Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/Es38KPIDUmFHZv-WGjcz5GfScSk.roa
File: Es38KPIDUmFHZv-WGjcz5GfScSk.roa (raw, json)
Hash identifier: wyQ0Ty5NpjWyBiKvK91t/oc599NcEO5NVvwtt9V8wkI=
Subject key identifier: 12:CD:FC:28:F2:03:52:61:47:66:FF:96:1A:37:33:E4:67:D2:71:29
Certificate issuer: /CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Certificate serial: 019395FE96BDE51FEBA9796AEC3FADEA1F63
Authority key identifier: 77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/Es38KPIDUmFHZv-WGjcz5GfScSk.roa
Signing time: Thu 05 Dec 2024 08:45:10 +0000
ROA not before: Thu 05 Dec 2024 08:45:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41750
IP address blocks: 77.235.0.0/19 maxlen: 19
77.235.0.0/20 maxlen: 20
77.235.4.0/24 maxlen: 24
77.235.5.0/24 maxlen: 24
77.235.6.0/24 maxlen: 24
77.235.7.0/24 maxlen: 24
77.235.16.0/20 maxlen: 20
77.235.22.0/24 maxlen: 24
92.245.96.0/19 maxlen: 19
92.245.96.0/20 maxlen: 20
92.245.112.0/20 maxlen: 20
109.201.160.0/19 maxlen: 19
158.181.0.0/19 maxlen: 19
158.181.0.0/20 maxlen: 20
158.181.16.0/20 maxlen: 20
158.181.128.0/17 maxlen: 17
158.181.128.0/20 maxlen: 20
158.181.144.0/20 maxlen: 20
158.181.160.0/20 maxlen: 20
158.181.176.0/20 maxlen: 20
158.181.192.0/20 maxlen: 20
158.181.208.0/20 maxlen: 20
158.181.224.0/20 maxlen: 20
158.181.240.0/20 maxlen: 20
176.123.224.0/19 maxlen: 19
185.138.100.0/22 maxlen: 22
2a04:5600::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:95:fe:96:bd:e5:1f:eb:a9:79:6a:ec:3f:ad:ea:1f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Validity
Not Before: Dec 5 08:45:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12cdfc28f20352614766ff961a3733e467d27129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8d:10:44:ea:0d:87:a4:a2:f0:aa:09:ec:d1:
f5:47:c4:bb:16:44:d2:ce:f8:2a:1d:1f:46:08:c6:
71:b3:2f:c4:e8:16:38:ec:6e:a6:ff:1d:ac:75:8c:
36:0c:37:81:44:bb:02:ed:66:92:e0:87:33:5f:8f:
57:8f:fc:1e:f9:78:e4:d3:79:24:62:9b:ff:82:62:
2f:c8:98:46:a2:ec:ea:5d:3c:45:aa:ff:49:11:2e:
f1:de:11:57:52:47:15:58:f1:88:3a:f6:b4:26:bf:
51:1f:83:05:c4:72:91:bd:91:83:34:c5:a4:e7:bb:
5a:e5:eb:22:ca:b6:0f:65:7c:d2:c5:99:45:14:3d:
95:a4:30:20:14:fe:75:2f:dd:24:f7:be:39:81:14:
b0:a9:63:3a:2c:c9:ed:72:12:75:36:f0:72:2e:3c:
9a:40:b7:39:45:e9:7b:92:af:e3:9c:88:35:d6:2e:
70:b9:5d:ba:f0:e0:04:aa:8b:bb:43:1c:cc:d7:df:
5c:1b:3e:2c:d5:7e:2b:c6:5f:f3:68:e9:2e:f0:e8:
20:07:5f:00:e6:72:ee:50:c3:fc:80:fa:22:02:74:
bf:51:9b:fd:ed:c0:13:f7:2b:4b:28:61:f7:dd:21:
58:09:93:1b:ee:c6:a4:dd:e7:92:12:b0:1d:a6:75:
9b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:CD:FC:28:F2:03:52:61:47:66:FF:96:1A:37:33:E4:67:D2:71:29
X509v3 Authority Key Identifier:
keyid:77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/Es38KPIDUmFHZv-WGjcz5GfScSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/d-PCkAtZl1QoPyfztOjX9sRRCXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.235.0.0/19
