Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/SwslVoeuIqtqmAmquzYSu_X8YPE.roa
File: SwslVoeuIqtqmAmquzYSu_X8YPE.roa (raw, json)
Hash identifier: eCDwkA7q2PI++CV9soS5n5anBze84e4T04j0m/xl0QM=
Subject key identifier: 4B:0B:25:56:87:AE:22:AB:6A:98:09:AA:BB:36:12:BB:F5:FC:60:F1
Certificate issuer: /CN=dc86e3e928c7f0c9db69515ff3aa1f678cee43c0
Certificate serial: 019422FB6A9FCC7AEA595C28E04D77874E7C
Authority key identifier: DC:86:E3:E9:28:C7:F0:C9:DB:69:51:5F:F3:AA:1F:67:8C:EE:43:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/SwslVoeuIqtqmAmquzYSu_X8YPE.roa
Signing time: Wed 01 Jan 2025 17:48:09 +0000
ROA not before: Wed 01 Jan 2025 17:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200350
IP address blocks: 37.230.172.0/22 maxlen: 24
37.230.188.0/22 maxlen: 24
45.133.96.0/22 maxlen: 24
46.21.244.0/22 maxlen: 24
51.250.0.0/17 maxlen: 24
62.84.112.0/20 maxlen: 24
84.201.128.0/18 maxlen: 24
84.252.128.0/20 maxlen: 24
89.169.128.0/18 maxlen: 24
89.232.188.0/22 maxlen: 24
93.77.160.0/19 maxlen: 24
130.193.32.0/19 maxlen: 24
158.160.0.0/16 maxlen: 24
178.154.192.0/18 maxlen: 24
185.206.164.0/22 maxlen: 24
185.216.194.0/23 maxlen: 24
193.32.216.0/22 maxlen: 24
213.165.192.0/19 maxlen: 24
217.28.224.0/20 maxlen: 24
217.198.168.0/21 maxlen: 24
2a0d:d6c0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:6a:9f:cc:7a:ea:59:5c:28:e0:4d:77:87:4e:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc86e3e928c7f0c9db69515ff3aa1f678cee43c0
Validity
Not Before: Jan 1 17:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4b0b255687ae22ab6a9809aabb3612bbf5fc60f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:64:41:6e:f1:b5:20:74:79:a5:b5:f3:c0:f6:
c5:e1:eb:bc:53:1d:fb:c0:52:8d:40:ee:b1:d9:17:
38:49:a4:14:a7:51:1d:d2:70:bd:ea:27:d7:ac:f6:
cb:ec:0d:89:58:69:5d:8a:9c:8a:81:c2:dc:38:69:
d7:b8:df:df:80:8a:13:90:bf:c0:98:ef:05:8c:2e:
31:58:43:2b:7d:20:f8:87:da:7c:5e:28:17:b5:cf:
a7:ec:1d:15:2c:ae:b2:0c:02:af:4c:c1:a8:3b:67:
a4:57:38:38:83:b2:ef:05:82:63:87:6d:d5:12:44:
63:be:69:b0:22:33:e0:ff:c5:fc:38:66:d7:12:d7:
53:99:1e:6a:8a:06:75:99:a2:dd:97:db:14:58:df:
73:36:70:93:ca:64:5a:7d:fc:81:99:8e:35:55:6c:
ad:2e:cc:be:64:02:4e:27:ee:d1:7b:73:e8:f5:3a:
28:8b:30:50:03:df:ae:bd:e1:da:d6:30:a8:51:bc:
19:f5:18:fa:07:c0:69:64:56:72:1f:1c:12:17:45:
a7:21:c5:63:b2:e7:ab:70:89:01:2b:78:4f:9a:98:
76:4d:77:d7:fa:95:68:9d:88:47:5c:bb:51:c7:d1:
98:77:7d:a3:37:44:c7:74:d8:46:f7:65:73:d0:b9:
b4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:0B:25:56:87:AE:22:AB:6A:98:09:AA:BB:36:12:BB:F5:FC:60:F1
X509v3 Authority Key Identifier:
keyid:DC:86:E3:E9:28:C7:F0:C9:DB:69:51:5F:F3:AA:1F:67:8C:EE:43:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/SwslVoeuIqtqmAmquzYSu_X8YPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.172.0/22
37.230.188.0/22
45.133.96.0/22
46.21.244.0/22
51.250.0.0/17
62.84.112.0/20
84.201.128.0/18
84.252.128.0/20
89.169.128.0/18
89.232.188.0/22
93.77.160.0/19
