Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/v8yHhVnQZ24d3Hqq-_MmljsyF-o.roa
File: v8yHhVnQZ24d3Hqq-_MmljsyF-o.roa (raw, json)
Hash identifier: ldyVLPmDRLippOD+hn4EjHJmd9dcu8cUfl/mwJelT5M=
Subject key identifier: BF:CC:87:85:59:D0:67:6E:1D:DC:7A:AA:FB:F3:26:96:3B:32:17:EA
Certificate issuer: /CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Certificate serial: 0194214451849614DB327D21C510558CBB92
Authority key identifier: A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/v8yHhVnQZ24d3Hqq-_MmljsyF-o.roa
Signing time: Wed 01 Jan 2025 09:48:32 +0000
ROA not before: Wed 01 Jan 2025 09:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47119
IP address blocks: 79.174.32.0/19 maxlen: 19
79.174.32.0/20 maxlen: 20
79.174.32.0/22 maxlen: 22
79.174.32.0/23 maxlen: 23
79.174.32.0/24 maxlen: 24
79.174.33.0/24 maxlen: 24
79.174.34.0/23 maxlen: 23
79.174.34.0/24 maxlen: 24
79.174.35.0/24 maxlen: 24
79.174.36.0/23 maxlen: 23
79.174.36.0/24 maxlen: 24
79.174.37.0/24 maxlen: 24
79.174.38.0/23 maxlen: 23
79.174.38.0/24 maxlen: 24
79.174.39.0/24 maxlen: 24
79.174.40.0/22 maxlen: 22
79.174.40.0/23 maxlen: 23
79.174.40.0/24 maxlen: 24
79.174.41.0/24 maxlen: 24
79.174.42.0/23 maxlen: 23
79.174.42.0/24 maxlen: 24
79.174.43.0/24 maxlen: 24
79.174.44.0/22 maxlen: 22
79.174.44.0/23 maxlen: 23
79.174.44.0/24 maxlen: 24
79.174.45.0/24 maxlen: 24
79.174.46.0/23 maxlen: 23
79.174.46.0/24 maxlen: 24
79.174.47.0/24 maxlen: 24
79.174.48.0/20 maxlen: 20
79.174.48.0/22 maxlen: 22
79.174.48.0/23 maxlen: 23
79.174.48.0/24 maxlen: 24
79.174.49.0/24 maxlen: 24
79.174.50.0/23 maxlen: 23
79.174.50.0/24 maxlen: 24
79.174.51.0/24 maxlen: 24
79.174.52.0/23 maxlen: 23
79.174.52.0/24 maxlen: 24
79.174.53.0/24 maxlen: 24
79.174.54.0/23 maxlen: 23
79.174.54.0/24 maxlen: 24
79.174.55.0/24 maxlen: 24
79.174.56.0/22 maxlen: 22
79.174.56.0/23 maxlen: 23
79.174.56.0/24 maxlen: 24
79.174.57.0/24 maxlen: 24
79.174.58.0/23 maxlen: 23
79.174.58.0/24 maxlen: 24
79.174.59.0/24 maxlen: 24
79.174.60.0/22 maxlen: 22
79.174.60.0/23 maxlen: 23
79.174.60.0/24 maxlen: 24
79.174.61.0/24 maxlen: 24
79.174.62.0/23 maxlen: 23
79.174.62.0/24 maxlen: 24
79.174.63.0/24 maxlen: 24
136.169.220.0/22 maxlen: 22
136.169.220.0/23 maxlen: 23
136.169.220.0/24 maxlen: 24
136.169.221.0/24 maxlen: 24
136.169.222.0/23 maxlen: 23
136.169.222.0/24 maxlen: 24
136.169.223.0/24 maxlen: 24
188.191.112.0/20 maxlen: 20
188.191.112.0/21 maxlen: 21
188.191.112.0/22 maxlen: 22
188.191.112.0/23 maxlen: 23
188.191.112.0/24 maxlen: 24
188.191.113.0/24 maxlen: 24
188.191.114.0/23 maxlen: 23
188.191.114.0/24 maxlen: 24
188.191.115.0/24 maxlen: 24
188.191.116.0/22 maxlen: 22
188.191.116.0/23 maxlen: 23
188.191.116.0/24 maxlen: 24
188.191.117.0/24 maxlen: 24
188.191.118.0/23 maxlen: 23