92.245.96.0/19
109.201.160.0/19
158.181.0.0/19
158.181.128.0/17
176.123.224.0/19
185.138.100.0/22
IPv6:
2a04:5600::/29
Signature Algorithm: sha256WithRSAEncryption
16:25:f4:45:95:2f:8b:62:d6:4f:ab:b2:fd:47:da:56:04:69:
28:0f:83:70:cf:32:4a:9a:0e:2e:0a:f6:7e:c9:3f:13:12:37:
0a:41:41:6a:59:ea:fc:b7:94:7d:69:31:9a:e5:d0:2f:02:45:
c5:78:8b:48:b3:ec:23:9d:aa:5f:0f:96:65:b0:84:1a:e3:5c:
e5:01:ce:ee:ee:53:ac:50:bf:74:e4:7b:ee:ea:5a:bb:0d:d0:
c0:6f:3c:8f:26:98:a5:11:59:13:3f:2d:b8:12:52:9f:fe:93:
4f:06:43:c2:f1:47:e1:80:c4:ec:ba:92:d3:53:cc:a2:de:b8:
80:80:77:8c:bc:d0:0d:cf:62:6e:a6:93:d1:8e:22:53:ed:66:
66:e5:88:ea:9e:03:fb:ef:f6:88:fd:cb:10:03:33:11:82:9e:
d5:99:fc:19:cb:f2:8d:97:1a:09:23:6f:46:b1:26:13:99:59:
71:2b:4c:2f:06:19:52:eb:1d:1f:35:8b:9d:f8:b0:63:b5:d0:
24:12:fc:5d:60:0a:a0:28:b4:f5:a9:ec:10:7e:fb:6d:dc:05:
d6:d1:93:27:a0:7c:d5:4f:08:fb:9d:30:4b:8f:86:7a:8b:b3:
7b:ce:ce:97:42:53:08:eb:25:22:ef:1b:0c:ac:30:4c:9e:08:
77:66:af:61
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgISAZOV/pa95R/rqXlq7D+t6h9jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZTNjMjkwMGI1OTk3NTQyODNmMjdmM2I0ZThkN2Y2YzQ1
MTA5NzIwHhcNMjQxMjA1MDg0NTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMmNkZmMyOGYyMDM1MjYxNDc2NmZmOTYxYTM3MzNlNDY3ZDI3MTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxo0QROoNh6Si8KoJ7NH1R8S7FkTS
zvgqHR9GCMZxsy/E6BY47G6m/x2sdYw2DDeBRLsC7WaS4IczX49Xj/we+Xjk03kk
Ypv/gmIvyJhGouzqXTxFqv9JES7x3hFXUkcVWPGIOva0Jr9RH4MFxHKRvZGDNMWk
57ta5esiyrYPZXzSxZlFFD2VpDAgFP51L90k9745gRSwqWM6LMntchJ1NvByLjya
QLc5Rel7kq/jnIg11i5wuV268OAEqou7QxzM199cGz4s1X4rxl/zaOku8OggB18A
5nLuUMP8gPoiAnS/UZv97cAT9ytLKGH33SFYCZMb7sak3eeSErAdpnWb6QIDAQAB
o4ICPDCCAjgwHQYDVR0OBBYEFBLN/CjyA1JhR2b/lho3M+Rn0nEpMB8GA1UdIwQY
MBaAFHfjwpALWZdUKD8n87To1/bEUQlyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZC1QQ2tBdFpsMVFvUHlmenRPalg5c1JSQ1hJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9lZjJiNDktMDM1Zi00MGE0LWFlNTEt
ZDNjNTVkNGZkYTlkLzEvRXMzOEtQSURVbUZIWnYtV0dqY3o1R2ZTY1NrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9lZjJiNDktMDM1Zi00MGE0LWFlNTEtZDNjNTVkNGZkYTlk
LzEvZC1QQ2tBdFpsMVFvUHlmenRPalg5c1JSQ1hJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQFTesAAwQF
XPVgAwQFbcmgAwQFnrUAAwQHnrWAAwQFsHvgAwQCuYpkMA0EAgACMAcDBQMqBFYA
MA0GCSqGSIb3DQEBCwUAA4IBAQAWJfRFlS+LYtZPq7L9R9pWBGkoD4NwzzJKmg4u
CvZ+yT8TEjcKQUFqWer8t5R9aTGa5dAvAkXFeItIs+wjnapfD5ZlsIQa41zlAc7u
7lOsUL905Hvu6lq7DdDAbzyPJpilEVkTPy24ElKf/pNPBkPC8UfhgMTsupLTU8yi
3riAgHeMvNANz2JuppPRjiJT7WZm5YjqngP77/aI/csQAzMRgp7VmfwZy/KNlxoJ
I29GsSYTmVlxK0wvBhlS6x0fNYud+LBjtdAkEvxdYAqgKLT1qewQfvtt3AXW0ZMn
oHzVTwj7nTBLj4Z6i7N7zs6XQlMI6yUi7xsMrDBMngh3Zq9h
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:41 2024 by rpki-client on console.sobornost.net