Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/twN006NWSqIAzyJjBefGoakpUcI.roa
File: twN006NWSqIAzyJjBefGoakpUcI.roa (raw, json)
Hash identifier: Dw9Jbr5s1oT+R6tnGBJCmZXohfgBB+1HIADmJwaJ7IA=
Subject key identifier: B7:03:74:D3:A3:56:4A:A2:00:CF:22:63:05:E7:C6:A1:A9:29:51:C2
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0194221F93D39EBD5E95EAA585338586F279
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/twN006NWSqIAzyJjBefGoakpUcI.roa
Signing time: Wed 01 Jan 2025 13:48:02 +0000
ROA not before: Wed 01 Jan 2025 13:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211545
IP address blocks: 82.119.71.0/24 maxlen: 24
89.252.204.0/24 maxlen: 24
89.252.205.0/24 maxlen: 24
176.67.236.0/24 maxlen: 24
176.67.237.0/24 maxlen: 24
176.67.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:93:d3:9e:bd:5e:95:ea:a5:85:33:85:86:f2:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Jan 1 13:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b70374d3a3564aa200cf226305e7c6a1a92951c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5e:9e:22:35:d5:dc:48:33:6d:c8:87:31:47:
ad:ea:ef:53:d9:c8:18:e4:e2:35:cb:e4:af:c8:a7:
16:2d:5a:99:3a:57:5b:2b:9b:5e:3d:0b:c6:5f:b1:
f8:ce:f2:b2:af:f4:c2:a9:b8:89:bf:e7:fb:e9:f8:
14:e6:76:c8:0e:9a:4d:85:a6:60:3b:07:98:6b:2f:
47:82:47:72:94:c6:f2:2d:11:47:c8:ac:87:12:1c:
44:16:43:e0:77:36:37:61:92:36:38:78:10:ce:1b:
a4:aa:64:8e:23:0c:a8:3a:ff:54:34:47:cb:91:06:
52:cd:16:40:ff:13:40:20:56:bd:b1:6f:4f:66:46:
e1:ed:7a:a2:45:45:e3:7a:15:90:0f:ca:95:be:a0:
89:d6:33:64:b8:75:c2:a5:c1:87:07:df:d7:3f:77:
3a:ea:0a:d7:c0:68:de:6b:19:93:ec:4f:7a:ee:e7:
bb:0c:d7:16:d1:a9:0c:7c:6e:a4:da:14:db:dd:21:
8f:a2:3d:c9:54:e2:84:9f:47:ea:da:62:1b:77:08:
43:63:85:6c:db:48:9a:50:99:c0:4b:68:1f:f0:00:
b5:49:ec:98:0d:eb:69:2a:7e:52:4e:22:99:41:63:
05:e3:1d:aa:9c:90:0b:08:f9:e4:a8:62:03:fc:3d:
56:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:03:74:D3:A3:56:4A:A2:00:CF:22:63:05:E7:C6:A1:A9:29:51:C2
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/twN006NWSqIAzyJjBefGoakpUcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.119.71.0/24
89.252.204.0/23
176.67.236.0/23
176.67.239.0/24
Signature Algorithm: sha256WithRSAEncryption
95:bc:5a:f1:82:ec:77:e8:b0:3c:03:3c:ac:f2:72:68:85:2e:
e3:70:b5:20:c2:20:67:48:cb:7f:e3:09:89:9b:ab:28:30:28:
be:41:df:bb:ea:a6:66:bd:7a:e1:7f:7f:ff:a1:6a:88:36:f9:
48:2b:97:72:9e:28:d3:99:dc:59:df:93:44:5d:7c:1e:b8:7c:
8b:ff:06:ca:dd:b0:bf:8f:1f:5b:d0:e6:a3:df:a3:4e:a7:8f:
42:6d:91:47:97:9e:53:00:21:92:eb:91:5a:fa:c0:2e:19:16:
71:1b:0b:f9:08:eb:6e:ad:68:fe:f0:bd:6e:8f:2a:e0:8d:4d:
44:35:a3:88:58:04:1b:04:f6:e7:1c:b7:31:2d:7d:53:6e:be:
2d:d5:0e:0b:12:0e:dd:ff:66:d9:ba:f4:fa:a1:00:d7:4c:ed:
e2:b4:76:5d:14:5d:9d:e8:9c:64:a8:9f:a0:f6:b7:e8:81:da:
76:da:67:89:0b:45:11:d6:fb:7f:dd:7f:8f:96:09:fd:e5:28:
53:71:b4:d8:69:86:a4:fa:ee:03:6a:5e:d4:40:b6:41:a0:0e:
87:de:60:71:55:07:31:98:59:c2:ae:60:81:7a:30:da:ba:89:
bf:7c:3b:21:e0:a4:60:8b:24:d4:5e:21:e5:95:b6:e4:6e:68:
0d:e7:cd:b3
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZQiH5PTnr1eleqlhTOFhvJ5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMDRhNDA4MjFjNDE3NmNjNDJlMjU1ZWY2YzE3Mjc0NzNj
M2YwMGEwHhcNMjUwMTAxMTM0ODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzAzNzRkM2EzNTY0YWEyMDBjZjIyNjMwNWU3YzZhMWE5Mjk1MWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs16eIjXV3EgzbciHMUet6u9T2cgY
5OI1y+SvyKcWLVqZOldbK5tePQvGX7H4zvKyr/TCqbiJv+f76fgU5nbIDppNhaZg
OweYay9HgkdylMbyLRFHyKyHEhxEFkPgdzY3YZI2OHgQzhukqmSOIwyoOv9UNEfL
kQZSzRZA/xNAIFa9sW9PZkbh7XqiRUXjehWQD8qVvqCJ1jNkuHXCpcGHB9/XP3c6
6grXwGjeaxmT7E967ue7DNcW0akMfG6k2hTb3SGPoj3JVOKEn0fq2mIbdwhDY4Vs
20iaUJnAS2gf8AC1SeyYDetpKn5STiKZQWMF4x2qnJALCPnkqGID/D1WTwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFLcDdNOjVkqiAM8iYwXnxqGpKVHCMB8GA1UdIwQY
MBaAFEEEpAghxBdsxC4lXvbBcnRzw/AKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMt
YjI3ZDZlMjc4ZTE4LzEvdHdOMDA2TldTcUlBenlKakJlZkdvYWtwVWNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMtYjI3ZDZlMjc4ZTE4
LzEvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAUndHAwQB
WfzMAwQBsEPsAwQAsEPvMA0GCSqGSIb3DQEBCwUAA4IBAQCVvFrxgux36LA8Azys
8nJohS7jcLUgwiBnSMt/4wmJm6soMCi+Qd+76qZmvXrhf3//oWqINvlIK5dynijT
mdxZ35NEXXweuHyL/wbK3bC/jx9b0Oaj36NOp49CbZFHl55TACGS65Fa+sAuGRZx
Gwv5COturWj+8L1ujyrgjU1ENaOIWAQbBPbnHLcxLX1Tbr4t1Q4LEg7d/2bZuvT6
oQDXTO3itHZdFF2d6JxkqJ+g9rfogdp22meJC0UR1vt/3X+Plgn95ShTcbTYaYak
+u4Dal7UQLZBoA6H3mBxVQcxmFnCrmCBejDauom/fDsh4KRgiyTUXiHllbbkbmgN
582z
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net