Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/TdLeUmROBWw9fzGpMqmjSdLU-iw.roa
File: TdLeUmROBWw9fzGpMqmjSdLU-iw.roa (raw, json)
Hash identifier: Y7dKyb0/42ysXTOdPTYc+l6SIKX6EExjnbazS8W8bxA=
Subject key identifier: 4D:D2:DE:52:64:4E:05:6C:3D:7F:31:A9:32:A9:A3:49:D2:D4:FA:2C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0196005989BAE4CA9517D6447510ED432206
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/TdLeUmROBWw9fzGpMqmjSdLU-iw.roa
Signing time: Fri 04 Apr 2025 10:29:49 +0000
ROA not before: Fri 04 Apr 2025 10:29:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213005
IP address blocks: 81.21.228.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
92.60.34.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
95.214.144.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.179.228.0/22 maxlen: 22
185.189.64.0/22 maxlen: 24
185.211.180.0/22 maxlen: 22
185.223.220.0/22 maxlen: 22
185.227.128.0/22 maxlen: 22
185.230.48.0/22 maxlen: 24
185.245.34.0/23 maxlen: 23
193.26.152.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
194.38.56.0/22 maxlen: 24
212.80.208.0/22 maxlen: 24
212.115.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:00:59:89:ba:e4:ca:95:17:d6:44:75:10:ed:43:22:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 4 10:29:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4dd2de52644e056c3d7f31a932a9a349d2d4fa2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1d:b6:ef:6a:06:35:45:00:43:31:0b:6a:5a:
98:21:d7:00:6f:4a:78:d4:6d:ec:ca:8c:a9:56:ff:
3e:28:89:4d:85:7b:3b:b6:0b:f8:e1:96:9d:c4:87:
8e:22:5d:9c:31:79:f5:52:d9:3b:b9:8f:ae:78:ce:
35:f0:01:a1:d8:d8:5a:c8:e9:b8:52:05:31:a2:52:
fd:db:23:5c:08:79:c3:02:3d:56:c0:e9:5a:5e:5a:
56:d2:39:59:29:d1:90:e7:97:75:0e:47:03:67:47:
48:e9:63:38:71:1b:b3:90:15:58:43:59:4e:af:f9:
5e:42:74:f3:f5:02:93:c3:36:5d:ac:83:f0:c3:54:
89:99:60:89:b0:5c:52:eb:50:34:58:52:ac:40:e2:
26:03:23:64:50:11:a1:e8:b4:41:b5:fa:71:64:6c:
50:52:16:47:e4:73:c8:7c:50:77:49:25:96:96:9b:
68:71:5f:41:f9:e8:28:83:15:c7:2f:d7:6d:07:82:
c8:e6:b7:b9:83:ca:6c:f8:de:58:f8:f1:6a:44:09:
32:c9:1d:14:dc:ae:4e:e7:92:fc:08:6c:7e:c0:7a:
5c:4f:84:1b:f1:5f:26:33:f6:52:f1:e3:18:29:72:
84:8d:52:54:62:b7:d9:70:86:fc:f2:c8:eb:99:cb:
02:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D2:DE:52:64:4E:05:6C:3D:7F:31:A9:32:A9:A3:49:D2:D4:FA:2C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/TdLeUmROBWw9fzGpMqmjSdLU-iw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.228.0/22
85.115.192.0/22
88.135.64.0/22
92.60.34.0/24
93.92.228.0/22
95.214.144.0/22
185.106.124.0/22
185.179.228.0/22
185.189.64.0/22
185.211.180.0/22
185.223.220.0/22
185.227.128.0/22
185.230.48.0/22
185.245.34.0/23
193.26.152.0/22
193.35.88.0/22
194.38.56.0/22
212.80.208.0/22
212.115.44.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:96:d1:c9:9a:e4:66:f1:be:09:52:34:ae:c1:d2:a0:3b:e7:
18:e4:73:5b:42:46:bf:70:92:12:55:01:93:ef:b6:db:3b:8c:
bf:c2:a3:8f:61:75:1b:57:0f:84:d7:d3:cd:22:3e:bc:6c:74:
70:db:65:33:76:dd:41:ed:fe:a2:d8:e1:86:89:d6:7b:9c:ec:
47:87:fa:ca:08:6a:39:3f:91:21:e7:7c:48:61:c8:ba:57:25:
35:30:bb:7b:48:57:31:6e:69:c0:2f:21:2f:14:02:ce:83:cd:
54:7e:6a:e3:23:6a:b6:6d:30:cd:ad:5e:66:6d:77:f3:97:26:
d9:07:42:07:59:56:3e:9b:e4:19:61:13:5a:b5:d3:19:e3:b8:
91:a9:38:82:26:b8:03:5e:28:e5:81:5b:df:42:63:38:28:b2:
7f:5d:15:a6:8b:4b:67:d9:ad:20:c7:e3:d6:eb:2c:ec:3d:d1:
61:10:28:b0:6e:79:e1:cc:6c:50:6c:51:69:e5:34:e1:60:10:
df:a6:54:e7:21:28:e6:74:01:98:8a:41:59:21:f3:c1:97:3f:
2e:1a:e2:9b:35:71:db:c7:74:d9:75:ee:76:44:bc:85:c0:a6:
4e:e2:63:7d:06:8a:99:ff:9d:96:33:03:97:e6:f2:d3:c8:cf:
14:67:1b:15
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:12 2025 by rpki-client on console.sobornost.net