Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/sqQgK77ZRCJkBqgjCkgU-WZBNHM.roa
File: sqQgK77ZRCJkBqgjCkgU-WZBNHM.roa (raw, json)
Hash identifier: s1AMGj8rL2lTREvUP0oCiVA8IoNuPAQld+o1tBZQKz8=
Subject key identifier: B2:A4:20:2B:BE:D9:44:22:64:06:A8:23:0A:48:14:F9:66:41:34:73
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 0195319683F116614224996B35D999ADA7E7
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/sqQgK77ZRCJkBqgjCkgU-WZBNHM.roa
Signing time: Sun 23 Feb 2025 06:55:02 +0000
ROA not before: Sun 23 Feb 2025 06:55:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21277
IP address blocks: 93.91.192.0/20 maxlen: 20
93.91.192.0/24 maxlen: 24
93.91.193.0/24 maxlen: 24
93.91.195.0/24 maxlen: 24
93.91.196.0/24 maxlen: 24
93.91.197.0/24 maxlen: 24
93.91.200.0/24 maxlen: 24
93.91.201.0/24 maxlen: 24
93.91.204.0/24 maxlen: 24
95.170.192.0/19 maxlen: 19
95.170.192.0/24 maxlen: 24
95.170.193.0/24 maxlen: 24
95.170.194.0/24 maxlen: 24
95.170.196.0/24 maxlen: 24
95.170.199.0/24 maxlen: 24
95.170.200.0/24 maxlen: 24
95.170.201.0/24 maxlen: 24
95.170.202.0/24 maxlen: 24
95.170.203.0/24 maxlen: 24
95.170.204.0/24 maxlen: 24
95.170.205.0/24 maxlen: 24
95.170.206.0/24 maxlen: 24
95.170.207.0/24 maxlen: 24
95.170.208.0/24 maxlen: 24
95.170.214.0/24 maxlen: 24
95.170.215.0/24 maxlen: 24
95.170.216.0/24 maxlen: 24
95.170.217.0/24 maxlen: 24
95.170.218.0/24 maxlen: 24
95.170.219.0/24 maxlen: 24
95.170.220.0/24 maxlen: 24
95.170.221.0/24 maxlen: 24
95.170.222.0/24 maxlen: 24
109.127.64.0/18 maxlen: 18
109.127.64.0/20 maxlen: 20
109.127.64.0/21 maxlen: 21
109.127.72.0/21 maxlen: 21
109.127.80.0/24 maxlen: 24
109.127.82.0/24 maxlen: 24
109.127.86.0/24 maxlen: 24
109.127.88.0/24 maxlen: 24
109.127.89.0/24 maxlen: 24
109.127.90.0/24 maxlen: 24
109.127.91.0/24 maxlen: 24
109.127.94.0/24 maxlen: 24
109.127.95.0/24 maxlen: 24
109.127.107.0/24 maxlen: 24
130.193.128.0/17 maxlen: 17
130.193.128.0/19 maxlen: 19
130.193.131.0/24 maxlen: 24
130.193.132.0/22 maxlen: 22
130.193.144.0/24 maxlen: 24
130.193.145.0/24 maxlen: 24
130.193.146.0/24 maxlen: 24
130.193.147.0/24 maxlen: 24
130.193.148.0/24 maxlen: 24
130.193.149.0/24 maxlen: 24
130.193.150.0/23 maxlen: 23
130.193.150.0/24 maxlen: 24
130.193.151.0/24 maxlen: 24
130.193.160.0/20 maxlen: 20
130.193.160.0/24 maxlen: 24
130.193.165.0/24 maxlen: 24
130.193.166.0/24 maxlen: 24
130.193.176.0/20 maxlen: 20
130.193.176.0/21 maxlen: 21
130.193.184.0/21 maxlen: 21
130.193.192.0/20 maxlen: 20
130.193.208.0/20 maxlen: 20
