Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/3gAODMlvyL23CXc8fDABXWT54Y8.roa
File: 3gAODMlvyL23CXc8fDABXWT54Y8.roa (raw, json)
Hash identifier: FyheZIKgOp9LBINHY7TMh2ZFu2QhWqvqY3wR6C4l8Xw=
Subject key identifier: DE:00:0E:0C:C9:6F:C8:BD:B7:09:77:3C:7C:30:01:5D:64:F9:E1:8F
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 019629BB3FF2199C585B1BFC737B959A86CA
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/3gAODMlvyL23CXc8fDABXWT54Y8.roa
Signing time: Sat 12 Apr 2025 11:20:59 +0000
ROA not before: Sat 12 Apr 2025 11:20:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1680
IP address blocks: 37.26.144.0/21 maxlen: 21
37.26.145.0/24 maxlen: 24
37.26.146.0/24 maxlen: 24
37.26.147.0/24 maxlen: 24
37.26.148.0/24 maxlen: 24
37.26.149.0/24 maxlen: 24
37.26.150.0/24 maxlen: 24
37.26.151.0/24 maxlen: 24
46.116.0.0/16 maxlen: 18
46.117.0.0/16 maxlen: 16
46.210.0.0/16 maxlen: 24
62.0.0.0/16 maxlen: 24
62.0.87.0/24 maxlen: 24
62.0.88.0/22 maxlen: 24
62.0.92.0/23 maxlen: 24
62.0.94.0/24 maxlen: 24
62.0.114.0/23 maxlen: 24
62.0.116.0/22 maxlen: 24
62.0.120.0/21 maxlen: 24
62.0.128.0/23 maxlen: 24
62.90.0.0/16 maxlen: 24
62.90.135.0/24 maxlen: 24
62.90.143.0/24 maxlen: 24
80.250.144.0/20 maxlen: 24
82.166.0.0/16 maxlen: 24
82.166.100.0/22 maxlen: 24
82.166.112.0/21 maxlen: 24
82.166.201.128/25 maxlen: 25
85.64.0.0/16 maxlen: 16
85.65.0.0/16 maxlen: 16
85.250.0.0/16 maxlen: 16
89.138.0.0/16 maxlen: 16
89.139.0.0/16 maxlen: 16
93.172.0.0/16 maxlen: 16
93.173.0.0/16 maxlen: 16
95.35.0.0/16 maxlen: 24
109.186.0.0/16 maxlen: 16
109.253.0.0/16 maxlen: 24
141.226.132.0/24 maxlen: 24
141.226.134.0/24 maxlen: 24
147.161.8.0/21 maxlen: 24
147.234.17.0/24 maxlen: 24
147.234.22.0/24 maxlen: 24
147.234.27.0/24 maxlen: 24
147.234.27.0/25 maxlen: 25
147.234.27.128/25 maxlen: 25
147.234.28.0/24 maxlen: 24
147.234.43.0/24 maxlen: 24
147.234.83.0/24 maxlen: 24
147.234.84.0/24 maxlen: 24
147.234.86.0/24 maxlen: 24
176.12.128.0/17 maxlen: 24
176.13.0.0/16 maxlen: 24
192.115.84.0/22 maxlen: 24
192.115.112.0/20 maxlen: 24
192.115.140.0/22 maxlen: 24
192.115.152.0/21 maxlen: 24
192.115.160.0/22 maxlen: 24
192.115.200.0/21 maxlen: 24
192.116.32.0/19 maxlen: 24
192.118.28.0/22 maxlen: 22
192.118.28.0/23 maxlen: 23
192.118.30.0/23 maxlen: 23
192.118.84.0/22 maxlen: 24
194.90.0.0/16 maxlen: 24
194.90.1.0/24 maxlen: 24
194.90.229.0/24 maxlen: 24
199.203.0.0/16 maxlen: 16
199.203.1.0/24 maxlen: 24
199.203.21.0/24 maxlen: 24
199.203.76.0/24 maxlen: 24
199.203.191.0/24 maxlen: 24
207.232.0.0/18 maxlen: 18
207.232.50.0/24 maxlen: 24
212.29.192.0/18 maxlen: 18
212.29.244.0/24 maxlen: 24
212.143.0.0/16 maxlen: 24
