Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/LovHCXSPwGA0iijBv-9fQ00egRU.roa
File: LovHCXSPwGA0iijBv-9fQ00egRU.roa (raw, json)
Hash identifier: etH9tf9ryVtmmHRyK8VE6xXmP5tnfl9O9aMyShzUKbA=
Subject key identifier: 2E:8B:C7:09:74:8F:C0:60:34:8A:28:C1:BF:EF:5F:43:4D:1E:81:15
Certificate issuer: /CN=b66ea7359221c1b77d6cc006f7b6706a9a908299
Certificate serial: 0195F0A0724E09EF8181D1DC95B988A049BC
Authority key identifier: B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/LovHCXSPwGA0iijBv-9fQ00egRU.roa
Signing time: Tue 01 Apr 2025 09:13:21 +0000
ROA not before: Tue 01 Apr 2025 09:13:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61272
IP address blocks: 85.206.160.0/22 maxlen: 32
85.206.164.0/22 maxlen: 32
85.206.166.58/32 maxlen: 32
85.206.168.0/22 maxlen: 32
85.206.172.0/22 maxlen: 32
85.206.240.0/22 maxlen: 32
88.119.160.0/21 maxlen: 32
88.119.168.0/24 maxlen: 32
88.119.169.0/24 maxlen: 32
88.119.170.0/24 maxlen: 32
88.119.171.0/24 maxlen: 32
88.119.173.0/24 maxlen: 32
88.119.174.0/24 maxlen: 32
88.119.175.0/24 maxlen: 32
91.216.163.0/24 maxlen: 32
185.25.48.0/22 maxlen: 32
185.64.104.0/22 maxlen: 32
2a04:2180::/32 maxlen: 64
2a04:2181:c010::/48 maxlen: 64
2a04:2181:c011::/48 maxlen: 64
2a04:2181:c012::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f0:a0:72:4e:09:ef:81:81:d1:dc:95:b9:88:a0:49:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b66ea7359221c1b77d6cc006f7b6706a9a908299
Validity
Not Before: Apr 1 09:13:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e8bc709748fc060348a28c1bfef5f434d1e8115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a9:84:ac:aa:2c:5f:1a:46:9d:2c:04:34:86:
e5:7e:34:34:ab:4b:e2:dd:8a:af:4e:68:99:5b:c3:
fb:6e:87:94:52:aa:67:a7:c6:84:90:af:21:b6:78:
43:11:86:1f:23:e5:4e:b3:74:e7:fc:6f:c3:9f:2b:
3d:da:95:2e:1d:f0:6f:b0:ad:49:d5:cb:74:46:26:
4c:0c:1f:7c:ce:88:2d:21:9a:e2:dc:f1:4f:84:1d:
40:57:b6:6b:2f:56:8a:a3:ce:ae:55:c7:be:9d:13:
1f:87:3b:ee:19:75:fa:35:2c:4e:7d:4c:da:65:7a:
76:ad:c5:ec:17:48:e8:7f:c8:28:0e:58:f7:74:4a:
e4:a9:f8:a9:de:94:22:4a:47:13:e6:66:57:2d:32:
08:d2:59:fb:0c:4c:c9:d1:a2:00:1a:ce:37:0a:85:
6d:96:56:59:aa:16:03:f6:6b:1b:e7:f5:6d:ca:bc:
03:45:0a:f3:d4:80:e5:2a:8b:e1:7f:8b:ff:de:ad:
cb:fa:94:6b:1b:d2:78:d0:e3:42:6f:cd:3f:bc:e0:
0b:47:58:5a:5b:48:9f:0b:ef:56:bd:06:03:05:ca:
43:ae:f1:36:8e:71:5e:71:56:4c:5d:a6:ae:a0:cc:
82:84:d2:f5:23:bb:62:68:e4:ae:64:a0:0d:b1:37:
db:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8B:C7:09:74:8F:C0:60:34:8A:28:C1:BF:EF:5F:43:4D:1E:81:15
X509v3 Authority Key Identifier:
keyid:B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/LovHCXSPwGA0iijBv-9fQ00egRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.206.160.0/20
85.206.240.0/22
88.119.160.0-88.119.171.255
88.119.173.0-88.119.175.255
