Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/TGx9vxKfwHr9K5DQ6A1G6_qzUp4.roa
File: TGx9vxKfwHr9K5DQ6A1G6_qzUp4.roa (raw, json)
Hash identifier: L34M5HavB2MMpGVEDJ8A5CN9RbIAGVYEVx8UcCiQw5g=
Subject key identifier: 4C:6C:7D:BF:12:9F:C0:7A:FD:2B:90:D0:E8:0D:46:EB:FA:B3:52:9E
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0195EB715CFDBE3E6FFD21C3C2FCA4E98954
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/TGx9vxKfwHr9K5DQ6A1G6_qzUp4.roa
Signing time: Mon 31 Mar 2025 09:03:49 +0000
ROA not before: Mon 31 Mar 2025 09:03:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9009
IP address blocks: 80.96.44.0/23 maxlen: 24
80.96.54.0/23 maxlen: 24
80.96.102.0/23 maxlen: 24
80.96.156.0/22 maxlen: 24
80.96.236.0/23 maxlen: 23
80.97.40.0/21 maxlen: 24
80.97.96.0/23 maxlen: 24
81.180.94.0/23 maxlen: 23
81.180.98.0/23 maxlen: 24
81.180.174.0/23 maxlen: 24
81.180.228.0/23 maxlen: 24
81.180.254.0/23 maxlen: 24
81.181.14.0/23 maxlen: 24
81.181.26.0/23 maxlen: 24
81.181.68.0/23 maxlen: 24
81.181.72.0/23 maxlen: 24
81.181.104.0/21 maxlen: 24
85.120.84.0/23 maxlen: 24
85.121.18.0/23 maxlen: 23
85.121.36.0/23 maxlen: 23
85.121.168.0/22 maxlen: 24
85.121.232.0/21 maxlen: 24
85.122.124.0/22 maxlen: 24
85.122.231.0/24 maxlen: 24
193.226.76.0/22 maxlen: 24
194.102.36.0/22 maxlen: 24
194.102.148.0/23 maxlen: 24
194.102.160.0/23 maxlen: 24
194.102.174.0/23 maxlen: 24
194.102.180.0/22 maxlen: 24
194.102.224.0/22 maxlen: 24
194.105.12.0/22 maxlen: 24
194.153.225.0/24 maxlen: 24
194.153.230.0/23 maxlen: 24
194.153.244.0/23 maxlen: 24
217.156.16.0/23 maxlen: 24
217.156.26.0/24 maxlen: 24
217.156.48.0/22 maxlen: 24
217.156.94.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:eb:71:5c:fd:be:3e:6f:fd:21:c3:c2:fc:a4:e9:89:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Mar 31 09:03:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c6c7dbf129fc07afd2b90d0e80d46ebfab3529e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ca:4a:0d:ba:01:c4:2c:e7:1b:9a:20:bb:fb:
c2:ee:50:f9:e6:0a:7d:10:d7:a8:e5:e6:4c:fb:b9:
d9:c4:12:2d:73:79:ef:e5:96:ed:07:c4:d7:71:fa:
1b:84:5b:e0:dc:25:8e:2f:5e:fb:f6:44:55:80:f0:
05:43:b0:6b:fb:d0:ae:45:aa:71:ed:68:fc:0b:e4:
b8:f1:e7:52:34:cd:f3:81:a1:39:f5:7c:be:d6:95:
2a:1b:bb:df:5f:b8:95:55:a8:d2:6a:87:88:4c:88:
f9:e3:7d:0b:9f:8f:69:36:c7:01:77:ca:5c:73:28:
2e:5c:7b:2d:4d:07:8e:93:c4:15:f6:0a:92:0f:9d:
9b:af:d4:ff:b2:20:91:60:b8:f7:93:e9:e3:39:b3:
36:3a:ec:c5:37:09:c4:75:c4:65:07:4d:d6:ca:ec:
ad:8e:18:ea:14:8b:bc:03:91:2a:19:36:53:7a:5a:
ce:9b:7a:38:b5:26:f5:ae:54:da:b5:23:48:e2:8b:
c2:46:9f:de:46:a0:68:76:4d:9a:83:96:1b:6e:b8:
3b:e5:c7:25:27:b3:27:c6:4d:fa:d9:8e:53:fc:ef:
92:55:fc:d9:8b:9f:85:be:00:69:7e:8a:a2:5b:9e:
77:8c:43:d5:83:cc:37:45:82:0a:c2:a3:6b:88:8a:
88:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:6C:7D:BF:12:9F:C0:7A:FD:2B:90:D0:E8:0D:46:EB:FA:B3:52:9E
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/TGx9vxKfwHr9K5DQ6A1G6_qzUp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.44.0/23
80.96.54.0/23
80.96.102.0/23
80.96.156.0/22
80.96.236.0/23
