Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/flhTHfPvvTGqooTa4Z59otY99IU.roa
File: flhTHfPvvTGqooTa4Z59otY99IU.roa (raw, json)
Hash identifier: mXXAR9laxwfSbhNjVC4Wc6QELpS1QAu6Ph0hpj/VUFE=
Subject key identifier: 7E:58:53:1D:F3:EF:BD:31:AA:A2:84:DA:E1:9E:7D:A2:D6:3D:F4:85
Certificate issuer: /CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Certificate serial: 0193BF4D1EA4AC752E95440DFBB65195182C
Authority key identifier: A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/flhTHfPvvTGqooTa4Z59otY99IU.roa
Signing time: Fri 13 Dec 2024 09:15:22 +0000
ROA not before: Fri 13 Dec 2024 09:15:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200107
IP address blocks: 77.74.176.0/23 maxlen: 24
77.74.176.0/24 maxlen: 24
77.74.178.0/23 maxlen: 24
77.74.180.0/24 maxlen: 24
77.74.181.0/24 maxlen: 24
77.74.182.0/24 maxlen: 24
77.74.183.0/24 maxlen: 24
82.202.184.0/23 maxlen: 23
82.202.184.0/24 maxlen: 24
82.202.185.0/24 maxlen: 24
93.159.226.0/24 maxlen: 24
93.159.227.0/24 maxlen: 24
93.159.228.0/23 maxlen: 24
93.159.230.0/23 maxlen: 23
185.54.220.0/24 maxlen: 24
185.54.221.0/24 maxlen: 24
185.54.222.0/24 maxlen: 24
185.54.223.0/24 maxlen: 24
185.85.12.0/24 maxlen: 24
185.85.14.0/24 maxlen: 24
185.85.15.0/24 maxlen: 24
195.128.246.0/23 maxlen: 24
2a03:2480:68::/48 maxlen: 48
2a03:2480:69::/48 maxlen: 48
2a03:2480:70::/48 maxlen: 48
2a03:2480:80::/48 maxlen: 48
2a03:2480:8000::/48 maxlen: 48
2a03:2480:8010::/48 maxlen: 48
2a03:2480:8020::/48 maxlen: 48
2a03:2480:8021::/48 maxlen: 48
2a03:2480:8022::/48 maxlen: 48
2a03:2480:8023::/48 maxlen: 48
2a03:2480:8025::/48 maxlen: 48
2a03:2480:8026::/48 maxlen: 48
2a03:2480:8027::/48 maxlen: 48
2a03:2480:8028::/48 maxlen: 48
2a03:2480:8029::/48 maxlen: 48
2a03:2480:802a::/48 maxlen: 48
2a03:2480:802b::/48 maxlen: 48
2a03:2480:802d::/48 maxlen: 48
2a03:2480:802e::/48 maxlen: 48
2a03:2480:802f::/48 maxlen: 48
2a03:2480:8030::/48 maxlen: 48
2a03:2480:8031::/48 maxlen: 48
2a03:2480:8032::/48 maxlen: 48
2a03:2480:8033::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bf:4d:1e:a4:ac:75:2e:95:44:0d:fb:b6:51:95:18:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Validity
Not Before: Dec 13 09:15:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e58531df3efbd31aaa284dae19e7da2d63df485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:df:5c:f5:b1:2a:be:29:bc:0d:d3:c5:8c:5f:
71:7f:20:92:c9:eb:b0:0d:01:6a:d8:5f:b6:1a:4e:
40:2f:9a:f0:18:5b:c3:5a:6f:81:5b:d1:59:ff:af:
fb:21:5e:e8:15:00:18:96:7f:c3:5a:c4:ec:7c:ef:
2e:35:e9:1e:5d:f0:f9:96:b4:2c:60:dd:2f:15:4e:
b3:fe:49:d6:f9:66:65:07:86:ed:e8:de:11:15:03:
6d:0d:49:6f:24:b9:36:9d:7c:6f:84:c3:c7:68:be:
d7:5d:15:83:72:d1:d6:d8:0e:6e:f1:5c:6a:c6:98:
b3:87:62:03:63:0d:dd:ea:e8:d1:50:f6:d5:d3:2c:
5c:4e:95:ce:6d:54:f2:6c:fe:47:7b:75:56:73:45:
45:36:85:4e:9e:2f:cc:a9:8a:f5:1c:a0:12:6c:a4:
31:87:ff:fe:55:42:7b:41:bd:9e:5d:f1:3a:8d:dd:
4b:d3:6e:4b:bc:f5:09:0a:7d:2b:ca:67:14:07:64:
1b:21:1a:2b:0d:87:d0:18:dd:71:d3:5a:72:d8:78:
4c:af:3b:46:8d:8c:cc:7b:ae:1e:9c:38:3e:af:21:
31:32:82:c6:cb:8f:7a:57:2d:10:86:17:02:6d:77:
d1:6f:1a:c6:ff:71:96:d9:b5:5a:f0:b1:97:bf:b1:
d5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:58:53:1D:F3:EF:BD:31:AA:A2:84:DA:E1:9E:7D:A2:D6:3D:F4:85
X509v3 Authority Key Identifier:
keyid:A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/flhTHfPvvTGqooTa4Z59otY99IU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/p9ha3isNTsHKCSqOJwPBkgDHLzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.176.0/21
82.202.184.0/23
93.159.226.0-93.159.231.255
185.54.220.0/22
185.85.12.0/24
185.85.14.0/23
195.128.246.0/23
IPv6:
2a03:2480:68::/47
2a03:2480:70::/48
2a03:2480:80::/48
2a03:2480:8000::/48
2a03:2480:8010::/48
2a03:2480:8020::/46
2a03:2480:8025::-2a03:2480:802b:ffff:ffff:ffff:ffff:ffff
2a03:2480:802d::-2a03:2480:8033:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2a:f1:56:0f:bf:00:d0:c1:73:d0:2b:1b:8a:33:f2:84:a2:67:
ec:da:31:0e:47:9f:90:7c:7f:37:33:15:ab:e5:bd:d8:97:92:
99:10:ef:04:54:e3:79:03:53:35:e6:63:ba:92:09:31:89:2d:
ed:ec:5f:7a:1c:47:d5:b2:01:8c:5d:92:0a:85:3f:7a:3b:38:
48:5b:53:9d:42:36:06:e7:6d:d6:b1:dd:29:06:0a:b0:e6:36:
24:fa:fd:77:2e:f6:da:76:7e:70:8e:97:6c:a5:d6:b1:a6:02:
f4:17:83:0d:27:6d:bf:79:3e:a6:03:71:91:90:17:06:4a:5e:
e9:5d:02:ab:39:b9:5d:f8:52:a9:3d:81:19:d1:2f:76:58:7f:
bd:47:0c:91:54:cd:c6:95:4a:8a:27:48:80:94:15:8c:b8:46:
d9:41:80:a9:77:3c:14:a3:b2:14:e3:be:4d:18:7d:d0:54:7f:
1e:61:bb:ef:f4:60:85:14:2e:14:0a:53:71:c6:fa:27:03:0f:
26:09:07:7f:e9:43:b7:cd:46:e5:e6:02:d7:05:9f:b9:66:3d:
67:39:29:0a:a2:7a:78:94:d1:76:81:0e:f3:10:8e:8c:96:e5:
90:4e:03:62:41:ea:bc:c0:54:a9:38:30:d4:da:ea:dc:b3:68:
f3:7b:f5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:10 2024 by rpki-client on console.sobornost.net