Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/GhmYyJ6NhLrMATspm8yks47OFRw.roa
File: GhmYyJ6NhLrMATspm8yks47OFRw.roa (raw, json)
Hash identifier: Mk0qCKuGDlDFXNi4NL9kSzM+2bvWbE9B+uo6x+Vxb1E=
Subject key identifier: 1A:19:98:C8:9E:8D:84:BA:CC:01:3B:29:9B:CC:A4:B3:8E:CE:15:1C
Certificate issuer: /CN=1a2a4bfd2c0c69765a8299ef74965f862a7148b7
Certificate serial: 01955AEF652493129A26B8D6205BE6A725CF
Authority key identifier: 1A:2A:4B:FD:2C:0C:69:76:5A:82:99:EF:74:96:5F:86:2A:71:48:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GipL_SwMaXZagpnvdJZfhipxSLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/GhmYyJ6NhLrMATspm8yks47OFRw.roa
Signing time: Mon 03 Mar 2025 07:36:33 +0000
ROA not before: Mon 03 Mar 2025 07:36:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41176
IP address blocks: 89.108.0.0/18 maxlen: 18
89.108.26.0/23 maxlen: 23
89.108.26.0/24 maxlen: 24
89.108.27.0/24 maxlen: 24
89.108.28.0/24 maxlen: 24
89.108.29.0/24 maxlen: 24
89.108.30.0/24 maxlen: 24
89.108.60.0/22 maxlen: 22
185.20.152.0/22 maxlen: 22
185.20.152.0/24 maxlen: 24
188.117.64.0/18 maxlen: 18
188.117.72.0/22 maxlen: 22
188.117.76.0/22 maxlen: 22
188.117.76.0/24 maxlen: 24
188.117.77.0/24 maxlen: 24
188.117.78.0/24 maxlen: 24
188.117.80.0/23 maxlen: 23
188.117.80.0/24 maxlen: 24
188.117.81.0/24 maxlen: 24
188.117.82.0/24 maxlen: 24
188.117.84.0/22 maxlen: 22
188.117.84.0/24 maxlen: 24
188.117.85.0/24 maxlen: 24
188.117.86.0/24 maxlen: 24
188.117.87.0/24 maxlen: 24
188.117.93.0/24 maxlen: 24
188.117.96.0/21 maxlen: 21
188.117.100.0/23 maxlen: 23
188.117.104.0/24 maxlen: 24
188.117.107.0/24 maxlen: 24
188.117.109.0/24 maxlen: 24
188.117.117.0/24 maxlen: 24
188.117.124.0/24 maxlen: 24
212.76.64.0/19 maxlen: 19
212.76.64.0/24 maxlen: 24
212.76.68.0/24 maxlen: 24
212.76.69.0/24 maxlen: 24
212.76.70.0/24 maxlen: 24
212.76.73.0/24 maxlen: 24
212.76.83.0/24 maxlen: 24
212.76.85.0/24 maxlen: 24
212.76.88.0/24 maxlen: 24
212.76.95.0/24 maxlen: 24
213.236.32.0/19 maxlen: 19
213.236.35.0/24 maxlen: 24
213.236.36.0/24 maxlen: 24
213.236.37.0/24 maxlen: 24
213.236.38.0/24 maxlen: 24
213.236.39.0/24 maxlen: 24
213.236.41.0/24 maxlen: 24
213.236.48.0/24 maxlen: 24
213.236.53.0/24 maxlen: 24
213.236.56.0/21 maxlen: 21
213.236.56.0/22 maxlen: 22
213.236.59.0/24 maxlen: 24
213.236.60.0/22 maxlen: 22
213.236.60.0/24 maxlen: 24
213.236.62.0/24 maxlen: 24
2a02:d70::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5a:ef:65:24:93:12:9a:26:b8:d6:20:5b:e6:a7:25:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a2a4bfd2c0c69765a8299ef74965f862a7148b7
Validity
Not Before: Mar 3 07:36:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1a1998c89e8d84bacc013b299bcca4b38ece151c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:43:54:0a:c1:aa:1c:fd:ce:d4:23:48:b9:f9:
dc:82:f2:b8:f0:e2:36:43:6a:46:2b:10:5e:f9:6d:
ef:8e:49:31:4a:1d:3c:ac:fe:0a:07:71:f6:fd:e4:
5b:77:8d:d8:ae:63:93:ba:45:a8:2a:ec:5b:d6:84:
fd:e0:6c:5f:c0:1f:d9:d6:32:56:df:2b:4d:5f:15:
b7:9d:7e:e4:7d:b4:c7:fd:a4:a0:e5:1f:aa:08:b6:
ca:77:c3:b3:ee:c3:a1:66:79:f1:eb:93:5b:e1:a9:
db:c8:b7:cc:20:ec:a3:9b:2a:c5:9e:b1:2a:fa:dd:
55:c5:09:4b:3f:34:6c:2f:4b:0c:55:fd:b5:dd:f8:
17:55:1b:a3:f5:3c:ef:84:dd:a5:28:55:56:9c:ff:
0a:db:5d:0f:aa:3a:9b:66:9d:df:59:e0:09:c6:73:
f0:bb:28:c7:ab:ad:8f:40:81:55:e9:26:45:a9:9e:
ab:e6:55:26:26:81:6a:04:4a:6d:16:6e:95:2a:3a:
a1:89:bc:4c:38:e2:29:30:90:00:e1:16:23:91:69:
