Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/iJP0BU_jrF0IVSLaBiPyUnJ_UGU.roa
File: iJP0BU_jrF0IVSLaBiPyUnJ_UGU.roa (raw, json)
Hash identifier: 9imddmR9rVxgg0XGH9YZZAgHPzYfVwLB2TeW5Sw/DTo=
Subject key identifier: 88:93:F4:05:4F:E3:AC:5D:08:55:22:DA:06:23:F2:52:72:7F:50:65
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 0196212B0FC53040A0BB0002E0FE9735E56C
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/iJP0BU_jrF0IVSLaBiPyUnJ_UGU.roa
Signing time: Thu 10 Apr 2025 19:26:31 +0000
ROA not before: Thu 10 Apr 2025 19:26:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8641
IP address blocks: 77.73.24.0/21 maxlen: 21
77.94.160.0/19 maxlen: 19
77.94.175.0/24 maxlen: 24
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
81.26.154.0/24 maxlen: 24
81.26.155.0/24 maxlen: 24
84.47.128.0/23 maxlen: 23
84.47.131.0/24 maxlen: 24
84.47.134.0/23 maxlen: 23
84.47.135.0/24 maxlen: 24
84.47.136.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.143.0/24 maxlen: 24
84.47.144.0/23 maxlen: 23
84.47.147.0/24 maxlen: 24
84.47.150.0/23 maxlen: 32
84.47.152.0/23 maxlen: 23
84.47.156.0/22 maxlen: 22
84.47.160.0/24 maxlen: 24
84.47.161.0/24 maxlen: 24
84.47.162.0/24 maxlen: 24
84.47.163.0/24 maxlen: 24
84.47.164.0/23 maxlen: 23
84.47.164.0/24 maxlen: 24
84.47.168.0/22 maxlen: 22
84.47.172.0/24 maxlen: 24
84.47.174.0/23 maxlen: 23
84.47.176.0/23 maxlen: 23
84.47.176.0/24 maxlen: 24
84.47.177.0/24 maxlen: 24
84.47.178.0/24 maxlen: 24
84.47.181.0/24 maxlen: 24
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
84.47.190.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
85.91.112.0/22 maxlen: 22
85.91.118.0/23 maxlen: 23
85.91.120.0/23 maxlen: 23
85.91.122.0/24 maxlen: 24
185.106.107.0/24 maxlen: 24
213.135.64.0/23 maxlen: 23
213.135.67.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
213.135.70.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.82.0/23 maxlen: 23
213.135.84.0/22 maxlen: 22
213.135.88.0/22 maxlen: 22
213.135.92.0/24 maxlen: 24
213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/23 maxlen: 23
213.208.174.0/23 maxlen: 23
213.208.176.0/21 maxlen: 21
213.208.184.0/24 maxlen: 24
213.208.188.0/22 maxlen: 22
2a02:bc8::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:21:2b:0f:c5:30:40:a0:bb:00:02:e0:fe:97:35:e5:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Apr 10 19:26:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8893f4054fe3ac5d085522da0623f252727f5065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:34:2d:75:d2:7a:b7:6a:a7:33:7e:56:90:e2:
c6:79:ba:44:51:95:d1:2c:f9:45:4e:2f:93:27:86:
fb:f5:30:c6:a3:62:48:b1:d4:df:de:91:7d:2e:58:
89:28:09:44:40:5d:b7:a0:ed:7a:d4:3f:dc:b0:69:
eb:15:09:2b:fd:ee:16:76:5e:3f:32:de:44:cc:ae:
71:93:d7:c3:57:09:99:90:d8:3a:8c:2d:24:d5:42:
e2:98:79:8f:7d:e6:bd:ef:79:70:6e:ae:39:f0:1b:
29:ef:f5:99:5e:f8:ce:1e:b9:3e:54:c4:9e:33:1e:
03:84:08:dd:e3:e9:3f:ec:af:62:9c:1a:47:db:73:
c7:88:bc:40:92:7c:7c:0f:3c:ad:45:ed:0f:50:6f:
87:7a:7b:20:0a:7e:f3:88:94:f6:5a:4c:8f:09:01:
a0:07:47:a4:f9:4a:92:de:05:53:3a:b4:e4:d5:6d:
f7:74:a5:af:46:64:f0:cc:93:27:eb:9d:c0:63:83:
da:f1:47:1d:c1:16:3b:a8:84:c9:f2:10:47:76:84:
fb:97:7e:cf:b8:3a:f2:11:be:cc:f2:89:9d:47:4e:
b3:37:72:cf:4f:c8:17:81:0c:56:36:04:8f:c3:d7:
17:64:89:87:8f:c5:5f:8d:1b:a4:e6:3b:4a:32:ae:
ca:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:93:F4:05:4F:E3:AC:5D:08:55:22:DA:06:23:F2:52:72:7F:50:65
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/iJP0BU_jrF0IVSLaBiPyUnJ_UGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.24.0/21
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/23
84.47.131.0/24
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0/24
84.47.150.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.172.255
84.47.174.0-84.47.178.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/23
213.135.67.0/24
213.135.69.0-213.135.70.255
213.135.72.0/23
213.135.77.0/24
213.135.82.0-213.135.92.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.188.0/22
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
ae:04:b2:9b:64:00:8b:53:95:e8:de:c9:13:71:3f:47:cd:35:
c4:bd:68:23:15:d3:c4:ff:9f:24:df:83:3a:c3:8b:15:85:a8:
54:9a:be:71:d2:25:08:69:d2:6d:7e:52:29:4a:5c:4c:6c:76:
65:03:05:f5:a3:7b:28:23:d7:ca:0a:2f:96:dd:b9:40:07:24:
dd:95:e1:0c:ca:02:fd:5d:07:7c:7b:36:2b:fc:93:cb:61:35:
a6:e2:0a:b7:60:19:93:19:aa:cc:b5:13:1c:b3:02:69:64:ae:
63:a6:d2:e4:53:51:7f:72:8e:60:d3:2d:74:07:5f:a4:d8:5b:
5e:11:fa:a0:9b:8e:cc:e1:60:3b:49:9f:1c:09:d7:45:39:ad:
5c:24:a1:13:a1:0c:0b:8e:9f:2a:8a:02:6b:c2:3a:dc:8c:75:
e4:33:ab:73:6a:cd:a1:04:c2:68:37:6f:ad:82:a1:1b:b5:9b:
62:0e:8a:a9:ab:3e:10:c5:61:20:bd:03:01:19:88:5a:e6:1c:
4c:34:77:eb:f7:6d:a5:a7:be:af:14:be:da:58:68:3d:e8:71:
87:e7:17:fa:6b:c6:ed:cc:d8:33:4c:b8:bd:57:f7:9e:07:41:
79:f9:14:bb:89:73:9e:0d:65:9b:5f:b8:85:52:b8:44:e7:94:
b9:93:a0:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:56 2025 by rpki-client on console.sobornost.net