Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/KwzEIp75onUC_lpKml-NOoNKJjY.roa
File: KwzEIp75onUC_lpKml-NOoNKJjY.roa (raw, json)
Hash identifier: GQCN6crgegQmnKF7ZO3NXUg43Rz3kWRc/3PmchskVr8=
Subject key identifier: 2B:0C:C4:22:9E:F9:A2:75:02:FE:5A:4A:9A:5F:8D:3A:83:4A:26:36
Certificate issuer: /CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Certificate serial: 0196244D7B4F11FC9D4C55A6403944592295
Authority key identifier: A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/KwzEIp75onUC_lpKml-NOoNKJjY.roa
Signing time: Fri 11 Apr 2025 10:02:59 +0000
ROA not before: Fri 11 Apr 2025 10:02:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200107
IP address blocks: 77.74.176.0/23 maxlen: 24
77.74.176.0/24 maxlen: 24
77.74.177.0/24 maxlen: 24
77.74.178.0/23 maxlen: 24
77.74.178.0/24 maxlen: 24
77.74.180.0/24 maxlen: 24
77.74.181.0/24 maxlen: 24
77.74.182.0/24 maxlen: 24
77.74.183.0/24 maxlen: 24
79.133.168.0/22 maxlen: 24
82.202.184.0/23 maxlen: 23
82.202.184.0/24 maxlen: 24
82.202.185.0/24 maxlen: 24
93.159.226.0/24 maxlen: 24
93.159.227.0/24 maxlen: 24
93.159.228.0/23 maxlen: 24
93.159.228.0/24 maxlen: 24
93.159.230.0/23 maxlen: 23
185.54.220.0/24 maxlen: 24
185.54.221.0/24 maxlen: 24
185.54.222.0/24 maxlen: 24
185.54.223.0/24 maxlen: 24
185.85.12.0/24 maxlen: 24
185.85.14.0/24 maxlen: 24
185.85.15.0/24 maxlen: 24
195.128.246.0/23 maxlen: 24
195.128.246.0/24 maxlen: 24
195.128.247.0/24 maxlen: 24
2a03:2480:68::/48 maxlen: 48
2a03:2480:69::/48 maxlen: 48
2a03:2480:70::/48 maxlen: 48
2a03:2480:80::/48 maxlen: 48
2a03:2480:8000::/48 maxlen: 48
2a03:2480:8010::/48 maxlen: 48
2a03:2480:8020::/48 maxlen: 48
2a03:2480:8021::/48 maxlen: 48
2a03:2480:8022::/48 maxlen: 48
2a03:2480:8023::/48 maxlen: 48
2a03:2480:8025::/48 maxlen: 48
2a03:2480:8026::/48 maxlen: 48
2a03:2480:8027::/48 maxlen: 48
2a03:2480:8028::/48 maxlen: 48
2a03:2480:8029::/48 maxlen: 48
2a03:2480:802a::/48 maxlen: 48
2a03:2480:802b::/48 maxlen: 48
2a03:2480:802d::/48 maxlen: 48
2a03:2480:802e::/48 maxlen: 48
2a03:2480:802f::/48 maxlen: 48
2a03:2480:8030::/48 maxlen: 48
2a03:2480:8031::/48 maxlen: 48
2a03:2480:8032::/48 maxlen: 48
2a03:2480:8033::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:4d:7b:4f:11:fc:9d:4c:55:a6:40:39:44:59:22:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Validity
Not Before: Apr 11 10:02:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2b0cc4229ef9a27502fe5a4a9a5f8d3a834a2636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:dd:7b:db:4a:0a:d6:97:e5:0d:22:4f:51:d2:
13:a0:1c:7e:c9:cc:ae:0a:50:06:2f:85:4a:5f:82:
27:89:84:0c:5b:6d:7b:1f:a9:3d:fe:22:4c:00:59:
97:1f:9d:f3:8c:5f:c6:c0:b4:53:cf:5f:c2:41:bc:
4f:17:f3:8a:54:c9:dc:4e:05:d4:3d:37:71:ea:9b:
92:cd:6b:35:44:88:60:83:80:9f:4c:c7:4d:3f:7b:
15:c7:ee:50:f7:78:a8:d2:ae:95:74:bb:b4:ab:bb:
9b:9d:e7:ad:22:4a:75:f0:f8:fa:b4:4d:1f:7b:1d:
33:fb:d0:83:14:73:05:03:88:38:a1:e2:1b:ec:dd:
11:fc:04:c2:3a:21:14:98:5a:21:5f:00:c9:c4:2d:
e3:27:50:27:17:65:b2:63:5b:1b:90:10:58:70:72:
13:83:1a:94:39:c3:81:a5:3a:c4:cd:8a:1e:19:ca:
83:5e:5f:76:f6:5a:f6:26:1c:f3:ca:c2:81:3a:c4:
f8:c2:6b:bf:0a:fc:8f:29:3d:b0:69:cd:fb:43:3a:
4a:38:6e:9b:a9:b7:07:5c:f4:70:0e:85:e1:48:40:
27:88:c0:3a:fd:28:b4:f2:8d:c9:13:f9:39:ba:8f:
d1:8a:66:bd:09:84:c8:ab:2d:3d:a8:65:6f:66:fa:
bc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:0C:C4:22:9E:F9:A2:75:02:FE:5A:4A:9A:5F:8D:3A:83:4A:26:36