80.97.40.0/21
80.97.96.0/23
81.180.94.0/23
81.180.98.0/23
81.180.174.0/23
81.180.228.0/23
81.180.254.0/23
81.181.14.0/23
81.181.26.0/23
81.181.68.0/23
81.181.72.0/23
81.181.104.0/21
85.120.84.0/23
85.121.18.0/23
85.121.36.0/23
85.121.168.0/22
85.121.232.0/21
85.122.124.0/22
85.122.231.0/24
193.226.76.0/22
194.102.36.0/22
194.102.148.0/23
194.102.160.0/23
194.102.174.0/23
194.102.180.0/22
194.102.224.0/22
194.105.12.0/22
194.153.225.0/24
194.153.230.0/23
194.153.244.0/23
217.156.16.0/23
217.156.26.0/24
217.156.48.0/22
217.156.94.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:74:04:cb:61:de:6f:86:92:b0:f8:a0:32:42:44:24:15:f3:
d7:b6:8c:92:d9:2d:e0:01:26:12:0e:ea:3b:f4:31:0d:b0:a8:
5a:7a:eb:41:dc:de:32:59:19:59:95:1d:dc:d7:7e:fe:85:c1:
92:69:5c:f3:91:81:3e:2c:fd:4c:d8:94:c4:27:81:db:82:40:
d2:fe:55:f9:9d:75:4c:c5:6c:41:d4:e0:81:04:bb:95:62:bd:
0c:fe:ff:d5:a2:7b:b5:f7:67:0a:36:cf:bc:77:97:d5:28:52:
52:90:6c:74:fd:ee:0f:d4:d0:95:46:2b:43:4d:46:e4:2f:d6:
cf:87:80:bb:50:10:50:d9:e7:2e:12:1b:aa:b0:fb:36:d2:fc:
18:cb:f4:0f:01:11:e9:b5:b9:9d:16:a1:98:fd:ae:b5:fb:0c:
e8:16:a8:8a:ec:b4:28:30:5f:d0:8f:fd:cf:0a:a2:91:55:6b:
fd:43:a9:9c:f6:33:d8:b4:7f:bc:77:b9:fc:88:0b:16:cc:6f:
08:5d:94:29:a5:90:54:ac:c2:bd:f0:43:5b:69:4a:18:dc:8a:
31:b6:55:0e:29:c1:64:26:06:f0:24:be:e3:f1:8b:98:47:a5:
c1:f3:9f:49:b9:9b:f0:7d:36:31:6b:60:62:ed:30:30:ba:d8:
5b:94:67:c2
-----BEGIN CERTIFICATE-----
MIIF5zCCBM+gAwIBAgISAZXrcVz9vj5v/SHDwvyk6YlUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjUwMzMxMDkwMzQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzZjN2RiZjEyOWZjMDdhZmQyYjkwZDBlODBkNDZlYmZhYjM1MjllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApspKDboBxCznG5ogu/vC7lD55gp9
ENeo5eZM+7nZxBItc3nv5ZbtB8TXcfobhFvg3CWOL1779kRVgPAFQ7Br+9CuRapx
7Wj8C+S48edSNM3zgaE59Xy+1pUqG7vfX7iVVajSaoeITIj5430Ln49pNscBd8pc
cyguXHstTQeOk8QV9gqSD52br9T/siCRYLj3k+njObM2OuzFNwnEdcRlB03Wyuyt
jhjqFIu8A5EqGTZTelrOm3o4tSb1rlTatSNI4ovCRp/eRqBodk2ag5Ybbrg75ccl
J7Mnxk362Y5T/O+SVfzZi5+FvgBpfoqiW553jEPVg8w3RYIKwqNriIqIIQIDAQAB
o4IC8zCCAu8wHQYDVR0OBBYEFExsfb8Sn8B6/SuQ0OgNRuv6s1KeMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvVEd4OXZ4S2Z3SHI5SzVEUTZBMUc2X3F6VXA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBBwYIKwYBBQUHAQcBAf8EgfcwgfQwgfEEAgABMIHqAwQB
UGAsAwQBUGA2AwQBUGBmAwQCUGCcAwQBUGDsAwQDUGEoAwQBUGFgAwQBUbReAwQB
UbRiAwQBUbSuAwQBUbTkAwQBUbT+AwQBUbUOAwQBUbUaAwQBUbVEAwQBUbVIAwQD
UbVoAwQBVXhUAwQBVXkSAwQBVXkkAwQCVXmoAwQDVXnoAwQCVXp8AwQAVXrnAwQC
weJMAwQCwmYkAwQBwmaUAwQBwmagAwQBwmauAwQCwma0AwQCwmbgAwQCwmkMAwQA
wpnhAwQBwpnmAwQBwpn0AwQB2ZwQAwQA2ZwaAwQC2ZwwAwQB2ZxeMA0GCSqGSIb3
DQEBCwUAA4IBAQBOdATLYd5vhpKw+KAyQkQkFfPXtoyS2S3gASYSDuo79DENsKha
eutB3N4yWRlZlR3c137+hcGSaVzzkYE+LP1M2JTEJ4HbgkDS/lX5nXVMxWxB1OCB
BLuVYr0M/v/Vonu192cKNs+8d5fVKFJSkGx0/e4P1NCVRitDTUbkL9bPh4C7UBBQ
2ecuEhuqsPs20vwYy/QPARHptbmdFqGY/a61+wzoFqiK7LQoMF/Qj/3PCqKRVWv9
Q6mc9jPYtH+8d7n8iAsWzG8IXZQppZBUrMK98ENbaUoY3IoxtlUOKcFkJgbwJL7j
8YuYR6XB859JuZvwfTYxa2Bi7TAwuthblGfC
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:05 2025 by rpki-client on console.sobornost.net