212.143.194.0/24 maxlen: 24
212.150.0.0/16 maxlen: 24
212.235.0.0/17 maxlen: 24
217.132.0.0/16 maxlen: 16
2001:4df0::/29 maxlen: 32
2001:4df0::/32 maxlen: 32
2001:4df1::/32 maxlen: 32
2001:4df2::/32 maxlen: 32
2001:4df3::/32 maxlen: 32
2001:4df4::/32 maxlen: 32
2001:4df5::/32 maxlen: 32
2001:4df6::/32 maxlen: 32
2001:4df7::/32 maxlen: 32
2a02:148::/29 maxlen: 32
2a02:148::/32 maxlen: 32
2a02:149::/32 maxlen: 32
2a02:14a::/32 maxlen: 32
2a02:14b::/32 maxlen: 32
2a02:14c::/32 maxlen: 32
2a02:14d::/32 maxlen: 32
2a02:14e::/32 maxlen: 32
2a02:14f::/32 maxlen: 32
2a03:c5c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:bb:3f:f2:19:9c:58:5b:1b:fc:73:7b:95:9a:86:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Apr 12 11:20:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=de000e0cc96fc8bdb709773c7c30015d64f9e18f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a9:2b:eb:96:45:15:17:83:72:34:72:5f:36:
8c:43:a8:10:cc:9d:2c:7d:67:e0:c0:88:36:ed:a9:
b1:60:9b:19:f3:f3:ab:12:d6:bb:b6:8d:97:fd:88:
b7:9a:f0:61:e1:df:2e:27:08:db:b9:bd:9e:fa:66:
67:09:e2:b9:b0:ac:6d:57:9d:1c:b0:a0:cf:4f:e0:
b0:77:57:48:33:68:e1:b5:0c:4a:40:28:fc:3c:82:
d9:81:c2:b1:b2:9d:25:ef:2c:99:48:47:5d:d1:c5:
5b:a9:7b:f8:b2:7c:be:bc:a0:e5:31:69:14:50:be:
8c:d2:0a:cf:21:0e:1a:36:59:7d:00:8a:97:a1:a2:
89:af:a6:64:b7:5b:ea:8d:7e:f9:94:a2:54:2c:47:
9c:97:68:73:67:ae:a8:f8:4b:c1:b2:89:b1:29:0a:
3e:6e:62:fe:4c:ee:51:a8:c4:87:f3:02:1f:d3:78:
23:a5:a5:1e:71:b0:30:47:57:e2:d1:59:f4:84:07:
ed:ab:7e:48:09:12:3c:40:38:36:5d:9f:20:e9:7f:
70:7d:14:75:54:2b:99:91:1a:3a:87:26:84:9f:64:
20:8d:e4:70:58:6c:9a:bf:ad:44:a9:fc:90:b7:36:
5b:3a:6f:54:aa:c4:ba:5b:2d:90:e9:93:a1:5d:c2:
41:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:00:0E:0C:C9:6F:C8:BD:B7:09:77:3C:7C:30:01:5D:64:F9:E1:8F
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/3gAODMlvyL23CXc8fDABXWT54Y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.144.0/21
46.116.0.0/15
46.210.0.0/16
62.0.0.0/16
62.90.0.0/16
80.250.144.0/20
82.166.0.0/16
85.64.0.0/15
85.250.0.0/16
89.138.0.0/15
93.172.0.0/15
95.35.0.0/16
109.186.0.0/16
109.253.0.0/16
141.226.132.0/24
141.226.134.0/24
147.161.8.0/21
147.234.17.0/24
147.234.22.0/24
147.234.27.0-147.234.28.255
147.234.43.0/24
147.234.83.0-147.234.84.255
147.234.86.0/24
176.12.128.0-176.13.255.255
192.115.84.0/22
192.115.112.0/20
192.115.140.0/22
192.115.152.0-192.115.163.255
192.115.200.0/21
192.116.32.0/19
192.118.28.0/22
192.118.84.0/22
194.90.0.0/16
199.203.0.0/16
207.232.0.0/18
212.29.192.0/18
212.143.0.0/16
212.150.0.0/16
212.235.0.0/17
217.132.0.0/16
IPv6:
2001:4df0::/29
2a02:148::/29
2a03:c5c0::/32
Signature Algorithm: sha256WithRSAEncryption
