIo+71Pw87c9cwIz+wMji42AW
Cm7G1AvDw2JF0htjPuMUhdyn6L0lnZPJEMTWGDCiIgPBti6ExKPoB3fTltR6Gi4N
9U6u2epb7j7+7xUf+DPSJWvQ6hHqYNwFZ4l6FfVxNXToAB/oow+NYNIM6tHVg0rE
XirmxhlPvdSbbgDQQ/TcfP/gRpK95oaG70sGsQL8k5E5VR0pyAkKNXO5FajYVjVo
ZQMTqk2cBD3fqMIw2N8sZS4it0UsXxTmbO3PEnNjEcOWANHiRwkDERdtfQIDAQAB
o4ICLzCCAiswHQYDVR0OBBYEFKH3cnOX8GjCS7wUAyABeMMIn9pOMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvb2ZkeWM1ZndhTUpMdkJRRElBRjR3d2lmMms0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQCU5P0AwQC
W7rEMAwDBAFe8YoDBARe8YADBANe8agDBAGy/RYDBAKy/SgwDQYJKoZIhvcNAQEL
BQADggEBABQ/JCio7rcCZMuu+9e1U7/70LMucIrsxezHenJEaLdazDvFfTRWCUKx
Ylu4vLE7QCnyRG1m+fqCsrz8EXXzHYH1kTEBjlZOW+9imPe7RC4Zq2z8iRQ2BoTh
aU5YTfTjYz5ES2VftkO1OWWYe0YFK4gqay4UAifF76tZT91FPiqaS2Hhq9BNodpM
JzyxDHg2baek78qgiS4DG8CVWiRUbBzCqRrlBMB4Mnb9iDvRU8uOKQ5niad4u6FG
M5oVR/Ri3xhG52v72nr00CEm45S8UhDm9qGBAedQTrw1nGqrt0jXscn1H6msbNMe
rfuENb/D1p5iimrkX4FMI8qpLughxKw=
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:12 2025 by rpki-client on console.sobornost.net