Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/Etd-zR5nQJ_3oZWsvX_yh9qZs04.roa
File: Etd-zR5nQJ_3oZWsvX_yh9qZs04.roa (raw, json)
Hash identifier: Va9UidVPtYR8CQHobQQrWe+S/Z2ABdjjbhF7ggqh2M0=
Subject key identifier: 12:D7:7E:CD:1E:67:40:9F:F7:A1:95:AC:BD:7F:F2:87:DA:99:B3:4E
Certificate issuer: /CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Certificate serial: 019423D73EF6D5BA27B0038E2C8353840799
Authority key identifier: 9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/Etd-zR5nQJ_3oZWsvX_yh9qZs04.roa
Signing time: Wed 01 Jan 2025 21:48:16 +0000
ROA not before: Wed 01 Jan 2025 21:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205199
IP address blocks: 45.134.120.0/22 maxlen: 22
45.136.156.0/22 maxlen: 22
45.138.140.0/22 maxlen: 22
45.144.116.0/22 maxlen: 22
45.150.160.0/22 maxlen: 22
185.157.168.0/22 maxlen: 22
185.241.172.0/22 maxlen: 22
193.42.219.0/24 maxlen: 24
193.43.14.0/24 maxlen: 24
193.43.28.0/24 maxlen: 24
193.43.37.0/24 maxlen: 24
194.35.78.0/24 maxlen: 24
194.35.92.0/24 maxlen: 24
194.35.95.0/24 maxlen: 24
194.35.182.0/24 maxlen: 24
194.147.242.0/23 maxlen: 23
194.147.250.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:3e:f6:d5:ba:27:b0:03:8e:2c:83:53:84:07:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Validity
Not Before: Jan 1 21:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=12d77ecd1e67409ff7a195acbd7ff287da99b34e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:49:f7:22:90:70:06:d8:a4:37:fb:82:04:d3:
f3:ca:2d:19:48:22:69:8e:ca:34:85:bf:f0:51:f8:
aa:b9:cf:ba:b8:d9:ba:e9:a8:d4:f8:9c:87:4e:55:
07:c9:4a:c5:71:ea:bf:95:f7:e0:16:c3:a0:77:ba:
80:ad:01:17:99:43:17:d3:db:fc:74:35:fb:8d:53:
94:05:54:23:66:c6:40:a0:81:28:c7:bb:25:55:e7:
d0:21:6c:67:a1:fb:c0:71:0e:dc:8b:3b:cb:2b:fc:
af:e9:0f:74:03:52:a5:7f:a8:de:ef:32:b5:7d:47:
b0:c2:b2:bd:19:b7:33:5d:3d:de:7d:5d:d5:24:bc:
64:f6:9c:bb:27:bc:d6:fe:4d:6a:a6:d9:f5:11:07:
20:5c:f1:07:10:1c:35:04:a9:d7:f9:ee:d9:57:91:
e3:6c:7f:6d:67:51:ad:d1:92:c1:ab:c0:d3:36:28:
5b:a1:a6:08:82:d4:ac:e1:35:63:b2:d7:bc:f5:4d:
ad:33:af:da:1d:ab:08:85:26:fd:95:e3:58:ab:db:
f9:28:d0:25:c1:9c:b1:e4:8a:c3:9b:07:d3:1c:d7:
d7:10:85:c6:c9:62:7e:ad:9e:c9:1d:6d:2e:9c:19:
56:7a:e2:ee:46:36:4a:0f:51:3f:a3:79:b0:ff:a8:
3f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D7:7E:CD:1E:67:40:9F:F7:A1:95:AC:BD:7F:F2:87:DA:99:B3:4E
X509v3 Authority Key Identifier:
keyid:9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/Etd-zR5nQJ_3oZWsvX_yh9qZs04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.120.0/22
45.136.156.0/22
45.138.140.0/22
45.144.116.0/22
45.150.160.0/22
185.157.168.0/22
185.241.172.0/22
193.42.219.0/24
193.43.14.0/24
193.43.28.0/24
193.43.37.0/24
194.35.78.0/24
194.35.92.0/24