8c:0f:9b:a9:80:7d:db:a8:15:33:1d:1c:25:99:01:29:cf:e4:
4b:89:da:a4:1f:7c:04:54:59:97:c8:3d:15:3d:fb:32:a8:3c:
f8:3f:e9:fc:d2:df:45:40:18:fe:17:45:0e:fb:df:5f:1c:7f:
d6:20:da:fa:0f:90:c2:2c:a5:ba:46:e2:eb:38:cf:07:36:7d:
d5:b2:c9:f1:be:4b:9d:01:02:c0:d2:ea:af:06:ae:fb:91:3b:
be:38:65:12:66:84:7a:32:1f:38:08:74:c7:d9:99:cf:05:2d:
04:a9:72:73:d1:ff:25:2f:0b:9e:4b:aa:67:d3:91:b7:e8:cc:
7c:f9:b2:a9:86:ff:67:71:fc:bb:e0:8a:1b:82:04:28:d2:f5:
52:1f:8a:b1:2c:6e:28:c0:dd:04:09:ce:27:1f:d3:33:ad:11:
92:3d:a7:7e:88:19:a5:2b:78:32:6d:1c:6d:41:c3:03:b3:5f:
e0:68:3d:fa:1c:73:28:e6:55:48:1d:48:0e:4a:37:25:b9:51:
c5:45:0f:5e:ca:73:cf:e8:74:6d:aa:86:51:10:6e:22:ba:a4:
30:69:c7:fc:c6:15:49:80:a9:ef:ef:3d:9e:f5:64:2f:4d:9c:
46:26:fa:4a:52:8c:eb:9a:d8:a5:60:df:81:74:f5:e2:c9:ad:
40:84:62:4d
-----BEGIN CERTIFICATE-----
MIIGGzCCBQOgAwIBAgISAZYpuz/yGZxYWxv8c3uVmobKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi
NDUwZTYwHhcNMjUwNDEyMTEyMDU5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTAwMGUwY2M5NmZjOGJkYjcwOTc3M2M3YzMwMDE1ZDY0ZjllMThmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1qkr65ZFFReDcjRyXzaMQ6gQzJ0s
fWfgwIg27amxYJsZ8/OrEta7to2X/Yi3mvBh4d8uJwjbub2e+mZnCeK5sKxtV50c
sKDPT+Cwd1dIM2jhtQxKQCj8PILZgcKxsp0l7yyZSEdd0cVbqXv4sny+vKDlMWkU
UL6M0grPIQ4aNll9AIqXoaKJr6Zkt1vqjX75lKJULEecl2hzZ66o+EvBsomxKQo+
bmL+TO5RqMSH8wIf03gjpaUecbAwR1fi0Vn0hAftq35ICRI8QDg2XZ8g6X9wfRR1
VCuZkRo6hyaEn2QgjeRwWGyav61EqfyQtzZbOm9UqsS6Wy2Q6ZOhXcJBmQIDAQAB
o4IDJzCCAyMwHQYDVR0OBBYEFN4ADgzJb8i9twl3PHwwAV1k+eGPMB8GA1UdIwQY
MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt
NDQzMzIyOWE4NDczLzEvM2dBT0RNbHZ5TDIzQ1hjOGZEQUJYV1Q1NFk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz
LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBOwYIKwYBBQUHAQcBAf8EggEqMIIBJjCCAQUEAgABMIH+
AwQDJRqQAwMBLnQDAwAu0gMDAD4AAwMAPloDBARQ+pADAwBSpgMDAVVAAwMAVfoD
AwFZigMDAV2sAwMAXyMDAwBtugMDAG39AwQAjeKEAwQAjeKGAwQDk6EIAwQAk+oR
AwQAk+oWMAwDBACT6hsDBACT6hwDBACT6iswDAMEAJPqUwMEAJPqVAMEAJPqVjAL
AwQHsAyAAwMBsAwDBALAc1QDBATAc3ADBALAc4wwDAMEA8BzmAMEAsBzoAMEA8Bz
yAMEBcB0IAMEAsB2HAMEAsB2VAMDAMJaAwMAx8sDBAbP6AADBAbUHcADAwDUjwMD
ANSWAwQH1OsAAwMA2YQwGwQCAAIwFQMFAyABTfADBQMqAgFIAwUAKgPFwDANBgkq
hkiG9w0BAQsFAAOCAQEAjA+bqYB926gVMx0cJZkBKc/kS4napB98BFRZl8g9FT37
Mqg8+D/p/NLfRUAY/hdFDvvfXxx/1iDa+g+Qwiylukbi6zjPBzZ91bLJ8b5LnQEC
wNLqrwau+5E7vjhlEmaEejIfOAh0x9mZzwUtBKlyc9H/JS8LnkuqZ9ORt+jMfPmy
qYb/Z3H8u+CKG4IEKNL1Uh+KsSxuKMDdBAnOJx/TM60Rkj2nfogZpSt4Mm0cbUHD
A7Nf4Gg9+hxzKOZVSB1IDko3JblRxUUPXspzz+h0baqGURBuIrqkMGnH/MYVSYCp
7+89nvVkL02cRib6SlKM65rYpWDfgXT14smtQIRiTQ==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:33 2025 by rpki-client on console.sobornost.net