Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/vMQlOLm250mKHdg2OC9AyGsGK-I.roa
File: vMQlOLm250mKHdg2OC9AyGsGK-I.roa (raw, json)
Hash identifier: wu5fYw9TaFXGXGKZe8az8Ni2fZOoAiBDtY360Rku0Jc=
Subject key identifier: BC:C4:25:38:B9:B6:E7:49:8A:1D:D8:36:38:2F:40:C8:6B:06:2B:E2
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0194266C6C6715D2B7FC5CEB97B61A400985
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/vMQlOLm250mKHdg2OC9AyGsGK-I.roa
Signing time: Thu 02 Jan 2025 09:50:27 +0000
ROA not before: Thu 02 Jan 2025 09:50:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33934
IP address blocks: 83.239.128.0/18 maxlen: 18
83.239.128.0/22 maxlen: 22
83.239.132.0/24 maxlen: 24
83.239.138.0/23 maxlen: 23
83.239.142.0/23 maxlen: 23
83.239.144.0/24 maxlen: 24
83.239.151.0/24 maxlen: 24
83.239.152.0/22 maxlen: 22
83.239.156.0/23 maxlen: 23
83.239.158.0/24 maxlen: 24
83.239.161.0/24 maxlen: 24
83.239.162.0/23 maxlen: 23
83.239.164.0/24 maxlen: 24
83.239.167.0/24 maxlen: 24
83.239.168.0/23 maxlen: 23
83.239.172.0/22 maxlen: 22
83.239.176.0/24 maxlen: 24
83.239.179.0/24 maxlen: 24
83.239.180.0/22 maxlen: 22
83.239.184.0/22 maxlen: 22
83.239.188.0/23 maxlen: 23
83.239.191.0/24 maxlen: 24
85.172.112.0/20 maxlen: 20
85.172.120.0/23 maxlen: 23
85.172.122.0/24 maxlen: 24
85.172.126.0/23 maxlen: 23
85.172.168.0/22 maxlen: 22
85.172.170.0/24 maxlen: 24
85.173.64.0/19 maxlen: 19
85.173.80.0/22 maxlen: 22
85.173.84.0/23 maxlen: 23
85.173.192.0/19 maxlen: 19
85.173.208.0/23 maxlen: 23
85.174.0.0/17 maxlen: 17
85.174.63.0/24 maxlen: 24
85.174.69.0/24 maxlen: 24
85.174.70.0/23 maxlen: 23
85.174.80.0/22 maxlen: 22
85.174.84.0/24 maxlen: 24
85.174.100.0/24 maxlen: 24
94.233.0.0/17 maxlen: 17
94.233.20.0/24 maxlen: 24
94.233.23.0/24 maxlen: 24
94.233.24.0/22 maxlen: 22
94.233.28.0/24 maxlen: 24
94.233.30.0/23 maxlen: 23
94.233.32.0/21 maxlen: 21
94.233.44.0/23 maxlen: 23
94.233.47.0/24 maxlen: 24
94.233.48.0/21 maxlen: 21
94.233.66.0/23 maxlen: 23
94.233.70.0/24 maxlen: 24
94.233.74.0/23 maxlen: 23
94.233.76.0/23 maxlen: 23
94.233.78.0/24 maxlen: 24
94.233.85.0/24 maxlen: 24
94.233.87.0/24 maxlen: 24
94.233.106.0/24 maxlen: 24
94.233.107.0/24 maxlen: 24
94.233.126.0/23 maxlen: 23
178.34.64.0/22 maxlen: 22
178.35.128.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:6c:67:15:d2:b7:fc:5c:eb:97:b6:1a:40:09:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 09:50:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bcc42538b9b6e7498a1dd836382f40c86b062be2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0f:84:80:00:a6:0c:f8:c6:3d:b2:0b:fc:35:
d3:98:2a:da:3e:0e:0b:fd:ca:78:d1:d9:15:2a:86:
1f:86:44:92:e5:4b:bd:1c:de:b5:e8:00:5d:a0:fd:
f1:81:c7:2b:af:0a:05:1c:e9:e5:cd:83:4f:bb:53:
f7:49:2d:98:0f:d7:3c:93:f0:59:c7:bb:ef:f7:87:
da:eb:46:ee:81:7a:8c:18:c2:62:e4:16:95:64:ae:
c1:1c:4e:84:37:ca:63:a1:e8:ef:6d:a9:d2:65:0e:
92:93:b5:93:8a:5e:d0:ff:15:94:11:88:c3:c2:a3:
a8:bf:53:1b:c6:3e:01:af:c7:8c:30:aa:d4:9a:7c:
3e:0c:2b:cc:d0:da:4f:1a:6f:41:e1:f8:f5:6d:9a:
51:8d:77:25:44:0c:17:8c:c8:d1:16:11:6c:b9:0a:
3c:bc:c1:c2:ff:9e:31:a7:4f:ec:b5:f2:80:79:f1:
ce:7d:97:d8:32:9c:c5:23:ad:6c:0a:51:07:1f:40:
97:0a:c6:db:07:88:5c:d1:05:0c:e5:50:02:d6:43:
8c:68:5e:2a:ba:f8:cd:6f:12:44:61:6b:0b:e6:34:
17:c5:3b:ba:27:b8:06:10:5c:9b:0c:73:e5:1e:6b:
6d:cd:54:6a:76:d4:ba:ab:ac:4a:03:d1:bd:50:e0:
24:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C4:25:38:B9:B6:E7:49:8A:1D:D8:36:38:2F:40:C8:6B:06:2B:E2
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/vMQlOLm250mKHdg2OC9AyGsGK-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.239.128.0/18
85.172.112.0/20
85.172.168.0/22
85.173.64.0/19
85.173.192.0/19
85.174.0.0/17
94.233.0.0/17
178.34.64.0/22
178.35.128.0/18
Signature Algorithm: sha256WithRSAEncryption
25:78:09:86:9e:39:dd:a7:43:b3:0e:e5:e7:47:c3:65:ba:af:
6b:9b:d9:52:d7:fe:9d:b5:97:82:01:f8:90:a7:c8:5b:11:1b:
ca:5a:a7:ee:83:fd:d4:d2:4d:2e:fc:6c:0a:7a:c5:6b:95:8d:
2c:6d:b6:6d:6b:93:f7:0e:42:0e:b3:72:01:25:c9:81:49:7c:
db:c1:58:22:1f:4a:d1:c9:ba:37:e0:57:08:28:37:62:67:fd:
d4:e1:89:63:47:d3:62:7a:89:ba:85:9c:70:27:ab:57:71:ee:
84:06:cc:23:4b:a1:c0:15:35:bf:91:ff:3a:0f:7b:71:f6:4d:
a4:a7:db:f3:c5:ab:2a:29:d3:7b:70:2e:13:4b:0c:0b:0d:b4:
56:b4:a1:50:b7:d1:9f:ed:0c:7b:2a:92:ff:62:56:7e:46:e7:
b8:75:71:0e:a1:12:62:4e:b0:23:f5:53:e0:31:d5:50:d9:71:
17:5b:a7:7c:a8:c1:c9:39:90:4d:e0:4a:f1:7e:c4:02:27:6b:
20:3c:d5:c2:b3:3d:71:d8:3b:73:fc:9a:b0:dd:d4:16:e0:3b:
a7:1c:9a:52:94:1f:b3:6c:36:ee:40:97:e1:6d:49:e6:33:06:
03:65:61:4d:94:ab:0e:97:72:40:19:08:e0:b0:51:88:ca:21:
d0:68:70:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:07 2025 by rpki-client on console.sobornost.net