Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/YQQY9WbkmgeS1qs7w9FXlKv8Vjg.roa
File: YQQY9WbkmgeS1qs7w9FXlKv8Vjg.roa (raw, json)
Hash identifier: hwuYkb6/mPGRgti6RV6I744KeEFXFm+0pSOmxaVwfR8=
Subject key identifier: 61:04:18:F5:66:E4:9A:07:92:D6:AB:3B:C3:D1:57:94:AB:FC:56:38
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0194F9A5D73CF88783F300373C628BD39D7D
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/YQQY9WbkmgeS1qs7w9FXlKv8Vjg.roa
Signing time: Wed 12 Feb 2025 10:13:02 +0000
ROA not before: Wed 12 Feb 2025 10:13:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41691
IP address blocks: 81.22.192.0/24 maxlen: 24
87.117.128.0/21 maxlen: 21
87.117.132.0/24 maxlen: 24
87.117.136.0/23 maxlen: 23
87.117.138.0/24 maxlen: 24
87.117.140.0/22 maxlen: 22
87.117.146.0/23 maxlen: 23
87.117.148.0/23 maxlen: 23
89.221.192.0/22 maxlen: 22
89.221.197.0/24 maxlen: 24
89.221.205.0/24 maxlen: 24
109.172.48.0/22 maxlen: 22
109.172.52.0/23 maxlen: 23
109.172.72.0/23 maxlen: 23
109.172.76.0/23 maxlen: 23
109.172.102.0/23 maxlen: 23
109.172.104.0/22 maxlen: 22
109.172.118.0/23 maxlen: 23
2a02:25e0:f00::/40 maxlen: 40
2a02:25e0:7700::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f9:a5:d7:3c:f8:87:83:f3:00:37:3c:62:8b:d3:9d:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Feb 12 10:13:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=610418f566e49a0792d6ab3bc3d15794abfc5638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fe:ef:9f:67:08:ee:70:51:7d:50:a7:f8:f4:
9e:de:d6:a5:2f:fb:a5:d1:2a:ed:44:97:bc:d6:71:
7e:8f:6b:3e:e8:fc:89:f3:4b:56:95:b6:36:24:0c:
31:31:a1:9a:5c:eb:6c:c8:a4:be:b9:42:2d:cf:b8:
1f:e7:f3:4f:de:9e:95:6b:ca:be:e1:f6:02:d8:e9:
aa:c5:3b:da:7d:66:8e:5b:cc:a6:35:e1:40:2c:e7:
01:6f:ac:1a:0e:03:66:ab:cc:77:63:7e:94:32:f8:
1d:f3:5c:3f:62:35:4e:34:bc:d4:2f:07:5e:95:6d:
57:f1:09:0f:70:3a:91:68:dc:fa:db:25:e1:8d:b6:
36:fb:28:a0:64:7b:2e:97:eb:81:4c:bc:53:fa:12:
6a:ba:df:6b:55:d8:fa:fc:90:7a:db:51:4f:ef:04:
d0:5e:ac:a7:11:d6:92:9a:65:a3:51:84:c1:d9:3a:
01:c9:18:7f:a1:59:58:56:d4:c9:af:d8:b0:05:92:
89:a2:2c:5e:34:0b:06:ce:e5:b1:0c:ec:87:c4:33:
c8:53:41:ce:7e:b8:69:dc:87:e9:d7:da:1d:06:c3:
a4:a0:aa:f8:bb:4f:28:22:42:1e:b9:7c:01:14:43:
2c:35:38:cd:2e:e7:ce:63:5b:56:d6:9c:5f:33:19:
13:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:04:18:F5:66:E4:9A:07:92:D6:AB:3B:C3:D1:57:94:AB:FC:56:38
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/YQQY9WbkmgeS1qs7w9FXlKv8Vjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.192.0/24
87.117.128.0-87.117.138.255
87.117.140.0/22
87.117.146.0-87.117.149.255
