Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/j-Jjt8muMSWSb6D6tiv9HjAEEJ4.roa
File: j-Jjt8muMSWSb6D6tiv9HjAEEJ4.roa (raw, json)
Hash identifier: mZKly42xduDP8Qx3DyzAaGxgsqrqwMpczPBtJttwy4g=
Subject key identifier: 8F:E2:63:B7:C9:AE:31:25:92:6F:A0:FA:B6:2B:FD:1E:30:04:10:9E
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 019368877DB5A4C78DCC1F0A11D15D984A80
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/j-Jjt8muMSWSb6D6tiv9HjAEEJ4.roa
Signing time: Tue 26 Nov 2024 12:52:10 +0000
ROA not before: Tue 26 Nov 2024 12:52:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39074
IP address blocks: 85.133.128.0/22 maxlen: 22
85.133.128.0/24 maxlen: 24
85.133.129.0/24 maxlen: 24
85.133.130.0/24 maxlen: 24
85.133.131.0/24 maxlen: 24
85.133.132.0/24 maxlen: 24
85.133.133.0/24 maxlen: 24
85.133.134.0/24 maxlen: 24
85.133.135.0/24 maxlen: 24
85.133.136.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
85.133.138.0/24 maxlen: 24
85.133.139.0/24 maxlen: 24
85.133.140.0/22 maxlen: 22
85.133.140.0/24 maxlen: 24
85.133.141.0/24 maxlen: 24
85.133.142.0/24 maxlen: 24
85.133.143.0/24 maxlen: 24
85.133.144.0/22 maxlen: 22
85.133.144.0/24 maxlen: 24
85.133.145.0/24 maxlen: 24
85.133.146.0/24 maxlen: 24
85.133.147.0/24 maxlen: 24
85.133.148.0/22 maxlen: 22
85.133.148.0/24 maxlen: 24
85.133.149.0/24 maxlen: 24
85.133.150.0/24 maxlen: 24
85.133.152.0/22 maxlen: 22
85.133.152.0/24 maxlen: 24
85.133.153.0/24 maxlen: 24
85.133.154.0/24 maxlen: 24
85.133.155.0/24 maxlen: 24
85.133.156.0/24 maxlen: 24
85.133.157.0/24 maxlen: 24
85.133.158.0/24 maxlen: 24
85.133.159.0/24 maxlen: 24
85.133.164.0/24 maxlen: 24
85.133.165.0/24 maxlen: 24
85.133.167.0/24 maxlen: 24
85.133.168.0/22 maxlen: 24
85.133.168.0/24 maxlen: 24
85.133.169.0/24 maxlen: 24
85.133.170.0/24 maxlen: 24
85.133.171.0/24 maxlen: 24
85.133.172.0/22 maxlen: 24
85.133.172.0/24 maxlen: 24
85.133.173.0/24 maxlen: 24
85.133.174.0/24 maxlen: 24
85.133.175.0/24 maxlen: 24
85.133.176.0/22 maxlen: 24
85.133.176.0/24 maxlen: 24
85.133.177.0/24 maxlen: 24
85.133.178.0/24 maxlen: 24
85.133.179.0/24 maxlen: 24
85.133.180.0/22 maxlen: 24
85.133.180.0/24 maxlen: 24
85.133.181.0/24 maxlen: 24
85.133.182.0/24 maxlen: 24
85.133.183.0/24 maxlen: 24
85.133.184.0/22 maxlen: 24
85.133.184.0/24 maxlen: 24
85.133.185.0/24 maxlen: 24
85.133.186.0/24 maxlen: 24
85.133.187.0/24 maxlen: 24
85.133.188.0/22 maxlen: 22
85.133.188.0/24 maxlen: 24