X509v3 Authority Key Identifier:
keyid:A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/KwzEIp75onUC_lpKml-NOoNKJjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/p9ha3isNTsHKCSqOJwPBkgDHLzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.176.0/21
79.133.168.0/22
82.202.184.0/23
93.159.226.0-93.159.231.255
185.54.220.0/22
185.85.12.0/24
185.85.14.0/23
195.128.246.0/23
IPv6:
2a03:2480:68::/47
2a03:2480:70::/48
2a03:2480:80::/48
2a03:2480:8000::/48
2a03:2480:8010::/48
2a03:2480:8020::/46
2a03:2480:8025::-2a03:2480:802b:ffff:ffff:ffff:ffff:ffff
2a03:2480:802d::-2a03:2480:8033:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
06:0c:d8:9f:b5:be:f2:9c:e4:01:38:fd:48:97:51:ce:b7:0a:
e1:95:7b:bf:9b:71:96:cb:8c:3e:f9:f8:01:1e:81:3d:67:b5:
4e:ae:08:25:97:26:55:a8:24:02:50:0f:90:bf:b8:be:3c:cc:
b5:11:7f:29:73:2a:dc:ac:7d:33:78:ca:c7:e9:72:e5:d9:1b:
f0:12:49:2a:c0:57:0b:31:17:fc:d7:40:b7:c6:cc:f9:46:d0:
1b:12:b1:24:65:32:b7:2a:e7:60:55:1d:51:9f:34:46:07:23:
2e:59:f2:1a:6e:ff:61:ac:12:7e:f3:00:b2:7b:e3:8b:e7:84:
32:8c:8a:ee:55:6a:1e:ee:2d:7b:75:da:5c:5a:37:d1:7d:e4:
38:73:ac:da:7f:73:c4:d4:62:48:9e:26:a6:77:7a:be:53:fa:
00:ca:3d:fa:16:ba:82:bd:e3:4c:94:f4:3a:47:f9:40:76:b0:
0d:b2:b1:b8:5d:12:e0:98:c1:83:4e:3a:2b:8c:c6:6b:41:ff:
21:e0:f7:a5:fd:87:f9:59:2d:42:1f:83:ce:8d:f7:2b:f7:96:
cb:95:05:de:f0:3f:39:64:40:f7:1a:9b:3a:8c:17:43:c9:f2:
20:c3:3e:cc:cd:52:22:31:dd:9f:ed:17:9d:79:26:9e:7d:13:
1f:eb:e8:2a
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgISAZYkTXtPEfydTFWmQDlEWSKVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3ZDg1YWRlMmIwZDRlYzFjYTA5MmE4ZTI3MDNjMTkyMDBj
NzJmMzIwHhcNMjUwNDExMTAwMjU5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjBjYzQyMjllZjlhMjc1MDJmZTVhNGE5YTVmOGQzYTgzNGEyNjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3d1720oK1pflDSJPUdIToBx+ycyu
ClAGL4VKX4IniYQMW217H6k9/iJMAFmXH53zjF/GwLRTz1/CQbxPF/OKVMncTgXU
PTdx6puSzWs1RIhgg4CfTMdNP3sVx+5Q93io0q6VdLu0q7ubneetIkp18Pj6tE0f
ex0z+9CDFHMFA4g4oeIb7N0R/ATCOiEUmFohXwDJxC3jJ1AnF2WyY1sbkBBYcHIT
gxqUOcOBpTrEzYoeGcqDXl929lr2JhzzysKBOsT4wmu/CvyPKT2wac37QzpKOG6b
qbcHXPRwDoXhSEAniMA6/Si08o3JE/k5uo/Rima9CYTIqy09qGVvZvq8ywIDAQAB
o4ICpDCCAqAwHQYDVR0OBBYEFCsMxCKe+aJ1Av5aSppfjTqDSiY2MB8GA1UdIwQY
MBaAFKfYWt4rDU7BygkqjicDwZIAxy8yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDloYTNpc05Uc0hLQ1NxT0p3UEJrZ0RITHpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS80MDMxNDItZGNmYy00ZmI1LWFlMWYt
MDRiMGJmNjBiOWI3LzEvS3d6RUlwNzVvblVDX2xwS21sLU5Pb05LSmpZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS80MDMxNDItZGNmYy00ZmI1LWFlMWYtMDRiMGJmNjBiOWI3
LzEvcDloYTNpc05Uc0hLQ1NxT0p3UEJrZ0RITHpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG5BggrBgEFBQcBBwEB/wSBqTCBpjA+BAIAATA4AwQDTUqw
AwQCT4WoAwQBUsq4MAwDBAFdn+IDBANdn+ADBAK5NtwDBAC5VQwDBAG5VQ4DBAHD
gPYwZAQCAAIwXgMHASoDJIAAaAMHACoDJIAAcAMHACoDJIAAgAMHACoDJICAAAMH
ACoDJICAEAMHAioDJICAIDASAwcAKgMkgIAlAwcCKgMkgIAoMBIDBwAqAySAgC0D
BwIqAySAgDAwDQYJKoZIhvcNAQELBQADggEBAAYM2J+1vvKc5AE4/UiXUc63CuGV
e7+bcZbLjD75+AEegT1ntU6uCCWXJlWoJAJQD5C/uL48zLURfylzKtysfTN4ysfp
cuXZG/ASSSrAVwsxF/zXQLfGzPlG0BsSsSRlMrcq52BVHVGfNEYHIy5Z8hpu/2Gs
En7zALJ744vnhDKMiu5Vah7uLXt12lxaN9F95DhzrNp/c8TUYkieJqZ3er5T+gDK
PfoWuoK940yU9DpH+UB2sA2ysbhdEuCYwYNOOiuMxmtB/yHg96X9h/lZLUIfg86N
9yv3lsuVBd7wPzlkQPcamzqMF0PJ8iDDPszNUiIx3Z/tF515Jp59Ex/r6Co=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:36 2025 by rpki-client on console.sobornost.net