Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/tonrQJbYKEeFepF8Mg5lWiEbslA.roa
File: tonrQJbYKEeFepF8Mg5lWiEbslA.roa (raw, json)
Hash identifier: la8VTc6fuTFi7aBGI/izVEZyhP/KVuebx7O6/rsxC7M=
Subject key identifier: B6:89:EB:40:96:D8:28:47:85:7A:91:7C:32:0E:65:5A:21:1B:B2:50
Certificate issuer: /CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Certificate serial: 01942825B248DDCB9F33E264D3C29CACE3D7
Authority key identifier: 65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/tonrQJbYKEeFepF8Mg5lWiEbslA.roa
Signing time: Thu 02 Jan 2025 17:52:26 +0000
ROA not before: Thu 02 Jan 2025 17:52:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34295
IP address blocks: 77.76.144.0/24 maxlen: 24
77.76.145.0/24 maxlen: 24
77.76.146.0/24 maxlen: 24
77.76.147.0/24 maxlen: 24
77.76.148.0/24 maxlen: 24
77.76.149.0/24 maxlen: 24
77.76.160.0/24 maxlen: 24
77.76.161.0/24 maxlen: 24
77.76.162.0/24 maxlen: 24
77.76.163.0/24 maxlen: 24
77.76.164.0/24 maxlen: 24
77.76.165.0/24 maxlen: 24
77.76.166.0/24 maxlen: 24
77.76.167.0/24 maxlen: 24
77.76.168.0/24 maxlen: 24
77.76.169.0/24 maxlen: 24
77.76.170.0/24 maxlen: 24
77.76.171.0/24 maxlen: 24
77.76.172.0/24 maxlen: 24
77.76.173.0/24 maxlen: 24
77.76.174.0/24 maxlen: 24
77.76.175.0/24 maxlen: 24
77.76.180.0/24 maxlen: 24
77.76.181.0/24 maxlen: 24
77.76.182.0/24 maxlen: 24
77.76.183.0/24 maxlen: 24
94.139.192.0/22 maxlen: 22
94.139.192.0/24 maxlen: 24
94.139.196.0/22 maxlen: 22
94.139.196.0/24 maxlen: 24
94.139.197.0/24 maxlen: 24
94.139.198.0/24 maxlen: 24
94.139.199.0/24 maxlen: 24
94.139.200.0/21 maxlen: 21
94.139.200.0/22 maxlen: 22
94.139.200.0/24 maxlen: 24
94.139.201.0/24 maxlen: 24
94.139.202.0/24 maxlen: 24
94.139.203.0/24 maxlen: 24
109.107.64.0/24 maxlen: 24
109.107.65.0/24 maxlen: 24
109.107.66.0/24 maxlen: 24
109.107.67.0/24 maxlen: 24
109.107.68.0/23 maxlen: 23
109.107.68.0/24 maxlen: 24
109.107.69.0/24 maxlen: 24
109.107.80.0/24 maxlen: 24
109.107.81.0/24 maxlen: 24
109.107.82.0/24 maxlen: 24
109.107.83.0/24 maxlen: 24
109.107.84.0/24 maxlen: 24
109.107.85.0/24 maxlen: 24
109.107.86.0/24 maxlen: 24
109.107.87.0/24 maxlen: 24
178.75.192.0/22 maxlen: 22
178.75.192.0/24 maxlen: 24
178.75.193.0/24 maxlen: 24
178.75.194.0/24 maxlen: 24
178.75.195.0/24 maxlen: 24
178.75.200.0/24 maxlen: 24
178.75.201.0/24 maxlen: 24
178.75.202.0/24 maxlen: 24
178.75.203.0/24 maxlen: 24
178.75.204.0/22 maxlen: 22
178.75.204.0/24 maxlen: 24
178.75.205.0/24 maxlen: 24
178.75.206.0/24 maxlen: 24
178.75.207.0/24 maxlen: 24
178.75.208.0/22 maxlen: 22
178.75.208.0/24 maxlen: 24
178.75.209.0/24 maxlen: 24
178.75.210.0/24 maxlen: 24
178.75.211.0/24 maxlen: 24
178.75.212.0/22 maxlen: 22
178.75.212.0/24 maxlen: 24
178.75.213.0/24 maxlen: 24
178.75.214.0/24 maxlen: 24
178.75.215.0/24 maxlen: 24
178.75.216.0/22 maxlen: 22
178.75.216.0/24 maxlen: 24
178.75.217.0/24 maxlen: 24
178.75.218.0/24 maxlen: 24
178.75.219.0/24 maxlen: 24
178.75.220.0/22 maxlen: 22
178.75.220.0/24 maxlen: 24
178.75.221.0/24 maxlen: 24
178.75.222.0/24 maxlen: 24
178.75.223.0/24 maxlen: 24
178.75.240.0/23 maxlen: 23
178.75.240.0/24 maxlen: 24
178.75.241.0/24 maxlen: 24
178.75.242.0/24 maxlen: 24
178.75.243.0/24 maxlen: 24
178.75.244.0/24 maxlen: 24
178.75.245.0/24 maxlen: 24