194.35.95.0/24
194.35.182.0/24
194.147.242.0/23
194.147.250.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:63:59:4e:c3:94:70:d3:c5:17:84:b6:d9:06:78:6a:93:10:
12:61:a9:a4:58:21:63:a6:b0:40:4c:f9:64:ac:a2:d0:d1:3e:
db:a3:ea:c9:82:35:c1:e6:6c:d4:af:ea:77:34:9c:04:98:b7:
7d:98:78:63:13:99:bb:c0:14:f8:53:9c:7a:9e:ad:fd:d1:e4:
32:8f:84:21:d5:f3:b1:c2:0d:91:74:9c:85:d2:76:75:5f:4b:
2d:33:f3:48:56:96:fe:77:ad:af:22:79:4a:17:e3:46:bc:24:
fd:eb:6a:50:1d:19:22:a4:96:0d:6e:bd:5a:db:4a:61:33:5b:
f2:f4:c1:7e:87:e2:94:2e:b1:e3:7a:94:3b:d1:e1:38:d9:9b:
2c:b0:01:51:30:19:dc:85:67:d7:9a:ae:e0:3d:ef:fe:ac:a0:
7e:29:49:8c:bd:c0:77:69:29:4f:98:7c:d4:40:eb:1c:91:9a:
57:24:f8:44:56:ba:51:28:ab:63:55:ce:f5:3b:c3:7a:16:68:
49:99:2f:3b:5f:66:e6:52:06:ba:61:92:90:32:49:22:48:91:
8e:6f:90:75:29:f5:81:c3:fb:26:b7:9a:84:b2:93:ad:09:cf:
48:e9:f4:94:d8:a1:9b:19:9c:f6:06:6d:3f:2a:60:db:d0:3f:
3d:6f:52:c0
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAZQj1z721bonsAOOLINThAeZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMzcyMGU5NzBmYWEwZTA3ZjUwYTYzODllN2FlNTNhZmE0
MzlkYWIwHhcNMjUwMTAxMjE0ODE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMmQ3N2VjZDFlNjc0MDlmZjdhMTk1YWNiZDdmZjI4N2RhOTliMzRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA20n3IpBwBtikN/uCBNPzyi0ZSCJp
jso0hb/wUfiquc+6uNm66ajU+JyHTlUHyUrFceq/lffgFsOgd7qArQEXmUMX09v8
dDX7jVOUBVQjZsZAoIEox7slVefQIWxnofvAcQ7cizvLK/yv6Q90A1Klf6je7zK1
fUewwrK9GbczXT3efV3VJLxk9py7J7zW/k1qptn1EQcgXPEHEBw1BKnX+e7ZV5Hj
bH9tZ1Gt0ZLBq8DTNihboaYIgtSs4TVjste89U2tM6/aHasIhSb9leNYq9v5KNAl
wZyx5IrDmwfTHNfXEIXGyWJ+rZ7JHW0unBlWeuLuRjZKD1E/o3mw/6g/6QIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFBLXfs0eZ0Cf96GVrL1/8ofambNOMB8GA1UdIwQY
MBaAFJ83IOlw+qDgf1CmOJ565Tr6Q52rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnpjZzZYRDZvT0JfVUtZNG5ucmxPdnBEbmFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9iYjdjMGUtZWU2OC00YmY4LWJiMzQt
MTJlNmEwZDQzMThhLzEvRXRkLXpSNW5RSl8zb1pXc3ZYX3loOXFaczA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC9iYjdjMGUtZWU2OC00YmY4LWJiMzQtMTJlNmEwZDQzMThh
LzEvbnpjZzZYRDZvT0JfVUtZNG5ucmxPdnBEbmFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQCLYZ4AwQC
LYicAwQCLYqMAwQCLZB0AwQCLZagAwQCuZ2oAwQCufGsAwQAwSrbAwQAwSsOAwQA
wSscAwQAwSslAwQAwiNOAwQAwiNcAwQAwiNfAwQAwiO2AwQBwpPyAwQBwpP6MA0G
CSqGSIb3DQEBCwUAA4IBAQCMY1lOw5Rw08UXhLbZBnhqkxASYamkWCFjprBATPlk
rKLQ0T7bo+rJgjXB5mzUr+p3NJwEmLd9mHhjE5m7wBT4U5x6nq390eQyj4Qh1fOx
wg2RdJyF0nZ1X0stM/NIVpb+d62vInlKF+NGvCT962pQHRkipJYNbr1a20phM1vy
9MF+h+KULrHjepQ70eE42ZsssAFRMBnchWfXmq7gPe/+rKB+KUmMvcB3aSlPmHzU
QOsckZpXJPhEVrpRKKtjVc71O8N6FmhJmS87X2bmUga6YZKQMkkiSJGOb5B1KfWB
w/smt5qEspOtCc9I6fSU2KGbGZz2Bm0/KmDb0D89b1LA
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net