Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/nfi8L76Q0CcXdXMuyopjIwMNN1s.roa
File: nfi8L76Q0CcXdXMuyopjIwMNN1s.roa (raw, json)
Hash identifier: yyBzF5vSH0UZ1Eb70mzyyMArzuUjMy9cXtif0oEgNm8=
Subject key identifier: 9D:F8:BC:2F:BE:90:D0:27:17:75:73:2E:CA:8A:63:23:03:0D:37:5B
Certificate issuer: /CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Certificate serial: 019422FB36EEEB23E546193BF835B191B026
Authority key identifier: 12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/nfi8L76Q0CcXdXMuyopjIwMNN1s.roa
Signing time: Wed 01 Jan 2025 17:47:56 +0000
ROA not before: Wed 01 Jan 2025 17:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34788
IP address blocks: 85.13.128.0/24 maxlen: 24
85.13.129.0/24 maxlen: 24
85.13.130.0/24 maxlen: 24
85.13.131.0/24 maxlen: 24
85.13.132.0/24 maxlen: 24
85.13.133.0/24 maxlen: 24
85.13.134.0/24 maxlen: 24
85.13.135.0/24 maxlen: 24
85.13.136.0/24 maxlen: 24
85.13.137.0/24 maxlen: 24
85.13.138.0/24 maxlen: 24
85.13.139.0/24 maxlen: 24
85.13.140.0/24 maxlen: 24
85.13.141.0/24 maxlen: 24
85.13.142.0/24 maxlen: 24
85.13.143.0/24 maxlen: 24
85.13.144.0/24 maxlen: 24
85.13.145.0/24 maxlen: 24
85.13.146.0/24 maxlen: 24
85.13.147.0/24 maxlen: 24
85.13.148.0/24 maxlen: 24
85.13.149.0/24 maxlen: 24
85.13.150.0/24 maxlen: 24
85.13.151.0/24 maxlen: 24
85.13.152.0/24 maxlen: 24
85.13.153.0/24 maxlen: 24
85.13.154.0/24 maxlen: 24
85.13.155.0/24 maxlen: 24
85.13.156.0/24 maxlen: 24
85.13.157.0/24 maxlen: 24
85.13.158.0/24 maxlen: 24
85.13.159.0/24 maxlen: 24
85.13.160.0/24 maxlen: 24
85.13.161.0/24 maxlen: 24
85.13.162.0/24 maxlen: 24
85.13.163.0/24 maxlen: 24
85.13.164.0/24 maxlen: 24
85.13.165.0/24 maxlen: 24
85.13.166.0/24 maxlen: 24
85.13.167.0/24 maxlen: 24
85.13.168.0/24 maxlen: 24
85.13.169.0/24 maxlen: 24
85.13.170.0/24 maxlen: 24
85.13.171.0/24 maxlen: 24
85.13.172.0/24 maxlen: 24
85.13.173.0/24 maxlen: 24
85.13.174.0/24 maxlen: 24
85.13.175.0/24 maxlen: 24
85.13.176.0/24 maxlen: 24
85.13.177.0/24 maxlen: 24
85.13.178.0/24 maxlen: 24
85.13.179.0/24 maxlen: 24
85.13.180.0/24 maxlen: 24
85.13.181.0/24 maxlen: 24
85.13.182.0/24 maxlen: 24
85.13.183.0/24 maxlen: 24
85.13.184.0/24 maxlen: 24
85.13.185.0/24 maxlen: 24
85.13.186.0/24 maxlen: 24
85.13.187.0/24 maxlen: 24
85.13.188.0/24 maxlen: 24
85.13.189.0/24 maxlen: 24
85.13.190.0/24 maxlen: 24
85.13.191.0/24 maxlen: 24
185.3.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:36:ee:eb:23:e5:46:19:3b:f8:35:b1:91:b0:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Validity
Not Before: Jan 1 17:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9df8bc2fbe90d0271775732eca8a6323030d375b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f9:a2:a1:59:0a:51:e6:a6:ee:57:8a:31:ac:
ae:1d:1a:4f:30:69:3e:1c:28:cf:d7:e6:2c:c4:7e:
7f:d0:1b:e0:e3:15:5c:29:c6:e7:e9:bd:65:aa:70:
58:01:88:b7:a4:8a:ec:99:e9:d6:3e:3d:64:f8:59:
0d:cc:63:99:97:c4:56:0a:33:6a:34:c2:dd:82:db:
c1:89:68:49:31:41:30:89:75:f0:02:2f:0d:65:32:
a7:7c:b8:45:72:13:59:1e:77:f6:e5:f2:c8:84:d4:
7b:15:60:3d:3f:b4:a7:2e:24:f5:35:8d:90:4a:02:
47:f4:28:bc:5f:df:d4:dd:21:0b:0b:3a:8d:21:ae:
42:45:75:fc:21:42:c6:ab:d2:cd:bd:1d:02:ae:18:
44:fd:02:a3:7c:40:98:78:1d:00:65:b3:99:d1:b1:
ee:5a:18:b2:ba:f6:10:7c:51:9d:c9:03:c6:73:5f:
e1:98:7a:be:ce:d8:34:8c:76:63:46:6c:fb:ad:ab:
fb:3f:31:7c:da:22:db:e5:4d:90:84:fc:6b:bb:f2:
c9:85:d3:e8:5b:7e:26:19:3b:a4:08:ca:85:9e:c4:
ec:54:ce:32:7b:02:82:63:8a:44:f4:3d:3d:ea:c1:
88:84:90:92:dd:13:24:92:18:00:86:27:1b:e8:6d:
b2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:F8:BC:2F:BE:90:D0:27:17:75:73:2E:CA:8A:63:23:03:0D:37:5B
X509v3 Authority Key Identifier:
keyid:12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/nfi8L76Q0CcXdXMuyopjIwMNN1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.13.128.0/18
185.3.40.0/22
Signature Algorithm: sha256WithRSAEncryption
16:9d:13:5e:20:e5:5c:99:56:94:ea:71:89:89:ec:5c:a1:e1:
92:19:b3:a9:ee:3a:b9:8c:32:18:e4:a5:42:0d:d1:fb:f1:ff:
71:1e:9e:16:40:2f:d7:c6:8e:98:98:55:b2:8e:b8:58:28:16:
48:b1:a8:9d:2b:61:da:80:3d:d7:81:5d:88:45:7d:39:3f:d2:
0f:0c:4d:1f:51:cd:4b:07:dc:ca:ea:ac:ce:1e:1a:d6:aa:78:
8d:c0:6d:56:24:34:07:d8:38:ab:da:20:0f:fa:d0:62:0c:81:
26:12:49:16:41:94:95:57:c7:e5:ea:c0:32:73:68:9e:9a:ac:
2c:a3:7c:02:65:07:03:7f:55:f3:7e:fb:c6:6b:e2:63:4c:0c:
a6:55:b7:df:16:50:36:e6:d9:79:9f:a2:72:50:04:c6:27:6b:
95:0f:87:ac:ce:4c:b9:16:86:e0:f6:cf:76:49:1b:16:e9:5c:
7d:3d:a1:a1:19:93:e3:54:ba:4a:31:6f:5b:b8:43:fc:dd:f4:
e2:64:fe:10:51:70:36:9f:80:fc:19:b9:da:03:0f:93:2b:ce:
ff:26:9a:05:86:3d:f8:8d:6c:12:aa:fd:f4:c0:61:0f:04:f7:
d7:9a:93:93:23:79:0c:9a:74:f2:5c:c0:99:d8:f3:88:8e:7c:
b0:41:ed:87
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQi+zbu6yPlRhk7+DWxkbAmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyYzRhMTdkMjA2NjZiN2Q4ZDJiMWZmZTE4YTQ2ODdhZjky
NjIxOGYwHhcNMjUwMTAxMTc0NzU2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZGY4YmMyZmJlOTBkMDI3MTc3NTczMmVjYThhNjMyMzAzMGQzNzViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofmioVkKUeam7leKMayuHRpPMGk+
HCjP1+YsxH5/0Bvg4xVcKcbn6b1lqnBYAYi3pIrsmenWPj1k+FkNzGOZl8RWCjNq
NMLdgtvBiWhJMUEwiXXwAi8NZTKnfLhFchNZHnf25fLIhNR7FWA9P7SnLiT1NY2Q
SgJH9Ci8X9/U3SELCzqNIa5CRXX8IULGq9LNvR0CrhhE/QKjfECYeB0AZbOZ0bHu
WhiyuvYQfFGdyQPGc1/hmHq+ztg0jHZjRmz7rav7PzF82iLb5U2QhPxru/LJhdPo
W34mGTukCMqFnsTsVM4yewKCY4pE9D096sGIhJCS3RMkkhgAhicb6G2y7QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJ34vC++kNAnF3VzLsqKYyMDDTdbMB8GA1UdIwQY
MBaAFBLEoX0gZmt9jSsf/hikaHr5JiGPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXNTaGZTQm1hMzJOS3hfLUdLUm9ldmttSVk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS84MzExODEtYjBiMy00YjJlLTg4ZGMt
NDlhOTZhODIyMTRlLzEvbmZpOEw3NlEwQ2NYZFhNdXlvcGpJd01OTjFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS84MzExODEtYjBiMy00YjJlLTg4ZGMtNDlhOTZhODIyMTRl
LzEvRXNTaGZTQm1hMzJOS3hfLUdLUm9ldmttSVk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQGVQ2AAwQC
uQMoMA0GCSqGSIb3DQEBCwUAA4IBAQAWnRNeIOVcmVaU6nGJiexcoeGSGbOp7jq5
jDIY5KVCDdH78f9xHp4WQC/Xxo6YmFWyjrhYKBZIsaidK2HagD3XgV2IRX05P9IP
DE0fUc1LB9zK6qzOHhrWqniNwG1WJDQH2Dir2iAP+tBiDIEmEkkWQZSVV8fl6sAy
c2iemqwso3wCZQcDf1XzfvvGa+JjTAymVbffFlA25tl5n6JyUATGJ2uVD4eszky5
Fobg9s92SRsW6Vx9PaGhGZPjVLpKMW9buEP83fTiZP4QUXA2n4D8GbnaAw+TK87/
JpoFhj34jWwSqv30wGEPBPfXmpOTI3kMmnTyXMCZ2POIjnywQe2H
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:49 2025 by rpki-client on console.sobornost.net