130.193.224.0/20 maxlen: 20
130.193.240.0/20 maxlen: 20
2a04:a040::/29 maxlen: 29
2a04:a040::/32 maxlen: 32
2a04:a041::/32 maxlen: 32
2a04:a042::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:31:96:83:f1:16:61:42:24:99:6b:35:d9:99:ad:a7:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: Feb 23 06:55:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b2a4202bbed944226406a8230a4814f966413473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:df:ad:95:84:dd:5a:f7:26:bc:bd:4c:8d:8c:
88:93:84:12:11:f1:67:fe:46:b2:c2:fb:50:d0:db:
f4:e5:0f:38:f6:4e:0d:17:f9:08:95:7c:1e:59:6d:
1d:63:06:be:8e:59:33:01:e0:9d:a9:08:10:6d:a9:
c2:8f:55:09:ab:32:a4:c8:52:e4:b6:f7:0d:d9:01:
d5:94:eb:49:26:e8:5c:74:81:a1:b5:37:ab:fe:59:
c1:96:5c:4d:98:f6:c3:21:28:ab:8b:4f:5c:63:a0:
fa:79:f6:a3:b9:bd:4e:8b:00:8e:29:2d:7a:d3:8c:
87:6a:ee:94:51:db:e8:55:46:47:ba:07:78:4b:88:
2e:63:c3:c0:39:96:d6:e9:a1:b1:06:ea:eb:a7:4d:
79:cd:93:0f:c0:73:ec:d7:d8:83:94:f0:6d:68:5a:
16:aa:c9:40:38:7d:53:26:09:3e:4a:4b:48:6f:ad:
ed:4f:0b:8e:ba:0f:f8:30:07:70:06:2c:86:2e:0d:
0d:b2:6f:e3:e7:da:3a:52:04:7a:a7:cb:74:c2:5c:
f2:c0:e5:60:dd:58:5e:e9:2b:7e:18:2e:dc:28:da:
39:16:5d:e5:ca:0e:09:2c:33:53:7b:f3:a1:fb:68:
5b:ea:e0:9c:75:b0:f7:6f:32:a6:11:1d:49:1c:dd:
80:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A4:20:2B:BE:D9:44:22:64:06:A8:23:0A:48:14:F9:66:41:34:73
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/sqQgK77ZRCJkBqgjCkgU-WZBNHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.91.192.0/20
95.170.192.0/19
109.127.64.0/18
130.193.128.0/17
IPv6:
2a04:a040::/29
Signature Algorithm: sha256WithRSAEncryption
58:5a:aa:bb:bd:c9:7f:bd:1f:e8:ab:14:1c:7d:dd:c0:dc:af:
64:cf:d8:3a:52:cd:f2:cb:23:41:10:b6:99:2b:df:ef:5e:6c:
ea:98:ce:6d:4f:29:8d:30:1a:b2:65:09:c1:36:a5:11:47:77:
68:26:31:bf:c8:9e:1b:da:d4:1d:01:8b:09:6c:84:c5:96:24:
2a:bb:5d:30:5b:20:0b:6d:44:40:e7:91:1b:dd:28:20:e7:ff:
53:6a:09:ac:27:bd:e6:1f:0c:f1:70:fb:9d:4e:36:51:34:1c:
b1:36:de:42:82:ae:ba:00:c8:d7:66:41:04:3f:d9:c1:8b:20:
fc:6f:61:6a:bf:73:aa:92:ea:75:dc:5d:1e:b0:b1:98:86:18:
bf:d4:17:e3:48:e7:4b:b6:88:72:03:7a:6f:c9:34:3b:9e:82:
d8:29:38:d2:67:3d:86:c6:af:da:09:25:1c:0d:14:b7:ac:11:
73:56:b7:ce:22:b4:45:89:31:00:3d:3e:31:71:57:5b:e6:14:
45:ee:f9:36:90:dd:43:e7:ed:0d:1e:a9:e2:9f:07:13:29:a8:
f5:41:ef:28:9e:a6:b8:f2:0c:93:47:f4:29:99:15:08:75:bc:
a6:90:93:fb:54:5c:08:6c:9c:1c:7d:5b:34:99:55:19:01:73:
34:18:c8:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:54:11 2025 by rpki-client on console.sobornost.net