Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/CTV38ZT_kPdUbW8ChEbSmJ6D_xY.roa
File: CTV38ZT_kPdUbW8ChEbSmJ6D_xY.roa (raw, json)
Hash identifier: yntCphEUvGZYiNPfiCzzcsgLL+fxDyvsgRdAxblWwLU=
Subject key identifier: 09:35:77:F1:94:FF:90:F7:54:6D:6F:02:84:46:D2:98:9E:83:FF:16
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 01941FFA6D16E0110E531A7D4573D6737F65
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/CTV38ZT_kPdUbW8ChEbSmJ6D_xY.roa
Signing time: Wed 01 Jan 2025 03:48:13 +0000
ROA not before: Wed 01 Jan 2025 03:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212477
IP address blocks: 37.77.151.0/24 maxlen: 24
45.90.12.0/22 maxlen: 24
45.90.116.0/22 maxlen: 24
62.3.53.0/24 maxlen: 24
77.87.126.0/24 maxlen: 24
89.248.65.0/24 maxlen: 24
94.154.115.0/24 maxlen: 24
109.205.63.0/24 maxlen: 24
146.19.119.0/24 maxlen: 24
146.19.231.0/24 maxlen: 24
178.212.79.0/24 maxlen: 24
185.138.165.0/24 maxlen: 24
185.149.150.0/24 maxlen: 24
193.221.208.0/24 maxlen: 24
2a0b:b680::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:6d:16:e0:11:0e:53:1a:7d:45:73:d6:73:7f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Jan 1 03:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=093577f194ff90f7546d6f028446d2989e83ff16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9f:f7:90:88:29:f7:cb:a5:d1:32:b1:37:d7:
cc:6b:38:fc:55:1d:4c:9c:3b:c6:ac:b5:b6:e9:05:
17:43:69:49:29:66:dd:ad:94:7f:60:97:6a:ae:e4:
97:55:cd:1e:42:32:7d:c9:06:9b:d7:f9:b0:32:dc:
b3:de:73:43:46:df:21:36:f5:0e:6e:b5:cd:8b:77:
6e:b5:3a:3a:28:fb:b5:48:98:29:3e:85:f1:1b:28:
04:44:61:12:1e:88:6d:00:21:9f:98:57:e6:a2:2b:
50:52:17:e6:32:4f:7e:fd:e2:89:e6:46:55:e3:e2:
8b:ec:a1:47:f2:f6:0d:d2:f3:c5:00:50:f3:be:1e:
c0:e2:9e:e7:73:07:3a:e8:38:27:56:8f:9f:9a:f0:
77:f0:34:32:78:75:f6:7f:32:d9:3d:fe:23:c5:7c:
79:4d:2f:3c:3c:97:29:92:79:3c:8d:39:ea:1d:96:
7d:cb:7b:f1:7b:90:3a:c6:c5:06:25:8d:c4:7d:1d:
19:e8:b0:ff:5b:01:e9:20:72:35:47:cc:7a:4c:e0:
2e:39:3e:af:39:20:99:50:19:11:d8:d1:ec:3d:3c:
65:89:1e:d5:56:c2:47:88:a3:4c:4a:9d:93:e1:ef:
d8:c7:32:8a:28:51:06:fa:64:fb:e9:46:d4:22:43:
70:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:35:77:F1:94:FF:90:F7:54:6D:6F:02:84:46:D2:98:9E:83:FF:16
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/CTV38ZT_kPdUbW8ChEbSmJ6D_xY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.151.0/24
45.90.12.0/22
45.90.116.0/22
62.3.53.0/24
77.87.126.0/24
89.248.65.0/24
94.154.115.0/24
109.205.63.0/24
146.19.119.0/24
146.19.231.0/24
178.212.79.0/24
185.138.165.0/24
185.149.150.0/24
193.221.208.0/24