85.133.189.0/24 maxlen: 24
85.133.190.0/24 maxlen: 24
85.133.191.0/24 maxlen: 24
85.133.192.0/24 maxlen: 24
85.133.196.0/22 maxlen: 22
85.133.196.0/24 maxlen: 24
85.133.209.0/24 maxlen: 24
85.133.210.0/23 maxlen: 24
85.133.210.0/24 maxlen: 24
85.133.211.0/24 maxlen: 24
85.133.212.0/24 maxlen: 24
85.133.213.0/24 maxlen: 24
85.133.220.0/22 maxlen: 22
85.133.220.0/24 maxlen: 24
85.133.223.0/24 maxlen: 24
85.133.225.0/24 maxlen: 24
85.133.226.0/24 maxlen: 24
85.133.228.0/24 maxlen: 24
85.133.229.0/24 maxlen: 24
85.133.230.0/24 maxlen: 24
85.133.231.0/24 maxlen: 24
85.133.232.0/24 maxlen: 24
85.133.235.0/24 maxlen: 24
85.133.239.0/24 maxlen: 24
85.133.244.0/24 maxlen: 24
85.133.245.0/24 maxlen: 24
85.133.247.0/24 maxlen: 24
85.133.248.0/23 maxlen: 24
85.133.248.0/24 maxlen: 24
85.133.249.0/24 maxlen: 24
85.133.255.0/24 maxlen: 24
2a04:87c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:87:7d:b5:a4:c7:8d:cc:1f:0a:11:d1:5d:98:4a:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Nov 26 12:52:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8fe263b7c9ae3125926fa0fab62bfd1e3004109e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2e:f6:fb:39:21:81:d1:dc:14:fd:da:7d:21:
2e:29:ba:f0:33:31:c1:8d:46:13:87:1c:58:dc:97:
ad:e8:c9:d0:61:77:1c:7e:bc:6b:05:89:93:2b:5b:
2f:5b:7f:b3:d3:a1:8c:6b:af:46:fa:a8:f8:c3:7f:
a3:e6:0a:aa:2c:e1:35:57:9e:8d:7a:07:ea:46:92:
a9:cc:a0:65:5d:7f:06:e2:35:33:f4:95:51:7f:23:
d2:95:f1:f7:ed:24:af:e9:7c:ee:75:24:64:b2:fb:
e4:e6:ec:ad:b1:0f:d6:bc:ae:c4:5c:17:98:cc:47:
f1:9c:d5:4d:54:e8:58:d5:14:30:03:be:48:8b:b0:
c3:85:f3:d1:02:0e:2f:e1:36:d4:76:da:7d:1c:34:
7c:ed:7b:ca:91:c6:76:1a:49:07:2c:08:70:63:50:
3a:4f:aa:65:0e:0e:c0:6e:14:c1:a9:cc:88:98:ed:
4d:d3:b5:b4:ee:e2:8b:38:e0:23:02:b9:91:ed:60:
ce:13:47:fc:3c:ea:cc:ab:20:87:0f:c9:f1:81:a4:
1c:96:5d:a9:72:ea:0a:5f:b2:8e:21:7b:8b:45:4b:
4c:9f:c5:4d:55:5c:82:a4:86:49:84:ca:b6:c6:18:
e5:78:3b:6f:10:4c:bd:1f:a9:2f:34:d1:c3:26:8f:
4a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:E2:63:B7:C9:AE:31:25:92:6F:A0:FA:B6:2B:FD:1E:30:04:10:9E
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/j-Jjt8muMSWSb6D6tiv9HjAEEJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.128.0/19
85.133.164.0/23
85.133.167.0-85.133.192.255
85.133.196.0/22
85.133.209.0-85.133.213.255
85.133.220.0/22
85.133.225.0-85.133.226.255
85.133.228.0-85.133.232.255
85.133.235.0/24
85.133.239.0/24
85.133.244.0/23
85.133.247.0-85.133.249.255
