Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/hmDY1FymVXe286d5ZNgwBFIGxm4.roa
File: hmDY1FymVXe286d5ZNgwBFIGxm4.roa (raw, json)
Hash identifier: Zbu1bt5R8yR+6iSFlZwKImktTYOEWVgQQduF/IlpQPQ=
Subject key identifier: 86:60:D8:D4:5C:A6:55:77:B6:F3:A7:79:64:D8:30:04:52:06:C6:6E
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 0194B15C578B30E191DA9DEF170D0A62B2B3
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/hmDY1FymVXe286d5ZNgwBFIGxm4.roa
Signing time: Wed 29 Jan 2025 09:20:06 +0000
ROA not before: Wed 29 Jan 2025 09:20:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49367
IP address blocks: 31.193.188.0/24 maxlen: 24
37.156.174.0/24 maxlen: 24
45.83.56.0/22 maxlen: 22
45.86.144.0/22 maxlen: 22
77.81.103.0/24 maxlen: 24
85.204.255.0/24 maxlen: 24
86.107.110.0/24 maxlen: 24
89.34.236.0/23 maxlen: 23
89.34.239.0/24 maxlen: 24
89.39.201.0/24 maxlen: 24
89.39.254.0/24 maxlen: 24
89.40.142.0/23 maxlen: 23
89.40.227.0/24 maxlen: 24
89.42.134.0/24 maxlen: 24
89.43.34.0/24 maxlen: 24
89.43.35.0/24 maxlen: 24
89.43.52.0/24 maxlen: 24
91.212.52.0/24 maxlen: 24
91.229.186.0/24 maxlen: 24
92.114.86.0/24 maxlen: 24
92.114.87.0/24 maxlen: 24
93.113.144.0/21 maxlen: 21
93.113.144.0/22 maxlen: 22
93.113.144.0/24 maxlen: 24
93.113.145.0/24 maxlen: 24
93.113.146.0/24 maxlen: 24
93.113.147.0/24 maxlen: 24
93.113.148.0/22 maxlen: 22
93.113.148.0/24 maxlen: 24
93.113.149.0/24 maxlen: 24
93.113.150.0/24 maxlen: 24
93.113.151.0/24 maxlen: 24
94.176.212.0/24 maxlen: 24
94.177.21.0/24 maxlen: 24
94.177.48.0/23 maxlen: 23
94.177.98.0/24 maxlen: 24
94.177.99.0/24 maxlen: 24
185.184.240.0/22 maxlen: 22
185.184.240.0/24 maxlen: 24
185.184.241.0/24 maxlen: 24
185.184.242.0/24 maxlen: 24
185.184.243.0/24 maxlen: 24
185.198.244.0/24 maxlen: 24
185.198.245.0/24 maxlen: 24
185.198.246.0/24 maxlen: 24
185.198.247.0/24 maxlen: 24
188.208.16.0/23 maxlen: 23
188.208.16.0/24 maxlen: 24
188.208.17.0/24 maxlen: 24
188.211.248.0/24 maxlen: 24
188.215.6.0/23 maxlen: 23
188.215.6.0/24 maxlen: 24
188.215.7.0/24 maxlen: 24
188.215.94.0/24 maxlen: 24
188.240.228.0/23 maxlen: 23
188.240.228.0/24 maxlen: 24
188.240.229.0/24 maxlen: 24
193.239.140.0/23 maxlen: 23
217.198.177.0/24 maxlen: 24
2a04:68c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b1:5c:57:8b:30:e1:91:da:9d:ef:17:0d:0a:62:b2:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Jan 29 09:20:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8660d8d45ca65577b6f3a77964d830045206c66e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:76:1f:10:5b:2c:e9:e4:02:fa:15:82:1b:d6:
