Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/jw3-392qA3iZPNqvM8A5QRG4lGg.roa
File: jw3-392qA3iZPNqvM8A5QRG4lGg.roa (raw, json)
Hash identifier: cHy5Y0MbUUk2lRPR5L2G/xzYOcrUQ/PTt3wPTdc3FbQ=
Subject key identifier: 8F:0D:FE:DF:DD:AA:03:78:99:3C:DA:AF:33:C0:39:41:11:B8:94:68
Certificate issuer: /CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Certificate serial: 0194F8E7689555BAAA63494B08ACD5B4A541
Authority key identifier: 73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/jw3-392qA3iZPNqvM8A5QRG4lGg.roa
Signing time: Wed 12 Feb 2025 06:45:02 +0000
ROA not before: Wed 12 Feb 2025 06:45:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43391
IP address blocks: 77.223.128.0/19 maxlen: 24
77.223.128.0/20 maxlen: 20
77.223.132.0/24 maxlen: 24
77.223.134.0/24 maxlen: 24
77.223.135.0/24 maxlen: 24
77.223.136.0/24 maxlen: 24
77.223.137.0/24 maxlen: 24
77.223.142.0/24 maxlen: 24
77.223.143.0/24 maxlen: 24
77.223.146.0/23 maxlen: 23
77.223.148.0/24 maxlen: 24
77.223.149.0/24 maxlen: 24
77.223.152.0/24 maxlen: 24
77.223.153.0/24 maxlen: 24
77.223.154.0/24 maxlen: 24
77.223.156.0/24 maxlen: 24
77.223.158.0/24 maxlen: 24
78.40.224.0/21 maxlen: 21
78.40.224.0/24 maxlen: 24
78.40.228.0/24 maxlen: 24
78.40.230.0/24 maxlen: 24
91.191.160.0/20 maxlen: 24
91.191.160.0/21 maxlen: 21
91.191.168.0/21 maxlen: 21
91.191.170.0/24 maxlen: 24
91.191.171.0/24 maxlen: 24
91.191.175.0/24 maxlen: 24
93.187.200.0/21 maxlen: 21
93.187.204.0/24 maxlen: 24
93.187.205.0/24 maxlen: 24
93.187.206.0/24 maxlen: 24
93.187.207.0/24 maxlen: 24
185.80.72.0/24 maxlen: 24
195.244.32.0/19 maxlen: 24
195.244.32.0/24 maxlen: 24
195.244.33.0/24 maxlen: 24
195.244.34.0/24 maxlen: 24
195.244.35.0/24 maxlen: 24
195.244.36.0/24 maxlen: 24
195.244.37.0/24 maxlen: 24
195.244.38.0/24 maxlen: 24
195.244.39.0/24 maxlen: 24
195.244.40.0/24 maxlen: 24
195.244.41.0/24 maxlen: 24
195.244.42.0/24 maxlen: 24
195.244.43.0/24 maxlen: 24
195.244.44.0/24 maxlen: 24
195.244.46.0/24 maxlen: 24
195.244.54.0/24 maxlen: 24
195.244.55.0/24 maxlen: 24
195.244.57.0/24 maxlen: 24
195.244.58.0/24 maxlen: 24
195.244.59.0/24 maxlen: 24
195.244.60.0/24 maxlen: 24
195.244.61.0/24 maxlen: 24
195.244.63.0/24 maxlen: 24
2a01:aac0::/32 maxlen: 32
2a0a:be80::/29 maxlen: 29
2a0a:be80::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f8:e7:68:95:55:ba:aa:63:49:4b:08:ac:d5:b4:a5:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Validity
Not Before: Feb 12 06:45:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8f0dfedfddaa0378993cdaaf33c0394111b89468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:34:f4:67:17:cb:29:2b:52:b9:f0:6a:15:a4:
ad:89:ce:06:8f:50:25:80:b1:0a:86:5a:c0:61:26:
f2:61:d7:02:9b:7c:84:2b:60:46:bc:9e:12:c6:9e:
5b:d6:dd:a5:e9:9a:95:5a:29:fd:61:05:38:76:eb:
c8:d0:3d:19:02:a3:86:e8:39:37:79:35:e0:3d:b8:
69:03:18:4a:31:41:1c:ad:20:31:49:03:7b:39:6c:
18:98:ad:5d:0e:15:6d:22:7e:ef:22:c2:b4:e6:33:
19:09:ae:e4:c7:4b:05:dc:db:f0:e4:75:3c:d3:06:
50:66:c6:b7:66:95:a1:a0:8c:54:cd:16:ca:dd:cf:
e3:d0:b3:34:e9:a9:77:00:8c:df:fb:aa:e6:5a:60:
9f:47:33:87:c3:45:eb:8d:08:7b:4a:bb:01:d4:a7:
d6:04:af:70:b0:12:d9:2c:a9:1c:8f:cf:54:85:66:
bf:0b:a8:5d:63:31:5a:ab:a2:64:c8:5b:ab:98:2d:
11:22:02:d4:31:ac:6b:0a:31:9c:17:a6:c2:07:57:
8c:fe:ca:6a:ce:58:0f:8c:a6:fd:97:f2:dd:05:be:
7c:77:e5:55:eb:46:2d:d3:1f:f6:c3:e1:48:9f:38:
dd:ea:62:60:28:e1:25:51:1d:12:18:26:57:b3:1e:
8a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0D:FE:DF:DD:AA:03:78:99:3C:DA:AF:33:C0:39:41:11:B8:94:68
X509v3 Authority Key Identifier:
keyid:73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/jw3-392qA3iZPNqvM8A5QRG4lGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.128.0/19
78.40.224.0/21
91.191.160.0/20
93.187.200.0/21
185.80.72.0/24
195.244.32.0/19
IPv6:
2a01:aac0::/32
2a0a:be80::/29
Signature Algorithm: sha256WithRSAEncryption
6b:9a:e6:25:27:7e:54:0c:f3:95:bd:57:8b:27:4c:df:0a:b4:
45:bb:b3:32:42:c4:3a:a0:ae:bd:0c:05:b7:3e:8c:56:7a:7b:
f8:78:7e:b4:cd:29:3b:8d:fd:cb:dc:f0:7a:72:4e:02:19:0c:
a9:bc:6e:68:2a:d8:63:81:f3:50:7e:e8:e6:33:8c:23:a5:b8:
1b:58:73:ca:6b:56:76:1f:aa:c2:ae:83:2b:13:26:64:4d:92:
6e:b2:d9:65:94:ca:2a:f0:56:1b:26:eb:f7:c7:c5:5f:b4:56:
bd:c6:8c:2b:9a:8c:eb:d4:39:69:cd:39:8c:30:03:71:65:38:
27:1b:eb:28:c4:9a:68:7f:f5:ba:e5:43:04:e6:ab:96:88:d1:
eb:e3:36:86:50:d9:ce:ad:5e:c5:4a:26:f8:a0:fb:13:b9:88:
b4:e1:be:aa:23:7e:34:7f:14:2c:a3:dd:1c:e1:91:92:fa:4f:
23:2f:0c:fc:68:60:34:4c:a6:47:21:56:f1:fd:25:b2:e7:05:
46:03:a2:a7:25:f8:a6:f5:53:1a:d3:42:e0:94:9d:a0:d6:e2:
5c:bb:0e:b0:2f:2f:c6:8d:6f:5c:4f:e1:0b:4e:1f:ac:0c:a0:
c5:7d:cf:e7:18:e4:ae:12:5f:0f:95:bd:48:56:0a:76:f1:b3:
6f:73:33:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:51:36 2025 by rpki-client on console.sobornost.net