Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/d4175d-192c-418c-972f-8ee21b74dd56/1/LYIPS63x1ixoPw8a99bc7Ju_jX8.roa
File: LYIPS63x1ixoPw8a99bc7Ju_jX8.roa (raw, json)
Hash identifier: dHLPmeLbBoURKOemdJYa1dxhlY4rdLdK2yR691erM0c=
Subject key identifier: 2D:82:0F:4B:AD:F1:D6:2C:68:3F:0F:1A:F7:D6:DC:EC:9B:BF:8D:7F
Certificate issuer: /CN=58015cc8da1f1bbf343e26ab208df8bb26fd53ae
Certificate serial: 01958AC03FF3D51DDC37C1B4D0AA2C2CBDC6
Authority key identifier: 58:01:5C:C8:DA:1F:1B:BF:34:3E:26:AB:20:8D:F8:BB:26:FD:53:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAFcyNofG780PiarII34uyb9U64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/d4175d-192c-418c-972f-8ee21b74dd56/1/LYIPS63x1ixoPw8a99bc7Ju_jX8.roa
Signing time: Wed 12 Mar 2025 14:26:49 +0000
ROA not before: Wed 12 Mar 2025 14:26:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15576
IP address blocks: 77.95.120.0/21 maxlen: 21
185.63.148.0/22 maxlen: 22
212.103.64.0/19 maxlen: 19
212.103.64.0/24 maxlen: 24
212.103.65.0/24 maxlen: 24
217.11.208.0/20 maxlen: 20
217.146.160.0/20 maxlen: 20
217.146.165.0/24 maxlen: 24
2a00:c38::/32 maxlen: 32
2a00:c38:1a5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8a:c0:3f:f3:d5:1d:dc:37:c1:b4:d0:aa:2c:2c:bd:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58015cc8da1f1bbf343e26ab208df8bb26fd53ae
Validity
Not Before: Mar 12 14:26:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d820f4badf1d62c683f0f1af7d6dcec9bbf8d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b1:dc:63:9f:74:d0:67:87:42:b0:59:a3:57:
d6:26:34:8b:25:c2:fd:a1:90:f9:a8:09:23:57:d9:
4a:2e:78:6d:a5:f9:60:42:d8:87:85:2a:d9:e0:23:
4f:e8:c1:d9:8f:23:ae:f7:0b:35:00:96:9c:a1:07:
7c:d1:a7:e4:20:42:f8:ab:a4:f7:88:02:71:fb:c4:
61:48:96:e6:8e:85:e0:4d:2e:ab:c0:e0:48:61:b8:
84:56:9b:b2:50:e9:a7:6f:32:44:f8:46:10:f0:55:
2c:16:9b:8c:e0:a4:33:3b:3e:ce:be:64:63:f2:dc:
84:31:75:d3:5e:0a:06:91:ce:51:58:0b:78:3f:5d:
ec:ce:78:33:a7:2e:d4:8f:a6:4c:11:e6:34:d5:8a:
38:21:c6:2f:c2:c7:d4:c4:8a:4b:56:f3:7c:94:12:
38:fc:43:a1:19:53:f7:c1:ad:88:c5:ed:b1:3f:a2:
ee:11:d7:30:b8:db:26:56:eb:f8:39:5e:06:93:a8:
ab:b7:ea:13:90:66:af:c6:85:22:f7:e7:f7:52:59:
95:2d:f2:f7:ce:69:be:05:d6:32:c4:0a:f0:6f:a6:
51:88:88:1b:6e:f8:4b:09:1a:4c:0f:a5:ad:e3:dc:
63:d1:0b:f6:f2:1e:fa:47:27:80:0a:d9:fb:1e:8f:
03:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:82:0F:4B:AD:F1:D6:2C:68:3F:0F:1A:F7:D6:DC:EC:9B:BF:8D:7F
X509v3 Authority Key Identifier:
keyid:58:01:5C:C8:DA:1F:1B:BF:34:3E:26:AB:20:8D:F8:BB:26:FD:53:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAFcyNofG780PiarII34uyb9U64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d4175d-192c-418c-972f-8ee21b74dd56/1/LYIPS63x1ixoPw8a99bc7Ju_jX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d4175d-192c-418c-972f-8ee21b74dd56/1/WAFcyNofG780PiarII34uyb9U64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.120.0/21