6c:48:da:c2:09:e9:09:28:2c:c4:5e:b8:8b:8c:fd:
e8:95:57:c5:e7:2d:01:f7:b4:c4:88:74:3c:d6:36:
c0:01:7c:b4:ef:15:89:18:7e:7f:2c:cf:a1:41:7e:
c5:4b:81:31:9e:5a:b4:aa:db:a1:d6:af:35:e2:82:
40:ef:bd:1b:2e:3d:6f:2b:b6:ed:6e:de:fd:2e:56:
2b:58:8c:68:cc:c5:82:d1:12:8a:d7:ea:fb:6f:67:
8e:4e:6b:78:d0:ee:4a:e8:21:da:35:90:22:36:76:
41:f1:9f:f5:1d:f7:3d:a7:8c:8f:62:ce:67:22:a9:
d5:3a:e0:ff:47:49:f0:6e:31:d7:6c:df:93:ac:31:
0b:e7:7a:7a:65:fd:85:e5:a1:17:c6:36:95:c2:e8:
c8:a2:6c:e5:04:22:f6:20:97:8d:da:cc:ec:b6:d3:
d6:43:6d:e3:6d:97:15:6f:c3:c7:d1:e4:24:43:0f:
59:83:61:54:61:65:cf:36:84:2f:2a:ee:a5:64:18:
66:e3:37:a3:55:5c:8b:4c:83:87:a4:c3:5e:e5:7a:
88:3e:5a:86:64:fb:bb:01:2e:ac:76:8b:c0:4d:ad:
0e:ac:c5:8a:3a:3c:f9:d0:58:85:f6:2a:af:17:87:
64:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:60:D8:D4:5C:A6:55:77:B6:F3:A7:79:64:D8:30:04:52:06:C6:6E
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/hmDY1FymVXe286d5ZNgwBFIGxm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.188.0/24
37.156.174.0/24
45.83.56.0/22
45.86.144.0/22
77.81.103.0/24
85.204.255.0/24
86.107.110.0/24
89.34.236.0/23
89.34.239.0/24
89.39.201.0/24
89.39.254.0/24
89.40.142.0/23
89.40.227.0/24
89.42.134.0/24
89.43.34.0/23
89.43.52.0/24
91.212.52.0/24
91.229.186.0/24
92.114.86.0/23
93.113.144.0/21
94.176.212.0/24
94.177.21.0/24
94.177.48.0/23
94.177.98.0/23
185.184.240.0/22
185.198.244.0/22
188.208.16.0/23
188.211.248.0/24
188.215.6.0/23
188.215.94.0/24
188.240.228.0/23
193.239.140.0/23
217.198.177.0/24
IPv6:
2a04:68c0::/32
Signature Algorithm: sha256WithRSAEncryption
b1:99:1c:91:32:8a:26:73:3a:97:c1:06:6c:a6:54:65:91:5d:
8c:a9:0b:e6:46:1e:1f:39:f6:26:95:fc:98:36:d6:b0:82:0d:
4a:07:f8:ed:28:a6:b4:f7:7b:fc:3f:27:2e:c7:d5:c4:47:89:
2b:91:a3:43:71:ad:34:27:2f:ca:d6:9f:c0:46:41:79:f6:c2:
7d:82:63:16:e7:7b:32:29:53:e8:ab:de:38:08:6b:77:3a:8d:
32:b4:be:4b:3a:91:31:84:27:65:25:63:7c:84:6e:2d:51:cc:
1c:6c:5f:31:aa:52:09:7a:28:b9:6a:cf:7a:80:10:3e:ed:42:
6c:18:1f:37:0b:b5:ea:73:ff:9c:c5:dd:dc:31:77:d2:43:bd:
bf:fa:0e:ee:f4:a1:69:03:f7:59:9a:53:92:91:7a:86:ff:e3:
19:21:e5:ab:81:d5:64:b0:46:e3:30:b9:66:00:85:4d:ce:18:
b7:fc:48:5e:57:d6:a7:05:c8:8f:e8:55:88:dd:5c:2f:3b:4c:
16:6b:a3:7e:16:6d:f0:c5:7c:fa:f8:42:f9:ad:89:93:c2:fa:
3f:1a:bb:27:a8:e5:32:ed:7d:2b:81:ec:11:7a:e5:7e:28:ea:
02:a8:43:88:b6:82:a6:f9:60:ce:43:e1:cf:00:42:06:07:2a:
6b:35:4c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 18:47:13 2025 by rpki-client on console.sobornost.net