Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/bgRWqR9lC_2NUDrw4u_d7zgZbmE.roa
File: bgRWqR9lC_2NUDrw4u_d7zgZbmE.roa (raw, json)
Hash identifier: j9KKDoC7vv7TI+v06kyieAVVNhzkhfcL+UirhWtuPio=
Subject key identifier: 6E:04:56:A9:1F:65:0B:FD:8D:50:3A:F0:E2:EF:DD:EF:38:19:6E:61
Certificate issuer: /CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Certificate serial: 019537B8577AF28947EDA7C8DBA6A69C571B
Authority key identifier: A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/bgRWqR9lC_2NUDrw4u_d7zgZbmE.roa
Signing time: Mon 24 Feb 2025 11:29:42 +0000
ROA not before: Mon 24 Feb 2025 11:29:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200107
IP address blocks: 77.74.176.0/23 maxlen: 24
77.74.176.0/24 maxlen: 24
77.74.177.0/24 maxlen: 24
77.74.178.0/23 maxlen: 24
77.74.178.0/24 maxlen: 24
77.74.180.0/24 maxlen: 24
77.74.181.0/24 maxlen: 24
77.74.182.0/24 maxlen: 24
77.74.183.0/24 maxlen: 24
82.202.184.0/23 maxlen: 23
82.202.184.0/24 maxlen: 24
82.202.185.0/24 maxlen: 24
93.159.226.0/24 maxlen: 24
93.159.227.0/24 maxlen: 24
93.159.228.0/23 maxlen: 24
93.159.228.0/24 maxlen: 24
93.159.230.0/23 maxlen: 23
185.54.220.0/24 maxlen: 24
185.54.221.0/24 maxlen: 24
185.54.222.0/24 maxlen: 24
185.54.223.0/24 maxlen: 24
185.85.12.0/24 maxlen: 24
185.85.14.0/24 maxlen: 24
185.85.15.0/24 maxlen: 24
195.128.246.0/23 maxlen: 24
195.128.246.0/24 maxlen: 24
195.128.247.0/24 maxlen: 24
2a03:2480:68::/48 maxlen: 48
2a03:2480:69::/48 maxlen: 48
2a03:2480:70::/48 maxlen: 48
2a03:2480:80::/48 maxlen: 48
2a03:2480:8000::/48 maxlen: 48
2a03:2480:8010::/48 maxlen: 48
2a03:2480:8020::/48 maxlen: 48
2a03:2480:8021::/48 maxlen: 48
2a03:2480:8022::/48 maxlen: 48
2a03:2480:8023::/48 maxlen: 48
2a03:2480:8025::/48 maxlen: 48
2a03:2480:8026::/48 maxlen: 48
2a03:2480:8027::/48 maxlen: 48
2a03:2480:8028::/48 maxlen: 48
2a03:2480:8029::/48 maxlen: 48
2a03:2480:802a::/48 maxlen: 48
2a03:2480:802b::/48 maxlen: 48
2a03:2480:802d::/48 maxlen: 48
2a03:2480:802e::/48 maxlen: 48
2a03:2480:802f::/48 maxlen: 48
2a03:2480:8030::/48 maxlen: 48
2a03:2480:8031::/48 maxlen: 48
2a03:2480:8032::/48 maxlen: 48
2a03:2480:8033::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:37:b8:57:7a:f2:89:47:ed:a7:c8:db:a6:a6:9c:57:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Validity
Not Before: Feb 24 11:29:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e0456a91f650bfd8d503af0e2efddef38196e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:57:65:4b:1b:c9:fb:c6:a1:3e:a7:c5:87:ed:
e1:0c:c7:02:44:56:82:1b:82:56:b6:4b:9c:f2:33:
72:19:7a:54:2d:9b:eb:f2:a6:bd:d3:4b:cc:67:98:
a8:e3:f7:d3:95:b6:dc:50:f7:5b:51:06:4c:0e:d9:
e6:46:ee:90:23:f7:f8:1f:32:17:ec:29:48:6e:bb:
c6:c5:02:0b:74:eb:f0:fd:a4:2d:25:45:8a:22:39:
91:26:ce:02:35:cf:19:05:de:bc:01:11:ec:4b:11:
d6:8d:2e:88:37:e7:39:5c:c3:e5:11:87:0c:31:82:
8f:b1:cc:31:bf:1d:8f:c1:c2:47:3f:01:83:00:0f:
67:c1:64:4a:fe:17:4e:2f:a4:eb:23:2d:31:b8:5c:
10:00:3f:84:a7:64:96:ef:01:8e:5f:f4:fa:a6:ea:
5b:26:a6:b6:54:4b:76:11:0b:39:fa:75:4c:00:f3:
8d:98:81:27:0f:49:5c:23:9c:ef:d1:b6:68:cd:d8:
6f:e0:74:f7:6a:8c:fc:99:b9:57:30:fb:c0:00:19:
ab:58:98:9b:b4:bf:bf:2a:40:0b:df:5c:26:d4:c6:
94:ef:cf:b4:7a:96:ee:53:dd:64:d6:59:83:89:72:
0f:05:98:66:61:d9:a7:eb:03:7d:3a:9b:bb:5a:07:
f8:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:04:56:A9:1F:65:0B:FD:8D:50:3A:F0:E2:EF:DD:EF:38:19:6E:61
X509v3 Authority Key Identifier:
keyid:A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/bgRWqR9lC_2NUDrw4u_d7zgZbmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/p9ha3isNTsHKCSqOJwPBkgDHLzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.176.0/21
82.202.184.0/23
93.159.226.0-93.159.231.255
185.54.220.0/22
185.85.12.0/24
185.85.14.0/23
195.128.246.0/23
IPv6:
2a03:2480:68::/47
2a03:2480:70::/48
2a03:2480:80::/48
2a03:2480:8000::/48
2a03:2480:8010::/48
2a03:2480:8020::/46
2a03:2480:8025::-2a03:2480:802b:ffff:ffff:ffff:ffff:ffff
2a03:2480:802d::-2a03:2480:8033:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1a:b9:ed:07:8f:8a:89:23:a1:a9:2d:76:6b:5d:19:77:ab:6f:
47:1a:22:d5:a7:8e:68:eb:b8:6d:a7:31:f6:8d:b7:c8:e8:9d:
a2:99:01:38:2d:b6:5c:4c:d6:40:c1:5b:f6:92:db:10:b5:ab:
2d:cc:0b:54:ce:08:ce:0d:02:c6:a6:48:e6:fe:c9:fd:14:41:
ff:45:ce:f0:a4:75:18:fc:5e:93:bc:5b:48:3f:5d:33:0a:92:
8a:ad:29:18:55:e1:3d:ea:60:78:11:57:cd:10:b6:38:19:ad:
f2:36:0c:70:31:b6:3b:5c:2e:9e:d4:85:58:ec:db:92:e2:d7:
49:36:83:bd:9f:ad:fb:39:a2:ac:56:a6:67:6c:d5:9f:5c:66:
b7:21:c8:b0:db:54:94:a8:25:71:a3:3b:7c:3f:bb:16:f9:6a:
c0:73:7b:a2:21:df:13:5d:21:97:5b:69:40:38:23:9c:60:b9:
ed:2f:cc:9d:65:c9:90:f2:f0:4b:e5:48:2d:70:d8:99:e6:e3:
45:a7:44:95:1a:58:36:da:9a:f9:d1:e9:df:f6:6d:4d:7f:22:
c9:bf:8e:a6:7a:9c:79:55:c2:01:f0:dd:dc:da:1f:bd:77:87:
3b:7c:58:02:57:8e:78:90:d4:02:01:3d:39:6c:35:c5:ca:a9:
30:e1:ea:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 23:50:10 2025 by rpki-client on console.sobornost.net