Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/08IhW8sAWRWTt0wcXpPQ_EVwNMU.roa
File: 08IhW8sAWRWTt0wcXpPQ_EVwNMU.roa (raw, json)
Hash identifier: u077e6EtXlbdC/zAt1s5BwNodJ+Bn37w5xgFfuRXLIg=
Subject key identifier: D3:C2:21:5B:CB:00:59:15:93:B7:4C:1C:5E:93:D0:FC:45:70:34:C5
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 01961566F84B3962183E1481C60F2891951D
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/08IhW8sAWRWTt0wcXpPQ_EVwNMU.roa
Signing time: Tue 08 Apr 2025 12:36:31 +0000
ROA not before: Tue 08 Apr 2025 12:36:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9125
IP address blocks: 5.172.33.0/24 maxlen: 24
5.172.34.0/23 maxlen: 23
5.172.34.0/24 maxlen: 24
5.172.36.0/22 maxlen: 22
5.172.36.0/23 maxlen: 23
89.23.65.0/24 maxlen: 24
89.23.66.0/23 maxlen: 23
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.74.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
89.23.77.0/24 maxlen: 24
89.23.78.0/24 maxlen: 24
89.23.83.0/24 maxlen: 24
89.23.84.0/24 maxlen: 24
89.23.86.0/24 maxlen: 24
89.23.88.0/24 maxlen: 24
89.23.90.0/24 maxlen: 24
89.23.93.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.252.0/24 maxlen: 24
92.42.253.0/24 maxlen: 24
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
93.93.192.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.116.0/22 maxlen: 22
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.226.0/24 maxlen: 24
109.111.227.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.229.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.232.0/22 maxlen: 22
109.111.236.0/22 maxlen: 22
109.111.240.0/24 maxlen: 24
109.111.243.0/24 maxlen: 24
109.111.244.0/24 maxlen: 24
109.111.245.0/24 maxlen: 24
109.111.246.0/24 maxlen: 24
109.111.247.0/24 maxlen: 24
109.111.248.0/24 maxlen: 24
109.111.249.0/24 maxlen: 24
109.111.250.0/24 maxlen: 24
109.111.252.0/23 maxlen: 23
109.111.254.0/24 maxlen: 24
178.254.128.0/21 maxlen: 21
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.140.0/22 maxlen: 22
178.254.144.0/20 maxlen: 20
178.254.145.0/24 maxlen: 24
178.254.163.0/24 maxlen: 24
178.254.165.0/24 maxlen: 24
178.254.168.0/24 maxlen: 24
178.254.169.0/24 maxlen: 24
178.254.172.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.183.0/24 maxlen: 24
178.254.184.0/24 maxlen: 24
178.254.187.0/24 maxlen: 24
178.254.188.0/22 maxlen: 24
185.157.44.0/24 maxlen: 24
193.104.68.0/24 maxlen: 24
217.169.208.0/20 maxlen: 20
217.169.208.0/22 maxlen: 22
217.169.212.0/22 maxlen: 22
217.169.216.0/22 maxlen: 22
217.169.219.0/24 maxlen: 24
217.169.220.0/22 maxlen: 22
2a02:b58::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:15:66:f8:4b:39:62:18:3e:14:81:c6:0f:28:91:95:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Apr 8 12:36:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d3c2215bcb00591593b74c1c5e93d0fc457034c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3a:00:9a:63:a3:a6:ce:33:cd:c9:a4:0c:cd:
89:e3:f6:54:9f:b4:b4:a7:20:d7:11:e3:f7:66:59:
56:96:4d:a5:74:9c:f0:0d:5c:75:d4:5a:9b:ce:cb:
c6:92:f7:c8:42:a3:28:c1:4c:95:a6:15:16:82:62:
1e:e3:7a:3e:89:38:ac:11:eb:4c:68:6e:5d:c8:22:
a5:f3:cd:7d:aa:f6:ce:d1:48:0a:a9:5c:26:bf:09:
a9:f4:d9:71:99:09:be:d8:cb:2b:84:d6:92:3e:f4:
bd:bf:83:6c:76:27:ec:59:c7:c6:3f:d8:b2:6d:b4:
a4:b6:4e:d3:8a:47:f5:91:bb:9f:ba:e7:90:7c:9f:
95:85:c6:48:3f:8f:57:7c:7e:b0:2f:98:e9:c3:5a:
30:2e:18:59:97:56:99:01:fa:d5:af:50:f0:8c:f4:
0f:51:b5:9a:f0:04:ca:e2:b9:6c:fe:5e:0f:1e:17:
2d:ee:1a:6b:c3:af:37:3f:d3:f1:8a:bf:51:8a:96:
8d:e2:71:ed:23:a8:6c:e9:40:a4:d8:a4:0a:45:e9:
5c:14:34:ac:d3:9f:3a:aa:e6:44:66:7a:5c:6a:e9:
8a:8c:c2:e6:f9:1e:5a:04:f4:c7:e4:8c:4c:07:59:
9e:72:15:44:0c:bf:70:44:4e:2f:6c:d2:b9:6c:9e:
6a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C2:21:5B:CB:00:59:15:93:B7:4C:1C:5E:93:D0:FC:45:70:34:C5
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/08IhW8sAWRWTt0wcXpPQ_EVwNMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.33.0-5.172.39.255
89.23.65.0-89.23.70.255
89.23.74.0/23
89.23.77.0-89.23.78.255
89.23.83.0-89.23.84.255
89.23.86.0/24
89.23.88.0/24
89.23.90.0/24
89.23.93.0/24
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0-109.111.240.255
109.111.243.0-109.111.250.255
109.111.252.0-109.111.254.255
178.254.128.0/19
178.254.163.0/24
178.254.165.0/24
178.254.168.0/23
178.254.172.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0-178.254.184.255
178.254.187.0-178.254.191.255
185.157.44.0/24
193.104.68.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
7c:1f:2e:5f:5a:41:df:91:62:26:28:0f:ea:bc:ad:3f:4a:14:
dd:68:3d:0c:20:bd:a0:3d:c5:b0:5b:6e:09:1d:c2:8c:13:3d:
69:34:df:03:3b:87:1a:25:a0:aa:43:26:52:6a:aa:ed:a2:94:
f0:fe:9e:89:cc:8b:7f:ca:6a:64:6b:66:0c:b7:98:8c:61:53:
83:d8:a8:15:20:f2:d9:c1:be:99:54:d6:6d:be:3b:96:06:e3:
48:5d:4e:03:1b:1c:f2:75:53:4f:59:41:de:1c:a0:4f:87:1d:
e9:5f:cc:30:22:f1:76:13:75:03:dd:21:d4:c8:3c:0f:ea:2e:
0a:ee:9e:12:a2:88:8d:0b:8e:0d:d5:53:de:b9:ed:f5:ed:3a:
e4:5c:5c:8d:2a:86:56:85:57:90:81:8c:4e:c6:df:66:b8:e3:
27:49:10:a3:03:28:9f:c7:0c:fe:55:f4:28:97:dd:a6:83:70:
b0:06:e4:ed:ed:52:b3:90:9f:b9:3e:59:2f:0e:59:98:52:3a:
c9:79:7b:7b:7e:3a:18:8f:a4:d5:4e:d7:f3:b5:c2:73:89:ab:
aa:88:25:8d:a7:d1:c1:5c:68:d6:35:dd:1b:d0:58:de:53:6a:
2c:26:73:9e:24:f3:0b:0a:45:fc:5f:26:38:e0:14:0e:a7:c1:
cf:c2:1e:28
-----BEGIN CERTIFICATE-----
MIIGBjCCBO6gAwIBAgISAZYVZvhLOWIYPhSBxg8okZUdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5NzEzZWYyNTI3N2UxM2RkNzNmNDQxOTZmZGE1Y2VjMGZk
OWNlMTYwHhcNMjUwNDA4MTIzNjMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkM2MyMjE1YmNiMDA1OTE1OTNiNzRjMWM1ZTkzZDBmYzQ1NzAzNGM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjoAmmOjps4zzcmkDM2J4/ZUn7S0
pyDXEeP3ZllWlk2ldJzwDVx11FqbzsvGkvfIQqMowUyVphUWgmIe43o+iTisEetM
aG5dyCKl8819qvbO0UgKqVwmvwmp9NlxmQm+2MsrhNaSPvS9v4NsdifsWcfGP9iy
bbSktk7Tikf1kbufuueQfJ+VhcZIP49XfH6wL5jpw1owLhhZl1aZAfrVr1DwjPQP
UbWa8ATK4rls/l4PHhct7hprw683P9Pxir9RipaN4nHtI6hs6UCk2KQKRelcFDSs
0586quZEZnpcaumKjMLm+R5aBPTH5IxMB1mechVEDL9wRE4vbNK5bJ5q2QIDAQAB
o4IDEjCCAw4wHQYDVR0OBBYEFNPCIVvLAFkVk7dMHF6T0PxFcDTFMB8GA1UdIwQY
MBaAFOlxPvJSd+E91z9EGW/aXOwP2c4WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEt
MGY2NmMxODg3OTE2LzEvMDhJaFc4c0FXUldUdDB3Y1hwUFFfRVZ3Tk1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEtMGY2NmMxODg3OTE2
LzEvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBJgYIKwYBBQUHAQcBAf8EggEVMIIBETCB/wQCAAEwgfgw
DAMEAAWsIQMEAwWsIDAMAwQAWRdBAwQAWRdGAwQBWRdKMAwDBABZF00DBABZF04w
DAMEAFkXUwMEAFkXVAMEAFkXVgMEAFkXWAMEAFkXWgMEAFkXXQMEA1wq+AMEA11d
wDAMAwQEX4xwAwQBX4x4AwQCX4x8MAwDBAVtb+ADBABtb/AwDAMEAG1v8wMEAG1v
+jAMAwQCbW/8AwQAbW/+AwQFsv6AAwQAsv6jAwQAsv6lAwQBsv6oAwQAsv6sAwQA
sv6vAwQAsv6xMAwDBAGy/rYDBACy/rgwDAMEALL+uwMEBrL+gAMEALmdLAMEAMFo
RAMEBNmp0DANBAIAAjAHAwUAKgILWDANBgkqhkiG9w0BAQsFAAOCAQEAfB8uX1pB
35FiJigP6rytP0oU3Wg9DCC9oD3FsFtuCR3CjBM9aTTfAzuHGiWgqkMmUmqq7aKU
8P6eicyLf8pqZGtmDLeYjGFTg9ioFSDy2cG+mVTWbb47lgbjSF1OAxsc8nVTT1lB
3hygT4cd6V/MMCLxdhN1A90h1Mg8D+ouCu6eEqKIjQuODdVT3rnt9e065FxcjSqG
VoVXkIGMTsbfZrjjJ0kQowMon8cM/lX0KJfdpoNwsAbk7e1Ss5CfuT5ZLw5ZmFI6
yXl7e346GI+k1U7X87XCc4mrqogljafRwVxo1jXdG9BY3lNqLCZzniTzCwpF/F8m
OOAUDqfBz8IeKA==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:21 2025 by rpki-client on console.sobornost.net