Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/_YIHsKtpSrfiDTi3IftioZKK8nw.roa
File: _YIHsKtpSrfiDTi3IftioZKK8nw.roa (raw, json)
Hash identifier: uFJ4Vp/00EgGhX0ZCpkxTcb4OukQ0RzSmiH9cmyjOHk=
Subject key identifier: FD:82:07:B0:AB:69:4A:B7:E2:0D:38:B7:21:FB:62:A1:92:8A:F2:7C
Certificate issuer: /CN=78d778fe5754dc3e16d92270424be21b9281ec72
Certificate serial: 0194F027FEB7F861D4453D94C3E44DEE578C
Authority key identifier: 78:D7:78:FE:57:54:DC:3E:16:D9:22:70:42:4B:E2:1B:92:81:EC:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNd4_ldU3D4W2SJwQkviG5KB7HI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/_YIHsKtpSrfiDTi3IftioZKK8nw.roa
Signing time: Mon 10 Feb 2025 13:59:00 +0000
ROA not before: Mon 10 Feb 2025 13:59:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51018
IP address blocks: 95.159.64.0/18 maxlen: 18
95.159.64.0/20 maxlen: 20
95.159.64.0/24 maxlen: 24
95.159.65.0/24 maxlen: 24
95.159.66.0/24 maxlen: 24
95.159.67.0/24 maxlen: 24
95.159.68.0/24 maxlen: 24
95.159.69.0/24 maxlen: 24
95.159.70.0/24 maxlen: 24
95.159.71.0/24 maxlen: 24
95.159.72.0/24 maxlen: 24
95.159.73.0/24 maxlen: 24
95.159.74.0/24 maxlen: 24
95.159.75.0/24 maxlen: 24
95.159.76.0/24 maxlen: 24
95.159.77.0/24 maxlen: 24
95.159.78.0/24 maxlen: 24
95.159.79.0/24 maxlen: 24
95.159.80.0/20 maxlen: 20
95.159.80.0/22 maxlen: 22
95.159.80.0/23 maxlen: 23
95.159.80.0/24 maxlen: 24
95.159.81.0/24 maxlen: 24
95.159.82.0/23 maxlen: 23
95.159.82.0/24 maxlen: 24
95.159.83.0/24 maxlen: 24
95.159.84.0/22 maxlen: 22
95.159.84.0/23 maxlen: 23
95.159.84.0/24 maxlen: 24
95.159.85.0/24 maxlen: 24
95.159.86.0/23 maxlen: 23
95.159.86.0/24 maxlen: 24
95.159.87.0/24 maxlen: 24
95.159.88.0/22 maxlen: 22
95.159.88.0/23 maxlen: 23
95.159.88.0/24 maxlen: 24
95.159.89.0/24 maxlen: 24
95.159.90.0/24 maxlen: 24
95.159.91.0/24 maxlen: 24
95.159.92.0/24 maxlen: 24
95.159.93.0/24 maxlen: 24
95.159.94.0/24 maxlen: 24
95.159.95.0/24 maxlen: 24
95.159.96.0/20 maxlen: 20
95.159.96.0/24 maxlen: 24
95.159.97.0/24 maxlen: 24
95.159.98.0/24 maxlen: 24
95.159.99.0/24 maxlen: 24
95.159.100.0/24 maxlen: 24
95.159.101.0/24 maxlen: 24
95.159.102.0/24 maxlen: 24
95.159.103.0/24 maxlen: 24
95.159.104.0/22 maxlen: 22
95.159.104.0/24 maxlen: 24
95.159.105.0/24 maxlen: 24
95.159.106.0/24 maxlen: 24
95.159.107.0/24 maxlen: 24
95.159.108.0/24 maxlen: 24
95.159.109.0/24 maxlen: 24
95.159.110.0/24 maxlen: 24
95.159.111.0/24 maxlen: 24
95.159.112.0/20 maxlen: 20
95.159.112.0/21 maxlen: 21
95.159.112.0/24 maxlen: 24
95.159.113.0/24 maxlen: 24
95.159.114.0/24 maxlen: 24
95.159.115.0/24 maxlen: 24
95.159.116.0/24 maxlen: 24
95.159.117.0/24 maxlen: 24
95.159.118.0/24 maxlen: 24
95.159.119.0/24 maxlen: 24
95.159.120.0/21 maxlen: 21
95.159.120.0/24 maxlen: 24
95.159.121.0/24 maxlen: 24
95.159.122.0/24 maxlen: 24
95.159.123.0/24 maxlen: 24
95.159.124.0/24 maxlen: 24
95.159.125.0/24 maxlen: 24
95.159.126.0/24 maxlen: 24
