Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/1-tZ-_ZPNdEW8nGiklKLy_dzCcxo.roa
File: 1-tZ-_ZPNdEW8nGiklKLy_dzCcxo.roa (raw, json)
Hash identifier: C9mL+3dmJIKqXn6cMGUOUKCxkweotb2jX+Kt+pk9v3c=
Subject key identifier: FA:D6:7E:FD:93:CD:74:45:BC:9C:68:A4:94:A2:F2:FD:DC:C2:73:1A
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 0194244499AB8593E85A95E84B861BD83581
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/1-tZ-_ZPNdEW8nGiklKLy_dzCcxo.roa
Signing time: Wed 01 Jan 2025 23:47:42 +0000
ROA not before: Wed 01 Jan 2025 23:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33852
IP address blocks: 83.139.0.0/24 maxlen: 24
83.139.1.0/24 maxlen: 24
83.139.2.0/24 maxlen: 24
83.139.4.0/24 maxlen: 24
83.139.5.0/24 maxlen: 24
83.139.6.0/23 maxlen: 23
83.139.8.0/21 maxlen: 21
83.139.8.0/24 maxlen: 24
83.139.9.0/24 maxlen: 24
83.139.10.0/24 maxlen: 24
83.139.11.0/24 maxlen: 24
83.139.12.0/24 maxlen: 24
83.139.13.0/24 maxlen: 24
83.139.14.0/24 maxlen: 24
83.139.15.0/24 maxlen: 24
83.139.16.0/24 maxlen: 24
83.139.17.0/24 maxlen: 24
83.139.18.0/24 maxlen: 24
83.139.32.0/21 maxlen: 21
83.139.33.0/24 maxlen: 24
83.139.35.0/24 maxlen: 24
83.139.36.0/22 maxlen: 22
83.139.39.0/24 maxlen: 24
2a01:4000::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:99:ab:85:93:e8:5a:95:e8:4b:86:1b:d8:35:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Jan 1 23:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fad67efd93cd7445bc9c68a494a2f2fddcc2731a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f6:d8:da:34:d6:19:bd:08:90:73:c5:c3:54:
92:57:95:c5:4c:cb:85:65:5a:97:0e:0b:9a:76:23:
20:f3:75:0b:63:e6:d2:b0:83:bc:33:dd:7a:cc:0c:
bd:df:6f:91:57:17:dc:d2:7d:8e:c0:93:ae:bf:f5:
78:73:14:c5:15:07:89:54:f2:40:8a:05:92:6b:bd:
f3:26:c0:43:23:2f:85:e4:de:33:aa:2d:c3:59:2c:
85:55:23:c7:8e:43:a2:d8:f4:85:79:4d:61:a3:f1:
35:24:ea:fb:4e:e8:a3:33:cc:63:34:88:ca:6b:9f:
a0:5b:e4:f9:ef:fa:93:c4:7c:c2:ff:a5:46:28:94:
e2:fb:42:fb:ce:58:64:1c:e2:94:ad:7b:a3:e6:d4:
13:cb:c9:d9:b8:0d:6d:7b:53:82:d0:a2:74:14:e9:
a0:7d:ec:e2:2d:f3:8f:57:85:81:b6:01:58:41:05:
c9:49:84:b8:3a:66:28:c1:a5:02:4a:a6:9d:a3:7a:
c1:86:a0:ee:a9:d9:97:37:d1:75:30:82:61:ff:8d:
28:9b:aa:c4:6f:87:09:b0:e7:c1:f5:0a:5c:5c:10:
3d:95:6a:e3:8b:6b:98:f3:c9:a3:38:50:31:79:7b:
94:c3:6a:8e:78:77:d5:04:21:40:a5:fc:a5:ef:98:
01:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D6:7E:FD:93:CD:74:45:BC:9C:68:A4:94:A2:F2:FD:DC:C2:73:1A
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/1-tZ-_ZPNdEW8nGiklKLy_dzCcxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.139.0.0-83.139.2.255
83.139.4.0-83.139.18.255
83.139.32.0/21
IPv6:
2a01:4000::/32
Signature Algorithm: sha256WithRSAEncryption
6a:c7:2a:9a:36:f1:06:a4:54:90:df:ca:2f:ba:08:ff:98:07:
22:6c:9b:76:e7:24:e1:61:f1:d1:b9:88:85:21:8d:21:aa:34:
2c:85:fc:f0:80:27:9e:fd:d1:26:83:41:b9:dc:f0:8c:7e:a6:
e2:bc:c9:c2:bc:d6:98:38:d0:b9:d7:4d:8a:c5:bb:65:70:08:
d9:f9:d4:39:34:ad:41:c5:6c:d2:95:18:5f:f0:bb:95:8c:d8:
5d:13:22:3e:d0:aa:df:55:c9:a6:07:38:fb:6f:8c:ce:ea:6d:
61:04:68:d9:90:ad:9f:b8:13:d7:63:6e:a4:e4:c4:bf:6d:c6:
11:d1:87:da:2e:99:6b:63:6f:74:bc:44:f9:88:9d:d3:30:f8:
50:e0:91:d3:62:0b:8b:92:95:ed:58:15:d0:a1:f8:41:96:08:
37:81:05:93:55:50:b6:b1:0d:e0:65:87:06:be:84:16:20:92:
c8:85:ea:03:f7:dc:37:69:31:ff:6d:44:12:ec:48:de:33:6c:
11:33:98:1b:0c:1e:ae:14:a0:9a:ad:2f:52:ee:5b:7b:87:55:
db:cc:6a:90:28:aa:12:a2:72:68:41:84:bc:9c:fb:d6:e0:78:
0d:e7:87:de:d5:ed:43:94:d5:fb:1d:bc:0f:0b:b4:d7:9f:e8:
bd:35:0e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:01 2025 by rpki-client on console.sobornost.net