Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/Z4jvQpNliqhDur0DLqjSiIw-Y0A.roa
File: Z4jvQpNliqhDur0DLqjSiIw-Y0A.roa (raw, json)
Hash identifier: DfQMPGoZNssvuxBrhCXJLfOHeuzlWhIa//2s8bwFkhw=
Subject key identifier: 67:88:EF:42:93:65:8A:A8:43:BA:BD:03:2E:A8:D2:88:8C:3E:63:40
Certificate issuer: /CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e
Certificate serial: 01961029143F2229B7B8A88A9B16BDE417BD
Authority key identifier: 40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/Z4jvQpNliqhDur0DLqjSiIw-Y0A.roa
Signing time: Mon 07 Apr 2025 12:10:49 +0000
ROA not before: Mon 07 Apr 2025 12:10:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34358
IP address blocks: 37.251.128.0/19 maxlen: 19
37.251.160.0/20 maxlen: 20
37.251.248.0/21 maxlen: 24
37.251.254.0/24 maxlen: 24
37.251.255.0/24 maxlen: 24
77.81.164.0/23 maxlen: 23
86.105.192.0/24 maxlen: 24
89.32.44.0/22 maxlen: 22
89.32.44.0/24 maxlen: 24
89.35.173.0/24 maxlen: 24
89.36.128.0/23 maxlen: 23
89.36.128.0/24 maxlen: 24
89.36.129.0/24 maxlen: 24
89.36.130.0/24 maxlen: 24
89.36.132.0/23 maxlen: 24
89.36.134.0/24 maxlen: 24
89.36.135.0/24 maxlen: 24
89.38.248.0/24 maxlen: 24
89.38.249.0/24 maxlen: 24
89.38.250.0/23 maxlen: 23
89.38.252.0/22 maxlen: 22
89.42.11.0/24 maxlen: 24
89.45.192.0/21 maxlen: 21
89.45.192.0/23 maxlen: 23
91.208.142.0/24 maxlen: 24
93.119.227.0/24 maxlen: 24
94.24.29.0/24 maxlen: 24
94.24.48.0/21 maxlen: 21
94.24.72.0/22 maxlen: 22
94.24.76.0/23 maxlen: 23
94.24.78.0/24 maxlen: 24
109.95.8.0/21 maxlen: 21
128.0.46.0/23 maxlen: 23
185.171.184.0/24 maxlen: 24
185.171.185.0/24 maxlen: 24
185.171.187.0/24 maxlen: 24
188.214.142.0/24 maxlen: 24
188.215.48.0/21 maxlen: 21
193.239.130.0/23 maxlen: 23
193.242.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:29:14:3f:22:29:b7:b8:a8:8a:9b:16:bd:e4:17:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e
Validity
Not Before: Apr 7 12:10:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6788ef4293658aa843babd032ea8d2888c3e6340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7d:a2:16:05:9a:ae:11:1b:dc:79:ea:7b:ae:
77:01:d0:0c:fc:e0:a3:83:07:a0:d4:d7:55:24:a9:
88:2b:3f:60:4e:1d:fa:58:1e:dc:83:7f:9b:e1:f7:
5e:34:98:e4:a5:d4:6e:34:86:6c:59:7d:ea:45:e8:
c7:bf:94:f6:83:7d:6a:14:46:bc:55:ac:21:9f:0f:
09:9a:80:71:7e:d9:15:28:03:50:10:73:be:28:62:
fe:44:73:32:dc:69:fb:de:cb:37:48:67:ac:34:f2:
e3:62:f7:5b:25:53:46:97:9a:d6:a0:bd:5d:1e:f0:
48:86:9e:09:93:2c:79:3f:d7:20:ee:c7:14:84:84:
2a:61:0c:e1:8b:b8:d0:a9:3a:c9:73:3f:fc:dc:9e:
5c:3c:8c:a2:b3:91:2a:fa:10:86:19:af:f4:4e:4e:
93:fa:95:80:4a:2f:02:d8:fa:29:51:f1:15:a9:4b:
30:64:7b:ce:a3:39:68:28:47:14:d5:c2:fc:a0:9f:
84:35:0f:0e:d4:46:37:a0:bb:f2:6a:36:26:94:71:
31:55:d6:76:f9:16:f8:36:b7:12:7f:c0:3b:ee:4e:
4a:8c:e1:0a:a5:43:c0:da:af:38:ae:5a:68:0c:dc:
6f:d2:c6:27:35:91:5a:9e:4d:d6:9c:aa:31:47:7b:
57:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:88:EF:42:93:65:8A:A8:43:BA:BD:03:2E:A8:D2:88:8C:3E:63:40
X509v3 Authority Key Identifier:
keyid:40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/Z4jvQpNliqhDur0DLqjSiIw-Y0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.251.128.0-37.251.175.255
37.251.248.0/21