98:99:f6:63:e7:71:81:fa:07:3f:ba:41:a7:f9:71:
0e:43:99:0a:4b:6c:85:43:10:9c:89:1c:6b:41:25:
c4:25:a0:8f:28:f9:dd:dd:fa:e2:e1:87:fe:97:70:
9b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:19:98:C8:9E:8D:84:BA:CC:01:3B:29:9B:CC:A4:B3:8E:CE:15:1C
X509v3 Authority Key Identifier:
keyid:1A:2A:4B:FD:2C:0C:69:76:5A:82:99:EF:74:96:5F:86:2A:71:48:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GipL_SwMaXZagpnvdJZfhipxSLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/GhmYyJ6NhLrMATspm8yks47OFRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/GipL_SwMaXZagpnvdJZfhipxSLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.108.0.0/18
185.20.152.0/22
188.117.64.0/18
212.76.64.0/19
213.236.32.0/19
IPv6:
2a02:d70::/32
Signature Algorithm: sha256WithRSAEncryption
a1:6c:1d:2f:0f:d0:51:b1:44:40:cc:f5:7e:a1:17:91:8a:0a:
e6:41:3b:78:94:99:ad:3f:2a:41:83:05:31:94:07:3a:f9:47:
87:43:c4:26:14:e4:cf:25:b5:5c:81:ea:dd:51:08:35:ad:44:
b9:e2:20:dc:f0:c3:c8:5b:9a:e0:b2:b8:be:f8:a5:cf:55:d1:
de:ba:9a:7e:e4:3b:81:ce:7e:98:5d:79:d4:99:f2:fc:c8:71:
b4:3f:4c:a3:82:4f:02:f9:8e:69:74:d5:19:09:a9:40:0d:79:
a2:4e:ab:1c:56:bd:79:0b:a3:c5:3e:97:20:ee:0e:83:1e:f4:
e1:db:90:3b:ba:16:d7:67:5f:fa:7c:ae:0c:3c:51:20:f9:b4:
9b:1e:5d:af:79:78:60:b7:f4:41:65:de:71:21:38:58:b0:5c:
9a:c0:1c:f3:57:cd:7a:ac:59:a5:52:0e:94:c6:b1:c8:2e:a6:
82:e0:c6:0b:6d:15:49:5c:8e:bf:0b:77:dc:5b:63:23:56:ef:
66:5f:45:76:97:bf:c2:6a:51:91:3c:4c:7a:24:43:6f:f7:bf:
b0:a7:22:3f:0e:19:73:06:4d:75:e4:41:a5:95:2b:25:64:e3:
77:6f:eb:bb:04:6e:a1:0f:ea:97:9d:d6:90:7c:71:ef:fa:a7:
77:fa:51:3d
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAZVa72UkkxKaJrjWIFvmpyXPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhMmE0YmZkMmMwYzY5NzY1YTgyOTllZjc0OTY1Zjg2MmE3
MTQ4YjcwHhcNMjUwMzAzMDczNjMzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTE5OThjODllOGQ4NGJhY2MwMTNiMjk5YmNjYTRiMzhlY2UxNTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9kNUCsGqHP3O1CNIufncgvK48OI2
Q2pGKxBe+W3vjkkxSh08rP4KB3H2/eRbd43YrmOTukWoKuxb1oT94GxfwB/Z1jJW
3ytNXxW3nX7kfbTH/aSg5R+qCLbKd8Oz7sOhZnnx65Nb4anbyLfMIOyjmyrFnrEq
+t1VxQlLPzRsL0sMVf213fgXVRuj9TzvhN2lKFVWnP8K210PqjqbZp3fWeAJxnPw
uyjHq62PQIFV6SZFqZ6r5lUmJoFqBEptFm6VKjqhibxMOOIpMJAA4RYjkWmYmfZj
53GB+gc/ukGn+XEOQ5kKS2yFQxCciRxrQSXEJaCPKPnd3fri4Yf+l3Cb+QIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFBoZmMiejYS6zAE7KZvMpLOOzhUcMB8GA1UdIwQY
MBaAFBoqS/0sDGl2WoKZ73SWX4YqcUi3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2lwTF9Td01hWFphZ3BudmRKWmZoaXB4U0xjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi82NzdhZjgtODUzZS00OTNiLThiODUt
YmI3MDgwMGMyYTY1LzEvR2htWXlKNk5oTHJNQVRzcG04eWtzNDdPRlJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi82NzdhZjgtODUzZS00OTNiLThiODUtYmI3MDgwMGMyYTY1
LzEvR2lwTF9Td01hWFphZ3BudmRKWmZoaXB4U0xjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQGWWwAAwQC
uRSYAwQGvHVAAwQF1ExAAwQF1ewgMA0EAgACMAcDBQAqAg1wMA0GCSqGSIb3DQEB
CwUAA4IBAQChbB0vD9BRsURAzPV+oReRigrmQTt4lJmtPypBgwUxlAc6+UeHQ8Qm
FOTPJbVcgerdUQg1rUS54iDc8MPIW5rgsri++KXPVdHeupp+5DuBzn6YXXnUmfL8
yHG0P0yjgk8C+Y5pdNUZCalADXmiTqscVr15C6PFPpcg7g6DHvTh25A7uhbXZ1/6
fK4MPFEg+bSbHl2veXhgt/RBZd5xIThYsFyawBzzV816rFmlUg6UxrHILqaC4MYL
bRVJXI6/C3fcW2MjVu9mX0V2l7/CalGRPEx6JENv97+wpyI/DhlzBk115EGllSsl
ZON3b+u7BG6hD+qXndaQfHHv+qd3+lE9
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:10 2025 by rpki-client on console.sobornost.net