188.191.118.0/24 maxlen: 24
188.191.119.0/24 maxlen: 24
188.191.120.0/22 maxlen: 22
188.191.120.0/23 maxlen: 23
188.191.120.0/24 maxlen: 24
188.191.121.0/24 maxlen: 24
188.191.122.0/23 maxlen: 23
188.191.122.0/24 maxlen: 24
188.191.123.0/24 maxlen: 24
188.191.124.0/22 maxlen: 22
188.191.124.0/23 maxlen: 23
188.191.124.0/24 maxlen: 24
188.191.126.0/23 maxlen: 23
188.191.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:51:84:96:14:db:32:7d:21:c5:10:55:8c:bb:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Validity
Not Before: Jan 1 09:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bfcc878559d0676e1ddc7aaafbf326963b3217ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:15:4a:10:0f:6c:22:cb:76:56:f9:6e:a9:bd:
3e:79:9e:e9:f1:da:38:a4:fa:bd:15:74:8e:bd:d7:
58:39:0e:13:d0:8e:5d:b7:76:dc:f6:31:90:65:9c:
9b:de:2d:a5:e4:6e:12:32:bc:34:11:0e:db:44:52:
f7:fe:31:1c:82:8e:b6:f9:c7:91:b2:44:df:48:47:
e6:67:22:0b:51:1b:50:72:1a:86:91:2c:60:36:83:
fb:8d:3c:54:00:91:4d:65:88:3b:c4:93:fd:f6:0f:
0d:77:90:45:95:3d:08:42:29:8d:c7:0d:1e:fe:a4:
79:2e:76:a8:a4:05:44:6b:2b:ef:d2:83:a9:5c:c5:
0a:1f:71:d1:05:74:2c:9c:26:ba:2c:68:0e:35:1e:
10:97:69:38:32:cf:9a:25:e4:f8:a6:64:16:a7:ae:
e2:5c:9a:fd:07:1e:c6:ef:11:42:00:1e:e3:93:ed:
d5:a5:3a:d4:f3:01:7f:05:94:3f:0f:32:b9:b7:0c:
2b:fc:b6:ae:4f:dc:8d:af:f0:7c:31:89:49:cc:dd:
4d:e0:4f:93:5a:ae:6e:3a:06:ad:63:9e:7c:f1:98:
3c:3a:e5:9d:69:bd:3d:d3:42:b4:6f:8b:7b:63:a9:
d9:4e:2b:4f:74:f7:81:06:18:f4:b1:c4:94:66:5b:
79:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:CC:87:85:59:D0:67:6E:1D:DC:7A:AA:FB:F3:26:96:3B:32:17:EA
X509v3 Authority Key Identifier:
keyid:A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/v8yHhVnQZ24d3Hqq-_MmljsyF-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.174.32.0/19
136.169.220.0/22
188.191.112.0/20
Signature Algorithm: sha256WithRSAEncryption
7e:f5:e2:cc:22:8d:83:d5:ae:3f:fe:98:ca:1a:e1:a6:09:7d:
fb:86:ed:2f:ea:e3:6f:a2:ae:ff:a4:12:1a:84:c0:e6:7f:54:
3f:f1:b5:c5:dd:8b:53:dc:ef:b9:28:f9:72:65:2b:66:88:b2:
2e:2d:0a:95:57:95:ef:37:b3:a4:09:29:3f:fb:af:9e:f5:7e:
5e:4a:cc:b2:09:59:67:e7:37:3f:fc:2b:7b:7e:34:2d:6c:a6:
61:25:dc:fb:b6:1b:e5:19:e7:6f:1c:22:56:4a:89:c1:06:54:
d0:7e:94:74:26:77:97:62:47:49:10:6b:42:6b:7a:59:dd:6b:
62:5c:ef:fd:60:ab:85:47:e9:d9:d9:67:30:64:a4:69:72:5d:
4e:be:a9:4a:00:f0:c0:e2:37:22:1f:96:5a:68:c9:7a:f0:f4:
7b:9d:d2:58:8b:bd:1c:7c:11:41:5d:b5:4d:1e:0d:9e:bb:27:
89:b0:72:ad:e4:9b:9a:e5:7e:47:f9:3b:33:f3:b1:8f:6d:6c:
e3:9b:3f:97:2d:ea:7b:f4:d6:73:d4:0b:e2:e2:c5:3c:00:43:
8a:4b:a9:ad:46:a1:50:1f:bb:d6:a6:78:65:1a:24:79:15:d7:
59:b0:97:a9:9f:55:a2:98:08:9e:ad:da:66:a1:8c:2d:15:3d:
02:bd:01:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:29 2025 by rpki-client on console.sobornost.net