77.81.164.0/23
86.105.192.0/24
89.32.44.0/22
89.35.173.0/24
89.36.128.0-89.36.130.255
89.36.132.0/22
89.38.248.0/21
89.42.11.0/24
89.45.192.0/21
91.208.142.0/24
93.119.227.0/24
94.24.29.0/24
94.24.48.0/21
94.24.72.0-94.24.78.255
109.95.8.0/21
128.0.46.0/23
185.171.184.0/23
185.171.187.0/24
188.214.142.0/24
188.215.48.0/21
193.239.130.0/23
193.242.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f0:3e:78:6d:39:5d:4e:5a:40:73:c8:72:43:48:f2:6a:03:
8d:a6:a5:9a:d4:23:51:bf:e0:62:b7:41:f1:18:0c:09:3f:bb:
d7:ad:2a:41:ed:90:0a:20:ce:4f:10:f4:1c:93:80:58:24:d7:
ef:d2:e5:37:19:3b:56:c6:9f:5b:0e:c7:25:c4:44:48:e0:e6:
d6:28:50:fb:88:f5:ba:02:80:99:dd:89:9f:29:f5:0f:bf:85:
6e:86:af:e2:60:70:3a:7b:41:be:a7:a1:14:b0:fd:20:33:92:
33:57:cb:c1:44:0d:6a:96:ec:fc:fb:6d:b9:c8:11:ac:d0:48:
d2:85:b1:e0:78:05:31:5a:82:5a:79:5b:ce:f4:f4:88:9c:1f:
67:02:6e:e4:d4:97:59:7b:dd:74:5c:91:d4:56:0c:63:6b:68:
94:82:34:3d:49:f4:e2:ca:56:38:d0:a3:d8:eb:4b:fd:cc:f4:
9f:8e:72:44:8f:0d:dc:e0:e9:ed:c0:ae:af:fe:36:28:19:fb:
08:5b:a8:6e:da:5b:02:15:a9:79:12:88:b5:71:b1:a4:f3:7a:
97:f4:e8:3c:17:6d:7d:e1:41:ec:64:ef:7b:f4:38:8a:39:b6:
cc:36:9e:6b:41:d7:96:96:bc:a6:a1:19:b4:33:05:c4:fe:dd:
c5:d2:b1:f7
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgISAZYQKRQ/Iim3uKiKmxa95Be9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwOGFmNDg1YjRmZDBmMDM3MTdjZDRhNzA5ZWYxMWM2MWQz
ZWY0NmUwHhcNMjUwNDA3MTIxMDQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Nzg4ZWY0MjkzNjU4YWE4NDNiYWJkMDMyZWE4ZDI4ODhjM2U2MzQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz32iFgWarhEb3Hnqe653AdAM/OCj
gweg1NdVJKmIKz9gTh36WB7cg3+b4fdeNJjkpdRuNIZsWX3qRejHv5T2g31qFEa8
Vawhnw8JmoBxftkVKANQEHO+KGL+RHMy3Gn73ss3SGesNPLjYvdbJVNGl5rWoL1d
HvBIhp4Jkyx5P9cg7scUhIQqYQzhi7jQqTrJcz/83J5cPIyis5Eq+hCGGa/0Tk6T
+pWASi8C2PopUfEVqUswZHvOozloKEcU1cL8oJ+ENQ8O1EY3oLvyajYmlHExVdZ2
+Rb4NrcSf8A77k5KjOEKpUPA2q84rlpoDNxv0sYnNZFank3WnKoxR3tXYwIDAQAB
o4ICsDCCAqwwHQYDVR0OBBYEFGeI70KTZYqoQ7q9Ay6o0oiMPmNAMB8GA1UdIwQY
MBaAFECK9IW0/Q8DcXzUpwnvEcYdPvRuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUlyMGhiVDlEd054Zk5TbkNlOFJ4aDAtOUc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9lMTE3MWMtNTI3MC00OWNkLTkzNzkt
Yjk1YjA4YTIzYWUxLzEvWjRqdlFwTmxpcWhEdXIwRExxalNpSXctWTBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9lMTE3MWMtNTI3MC00OWNkLTkzNzktYjk1YjA4YTIzYWUx
LzEvUUlyMGhiVDlEd054Zk5TbkNlOFJ4aDAtOUc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHFBggrBgEFBQcBBwEB/wSBtTCBsjCBrwQCAAEwgagwDAME
ByX7gAMEBCX7oAMEAyX7+AMEAU1RpAMEAFZpwAMEAlkgLAMEAFkjrTAMAwQHWSSA
AwQAWSSCAwQCWSSEAwQDWSb4AwQAWSoLAwQDWS3AAwQAW9COAwQAXXfjAwQAXhgd
AwQDXhgwMAwDBANeGEgDBABeGE4DBANtXwgDBAGAAC4DBAG5q7gDBAC5q7sDBAC8
1o4DBAO81zADBAHB74IDBADB8ngwDQYJKoZIhvcNAQELBQADggEBAArwPnhtOV1O
WkBzyHJDSPJqA42mpZrUI1G/4GK3QfEYDAk/u9etKkHtkAogzk8Q9ByTgFgk1+/S
5TcZO1bGn1sOxyXEREjg5tYoUPuI9boCgJndiZ8p9Q+/hW6Gr+JgcDp7Qb6noRSw
/SAzkjNXy8FEDWqW7Pz7bbnIEazQSNKFseB4BTFaglp5W8709IicH2cCbuTUl1l7
3XRckdRWDGNraJSCND1J9OLKVjjQo9jrS/3M9J+OckSPDdzg6e3Arq/+NigZ+whb
qG7aWwIVqXkSiLVxsaTzepf06DwXbX3hQexk73v0OIo5tsw2nmtB15aWvKahGbQz
BcT+3cXSsfc=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:39 2025 by rpki-client on console.sobornost.net