Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/DwaqxzmRSIx0-STl7nKTGpQzuOY.roa
File: DwaqxzmRSIx0-STl7nKTGpQzuOY.roa (raw, json)
Hash identifier: MZmP0bhKRokke3K++mx2NwZxuOVWVJCAYgwxbhXA9iI=
Subject key identifier: 0F:06:AA:C7:39:91:48:8C:74:F9:24:E5:EE:72:93:1A:94:33:B8:E6
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 01960BADECB0451A1F29402B0BFF652B5F30
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/DwaqxzmRSIx0-STl7nKTGpQzuOY.roa
Signing time: Sun 06 Apr 2025 15:17:49 +0000
ROA not before: Sun 06 Apr 2025 15:17:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216271
IP address blocks: 77.95.172.0/24 maxlen: 24
185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:b3c0::/29 maxlen: 29
2a06:b440::/29 maxlen: 29
2a06:cac0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a0f:e000::/29 maxlen: 29
2a11:1140::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6b80::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0b:ad:ec:b0:45:1a:1f:29:40:2b:0b:ff:65:2b:5f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Apr 6 15:17:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f06aac73991488c74f924e5ee72931a9433b8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f3:2c:81:24:82:38:28:02:75:25:e7:a2:c6:
9d:0b:d1:23:a7:18:9c:25:d2:a6:ae:27:46:fc:28:
be:6e:88:e5:7d:ac:11:4b:51:15:e6:e9:1c:76:7f:
96:41:93:f4:1a:ab:85:8e:ef:c4:2a:e5:d9:05:5e:
26:c1:d0:66:53:01:21:ea:a8:82:dd:be:b5:f0:af:
90:79:ef:81:49:21:03:73:89:71:71:99:d8:90:17:
fa:e7:b5:03:2a:9e:d4:f3:f7:62:6c:8d:9a:45:89:
9d:02:a5:57:cf:67:fc:8f:a0:08:0e:d1:f1:88:3b:
ee:dc:4e:2b:1e:fa:44:37:3a:ec:0e:8e:6b:0e:00:
16:76:b8:1e:bd:75:8c:26:2c:f1:95:0e:58:71:99:
da:13:92:36:3b:86:b7:5b:ce:f6:16:3b:dd:98:42:
1c:87:b6:21:6b:c0:ae:ef:20:47:25:75:47:3a:19:
a8:ee:77:3f:82:9b:c6:67:43:b3:c2:2d:d9:24:6e:
62:e1:cd:c9:b6:c3:e9:d2:1f:ca:e1:2a:e2:98:46:
3e:20:bc:9e:56:35:6d:76:04:5e:e4:73:b2:13:48:
7f:5b:10:a8:af:81:6b:bb:bd:5b:de:6e:9e:22:3b:
8f:5a:22:da:4b:f1:0a:12:69:b5:c8:c6:ce:1f:21:
3c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:06:AA:C7:39:91:48:8C:74:F9:24:E5:EE:72:93:1A:94:33:B8:E6
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/DwaqxzmRSIx0-STl7nKTGpQzuOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.172.0/24
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:b3c0::/29
2a06:b440::/29
2a06:cac0::/29
2a0e:7780::/29
2a0f:d480::/29
2a0f:e000::/29
2a11:1140::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a11:f140::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6b80::/29
2a12:6f40::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
8b:14:23:80:e7:be:a3:05:ad:16:92:58:56:3f:43:3c:14:f5:
44:af:db:37:87:54:da:f0:e7:d0:97:06:17:be:5d:dd:93:03:
e3:eb:bb:26:51:01:a4:c0:01:03:7d:b6:7f:0f:65:9d:e9:72:
38:85:dd:9d:1a:45:fc:50:13:31:b4:fd:c4:db:f3:a1:e0:f0:
65:63:c7:40:ae:23:6e:d8:10:85:50:11:5b:37:a1:d4:e4:aa:
2d:21:6f:5c:f1:00:41:17:4f:a4:95:e4:28:d8:67:75:79:1a:
e9:18:cd:07:ec:8b:90:13:f2:79:8a:17:d5:21:92:29:58:5f:
ac:a3:c5:73:82:d8:54:0a:f6:8d:15:b5:ca:bb:a4:18:0c:bd:
b4:df:f6:dc:a2:7b:d9:5d:a2:a3:04:ee:2d:38:a7:d7:38:3f:
79:c0:1f:8f:b7:59:b1:a2:a4:2d:12:ca:3c:5c:6d:7b:a9:e7:
1d:c4:74:3a:34:4a:e8:d7:2d:2f:58:2e:8e:b2:28:5a:fb:6d:
31:23:fd:39:6a:cc:a4:df:a2:6f:aa:cc:75:e8:a8:6e:e4:92:
3d:90:71:e8:e7:e0:5d:ed:e9:c8:f6:6d:d4:d3:33:58:71:a9:
9c:87:d1:bf:26:a7:0a:f9:03:76:0d:b1:c0:b9:a3:00:d7:70:
89:ad:6a:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:01 2025 by rpki-client on console.sobornost.net