91.216.163.0/24
185.25.48.0/22
185.64.104.0/22
IPv6:
2a04:2180::/32
2a04:2181:c010::-2a04:2181:c012:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
b9:ea:3c:cb:b0:d2:9f:bd:c4:3e:aa:97:b3:6e:d8:16:06:d1:
85:1c:0b:44:21:4b:1c:a4:19:f4:93:85:d1:df:27:24:7b:9d:
3a:75:4d:67:c4:ee:32:52:0b:b3:fc:d0:06:68:3a:03:58:37:
0e:2b:8d:b5:b4:b3:63:e4:91:60:5e:ce:db:1a:65:ac:83:18:
67:33:fc:30:cd:ff:d4:07:a1:b4:43:18:d3:2e:6a:b0:f7:f6:
d4:04:53:d7:22:18:a3:32:b4:d2:b2:7c:d3:92:d8:6c:13:7f:
9e:6d:af:8d:9e:cb:f1:1c:42:b9:50:ab:ad:da:fa:93:56:c2:
81:85:54:5a:93:c0:6e:bd:e9:aa:00:54:d5:3f:4b:fc:27:30:
45:09:d6:71:c2:0b:b3:22:82:23:05:6f:e8:52:37:50:af:ff:
39:13:8b:fa:76:20:1a:51:e8:ee:62:3f:68:57:8f:81:b5:8e:
30:93:a0:b4:63:2b:43:36:f8:6b:dd:28:b2:ec:40:8d:2f:74:
dd:a0:41:6f:b4:9a:9f:e1:8e:bc:f8:48:ca:85:e0:04:ec:4b:
17:23:c9:db:95:de:60:20:d0:84:09:65:2c:d7:4f:4b:4a:3d:
48:c3:3e:92:c8:9d:20:38:28:af:13:45:52:a8:8c:0d:50:df:
21:3c:4b:e7
-----BEGIN CERTIFICATE-----
MIIFVDCCBDygAwIBAgISAZXwoHJOCe+BgdHclbmIoEm8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2NmVhNzM1OTIyMWMxYjc3ZDZjYzAwNmY3YjY3MDZhOWE5
MDgyOTkwHhcNMjUwNDAxMDkxMzIxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZThiYzcwOTc0OGZjMDYwMzQ4YTI4YzFiZmVmNWY0MzRkMWU4MTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA26mErKosXxpGnSwENIblfjQ0q0vi
3YqvTmiZW8P7boeUUqpnp8aEkK8htnhDEYYfI+VOs3Tn/G/Dnys92pUuHfBvsK1J
1ct0RiZMDB98zogtIZri3PFPhB1AV7ZrL1aKo86uVce+nRMfhzvuGXX6NSxOfUza
ZXp2rcXsF0jof8goDlj3dErkqfip3pQiSkcT5mZXLTII0ln7DEzJ0aIAGs43CoVt
llZZqhYD9msb5/VtyrwDRQrz1IDlKovhf4v/3q3L+pRrG9J40ONCb80/vOALR1ha
W0ifC+9WvQYDBcpDrvE2jnFecVZMXaauoMyChNL1I7tiaOSuZKANsTfbuwIDAQAB
o4ICYDCCAlwwHQYDVR0OBBYEFC6Lxwl0j8BgNIoowb/vX0NNHoEVMB8GA1UdIwQY
MBaAFLZupzWSIcG3fWzABve2cGqakIKZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdG02bk5aSWh3YmQ5Yk1BRzk3WndhcHFRZ3BrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9mODdhMmUtNDZiMS00YTY2LWE5MGMt
Njk5ODM1YzkyYmZlLzEvTG92SENYU1B3R0EwaWlqQnYtOWZRMDBlZ1JVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9mODdhMmUtNDZiMS00YTY2LWE5MGMtNjk5ODM1YzkyYmZl
LzEvdG02bk5aSWh3YmQ5Yk1BRzk3WndhcHFRZ3BrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHYGCCsGAQUFBwEHAQH/BGcwZTBABAIAATA6AwQEVc6gAwQC
Vc7wMAwDBAVYd6ADBAJYd6gwDAMEAFh3rQMEBFh3oAMEAFvYowMEArkZMAMEArlA
aDAhBAIAAjAbAwUAKgQhgDASAwcEKgQhgcAQAwcAKgQhgcASMA0GCSqGSIb3DQEB
CwUAA4IBAQC56jzLsNKfvcQ+qpezbtgWBtGFHAtEIUscpBn0k4XR3ycke506dU1n
xO4yUguz/NAGaDoDWDcOK421tLNj5JFgXs7bGmWsgxhnM/wwzf/UB6G0QxjTLmqw
9/bUBFPXIhijMrTSsnzTkthsE3+eba+NnsvxHEK5UKut2vqTVsKBhVRak8Buvemq
AFTVP0v8JzBFCdZxwguzIoIjBW/oUjdQr/85E4v6diAaUejuYj9oV4+BtY4wk6C0
YytDNvhr3Siy7ECNL3TdoEFvtJqf4Y68+EjKheAE7EsXI8nbld5gINCECWUs109L
Sj1Iwz6SyJ0gOCivE0VSqIwNUN8hPEvn
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net