Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/6a4858-46ae-4fb0-bee5-76fb20f4943d/1/Y8uuAfRYwx-prudgnWgSWZq97Sw.roa
File: Y8uuAfRYwx-prudgnWgSWZq97Sw.roa (raw, json)
Hash identifier: tQZOFDuCS8oLjLePLd8o7D+wQ3I3iTNhsHY9sfMRza8=
Subject key identifier: 63:CB:AE:01:F4:58:C3:1F:A9:AE:E7:60:9D:68:12:59:9A:BD:ED:2C
Certificate issuer: /CN=04e1831c9eef1b795437fcbd43e295705a1a0547
Certificate serial: 019421B1B5F42B554880B1F1B63EE027C680
Authority key identifier: 04:E1:83:1C:9E:EF:1B:79:54:37:FC:BD:43:E2:95:70:5A:1A:05:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOGDHJ7vG3lUN_y9Q-KVcFoaBUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/6a4858-46ae-4fb0-bee5-76fb20f4943d/1/Y8uuAfRYwx-prudgnWgSWZq97Sw.roa
Signing time: Wed 01 Jan 2025 11:48:02 +0000
ROA not before: Wed 01 Jan 2025 11:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57269
IP address blocks: 31.14.104.0/21 maxlen: 24
31.14.192.0/21 maxlen: 24
77.81.8.0/21 maxlen: 24
79.112.0.0/15 maxlen: 24
79.116.0.0/15 maxlen: 24
86.105.120.0/21 maxlen: 24
89.34.208.0/21 maxlen: 24
89.38.168.0/21 maxlen: 24
89.41.152.0/21 maxlen: 24
89.43.176.0/22 maxlen: 24
89.45.96.0/20 maxlen: 24
89.46.48.0/21 maxlen: 24
89.46.56.0/22 maxlen: 24
89.47.204.0/22 maxlen: 24
91.232.81.0/24 maxlen: 24
92.114.112.0/20 maxlen: 24
93.114.112.0/20 maxlen: 24
93.115.64.0/21 maxlen: 24
93.118.80.0/20 maxlen: 24
93.118.192.0/18 maxlen: 24
94.176.152.0/21 maxlen: 24
176.126.176.0/20 maxlen: 24
185.105.36.0/22 maxlen: 24
185.239.200.0/22 maxlen: 24
188.240.76.0/22 maxlen: 24
188.241.224.0/20 maxlen: 24
195.135.248.0/22 maxlen: 24
2a0c:5a80::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:b5:f4:2b:55:48:80:b1:f1:b6:3e:e0:27:c6:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e1831c9eef1b795437fcbd43e295705a1a0547
Validity
Not Before: Jan 1 11:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63cbae01f458c31fa9aee7609d6812599abded2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d5:dc:e1:9e:f2:23:a1:cb:d0:a1:e0:bf:e4:
54:0e:56:f2:c3:8a:60:74:c4:19:51:44:be:f3:8e:
ea:7c:71:49:b1:ac:64:8d:a8:6d:3b:42:de:08:09:
ad:af:28:7b:d7:f8:c2:16:33:57:51:3c:29:a8:2f:
9e:1e:dd:54:e9:9f:4e:18:65:49:4a:0d:c1:92:2c:
32:64:05:e9:55:84:9d:3d:36:c3:35:c4:3c:6c:ae:
4d:3e:0a:e3:83:34:10:48:b3:7f:41:5f:16:19:42:
b7:6c:cc:45:f4:24:b4:0f:c5:aa:d9:43:18:e8:6f:
1d:db:07:83:84:6a:39:f3:b9:5d:f2:46:3b:59:37:
15:d1:46:44:d3:89:27:94:4f:5a:25:76:34:8c:b1:
05:9f:d1:de:6b:00:8f:12:ce:c1:55:60:4e:9a:3b:
ea:23:5e:5c:e8:28:4c:e9:9d:b5:7f:8a:00:32:00:
af:63:33:85:f3:53:51:cb:32:e3:30:d8:78:00:40:
6a:4c:ce:9e:24:63:64:2e:2b:70:00:4f:72:b3:d7:
83:b3:01:5c:dc:ed:d8:cd:6b:40:ce:b3:46:3c:ee:
be:50:cf:2c:8a:f1:2f:78:9f:1c:75:cb:ef:68:43:
d4:93:85:a8:b3:df:01:d7:7e:7d:da:04:ba:d4:48:
74:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:CB:AE:01:F4:58:C3:1F:A9:AE:E7:60:9D:68:12:59:9A:BD:ED:2C
X509v3 Authority Key Identifier:
keyid:04:E1:83:1C:9E:EF:1B:79:54:37:FC:BD:43:E2:95:70:5A:1A:05:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOGDHJ7vG3lUN_y9Q-KVcFoaBUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/6a4858-46ae-4fb0-bee5-76fb20f4943d/1/Y8uuAfRYwx-prudgnWgSWZq97Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/6a4858-46ae-4fb0-bee5-76fb20f4943d/1/BOGDHJ7vG3lUN_y9Q-KVcFoaBUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.104.0/21