185.63.148.0/22
212.103.64.0/19
217.11.208.0/20
217.146.160.0/20
IPv6:
2a00:c38::/32
Signature Algorithm: sha256WithRSAEncryption
93:a7:66:09:3c:ed:17:b8:3a:3c:67:39:83:68:90:50:33:18:
16:d7:fd:db:18:3f:3d:6a:a7:bb:47:fc:cb:3c:d0:ae:27:25:
cd:81:ff:fd:f1:72:83:ae:58:f0:3e:5e:7d:62:12:de:81:f0:
6c:0d:45:49:ce:64:52:38:91:34:f3:2b:04:5f:66:f5:b5:63:
7f:7f:b3:83:98:1c:60:ef:76:8b:f8:06:f9:66:70:24:aa:d2:
f2:bb:28:0d:c8:23:99:58:a7:21:3e:cc:b6:ab:e9:ff:14:d9:
8c:73:e0:6e:66:ac:1d:9d:d6:7d:18:89:60:ef:17:fa:34:75:
f4:cf:bd:04:26:d9:5e:09:ed:87:eb:38:26:74:fa:b3:5b:b0:
7d:df:1f:fd:ee:a9:3d:76:a7:b9:4c:6c:62:39:18:e3:e2:a0:
a0:52:5d:f0:5a:f3:9a:d0:f4:22:10:32:57:12:73:d1:b1:34:
16:71:1e:28:2e:f5:31:9d:10:94:c8:36:5f:63:82:d2:8a:6e:
3f:2d:98:c4:d0:cf:eb:33:64:5a:53:16:47:55:76:1e:c8:75:
61:f6:b6:84:0b:49:bd:55:ae:b8:1d:b8:b7:99:e9:1b:cb:9c:
e7:c2:16:2d:80:84:7f:db:39:e4:ae:fa:49:74:46:37:63:5b:
0c:20:9f:92
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAZWKwD/z1R3cN8G00KosLL3GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4MDE1Y2M4ZGExZjFiYmYzNDNlMjZhYjIwOGRmOGJiMjZm
ZDUzYWUwHhcNMjUwMzEyMTQyNjQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDgyMGY0YmFkZjFkNjJjNjgzZjBmMWFmN2Q2ZGNlYzliYmY4ZDdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLHcY5900GeHQrBZo1fWJjSLJcL9
oZD5qAkjV9lKLnhtpflgQtiHhSrZ4CNP6MHZjyOu9ws1AJacoQd80afkIEL4q6T3
iAJx+8RhSJbmjoXgTS6rwOBIYbiEVpuyUOmnbzJE+EYQ8FUsFpuM4KQzOz7OvmRj
8tyEMXXTXgoGkc5RWAt4P13szngzpy7Uj6ZMEeY01Yo4IcYvwsfUxIpLVvN8lBI4
/EOhGVP3wa2Ixe2xP6LuEdcwuNsmVuv4OV4Gk6irt+oTkGavxoUi9+f3UlmVLfL3
zmm+BdYyxArwb6ZRiIgbbvhLCRpMD6Wt49xj0Qv28h76RyeACtn7Ho8DRwIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFC2CD0ut8dYsaD8PGvfW3Oybv41/MB8GA1UdIwQY
MBaAFFgBXMjaHxu/ND4mqyCN+Lsm/VOuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0FGY3lOb2ZHNzgwUGlhcklJMzR1eWI5VTY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9kNDE3NWQtMTkyYy00MThjLTk3MmYt
OGVlMjFiNzRkZDU2LzEvTFlJUFM2M3gxaXhvUHc4YTk5YmM3SnVfalg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9kNDE3NWQtMTkyYy00MThjLTk3MmYtOGVlMjFiNzRkZDU2
LzEvV0FGY3lOb2ZHNzgwUGlhcklJMzR1eWI5VTY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQDTV94AwQC
uT+UAwQF1GdAAwQE2QvQAwQE2ZKgMA0EAgACMAcDBQAqAAw4MA0GCSqGSIb3DQEB
CwUAA4IBAQCTp2YJPO0XuDo8ZzmDaJBQMxgW1/3bGD89aqe7R/zLPNCuJyXNgf/9
8XKDrljwPl59YhLegfBsDUVJzmRSOJE08ysEX2b1tWN/f7ODmBxg73aL+Ab5ZnAk
qtLyuygNyCOZWKchPsy2q+n/FNmMc+BuZqwdndZ9GIlg7xf6NHX0z70EJtleCe2H
6zgmdPqzW7B93x/97qk9dqe5TGxiORjj4qCgUl3wWvOa0PQiEDJXEnPRsTQWcR4o
LvUxnRCUyDZfY4LSim4/LZjE0M/rM2RaUxZHVXYeyHVh9raEC0m9Va64Hbi3mekb
y5znwhYtgIR/2znkrvpJdEY3Y1sMIJ+S
-----END CERTIFICATE-----
Generated at Wed Apr 2 00:24:04 2025 by rpki-client on console.sobornost.net