Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/ppcwt792_0fJ4KuVU5oh5bBxCK8.roa
File: ppcwt792_0fJ4KuVU5oh5bBxCK8.roa (raw, json)
Hash identifier: aGVLz4AJdDai2w17wkg6qcb6wYCOJ1V940AR2tF2zrs=
Subject key identifier: A6:97:30:B7:BF:76:FF:47:C9:E0:AB:95:53:9A:21:E5:B0:71:08:AF
Certificate issuer: /CN=1c28b07c157a5dc613c9264daf89e7c860e33e63
Certificate serial: 0194258FB7CB087AE93E1969541014FA4AAA
Authority key identifier: 1C:28:B0:7C:15:7A:5D:C6:13:C9:26:4D:AF:89:E7:C8:60:E3:3E:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCiwfBV6XcYTySZNr4nnyGDjPmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/ppcwt792_0fJ4KuVU5oh5bBxCK8.roa
Signing time: Thu 02 Jan 2025 05:49:23 +0000
ROA not before: Thu 02 Jan 2025 05:49:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39273
IP address blocks: 77.83.88.0/22 maxlen: 22
77.83.88.0/24 maxlen: 24
77.83.89.0/24 maxlen: 24
77.83.90.0/24 maxlen: 24
77.83.91.0/24 maxlen: 24
77.92.160.0/19 maxlen: 19
77.92.160.0/21 maxlen: 21
77.92.160.0/24 maxlen: 24
77.92.161.0/24 maxlen: 24
77.92.162.0/24 maxlen: 24
77.92.163.0/24 maxlen: 24
77.92.164.0/24 maxlen: 24
77.92.165.0/24 maxlen: 24
77.92.166.0/24 maxlen: 24
77.92.167.0/24 maxlen: 24
77.92.168.0/21 maxlen: 21
77.92.168.0/24 maxlen: 24
77.92.169.0/24 maxlen: 24
77.92.170.0/24 maxlen: 24
77.92.171.0/24 maxlen: 24
77.92.172.0/24 maxlen: 24
77.92.173.0/24 maxlen: 24
77.92.174.0/24 maxlen: 24
77.92.175.0/24 maxlen: 24
77.92.176.0/21 maxlen: 21
77.92.176.0/24 maxlen: 24
77.92.177.0/24 maxlen: 24
77.92.178.0/24 maxlen: 24
77.92.179.0/24 maxlen: 24
77.92.180.0/24 maxlen: 24
77.92.181.0/24 maxlen: 24
77.92.182.0/24 maxlen: 24
77.92.183.0/24 maxlen: 24
77.92.184.0/21 maxlen: 21
77.92.184.0/24 maxlen: 24
77.92.185.0/24 maxlen: 24
77.92.186.0/24 maxlen: 24
77.92.187.0/24 maxlen: 24
77.92.188.0/24 maxlen: 24
77.92.189.0/24 maxlen: 24
77.92.190.0/24 maxlen: 24
77.92.191.0/24 maxlen: 24
78.110.64.0/20 maxlen: 20
78.110.64.0/21 maxlen: 21
78.110.64.0/24 maxlen: 24
78.110.65.0/24 maxlen: 24
78.110.66.0/24 maxlen: 24
78.110.67.0/24 maxlen: 24
78.110.68.0/24 maxlen: 24
78.110.69.0/24 maxlen: 24
78.110.70.0/24 maxlen: 24
78.110.71.0/24 maxlen: 24
78.110.72.0/21 maxlen: 21
78.110.72.0/24 maxlen: 24
78.110.73.0/24 maxlen: 24
78.110.74.0/24 maxlen: 24
78.110.75.0/24 maxlen: 24
78.110.76.0/24 maxlen: 24
78.110.77.0/24 maxlen: 24
78.110.78.0/24 maxlen: 24
78.110.79.0/24 maxlen: 24
81.22.16.0/20 maxlen: 20
81.22.16.0/24 maxlen: 24
81.22.17.0/24 maxlen: 24
81.22.18.0/24 maxlen: 24
81.22.19.0/24 maxlen: 24
81.22.20.0/24 maxlen: 24
81.22.21.0/24 maxlen: 24
81.22.22.0/24 maxlen: 24
81.22.23.0/24 maxlen: 24
81.22.24.0/24 maxlen: 24
81.22.25.0/24 maxlen: 24
81.22.26.0/24 maxlen: 24
81.22.27.0/24 maxlen: 24
81.22.28.0/24 maxlen: 24
81.22.29.0/24 maxlen: 24
81.22.30.0/24 maxlen: 24
81.22.31.0/24 maxlen: 24
87.236.48.0/21 maxlen: 21
87.236.48.0/22 maxlen: 22
87.236.48.0/24 maxlen: 24
87.236.49.0/24 maxlen: 24
87.236.50.0/24 maxlen: 24
87.236.51.0/24 maxlen: 24
87.236.52.0/22 maxlen: 22
