Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/BdeyjV_WXql_cH9f0BqAyp2GSLc.roa
File: BdeyjV_WXql_cH9f0BqAyp2GSLc.roa (raw, json)
Hash identifier: qpXxomXkhhubZ8IuTfMiGMTO/35d+8fwfRs6EfAbwYI=
Subject key identifier: 05:D7:B2:8D:5F:D6:5E:A9:7F:70:7F:5F:D0:1A:80:CA:9D:86:48:B7
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 01945E44250EB4435DD41EECA3B7BBEF669F
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/BdeyjV_WXql_cH9f0BqAyp2GSLc.roa
Signing time: Mon 13 Jan 2025 06:05:11 +0000
ROA not before: Mon 13 Jan 2025 06:05:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24810
IP address blocks: 81.22.200.0/21 maxlen: 21
81.22.200.0/24 maxlen: 24
81.22.201.0/24 maxlen: 24
81.22.202.0/24 maxlen: 24
81.22.203.0/24 maxlen: 24
81.22.204.0/24 maxlen: 24
81.22.205.0/24 maxlen: 24
81.22.206.0/24 maxlen: 24
81.22.207.0/24 maxlen: 24
81.22.208.0/24 maxlen: 24
81.22.209.0/24 maxlen: 24
81.22.210.0/24 maxlen: 24
81.22.211.0/24 maxlen: 24
81.22.212.0/24 maxlen: 24
81.22.213.0/24 maxlen: 24
81.22.214.0/24 maxlen: 24
81.22.215.0/24 maxlen: 24
81.23.144.0/24 maxlen: 24
81.23.145.0/24 maxlen: 24
81.23.147.0/24 maxlen: 24
81.23.148.0/24 maxlen: 24
81.23.149.0/24 maxlen: 24
81.23.156.0/24 maxlen: 24
81.23.158.0/24 maxlen: 24
81.23.159.0/24 maxlen: 24
87.117.160.0/24 maxlen: 24
87.117.161.0/24 maxlen: 24
87.117.162.0/24 maxlen: 24
87.117.164.0/24 maxlen: 24
87.117.165.0/24 maxlen: 24
87.117.166.0/24 maxlen: 24
87.117.167.0/24 maxlen: 24
87.117.168.0/24 maxlen: 24
87.117.170.0/24 maxlen: 24
87.117.171.0/24 maxlen: 24
87.117.177.0/24 maxlen: 24
87.117.183.0/24 maxlen: 24
87.117.184.0/24 maxlen: 24
87.117.188.0/24 maxlen: 24
87.117.190.0/24 maxlen: 24
89.248.112.0/24 maxlen: 24
89.248.122.0/24 maxlen: 24
89.248.123.0/24 maxlen: 24
89.248.124.0/24 maxlen: 24
89.248.125.0/24 maxlen: 24
89.248.126.0/24 maxlen: 24
89.248.127.0/24 maxlen: 24
178.20.128.0/21 maxlen: 21
178.20.128.0/24 maxlen: 24
178.20.129.0/24 maxlen: 24
178.20.130.0/24 maxlen: 24
178.20.131.0/24 maxlen: 24
178.20.132.0/24 maxlen: 24
178.20.133.0/24 maxlen: 24
178.20.134.0/24 maxlen: 24
178.20.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5e:44:25:0e:b4:43:5d:d4:1e:ec:a3:b7:bb:ef:66:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 13 06:05:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=05d7b28d5fd65ea97f707f5fd01a80ca9d8648b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9e:0a:b3:04:7d:77:43:5a:42:07:3b:c4:74:
6e:c7:d9:63:27:f8:0c:56:ef:62:de:42:36:dd:cf:
41:9e:46:b0:45:81:81:4a:b7:11:35:7d:4b:96:61:
67:0b:89:7d:a2:a2:14:e7:56:ad:8c:e3:e6:56:06:
f6:b8:64:e5:ec:cf:de:91:f8:0e:36:35:70:0f:d3:
44:eb:bc:ae:2a:e1:44:c5:95:8e:da:b5:32:16:67:
24:3d:92:05:99:9c:33:77:87:97:09:70:ac:78:8d:
94:3a:cc:57:50:89:44:aa:05:08:e2:8b:42:3a:1b:
d4:02:3f:1e:c6:34:1b:20:59:aa:a3:57:fd:60:c8:
d9:d5:3b:42:c8:e8:d4:0a:c0:86:fd:65:bb:1a:a5:
35:a4:0b:f0:21:40:3d:a4:d8:03:2e:70:ac:26:1e:
a3:6c:5a:70:10:46:85:7c:19:9a:26:62:3e:ce:97:
59:10:01:27:cb:e5:c6:54:79:d1:dc:11:73:01:08:
87:1c:f1:a1:8d:c6:a4:a6:0f:37:83:91:9f:d5:53:
a3:05:8d:11:f0:20:e3:bb:a0:37:dd:c9:8e:6c:1e:
ef:ea:9f:a8:01:3c:67:ff:34:4b:79:ee:2e:1f:c2:
61:0d:44:56:8f:eb:72:5b:27:7e:41:08:ff:97:54:
0d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D7:B2:8D:5F:D6:5E:A9:7F:70:7F:5F:D0:1A:80:CA:9D:86:48:B7
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/BdeyjV_WXql_cH9f0BqAyp2GSLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.200.0-81.22.215.255
81.23.144.0/23
81.23.147.0-81.23.149.255
81.23.156.0/24
81.23.158.0/23
87.117.160.0-87.117.162.255
87.117.164.0-87.117.168.255
87.117.170.0/23
87.117.177.0/24
87.117.183.0-87.117.184.255
87.117.188.0/24
87.117.190.0/24
89.248.112.0/24
89.248.122.0-89.248.127.255
178.20.128.0/21
Signature Algorithm: sha256WithRSAEncryption
81:ba:3a:a4:33:82:8b:a3:05:f8:9b:00:73:07:ff:5e:50:e0:
a8:f2:11:3e:07:d6:42:3a:16:4f:f7:72:c6:ac:b1:f9:ba:44:
c9:7f:6a:3c:b2:79:b1:5e:96:72:c9:ac:39:08:20:4b:9f:6a:
cc:c7:70:0e:66:a6:88:7b:4d:4b:fb:2d:b0:db:44:a7:62:2a:
0e:78:14:4f:fc:41:fe:c4:8a:40:7d:5b:1b:9c:c5:f8:22:9f:
b2:67:bd:7a:e1:0c:d2:09:c5:d5:af:74:c6:06:06:f0:61:0e:
45:13:13:e3:04:b9:8e:28:ac:4d:22:13:eb:a6:19:6c:b7:ef:
82:d6:4d:ee:62:db:50:84:55:f1:af:c4:24:b5:ce:c0:6c:66:
d5:d3:cd:f7:74:ef:12:9f:44:a0:40:9f:90:cc:fe:c0:17:e5:
51:18:50:b2:81:fb:63:32:96:64:fb:54:0f:c8:b4:28:56:6a:
d5:a8:df:6a:09:b3:2c:11:c2:c5:bc:40:a2:9a:3f:1c:ee:7a:
c2:c8:0a:ec:fa:b3:f6:6a:19:26:f1:19:38:d6:05:2f:58:82:
2e:f4:73:e8:e4:a2:49:1c:20:f6:37:d1:cc:d4:bc:56:c2:48:
81:6b:79:34:6a:24:3b:72:00:be:9b:23:96:0b:5a:55:a1:0f:
76:03:61:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:07 2025 by rpki-client on console.sobornost.net