85.133.255.0/24
IPv6:
2a04:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
b5:82:ff:12:e0:ea:44:63:55:de:51:91:f0:8b:72:2b:80:0a:
71:dc:ac:d0:15:47:7b:f6:36:a5:88:a1:46:84:32:cb:35:f2:
0c:3a:80:f8:dc:de:0e:8f:14:f8:53:60:dc:c9:5b:f7:98:46:
7e:9e:07:b2:a9:ea:be:58:f0:89:3b:13:03:c6:13:44:29:51:
b9:a8:9f:e6:1b:5a:80:dc:2e:ce:4f:68:af:dc:cb:62:81:ed:
91:19:5f:be:8c:40:50:72:63:d9:82:8b:f3:19:fb:6f:40:bf:
e8:30:a0:72:20:9c:6f:94:f2:b7:92:40:4e:bc:79:88:24:03:
ad:4f:92:0a:81:4a:69:63:53:e3:5a:5e:13:ef:8d:a4:80:c8:
c8:eb:b0:4a:f4:c1:8e:f3:da:d3:b9:7a:12:b1:2d:ea:08:42:
3d:9d:8e:af:7c:d6:50:0c:4e:16:7f:3c:63:5c:dc:d7:93:34:
bc:02:ed:5f:0d:64:a4:2a:9a:6d:63:b4:e2:5b:f4:ab:9b:9d:
4c:ca:7e:fd:20:d5:72:93:bc:b6:12:4d:ee:eb:ff:87:73:e2:
af:e5:1b:da:8e:26:34:f3:f9:19:90:20:27:9d:8b:b7:a2:01:
be:a9:2c:f1:a7:bd:0b:d4:5b:21:a7:a7:d9:66:10:6f:53:f9:
88:97:b8:b6
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgISAZNoh321pMeNzB8KEdFdmEqAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjQxMTI2MTI1MjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZmUyNjNiN2M5YWUzMTI1OTI2ZmEwZmFiNjJiZmQxZTMwMDQxMDllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmi72+zkhgdHcFP3afSEuKbrwMzHB
jUYThxxY3Jet6MnQYXccfrxrBYmTK1svW3+z06GMa69G+qj4w3+j5gqqLOE1V56N
egfqRpKpzKBlXX8G4jUz9JVRfyPSlfH37SSv6XzudSRksvvk5uytsQ/WvK7EXBeY
zEfxnNVNVOhY1RQwA75Ii7DDhfPRAg4v4TbUdtp9HDR87XvKkcZ2GkkHLAhwY1A6
T6plDg7AbhTBqcyImO1N07W07uKLOOAjArmR7WDOE0f8POrMqyCHD8nxgaQcll2p
cuoKX7KOIXuLRUtMn8VNVVyCpIZJhMq2xhjleDtvEEy9H6kvNNHDJo9KwQIDAQAB
o4ICizCCAocwHQYDVR0OBBYEFI/iY7fJrjElkm+g+rYr/R4wBBCeMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvai1KanQ4bXVNU1dTYjZENnRpdjlIakFFRUo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGgBggrBgEFBQcBBwEB/wSBkDCBjTB8BAIAATB2AwQFVYWA
AwQBVYWkMAwDBABVhacDBABVhcADBAJVhcQwDAMEAFWF0QMEAVWF1AMEAlWF3DAM
AwQAVYXhAwQAVYXiMAwDBAJVheQDBABVhegDBABVhesDBABVhe8DBAFVhfQwDAME
AFWF9wMEAVWF+AMEAFWF/zANBAIAAjAHAwUDKgSHwDANBgkqhkiG9w0BAQsFAAOC
AQEAtYL/EuDqRGNV3lGR8ItyK4AKcdys0BVHe/Y2pYihRoQyyzXyDDqA+NzeDo8U
+FNg3Mlb95hGfp4HsqnqvljwiTsTA8YTRClRuaif5htagNwuzk9or9zLYoHtkRlf
voxAUHJj2YKL8xn7b0C/6DCgciCcb5Tyt5JATrx5iCQDrU+SCoFKaWNT41peE++N
pIDIyOuwSvTBjvPa07l6ErEt6ghCPZ2Or3zWUAxOFn88Y1zc15M0vALtXw1kpCqa
bWO04lv0q5udTMp+/SDVcpO8thJN7uv/h3Pir+Ub2o4mNPP5GZAgJ52Lt6IBvqks
8ae9C9RbIaen2WYQb1P5iJe4tg==
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:24 2024 by rpki-client on console.sobornost.net