Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/rFfcf408VnTjCitJfn6Nyytcg78.roa
File: rFfcf408VnTjCitJfn6Nyytcg78.roa (raw, json)
Hash identifier: UzFloT/BMcLwYy8NPqVHJmgw5qCUSA0tb0jgMcJpKWY=
Subject key identifier: AC:57:DC:7F:8D:3C:56:74:E3:0A:2B:49:7E:7E:8D:CB:2B:5C:83:BF
Certificate issuer: /CN=dca46b1fcd92b47f4f55fad038c9581340a9d370
Certificate serial: 0194258F81588B13171E7B448528D0390A25
Authority key identifier: DC:A4:6B:1F:CD:92:B4:7F:4F:55:FA:D0:38:C9:58:13:40:A9:D3:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KRrH82StH9PVfrQOMlYE0Cp03A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/rFfcf408VnTjCitJfn6Nyytcg78.roa
Signing time: Thu 02 Jan 2025 05:49:09 +0000
ROA not before: Thu 02 Jan 2025 05:49:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43019
IP address blocks: 77.75.88.0/24 maxlen: 24
77.75.89.0/24 maxlen: 24
77.75.90.0/24 maxlen: 24
77.75.91.0/24 maxlen: 24
77.75.92.0/24 maxlen: 24
77.75.93.0/24 maxlen: 24
77.75.94.0/24 maxlen: 24
77.75.95.0/24 maxlen: 24
77.75.95.128/27 maxlen: 27
185.206.200.0/24 maxlen: 24
185.206.201.0/24 maxlen: 24
185.206.201.144/28 maxlen: 28
185.206.201.212/30 maxlen: 30
185.206.202.0/24 maxlen: 24
185.206.203.0/24 maxlen: 24
2a0b:3f80::/29 maxlen: 29
2a0b:3f80::/32 maxlen: 32
2a0b:3f80:0:201::/64 maxlen: 64
2a0b:3f80:0:202::/64 maxlen: 64
2a0b:3f80:0:203::/64 maxlen: 64
2a0b:3f80:0:204::/64 maxlen: 64
2a0b:3f80:2::/126 maxlen: 126
2a0b:3f80:3::/126 maxlen: 126
2a0b:3f80:15::/48 maxlen: 48
2a0b:3f81::/32 maxlen: 32
2a0b:3f81::/48 maxlen: 48
2a0b:3f82::/32 maxlen: 32
2a0b:3f83::/32 maxlen: 32
2a0b:3f84::/32 maxlen: 32
2a0b:3f85::/32 maxlen: 32
2a0b:3f85:0:202::/64 maxlen: 64
2a0b:3f85:3::/126 maxlen: 126
2a0b:3f86::/32 maxlen: 32
2a0b:3f87::/32 maxlen: 32
2a0b:3f87:fc18::/48 maxlen: 48
2a0b:3f87:fc19::/48 maxlen: 48
2a0b:3f87:fc1a::/48 maxlen: 48
2a0b:3f87:fc1b::/48 maxlen: 48
2a0b:3f87:fc20::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:81:58:8b:13:17:1e:7b:44:85:28:d0:39:0a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca46b1fcd92b47f4f55fad038c9581340a9d370
Validity
Not Before: Jan 2 05:49:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ac57dc7f8d3c5674e30a2b497e7e8dcb2b5c83bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3e:0c:eb:30:e3:34:54:61:6e:34:ce:9d:8b:
94:ad:ce:54:77:74:58:0d:7a:d9:6a:4f:4e:a0:9f:
6d:a1:f3:36:be:dc:a2:af:87:b8:41:77:c2:ac:b4:
d8:60:31:77:b7:3e:11:d5:07:14:23:73:6e:6b:4d:
f5:08:bd:cd:bf:46:cb:c0:3c:2f:e8:65:4b:ff:10:
7f:ed:95:da:cd:cf:67:d8:42:a9:b4:56:64:34:3f:
4a:dd:c9:c7:10:e0:04:81:9a:1c:e9:60:f3:e9:2d:
0f:6a:c0:56:53:07:49:79:ae:c6:74:ad:72:f2:d2:
7e:c9:aa:f3:93:83:c6:b4:9b:43:b6:c2:b1:c1:4b:
b2:b7:cf:80:59:f5:17:92:bf:a1:e0:a0:91:89:d0:
b5:fe:aa:80:d5:38:c9:bc:dc:5a:ee:bd:5b:bf:80:
7b:e5:d2:73:b4:b8:08:52:cc:b7:b0:87:9c:8c:6d:
8a:d8:e2:e8:c5:ca:7b:6a:ad:e0:13:5b:9f:5e:8e:
0b:26:fc:74:d2:6e:f4:c1:b7:2d:d4:c4:96:0e:5e:
6d:7f:7b:25:31:b0:56:f5:69:21:99:13:9d:90:47:
a5:38:59:9b:03:f7:68:84:76:57:07:be:79:ee:5e:
30:2c:cd:ec:43:a1:bf:30:69:6b:99:02:a2:9c:a0:
1b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:57:DC:7F:8D:3C:56:74:E3:0A:2B:49:7E:7E:8D:CB:2B:5C:83:BF
X509v3 Authority Key Identifier:
keyid:DC:A4:6B:1F:CD:92:B4:7F:4F:55:FA:D0:38:C9:58:13:40:A9:D3:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KRrH82StH9PVfrQOMlYE0Cp03A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/rFfcf408VnTjCitJfn6Nyytcg78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/3KRrH82StH9PVfrQOMlYE0Cp03A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.88.0/21
185.206.200.0/22
IPv6:
2a0b:3f80::/29
Signature Algorithm: sha256WithRSAEncryption
ab:14:49:50:92:d4:4e:d6:c8:c3:ba:bc:45:58:b2:b9:61:49:
0d:87:c2:df:80:d5:87:59:fc:ee:27:25:bf:48:cf:1b:f4:d9:
e8:e3:c6:60:e8:f5:c2:75:dd:e1:7e:b8:55:f4:ec:71:84:e5:
dd:d1:a8:ee:ce:72:7b:a1:65:a2:52:92:52:3d:e5:68:d6:13:
38:08:a4:39:5f:88:72:4e:51:1f:4d:b2:18:d8:b5:1f:10:5a:
07:c5:e5:d1:f0:26:fe:3b:ba:5b:89:1c:8e:f9:ad:29:a2:6f:
e1:c3:0b:f0:f2:a3:07:69:7a:a3:08:7f:86:4f:7c:ed:20:c5:
b7:4e:5c:1c:b6:ba:52:9b:12:56:8e:6b:58:41:60:a3:81:eb:
03:ac:10:07:43:fe:9f:28:f8:95:0a:6b:e7:63:a0:e4:6c:f8:
b9:d3:1d:2d:80:2f:1b:61:ef:66:b5:4e:a0:e0:ab:31:b7:5a:
02:a4:f7:24:00:dc:18:57:c6:da:34:b7:19:61:7e:8d:27:27:
98:30:40:ea:a2:74:fe:30:35:3b:8f:aa:cc:75:da:c6:f2:77:
04:d3:62:26:85:07:08:d2:46:e5:c8:73:42:05:df:84:18:91:
ea:0d:f5:46:d6:71:02:c1:8b:38:bd:cc:54:02:d9:90:41:22:
6f:3c:95:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 22 17:22:07 2025 by rpki-client on console.sobornost.net