Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ba88f2-215f-4f89-a3af-138b787de3e3/1/dliFFDh7twLROAkFzs0engowIsA.roa
File: dliFFDh7twLROAkFzs0engowIsA.roa (raw, json)
Hash identifier: cYiF1K13JqZCoLBVRheN2dobUDlzjkLNlechgeAea18=
Subject key identifier: 76:58:85:14:38:7B:B7:02:D1:38:09:05:CE:CD:1E:9E:0A:30:22:C0
Certificate issuer: /CN=999df7dc0ed518f1ec69974cf98cecaada1a8680
Certificate serial: 01948E8F58FA79A43FF642A71F161AAB756C
Authority key identifier: 99:9D:F7:DC:0E:D5:18:F1:EC:69:97:4C:F9:8C:EC:AA:DA:1A:86:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZ333A7VGPHsaZdM-YzsqtoahoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ba88f2-215f-4f89-a3af-138b787de3e3/1/dliFFDh7twLROAkFzs0engowIsA.roa
Signing time: Wed 22 Jan 2025 15:09:06 +0000
ROA not before: Wed 22 Jan 2025 15:09:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6848
IP address blocks: 5.23.128.0/17 maxlen: 17
46.253.160.0/20 maxlen: 20
62.205.64.0/18 maxlen: 18
78.20.0.0/14 maxlen: 14
78.29.192.0/18 maxlen: 18
81.82.0.0/15 maxlen: 15
81.164.0.0/15 maxlen: 15
82.143.64.0/18 maxlen: 18
82.210.64.0/19 maxlen: 19
83.217.128.0/19 maxlen: 19
84.192.0.0/13 maxlen: 13
85.28.64.0/18 maxlen: 18
85.255.192.0/24 maxlen: 24
85.255.193.0/24 maxlen: 24
85.255.194.0/24 maxlen: 24
85.255.195.0/24 maxlen: 24
85.255.197.0/24 maxlen: 24
85.255.198.0/24 maxlen: 24
85.255.199.0/24 maxlen: 24
85.255.200.0/24 maxlen: 24
85.255.201.0/24 maxlen: 24
85.255.202.0/24 maxlen: 24
85.255.203.0/24 maxlen: 24
85.255.204.0/24 maxlen: 24
85.255.205.0/24 maxlen: 24
85.255.206.0/24 maxlen: 24
85.255.207.0/24 maxlen: 24
94.72.64.0/19 maxlen: 19
94.224.0.0/14 maxlen: 14
141.134.0.0/15 maxlen: 15
157.173.128.0/18 maxlen: 18
178.116.0.0/14 maxlen: 14
185.23.244.0/22 maxlen: 22
185.30.52.0/22 maxlen: 22
185.35.52.0/24 maxlen: 24
185.35.53.0/24 maxlen: 24
185.35.54.0/24 maxlen: 24
185.35.55.0/24 maxlen: 24
185.248.40.0/22 maxlen: 22
188.44.64.0/19 maxlen: 19
188.95.146.0/23 maxlen: 23
188.188.0.0/15 maxlen: 15
195.16.0.0/19 maxlen: 19
195.130.128.0/19 maxlen: 19
195.162.192.0/19 maxlen: 19
212.76.224.0/19 maxlen: 19
212.88.224.0/19 maxlen: 19
212.123.0.0/19 maxlen: 19
213.118.0.0/15 maxlen: 15
213.132.128.0/19 maxlen: 19
213.214.32.0/19 maxlen: 19
213.224.0.0/16 maxlen: 16
213.251.64.0/18 maxlen: 18
217.72.224.0/20 maxlen: 20
217.168.120.0/21 maxlen: 21
2a00:1cf8::/32 maxlen: 32
2a01:498::/32 maxlen: 32
2a01:498:500::/40 maxlen: 40
2a01:498:8500::/40 maxlen: 40
2a02:1800::/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8e:8f:58:fa:79:a4:3f:f6:42:a7:1f:16:1a:ab:75:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999df7dc0ed518f1ec69974cf98cecaada1a8680
