Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/8Gsvd3TyXZD6ajfj3SVq3WDGLjI.roa
File: 8Gsvd3TyXZD6ajfj3SVq3WDGLjI.roa (raw, json)
Hash identifier: 3V9SudFT1DVGn3o5U5m9orIlPzYqnO2XF+cepPCGDfw=
Subject key identifier: F0:6B:2F:77:74:F2:5D:90:FA:6A:37:E3:DD:25:6A:DD:60:C6:2E:32
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 019444D247BE8C6CF7BC8472DAFC043144FF
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/8Gsvd3TyXZD6ajfj3SVq3WDGLjI.roa
Signing time: Wed 08 Jan 2025 07:30:19 +0000
ROA not before: Wed 08 Jan 2025 07:30:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 77.76.0.0/23 maxlen: 23
77.76.4.0/22 maxlen: 22
78.128.2.0/23 maxlen: 23
78.128.10.0/23 maxlen: 23
78.128.12.0/22 maxlen: 22
78.128.16.0/20 maxlen: 20
78.128.36.0/22 maxlen: 22
78.128.40.0/23 maxlen: 23
78.128.52.0/22 maxlen: 22
78.128.56.0/22 maxlen: 22
78.128.63.0/24 maxlen: 24
78.128.74.0/24 maxlen: 24
78.128.75.0/24 maxlen: 24
78.128.82.0/23 maxlen: 23
78.128.84.0/22 maxlen: 22
78.128.88.0/22 maxlen: 22
78.128.96.0/23 maxlen: 23
78.128.100.0/22 maxlen: 22
78.128.104.0/22 maxlen: 22
78.128.115.0/24 maxlen: 24
78.128.116.0/23 maxlen: 23
78.128.120.0/23 maxlen: 23
78.128.122.0/24 maxlen: 24
78.128.123.0/24 maxlen: 24
78.142.9.0/24 maxlen: 24
78.142.10.0/23 maxlen: 23
78.142.12.0/22 maxlen: 22
78.142.30.0/23 maxlen: 23
79.124.47.0/24 maxlen: 24
83.222.185.0/24 maxlen: 24
84.201.224.0/20 maxlen: 20
91.148.149.0/24 maxlen: 24
91.148.150.0/23 maxlen: 23
91.148.152.0/21 maxlen: 21
91.148.162.0/23 maxlen: 23
91.148.164.0/23 maxlen: 23
91.148.166.0/24 maxlen: 24
91.148.169.0/24 maxlen: 24
91.148.170.0/23 maxlen: 23
91.148.172.0/22 maxlen: 22
91.148.176.0/21 maxlen: 21
91.148.186.0/23 maxlen: 23
130.185.227.0/24 maxlen: 24
193.24.240.0/22 maxlen: 22
193.200.14.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:44:d2:47:be:8c:6c:f7:bc:84:72:da:fc:04:31:44:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jan 8 07:30:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f06b2f7774f25d90fa6a37e3dd256add60c62e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6f:ca:04:3a:72:55:cf:c3:bc:ab:f2:f5:cf:
62:ee:7c:01:f0:81:f4:fc:8c:c4:81:85:d0:ac:31:
42:85:2c:c9:02:01:30:34:67:dd:34:2e:a2:f1:7b:
d4:37:0c:77:5b:50:05:05:c7:72:01:71:17:ef:db:
03:cc:8e:e7:3f:0d:7b:50:ac:d4:e9:8a:2b:78:d7:
3e:1d:d4:c2:b7:33:35:27:73:21:d7:67:db:e0:9d:
89:f9:8f:68:92:ad:a1:a9:ad:9f:45:03:67:7d:4d:
dc:c8:1f:bb:d6:8e:e7:dd:34:c3:c8:a8:b1:40:8c:
3d:a0:36:1f:b7:52:49:ad:4e:f0:38:19:db:ae:b6:
22:9a:79:a4:10:05:44:46:23:c2:85:2c:2c:a5:1a:
9f:71:49:42:cb:d5:89:0c:3e:84:ba:4b:04:2f:89:
62:72:62:f5:b5:b5:81:73:f3:0c:f7:53:56:3d:52:
c6:c4:92:5c:3e:ce:d4:4a:e4:00:ef:50:40:75:14:
23:a2:6a:3a:0e:80:11:a5:98:2f:46:ed:df:f1:e3:
ea:0b:8d:c2:28:8c:ca:b6:cb:52:4d:84:dc:eb:68:
32:fd:e3:ce:55:1b:ff:8e:fa:39:99:81:bd:83:66:
09:3a:eb:dd:59:10:74:f2:0d:81:cb:36:a6:bd:0e:
b8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:6B:2F:77:74:F2:5D:90:FA:6A:37:E3:DD:25:6A:DD:60:C6:2E:32
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/8Gsvd3TyXZD6ajfj3SVq3WDGLjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.0.0/23
77.76.4.0/22
78.128.2.0/23
78.128.10.0-78.128.31.255
78.128.36.0-78.128.41.255
78.128.52.0-78.128.59.255
78.128.63.0/24
78.128.74.0/23
78.128.82.0-78.128.91.255
78.128.96.0/23
78.128.100.0-78.128.107.255
78.128.115.0-78.128.117.255
78.128.120.0/22
78.142.9.0-78.142.15.255
78.142.30.0/23
79.124.47.0/24
83.222.185.0/24
84.201.224.0/20
91.148.149.0-91.148.159.255
91.148.162.0-91.148.166.255
91.148.169.0-91.148.183.255
91.148.186.0/23
130.185.227.0/24
193.24.240.0/22
193.200.14.0/23
Signature Algorithm: sha256WithRSAEncryption
30:eb:eb:5c:81:15:ef:ea:77:b3:3d:18:12:60:25:bc:91:61:
f2:d5:28:ed:4a:28:32:ea:fc:56:03:ca:0a:bd:a7:89:44:22:
27:a6:c6:6b:06:5a:ea:ca:03:33:a3:d1:33:14:fc:9f:c9:a1:
08:ec:36:5a:90:9e:e6:64:fb:48:38:c0:b6:75:d5:c7:a3:85:
e6:d3:c2:30:03:16:d0:f9:17:4f:4a:bc:b4:d5:7c:c6:99:43:
f2:07:f5:66:a4:7b:13:d3:d3:18:e2:75:ea:f7:c5:8e:23:bd:
ed:c6:69:dd:dc:cc:87:ff:31:d3:b7:21:43:b8:c0:eb:38:8d:
38:7d:0f:06:99:64:f1:80:6a:94:27:ba:60:47:c8:ae:ab:70:
1f:cc:f0:3c:fa:9f:c7:a0:4f:d4:6b:50:fe:db:42:fd:99:37:
ed:b4:e4:13:55:ca:a5:b5:7a:7a:5c:df:c2:01:65:bf:f6:f6:
4e:af:58:df:1a:89:1c:bd:6f:32:8d:32:24:22:d2:9d:8a:bb:
39:5b:4b:f8:09:55:27:31:13:31:30:6e:43:70:e5:a6:88:d9:
f6:84:d1:fd:33:61:bf:78:ba:77:64:9a:5e:fc:b0:3b:61:77:
d9:76:86:31:e7:c0:1c:8b:a4:43:0e:53:b3:74:82:97:90:47:
f2:16:66:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:40:23 2025 by rpki-client on console.sobornost.net