95.159.127.0/24 maxlen: 24
178.22.32.0/21 maxlen: 21
178.22.32.0/22 maxlen: 22
178.22.36.0/22 maxlen: 22
194.180.40.0/22 maxlen: 22
194.180.40.0/23 maxlen: 23
194.180.40.0/24 maxlen: 24
2a01:58a0::/32 maxlen: 32
2a01:58a0::/40 maxlen: 40
2a01:58a0:100::/40 maxlen: 40
2a01:58a0:200::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f0:27:fe:b7:f8:61:d4:45:3d:94:c3:e4:4d:ee:57:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78d778fe5754dc3e16d92270424be21b9281ec72
Validity
Not Before: Feb 10 13:59:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fd8207b0ab694ab7e20d38b721fb62a1928af27c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f0:16:4f:b0:2c:90:2c:89:c6:a3:25:7c:03:
4a:d2:f4:82:70:07:14:7d:99:b7:db:ba:80:db:4b:
ad:de:e5:b4:3c:97:43:f2:0a:fb:1f:fa:1d:0b:8b:
b6:eb:ee:0e:cc:5c:3e:1a:5b:36:a4:43:cd:e0:46:
21:b0:e0:8a:cf:13:92:7d:b4:77:0f:e5:57:9a:b0:
4d:66:a9:e9:97:e7:f1:f6:da:cf:a4:72:04:fd:d6:
ff:33:7e:eb:b6:d1:a2:ec:dd:92:54:92:26:23:2f:
ed:65:90:84:43:d5:0e:b6:1a:f6:96:a1:63:aa:4d:
75:0e:3e:4f:84:13:72:4d:47:0e:a2:a4:a3:a2:df:
91:d3:31:de:e0:d8:2c:14:af:19:e8:e7:cd:81:cb:
d4:82:d8:46:eb:18:a0:48:f0:ba:f3:d6:38:5b:bf:
e3:1c:3d:54:fe:5b:1f:33:9f:00:e0:59:7d:74:97:
cc:51:03:93:b3:fa:5d:3a:46:75:da:28:4b:2e:06:
f0:eb:7a:6c:8f:1f:51:92:f0:6e:0b:a7:6a:e4:3a:
fc:8b:24:fb:94:3e:d3:94:b1:f1:73:f3:56:bb:65:
e5:72:d9:ee:6b:40:1f:38:b1:3a:c8:f1:45:ad:0f:
37:dc:c7:c8:f8:b7:ce:c0:87:89:b8:b0:5f:b5:3d:
66:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:82:07:B0:AB:69:4A:B7:E2:0D:38:B7:21:FB:62:A1:92:8A:F2:7C
X509v3 Authority Key Identifier:
keyid:78:D7:78:FE:57:54:DC:3E:16:D9:22:70:42:4B:E2:1B:92:81:EC:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNd4_ldU3D4W2SJwQkviG5KB7HI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/_YIHsKtpSrfiDTi3IftioZKK8nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/eNd4_ldU3D4W2SJwQkviG5KB7HI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.159.64.0/18
178.22.32.0/21
194.180.40.0/22
IPv6:
2a01:58a0::/32
Signature Algorithm: sha256WithRSAEncryption
4f:14:c4:bf:54:a4:82:92:2c:e1:32:07:47:43:c7:d6:63:68:
2a:53:15:77:69:bf:17:87:a6:b7:96:e7:3f:1d:b6:7d:ae:86:
fb:d7:8a:83:75:0c:a8:0c:e3:2d:5d:7d:c3:23:2e:ac:81:7f:
f2:50:ef:84:da:03:c3:7e:b7:03:e3:ec:32:18:9b:96:45:71:
4e:a4:0c:1d:5c:87:b2:aa:08:a4:46:1f:ae:e0:c2:8d:71:68:
a8:90:99:e1:9b:8c:f6:b6:ab:63:45:64:33:c3:ef:04:30:6d:
52:4b:1f:57:bd:b4:d8:f7:0c:11:13:b7:15:fc:11:54:85:52:
3b:a7:41:1b:47:cd:a8:db:66:72:67:0c:03:bb:12:41:0b:e0:
5a:92:9c:f9:2e:af:34:94:d7:2a:8f:7f:de:ce:9f:cf:a4:02:
70:fa:9a:ca:f9:71:7f:4d:14:9a:e4:16:c7:ef:e3:bb:dc:6c:
17:3d:55:0e:a0:2f:ea:b8:96:51:53:ab:f9:76:e0:40:0a:32:
12:98:7c:5f:7c:bb:c2:bb:92:60:f7:2b:c3:36:b3:fa:92:ba:
13:c4:0d:6f:fe:8d:3e:9e:e4:46:93:85:ef:ad:2b:61:ea:50:
fa:6c:3c:43:de:0a:87:fd:38:4d:14:64:be:e3:02:32:37:96:
d9:4e:8e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:39 2025 by rpki-client on console.sobornost.net