IPv6:
2a0b:b680::/29
Signature Algorithm: sha256WithRSAEncryption
0f:cb:23:e9:31:c7:61:38:17:a1:e6:6e:d7:3a:b5:99:67:fa:
42:bd:00:0e:b0:b7:b7:eb:72:0b:83:e7:13:a4:75:46:93:a3:
36:61:87:dc:82:47:60:dc:52:ac:ac:19:f2:f2:22:33:54:4d:
87:e0:b8:47:ae:16:e1:c5:c8:fd:8c:b0:cb:0b:43:76:af:0a:
9f:2b:d4:be:02:be:7f:f7:a8:31:de:9c:21:90:25:a9:1b:88:
4d:e6:8b:8e:5a:2a:b0:0d:41:89:bd:0f:5f:ae:1a:78:6a:ac:
d8:74:4a:1f:74:f7:44:20:c4:2e:8e:68:61:94:e3:5e:a2:1c:
74:d6:c2:87:1c:5d:8e:28:69:81:00:f5:c4:4a:b0:e2:6a:e9:
ff:81:ba:cc:3d:e5:55:dc:8a:d3:38:79:70:4f:70:13:d6:b8:
1f:a0:5e:fe:f8:63:f6:82:ee:4b:f0:17:a2:1b:a1:8e:a7:49:
a8:98:8a:c6:51:57:45:4c:db:72:30:65:50:e7:77:da:33:65:
ce:c8:81:e4:c0:53:5b:51:7f:9f:f4:18:2f:64:47:7d:d4:1e:
d4:08:b0:f0:a1:a1:60:df:28:f6:4b:d5:97:e4:b3:c2:50:35:
75:61:5a:c5:a3:6b:fd:ac:e8:28:25:e6:c5:db:cc:3c:f4:b9:
24:ab:ad:31
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgISAZQf+m0W4BEOUxp9RXPWc39lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkMjk5OTA0MmM1ZTIwMDZiZDVhZWI3YTA1ZGUxZTk2YTVl
NzM2NjQwHhcNMjUwMTAxMDM0ODEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOTM1NzdmMTk0ZmY5MGY3NTQ2ZDZmMDI4NDQ2ZDI5ODllODNmZjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnp/3kIgp98ul0TKxN9fMazj8VR1M
nDvGrLW26QUXQ2lJKWbdrZR/YJdqruSXVc0eQjJ9yQab1/mwMtyz3nNDRt8hNvUO
brXNi3dutTo6KPu1SJgpPoXxGygERGESHohtACGfmFfmoitQUhfmMk9+/eKJ5kZV
4+KL7KFH8vYN0vPFAFDzvh7A4p7ncwc66DgnVo+fmvB38DQyeHX2fzLZPf4jxXx5
TS88PJcpknk8jTnqHZZ9y3vxe5A6xsUGJY3EfR0Z6LD/WwHpIHI1R8x6TOAuOT6v
OSCZUBkR2NHsPTxliR7VVsJHiKNMSp2T4e/YxzKKKFEG+mT76UbUIkNw2QIDAQAB
o4ICZjCCAmIwHQYDVR0OBBYEFAk1d/GU/5D3VG1vAoRG0pieg/8WMB8GA1UdIwQY
MBaAFA0pmQQsXiAGvVrregXeHpal5zZkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUt
OGMxNTM5NjViYWM5LzEvQ1RWMzhaVF9rUGRVYlc4Q2hFYlNtSjZEX3hZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUtOGMxNTM5NjViYWM5
LzEvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHwGCCsGAQUFBwEHAQH/BG0wazBaBAIAATBUAwQAJU2XAwQC
LVoMAwQCLVp0AwQAPgM1AwQATVd+AwQAWfhBAwQAXppzAwQAbc0/AwQAkhN3AwQA
khPnAwQAstRPAwQAuYqlAwQAuZWWAwQAwd3QMA0EAgACMAcDBQMqC7aAMA0GCSqG
SIb3DQEBCwUAA4IBAQAPyyPpMcdhOBeh5m7XOrWZZ/pCvQAOsLe363ILg+cTpHVG
k6M2YYfcgkdg3FKsrBny8iIzVE2H4LhHrhbhxcj9jLDLC0N2rwqfK9S+Ar5/96gx
3pwhkCWpG4hN5ouOWiqwDUGJvQ9frhp4aqzYdEofdPdEIMQujmhhlONeohx01sKH
HF2OKGmBAPXESrDiaun/gbrMPeVV3IrTOHlwT3AT1rgfoF7++GP2gu5L8BeiG6GO
p0momIrGUVdFTNtyMGVQ53faM2XOyIHkwFNbUX+f9BgvZEd91B7UCLDwoaFg3yj2
S9WX5LPCUDV1YVrFo2v9rOgoJebF28w89Lkkq60x
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:32:39 2025 by rpki-client