31.14.192.0/21
77.81.8.0/21
79.112.0.0/15
79.116.0.0/15
86.105.120.0/21
89.34.208.0/21
89.38.168.0/21
89.41.152.0/21
89.43.176.0/22
89.45.96.0/20
89.46.48.0-89.46.59.255
89.47.204.0/22
91.232.81.0/24
92.114.112.0/20
93.114.112.0/20
93.115.64.0/21
93.118.80.0/20
93.118.192.0/18
94.176.152.0/21
176.126.176.0/20
185.105.36.0/22
185.239.200.0/22
188.240.76.0/22
188.241.224.0/20
195.135.248.0/22
IPv6:
2a0c:5a80::/29
Signature Algorithm: sha256WithRSAEncryption
71:76:87:9a:26:58:2c:49:8e:58:f1:58:8c:c3:4c:f2:70:59:
ec:fc:e3:8b:7b:cd:bd:11:40:cd:d6:e8:0d:e8:9d:4b:07:1e:
59:f6:ef:80:e9:72:a4:1a:ea:cb:60:a2:b5:31:08:6f:28:2b:
b0:65:13:c1:eb:44:9f:62:a8:0a:d3:10:68:a3:ce:3c:5a:d3:
0a:c9:f1:52:2f:a0:64:4c:dc:1a:dc:99:c0:b6:4d:3d:20:1a:
91:61:30:d1:90:a2:c8:d2:2f:f4:51:02:6f:52:f4:af:1f:2d:
2f:fe:a8:90:67:a4:4d:8d:19:25:ce:d3:30:6f:0f:97:9c:0b:
a6:b9:27:fe:72:8c:59:e4:a7:03:0d:5e:be:cc:5c:92:3d:9b:
8a:45:48:95:17:7a:09:55:1f:71:b8:f8:fa:71:53:3d:ce:36:
76:a7:3f:29:b4:e8:b1:42:ae:7b:d4:df:4c:51:68:be:e7:a4:
cc:c5:ff:71:4d:e4:dd:75:b7:45:c9:5c:7b:b3:19:31:eb:b0:
80:a6:be:9c:4d:4b:dc:d0:80:cc:ea:5a:5e:e2:b9:9a:65:6d:
46:c7:e7:3b:3c:85:ba:68:61:a1:2e:b0:ad:5c:81:59:25:92:
cd:67:19:a2:49:07:51:ff:9f:0a:4b:ba:9d:24:65:52:d3:ad:
69:b0:c2:5d
-----BEGIN CERTIFICATE-----
MIIFrTCCBJWgAwIBAgISAZQhsbX0K1VIgLHxtj7gJ8aAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0ZTE4MzFjOWVlZjFiNzk1NDM3ZmNiZDQzZTI5NTcwNWEx
YTA1NDcwHhcNMjUwMTAxMTE0ODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2NiYWUwMWY0NThjMzFmYTlhZWU3NjA5ZDY4MTI1OTlhYmRlZDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndXc4Z7yI6HL0KHgv+RUDlbyw4pg
dMQZUUS+847qfHFJsaxkjahtO0LeCAmtryh71/jCFjNXUTwpqC+eHt1U6Z9OGGVJ
Sg3BkiwyZAXpVYSdPTbDNcQ8bK5NPgrjgzQQSLN/QV8WGUK3bMxF9CS0D8Wq2UMY
6G8d2weDhGo587ld8kY7WTcV0UZE04knlE9aJXY0jLEFn9HeawCPEs7BVWBOmjvq
I15c6ChM6Z21f4oAMgCvYzOF81NRyzLjMNh4AEBqTM6eJGNkLitwAE9ys9eDswFc
3O3YzWtAzrNGPO6+UM8sivEveJ8cdcvvaEPUk4Wos98B13592gS61Eh05QIDAQAB
o4ICuTCCArUwHQYDVR0OBBYEFGPLrgH0WMMfqa7nYJ1oElmave0sMB8GA1UdIwQY
MBaAFAThgxye7xt5VDf8vUPilXBaGgVHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk9HREhKN3ZHM2xVTl95OVEtS1ZjRm9hQlVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy82YTQ4NTgtNDZhZS00ZmIwLWJlZTUt
NzZmYjIwZjQ5NDNkLzEvWTh1dUFmUll3eC1wcnVkZ25XZ1NXWnE5N1N3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy82YTQ4NTgtNDZhZS00ZmIwLWJlZTUtNzZmYjIwZjQ5NDNk
LzEvQk9HREhKN3ZHM2xVTl95OVEtS1ZjRm9hQlVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHOBggrBgEFBQcBBwEB/wSBvjCBuzCBqQQCAAEwgaIDBAMf
DmgDBAMfDsADBANNUQgDAwFPcAMDAU90AwQDVml4AwQDWSLQAwQDWSaoAwQDWSmY
AwQCWSuwAwQEWS1gMAwDBARZLjADBAJZLjgDBAJZL8wDBABb6FEDBARccnADBARd
cnADBANdc0ADBARddlADBAZddsADBANesJgDBASwfrADBAK5aSQDBAK578gDBAK8
8EwDBAS88eADBALDh/gwDQQCAAIwBwMFAyoMWoAwDQYJKoZIhvcNAQELBQADggEB
AHF2h5omWCxJjljxWIzDTPJwWez844t7zb0RQM3W6A3onUsHHln274DpcqQa6stg
orUxCG8oK7BlE8HrRJ9iqArTEGijzjxa0wrJ8VIvoGRM3BrcmcC2TT0gGpFhMNGQ
osjSL/RRAm9S9K8fLS/+qJBnpE2NGSXO0zBvD5ecC6a5J/5yjFnkpwMNXr7MXJI9
m4pFSJUXeglVH3G4+PpxUz3ONnanPym06LFCrnvU30xRaL7npMzF/3FN5N11t0XJ
XHuzGTHrsICmvpxNS9zQgMzqWl7iuZplbUbH5zs8hbpoYaEusK1cgVklks1nGaJJ
B1H/nwpLup0kZVLTrWmwwl0=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:31 2025 by rpki-client on console.sobornost.net