Validity
Not Before: Jan 22 15:09:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76588514387bb702d1380905cecd1e9e0a3022c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3e:46:c3:d2:fb:fd:24:f7:29:34:ea:6f:0b:
c0:f5:ec:1e:96:71:3f:41:e1:d7:27:8e:b9:dd:85:
6b:ae:3e:91:19:15:f6:0e:2a:30:b1:31:1d:f8:99:
03:e0:53:3f:19:98:04:59:04:40:8c:a4:00:1b:e7:
ca:ba:10:24:55:0d:29:2d:53:a5:e9:ac:ff:74:09:
cf:71:80:30:c4:dc:3c:28:8b:f4:94:f4:1e:9c:d4:
96:1e:51:eb:6b:89:3c:d4:e6:3a:74:6c:83:06:4b:
d3:6c:a0:b9:13:4c:f1:70:4b:03:05:a1:c2:55:6d:
3a:1d:fe:2b:ea:10:7b:3f:10:3d:9b:ca:1d:c2:cf:
fe:81:dc:fe:71:db:f5:b0:6b:1c:8a:0a:4f:d6:70:
d9:3f:ba:32:26:7d:76:85:b0:5a:dc:72:b5:9c:db:
0a:be:f8:54:22:4b:f5:e0:12:f2:7c:44:f3:23:dd:
49:62:fa:fd:78:cc:db:16:a7:3f:c4:ff:37:66:74:
98:3c:87:9f:70:65:86:ed:62:ed:fb:51:48:ab:b5:
91:bb:85:37:1e:e1:04:c3:2c:a8:86:7b:f7:0f:7f:
bb:fb:1b:65:96:89:d7:97:b2:40:23:58:97:3a:44:
db:44:75:06:d3:51:f2:63:f3:4e:90:55:70:82:bc:
39:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:58:85:14:38:7B:B7:02:D1:38:09:05:CE:CD:1E:9E:0A:30:22:C0
X509v3 Authority Key Identifier:
keyid:99:9D:F7:DC:0E:D5:18:F1:EC:69:97:4C:F9:8C:EC:AA:DA:1A:86:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZ333A7VGPHsaZdM-YzsqtoahoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ba88f2-215f-4f89-a3af-138b787de3e3/1/dliFFDh7twLROAkFzs0engowIsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ba88f2-215f-4f89-a3af-138b787de3e3/1/mZ333A7VGPHsaZdM-YzsqtoahoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.128.0/17
46.253.160.0/20
62.205.64.0/18
78.20.0.0/14
78.29.192.0/18
81.82.0.0/15
81.164.0.0/15
82.143.64.0/18
82.210.64.0/19
83.217.128.0/19
84.192.0.0/13
85.28.64.0/18
85.255.192.0/22
85.255.197.0-85.255.207.255
94.72.64.0/19
94.224.0.0/14
141.134.0.0/15
157.173.128.0/18
178.116.0.0/14
185.23.244.0/22
185.30.52.0/22
185.35.52.0/22
185.248.40.0/22
188.44.64.0/19
188.95.146.0/23
188.188.0.0/15
195.16.0.0/19
195.130.128.0/19
195.162.192.0/19
212.76.224.0/19
212.88.224.0/19
212.123.0.0/19
213.118.0.0/15
213.132.128.0/19
213.214.32.0/19
213.224.0.0/16
213.251.64.0/18
217.72.224.0/20
217.168.120.0/21
IPv6:
2a00:1cf8::/32
2a01:498::/32
2a02:1800::/24
Signature Algorithm: sha256WithRSAEncryption
c1:7b:a8:1c:24:66:78:c2:db:9f:e0:a5:88:01:2f:fd:df:72:
a2:74:20:6a:c1:62:2f:2d:c4:fa:13:72:69:e6:c5:87:2e:03:
b1:72:0b:f9:df:21:7f:74:45:9f:16:bb:26:da:83:7c:2b:3d:
1b:6a:24:62:f5:3e:1a:59:e8:3b:21:e3:f2:d1:4f:0b:e8:db:
6b:7d:69:a5:c1:76:54:b7:df:91:0b:3e:f9:c1:8b:00:28:3c:
2d:e6:1b:56:db:02:54:4d:0e:06:9b:4f:7c:6f:04:9c:9b:43:
55:0b:51:9f:cc:53:ea:ff:b2:39:a5:d9:65:8d:d5:bc:f8:b1:
1d:b1:4e:e7:22:7a:71:88:1f:2b:ee:21:36:c5:db:eb:6b:0b:
4c:e9:cc:08:56:5e:c9:4c:fb:db:3e:9d:0f:f0:f6:bc:54:db:
b6:81:b2:20:a4:1b:af:28:b5:0d:be:00:61:4a:aa:9b:db:a2:
53:96:96:c7:6c:5f:12:66:37:5c:e5:a8:bd:47:42:c0:ea:ee:
96:79:e5:8c:83:6e:01:b2:14:b9:7d:e3:ec:8a:2d:f3:d5:70:
c5:4e:10:72:a1:a2:dd:d3:91:e9:e1:28:bb:88:85:07:4f:b4:
d8:8d:0f:91:5e:3c:1c:1e:16:56:05:90:42:6b:70:8d:a4:1a:
86:ae:35:af
-----BEGIN CERTIFICATE-----
MIIGAzCCBOugAwIBAgISAZSOj1j6eaQ/9kKnHxYaq3VsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5OWRmN2RjMGVkNTE4ZjFlYzY5OTc0Y2Y5OGNlY2FhZGEx
YTg2ODAwHhcNMjUwMTIyMTUwOTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjU4ODUxNDM4N2JiNzAyZDEzODA5MDVjZWNkMWU5ZTBhMzAyMmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsz5Gw9L7/ST3KTTqbwvA9ewelnE/
QeHXJ4653YVrrj6RGRX2DiowsTEd+JkD4FM/GZgEWQRAjKQAG+fKuhAkVQ0pLVOl
6az/dAnPcYAwxNw8KIv0lPQenNSWHlHra4k81OY6dGyDBkvTbKC5E0zxcEsDBaHC
VW06Hf4r6hB7PxA9m8odws/+gdz+cdv1sGscigpP1nDZP7oyJn12hbBa3HK1nNsK
vvhUIkv14BLyfETzI91JYvr9eMzbFqc/xP83ZnSYPIefcGWG7WLt+1FIq7WRu4U3
HuEEwyyohnv3D3+7+xtllonXl7JAI1iXOkTbRHUG01HyY/NOkFVwgrw5LQIDAQAB
o4IDDzCCAwswHQYDVR0OBBYEFHZYhRQ4e7cC0TgJBc7NHp4KMCLAMB8GA1UdIwQY
MBaAFJmd99wO1Rjx7GmXTPmM7KraGoaAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVozMzNBN1ZHUEhzYVpkTS1ZenNxdG9haG9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iYTg4ZjItMjE1Zi00Zjg5LWEzYWYt
MTM4Yjc4N2RlM2UzLzEvZGxpRkZEaDd0d0xST0FrRnpzMGVuZ293SXNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9iYTg4ZjItMjE1Zi00Zjg5LWEzYWYtMTM4Yjc4N2RlM2Uz
LzEvbVozMzNBN1ZHUEhzYVpkTS1ZenNxdG9haG9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBIwYIKwYBBQUHAQcBAf8EggESMIIBDjCB7wQCAAEwgegD
BAcFF4ADBAQu/aADBAY+zUADAwJOFAMEBk4dwAMDAVFSAwMBUaQDBAZSj0ADBAVS
0kADBAVT2YADAwNUwAMEBlUcQAMEAlX/wDAMAwQAVf/FAwQEVf/AAwQFXkhAAwMC
XuADAwGNhgMEBp2tgAMDArJ0AwQCuRf0AwQCuR40AwQCuSM0AwQCufgoAwQFvCxA
AwQBvF+SAwMBvLwDBAXDEAADBAXDgoADBAXDosADBAXUTOADBAXUWOADBAXUewAD
AwHVdgMEBdWEgAMEBdXWIAMDANXgAwQG1ftAAwQE2UjgAwQD2ah4MBoEAgACMBQD
BQAqABz4AwUAKgEEmAMEACoCGDANBgkqhkiG9w0BAQsFAAOCAQEAwXuoHCRmeMLb
n+CliAEv/d9yonQgasFiLy3E+hNyaebFhy4DsXIL+d8hf3RFnxa7JtqDfCs9G2ok
YvU+GlnoOyHj8tFPC+jba31ppcF2VLffkQs++cGLACg8LeYbVtsCVE0OBptPfG8E
nJtDVQtRn8xT6v+yOaXZZY3VvPixHbFO5yJ6cYgfK+4hNsXb62sLTOnMCFZeyUz7
2z6dD/D2vFTbtoGyIKQbryi1Db4AYUqqm9uiU5aWx2xfEmY3XOWovUdCwOrulnnl
jINuAbIUuX3j7Iot89VwxU4QcqGi3dOR6eEou4iFB0+02I0PkV48HB4WVgWQQmtw
jaQahq41rw==
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:17:06 2025 by rpki-client on console.sobornost.net