130.193.32.0/19
158.160.0.0/16
178.154.192.0/18
185.206.164.0/22
185.216.194.0/23
193.32.216.0/22
213.165.192.0/19
217.28.224.0/20
217.198.168.0/21
IPv6:
2a0d:d6c0::/29
Signature Algorithm: sha256WithRSAEncryption
1d:e6:64:aa:c3:8a:6b:b3:ef:69:c9:98:bb:5f:bd:c1:70:38:
2f:ec:89:d8:50:54:ed:17:7f:9a:27:f6:0c:ee:7f:46:d9:6a:
e1:2d:8b:2a:2c:fb:58:ea:99:c1:9d:0d:33:00:37:95:94:1e:
57:49:e3:19:29:f3:ff:b3:64:2a:57:63:09:db:2d:5c:fa:8d:
dd:e0:5c:51:2e:3c:ab:da:cb:bc:3b:2e:16:50:fc:00:e8:45:
0a:77:0a:f0:e1:e0:72:94:b6:aa:03:42:a6:15:4e:ab:d3:bb:
94:88:aa:db:8d:34:75:c4:28:f2:e5:1a:43:a9:e5:07:cc:34:
36:df:a2:a3:63:32:6d:17:07:de:cd:76:fe:0c:83:14:af:f6:
7a:03:2b:dd:f0:17:c3:37:3f:bf:2a:61:6c:53:b6:f6:e5:0c:
68:df:63:29:5e:fd:ba:46:ba:76:6e:d7:f8:29:4c:98:66:8c:
6a:a2:b3:90:20:29:cf:2c:8c:ab:fe:7b:44:dd:90:a4:69:b6:
45:f8:1c:31:8c:21:80:25:d5:b8:8a:70:b9:18:0c:60:02:59:
04:56:37:4b:89:57:ab:07:28:35:2f:d3:62:a8:64:e0:6d:47:
d0:bc:0f:95:7d:d3:28:00:f1:66:0c:3c:67:25:e9:44:7c:87:
e2:09:cd:8a
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAZQi+2qfzHrqWVwo4E13h058MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjODZlM2U5MjhjN2YwYzlkYjY5NTE1ZmYzYWExZjY3OGNl
ZTQzYzAwHhcNMjUwMTAxMTc0ODA5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjBiMjU1Njg3YWUyMmFiNmE5ODA5YWFiYjM2MTJiYmY1ZmM2MGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomRBbvG1IHR5pbXzwPbF4eu8Ux37
wFKNQO6x2Rc4SaQUp1Ed0nC96ifXrPbL7A2JWGldipyKgcLcOGnXuN/fgIoTkL/A
mO8FjC4xWEMrfSD4h9p8XigXtc+n7B0VLK6yDAKvTMGoO2ekVzg4g7LvBYJjh23V
EkRjvmmwIjPg/8X8OGbXEtdTmR5qigZ1maLdl9sUWN9zNnCTymRaffyBmY41VWyt
Lsy+ZAJOJ+7Re3Po9TooizBQA9+uveHa1jCoUbwZ9Rj6B8BpZFZyHxwSF0WnIcVj
suercIkBK3hPmph2TXfX+pVonYhHXLtRx9GYd32jN0THdNhG92Vz0Lm0mQIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFEsLJVaHriKrapgJqrs2Erv1/GDxMB8GA1UdIwQY
MBaAFNyG4+kox/DJ22lRX/OqH2eM7kPAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0liajZTakg4TW5iYVZGZjg2b2ZaNHp1UThBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC80NzFhYTUtYzNmNy00YWZkLWIxMjIt
OWM4ZTU5YzI3NzFjLzEvU3dzbFZvZXVJcXRxbUFtcXV6WVN1X1g4WVBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC80NzFhYTUtYzNmNy00YWZkLWIxMjItOWM4ZTU5YzI3NzFj
LzEvM0liajZTakg4TW5iYVZGZjg2b2ZaNHp1UThBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjB9BAIAATB3AwQCJeas
AwQCJea8AwQCLYVgAwQCLhX0AwQHM/oAAwQEPlRwAwQGVMmAAwQEVPyAAwQGWamA
AwQCWei8AwQFXU2gAwQFgsEgAwMAnqADBAaymsADBAK5zqQDBAG52MIDBALBINgD
BAXVpcADBATZHOADBAPZxqgwDQQCAAIwBwMFAyoN1sAwDQYJKoZIhvcNAQELBQAD
ggEBAB3mZKrDimuz72nJmLtfvcFwOC/sidhQVO0Xf5on9gzuf0bZauEtiyos+1jq
mcGdDTMAN5WUHldJ4xkp8/+zZCpXYwnbLVz6jd3gXFEuPKvay7w7LhZQ/ADoRQp3
CvDh4HKUtqoDQqYVTqvTu5SIqtuNNHXEKPLlGkOp5QfMNDbfoqNjMm0XB97Ndv4M
gxSv9noDK93wF8M3P78qYWxTtvblDGjfYyle/bpGunZu1/gpTJhmjGqis5AgKc8s
jKv+e0TdkKRptkX4HDGMIYAl1biKcLkYDGACWQRWN0uJV6sHKDUv02KoZOBtR9C8
D5V90ygA8WYMPGcl6UR8h+IJzYo=
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:17:00 2025 by rpki-client on console.sobornost.net