89.221.192.0/22
89.221.197.0/24
89.221.205.0/24
109.172.48.0-109.172.53.255
109.172.72.0/23
109.172.76.0/23
109.172.102.0-109.172.107.255
109.172.118.0/23
IPv6:
2a02:25e0:f00::/40
2a02:25e0:7700::/40
Signature Algorithm: sha256WithRSAEncryption
09:c1:c3:11:50:07:00:ee:65:07:e3:64:d7:22:a8:5b:9c:4c:
9e:8c:54:57:44:b8:89:ad:bf:8b:c0:5f:2e:35:41:ed:58:d0:
9f:79:6a:3e:09:83:f0:9c:15:89:2d:c4:fb:a0:30:d8:4d:42:
22:8f:03:cc:f7:ff:dc:9e:a2:11:2b:63:d9:88:78:99:9f:2f:
6a:7e:6f:7d:90:e1:70:bb:84:2e:57:38:eb:75:6f:c9:a5:b2:
b9:b0:6d:c2:fd:68:0d:65:11:6f:0f:b4:d5:27:44:11:ea:38:
a2:27:06:dd:13:37:6c:64:e1:bc:83:3c:64:09:2d:dd:60:02:
2e:e6:26:23:c6:48:f4:0b:3d:f4:02:2f:ee:95:aa:21:6b:ca:
09:91:34:63:b9:1e:36:17:1f:a9:85:40:d0:46:e6:34:9c:13:
32:73:77:af:ca:7c:a0:1a:65:08:fb:ad:67:71:83:90:81:b7:
30:fc:18:8a:b9:17:6b:1d:70:61:fb:6f:d8:5c:45:21:0c:a8:
cc:90:b1:e9:b5:77:74:cd:9b:c8:2c:50:88:54:4b:cc:26:3c:
49:0a:45:64:7d:ad:49:fd:7e:ca:e8:13:16:50:83:9a:d9:fe:
7d:bb:89:3e:29:ec:8d:9b:0d:56:f9:1e:4b:96:3d:44:67:6f:
11:d4:ef:33
-----BEGIN CERTIFICATE-----
MIIFejCCBGKgAwIBAgISAZT5pdc8+IeD8wA3PGKL0519MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjUwMjEyMTAxMzAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTA0MThmNTY2ZTQ5YTA3OTJkNmFiM2JjM2QxNTc5NGFiZmM1NjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApf7vn2cI7nBRfVCn+PSe3talL/ul
0SrtRJe81nF+j2s+6PyJ80tWlbY2JAwxMaGaXOtsyKS+uUItz7gf5/NP3p6Va8q+
4fYC2OmqxTvafWaOW8ymNeFALOcBb6waDgNmq8x3Y36UMvgd81w/YjVONLzULwde
lW1X8QkPcDqRaNz62yXhjbY2+yigZHsul+uBTLxT+hJqut9rVdj6/JB621FP7wTQ
XqynEdaSmmWjUYTB2ToByRh/oVlYVtTJr9iwBZKJoixeNAsGzuWxDOyHxDPIU0HO
frhp3Ifp19odBsOkoKr4u08oIkIeuXwBFEMsNTjNLufOY1tW1pxfMxkTtQIDAQAB
o4IChjCCAoIwHQYDVR0OBBYEFGEEGPVm5JoHktarO8PRV5Sr/FY4MB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvWVFRWTlXYmttZ2VTMXFzN3c5RlhsS3Y4VmpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGbBggrBgEFBQcBBwEB/wSBizCBiDBuBAIAATBoAwQAURbA
MAwDBAdXdYADBABXdYoDBAJXdYwwDAMEAVd1kgMEAVd1lAMEAlndwAMEAFndxQME
AFndzTAMAwQEbawwAwQBbaw0AwQBbaxIAwQBbaxMMAwDBAFtrGYDBAJtrGgDBAFt
rHYwFgQCAAIwEAMGACoCJeAPAwYAKgIl4HcwDQYJKoZIhvcNAQELBQADggEBAAnB
wxFQBwDuZQfjZNciqFucTJ6MVFdEuImtv4vAXy41Qe1Y0J95aj4Jg/CcFYktxPug
MNhNQiKPA8z3/9yeohErY9mIeJmfL2p+b32Q4XC7hC5XOOt1b8mlsrmwbcL9aA1l
EW8PtNUnRBHqOKInBt0TN2xk4byDPGQJLd1gAi7mJiPGSPQLPfQCL+6VqiFrygmR
NGO5HjYXH6mFQNBG5jScEzJzd6/KfKAaZQj7rWdxg5CBtzD8GIq5F2sdcGH7b9hc
RSEMqMyQsem1d3TNm8gsUIhUS8wmPEkKRWR9rUn9fsroExZQg5rZ/n27iT4p7I2b
DVb5HkuWPURnbxHU7zM=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:07 2025 by rpki-client on console.sobornost.net