Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/GNmTWFQHfPeXfF3Bj53xdRFdIHo.roa
File: GNmTWFQHfPeXfF3Bj53xdRFdIHo.roa (raw, json)
Hash identifier: feBmff2MNCEZmymwErq4XVVwssjgHdn9edT9PdISeLQ=
Subject key identifier: 18:D9:93:58:54:07:7C:F7:97:7C:5D:C1:8F:9D:F1:75:11:5D:20:7A
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 0185BBDD02CC584DB12145CE8D898EA70F62
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/GNmTWFQHfPeXfF3Bj53xdRFdIHo.roa
Signing time: Mon 16 Jan 2023 18:35:01 +0000
ROA not before: Mon 16 Jan 2023 18:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 77.37.66.0/24 maxlen: 24
77.37.80.0/24 maxlen: 24
77.37.91.0/24 maxlen: 24
77.37.94.0/24 maxlen: 24
77.37.34.0/24 maxlen: 24
77.37.40.0/24 maxlen: 24
77.37.41.0/24 maxlen: 24
77.37.43.0/24 maxlen: 24
77.37.45.0/24 maxlen: 24
77.37.46.0/24 maxlen: 24
77.37.52.0/24 maxlen: 24
77.37.55.0/24 maxlen: 24
93.127.203.0/24 maxlen: 24
93.127.212.0/24 maxlen: 24
93.127.213.0/24 maxlen: 24
93.127.219.0/24 maxlen: 24
93.127.172.0/24 maxlen: 24
93.127.167.0/24 maxlen: 24
93.127.186.0/24 maxlen: 24
93.127.188.0/24 maxlen: 24
93.127.190.0/24 maxlen: 24
93.127.191.0/24 maxlen: 24
93.127.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bb:dd:02:cc:58:4d:b1:21:45:ce:8d:89:8e:a7:0f:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Jan 16 18:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18d9935854077cf7977c5dc18f9df175115d207a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:33:61:1b:4f:e8:0f:c9:70:49:4a:3f:9a:37:
37:e0:f4:24:45:f4:b4:20:a0:eb:ac:f3:9f:d2:ac:
71:6e:09:10:b0:c1:2b:33:61:ee:92:7c:2d:85:31:
8d:b8:63:38:68:29:ba:c2:2d:50:d4:05:08:41:d6:
ac:27:36:aa:de:4c:9e:b5:90:e6:15:f9:2a:f4:2c:
20:5f:a2:9f:ad:dd:95:4f:34:6b:58:5e:f3:3a:0e:
0c:cc:56:f9:9f:df:a0:d5:5b:ee:35:5f:7e:60:0b:
32:de:4c:d3:f0:6f:55:4e:28:4f:99:75:44:1b:b8:
bb:39:d8:01:67:21:e8:db:19:dc:e2:f5:43:d1:61:
f6:d4:36:14:3f:e4:b2:db:b0:ab:35:cc:ef:ad:4b:
5e:a1:ae:c8:4c:62:1c:9b:d5:34:28:45:20:2f:ef:
90:f2:f1:e1:de:75:06:9d:6b:94:7f:41:7c:c5:21:
29:12:47:33:1c:b4:7a:16:c4:40:30:b4:b1:0b:81:
ed:fa:77:52:35:a5:78:7e:4a:32:a9:ea:cb:f8:2a:
97:f2:3d:f4:1f:5d:2d:07:69:2e:0d:b0:bd:be:9a:
e4:53:0a:8d:d7:56:52:cc:f1:a3:7b:4a:41:fd:14:
cf:5d:87:2a:79:4a:43:27:45:77:94:a9:ca:5c:45:
1a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D9:93:58:54:07:7C:F7:97:7C:5D:C1:8F:9D:F1:75:11:5D:20:7A
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/GNmTWFQHfPeXfF3Bj53xdRFdIHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.34.0/24
77.37.40.0/23
77.37.43.0/24
77.37.45.0-77.37.46.255
77.37.52.0/24
77.37.55.0/24
77.37.66.0/24
77.37.80.0/24
77.37.91.0/24
77.37.94.0/24
93.127.167.0/24
93.127.172.0/24
93.127.186.0/24
93.127.188.0/24
93.127.190.0/23
93.127.199.0/24
93.127.203.0/24
93.127.212.0/23
93.127.219.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ed:26:71:48:f9:11:65:c2:72:6c:47:cc:31:4f:6e:03:95:
59:cc:09:25:d2:ad:74:f0:20:b4:96:8c:ac:e2:8d:71:ba:0c:
0a:e1:df:a3:cf:72:eb:3e:79:ca:90:a5:6f:c9:57:33:b5:c1:
2e:ee:f9:34:8f:5f:9a:9b:18:c1:a9:6a:37:d8:5d:f6:3a:50:
69:39:a7:d6:13:d6:aa:8c:be:b6:da:6a:3b:2c:97:a8:32:f6:
03:50:75:ac:5c:13:09:cd:75:f5:93:93:70:5f:55:66:51:3f:
68:b7:23:19:bc:d5:05:90:d4:82:7c:c1:6d:7e:b7:c2:85:20:
0d:5c:5f:66:13:5a:d8:72:96:be:a7:6e:d8:c2:4c:62:2e:2c:
77:c2:06:dc:1a:4a:a5:60:e5:c7:df:b9:c8:91:a4:7b:54:e6:
c8:38:f5:a3:7a:77:ba:74:d1:1a:41:3a:e9:29:30:72:f7:ab:
26:b5:e1:37:73:6b:80:ec:4c:7a:eb:bb:c8:e7:4f:56:99:b3:
79:5e:29:8e:e6:d0:6b:fc:cf:ee:56:10:82:9d:f8:32:97:fa:
d0:c4:d4:ea:17:48:23:4e:34:e5:49:1e:38:eb:52:2c:2f:0e:
2e:83:80:73:31:c2:59:4c:b5:e8:d7:c8:b3:b6:36:b7:f4:b6:
83:22:e7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:38:59 2025 by rpki-client