87.236.52.0/24 maxlen: 24
87.236.53.0/24 maxlen: 24
87.236.54.0/24 maxlen: 24
87.236.55.0/24 maxlen: 24
185.33.176.0/22 maxlen: 22
185.33.176.0/24 maxlen: 24
185.33.177.0/24 maxlen: 24
185.33.178.0/24 maxlen: 24
185.33.179.0/24 maxlen: 24
2a00:6600::/29 maxlen: 29
2a00:6600::/32 maxlen: 32
2a04:8ac0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:b7:cb:08:7a:e9:3e:19:69:54:10:14:fa:4a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c28b07c157a5dc613c9264daf89e7c860e33e63
Validity
Not Before: Jan 2 05:49:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a69730b7bf76ff47c9e0ab95539a21e5b07108af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9a:aa:26:f5:98:67:c2:62:f8:8e:61:1b:29:
44:34:f5:e4:c1:ae:d3:4f:e8:30:5f:b6:c9:99:ea:
67:86:1c:4d:88:e5:d0:50:26:98:bc:69:c3:56:26:
96:d7:c9:32:99:4c:b1:5f:b4:c8:77:8d:e8:12:91:
e0:b9:a7:f9:71:94:20:c1:72:04:4d:9f:92:b2:8f:
41:26:f7:23:32:d5:e4:1c:f0:eb:78:96:8e:a0:8a:
2e:f8:f4:6e:8a:03:22:75:04:60:04:8b:6f:6f:8e:
12:6b:53:6c:95:29:0e:08:e1:e6:97:c8:fe:ea:2b:
76:6b:57:7a:f2:84:56:62:50:3a:8c:a8:93:d4:23:
43:e0:89:98:42:64:f9:6d:50:ba:03:b1:c5:6a:91:
e0:51:90:78:17:6b:b3:bf:4b:e0:e9:34:90:a8:c5:
b9:ec:8c:b6:09:22:1b:fb:d5:39:e4:85:2f:3d:8b:
83:56:4a:dc:8a:11:4a:1f:d8:fc:4a:fe:52:ca:9d:
b8:1f:69:27:9a:40:0f:35:57:53:ec:92:64:ca:a7:
6b:df:d3:6b:b5:84:e5:5a:f8:6d:6b:88:0a:f7:0c:
cd:a0:8a:8d:ca:f6:76:04:9e:c9:b9:e0:11:19:cf:
79:85:3a:4d:b3:81:1e:9e:59:fe:dc:cf:30:91:b3:
24:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:97:30:B7:BF:76:FF:47:C9:E0:AB:95:53:9A:21:E5:B0:71:08:AF
X509v3 Authority Key Identifier:
keyid:1C:28:B0:7C:15:7A:5D:C6:13:C9:26:4D:AF:89:E7:C8:60:E3:3E:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCiwfBV6XcYTySZNr4nnyGDjPmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/ppcwt792_0fJ4KuVU5oh5bBxCK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/HCiwfBV6XcYTySZNr4nnyGDjPmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.88.0/22
77.92.160.0/19
78.110.64.0/20
81.22.16.0/20
87.236.48.0/21
185.33.176.0/22
IPv6:
2a00:6600::/29
2a04:8ac0::/29
Signature Algorithm: sha256WithRSAEncryption
6d:1e:56:0e:5f:6b:a4:a2:2f:c5:b1:c9:13:b1:22:4e:ac:ca:
6a:c5:5b:e9:c3:5c:3c:eb:73:94:29:43:73:43:cc:e6:e9:7e:
a4:66:19:3d:0b:3f:85:bb:8a:69:1b:cb:74:d0:f9:a3:8c:b7:
a3:b7:4e:25:c7:ec:6f:02:58:7f:e1:53:ab:20:9c:57:3d:ff:
e7:98:49:bc:91:20:75:7b:d1:1c:47:2e:2d:ee:bb:2e:91:26:
2a:71:5a:e3:82:5a:43:e4:1d:80:c3:b0:c2:82:4e:14:be:43:
86:e2:4c:07:d8:3d:bf:1c:87:6b:61:3a:48:be:09:bc:78:e3:
5a:a4:ed:c3:41:ea:7d:e3:17:71:1e:13:42:f4:76:21:d6:90:
76:11:5b:d6:3f:ce:dd:11:52:17:8c:b4:56:32:0b:c4:eb:c0:
3e:52:18:03:23:f4:6f:1a:24:12:a9:f8:8d:47:bc:a7:3d:36:
45:5c:3c:0f:fe:55:39:66:42:99:b4:58:ee:d5:65:0a:d4:1c:
3d:ee:91:04:1c:9d:fc:0c:38:8a:7a:85:57:7d:0e:5d:95:18:
3d:81:6c:d9:ac:19:65:2c:2a:8c:7c:20:f8:d5:6d:47:33:a2:
bd:6c:b8:07:a4:cf:f2:d0:70:72:c5:ea:b8:28:c9:29:d7:52:
5a:ff:d3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:56 2025 by rpki-client on console.sobornost.net