178.75.246.0/24 maxlen: 24
178.75.247.0/24 maxlen: 24
178.75.248.0/22 maxlen: 22
178.75.248.0/24 maxlen: 24
178.75.249.0/24 maxlen: 24
178.75.250.0/24 maxlen: 24
178.75.251.0/24 maxlen: 24
185.52.49.0/24 maxlen: 24
188.124.64.0/24 maxlen: 24
188.124.65.0/24 maxlen: 24
188.124.66.0/24 maxlen: 24
188.124.67.0/24 maxlen: 24
188.124.68.0/24 maxlen: 24
188.124.69.0/24 maxlen: 24
188.124.70.0/24 maxlen: 24
188.124.71.0/24 maxlen: 24
188.124.72.0/24 maxlen: 24
188.124.73.0/24 maxlen: 24
188.124.74.0/24 maxlen: 24
188.124.75.0/24 maxlen: 24
188.124.76.0/24 maxlen: 24
188.124.77.0/24 maxlen: 24
188.124.78.0/24 maxlen: 24
188.124.79.0/24 maxlen: 24
188.124.80.0/22 maxlen: 22
188.124.80.0/24 maxlen: 24
188.124.81.0/24 maxlen: 24
188.124.82.0/24 maxlen: 24
188.124.83.0/24 maxlen: 24
188.124.84.0/24 maxlen: 24
188.124.85.0/24 maxlen: 24
188.124.86.0/24 maxlen: 24
188.124.87.0/24 maxlen: 24
188.124.88.0/24 maxlen: 24
188.124.89.0/24 maxlen: 24
188.124.90.0/24 maxlen: 24
188.124.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:b2:48:dd:cb:9f:33:e2:64:d3:c2:9c:ac:e3:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Validity
Not Before: Jan 2 17:52:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b689eb4096d82847857a917c320e655a211bb250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0c:19:35:3f:99:2c:63:5d:f2:39:1a:f1:10:
d3:b0:1c:86:69:f4:2e:18:a2:09:f5:6e:42:9d:f9:
33:11:e1:8e:b8:6f:62:df:d5:98:0e:5e:56:6b:53:
31:06:b4:d1:f4:a7:81:bf:67:b3:4b:ac:32:89:3c:
eb:2a:dd:ce:b3:86:3f:25:37:91:36:ae:95:5d:29:
30:66:d9:29:b2:69:c0:ac:65:02:75:c0:45:c0:60:
ba:5e:3b:54:40:16:ba:50:65:92:d9:6b:03:ca:7a:
cf:8d:60:e6:24:96:93:09:4f:53:34:8b:4f:b6:28:
fa:19:8f:cb:b1:dd:e0:e1:e1:18:a1:ad:b2:87:49:
24:ed:c5:d9:39:8d:81:52:cf:ec:2c:8e:6b:ff:c7:
27:6b:05:66:05:11:00:26:74:20:7d:e5:4a:a2:d8:
a8:6f:79:f2:09:e6:16:90:4b:1c:e8:38:55:8d:7a:
19:19:ae:87:83:ff:32:64:23:7d:e9:2c:40:67:c0:
3c:7a:19:a9:68:fe:b4:18:3e:91:ec:05:32:96:06:
e9:27:5b:df:c6:3d:32:2c:a3:72:b9:1f:92:d2:3b:
65:3f:61:9b:cd:8c:4b:64:99:f5:eb:a9:68:ee:30:
d6:e7:55:61:52:d5:04:f7:d7:3b:70:ef:86:3a:09:
65:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:89:EB:40:96:D8:28:47:85:7A:91:7C:32:0E:65:5A:21:1B:B2:50
X509v3 Authority Key Identifier:
keyid:65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/tonrQJbYKEeFepF8Mg5lWiEbslA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.144.0-77.76.149.255
77.76.160.0/20
77.76.180.0/22
94.139.192.0/20
109.107.64.0-109.107.69.255
109.107.80.0/21
178.75.192.0/22
178.75.200.0-178.75.223.255
178.75.240.0-178.75.251.255
185.52.49.0/24
188.124.64.0-188.124.91.255
Signature Algorithm: sha256WithRSAEncryption
cb:1f:0a:b0:a1:b7:4b:a8:41:85:b2:7a:81:4b:a4:f5:e8:0b:
3f:78:33:cc:07:f4:af:6f:29:e7:94:0c:05:38:70:52:e3:48:
0f:22:6f:8b:0d:f5:e4:c6:67:05:6d:32:94:e6:22:19:80:d4:
e7:d2:66:9d:e4:29:95:58:15:8b:96:22:77:57:fb:32:b7:1e:
c2:a8:30:f7:a5:06:c8:ca:e7:45:a6:c8:85:36:73:6e:f6:40:
9a:8b:46:0e:9a:e0:9a:02:20:80:03:3f:2f:3c:63:26:ee:79:
41:35:d8:e7:e0:94:01:a1:35:1c:f7:5e:5e:d1:16:42:c1:a1:
9d:50:8a:e2:ca:4d:3d:13:0f:20:11:85:6f:25:a8:a3:5f:26:
46:0e:bf:ab:87:16:07:2e:cf:ee:22:c7:b9:4f:fc:b3:a5:3b:
be:37:f0:e8:f9:c5:4a:79:ea:93:50:d0:80:65:45:7a:9f:7d:
15:3e:79:ab:1b:5e:7c:cc:cd:cc:1f:c0:f4:3f:73:30:2a:fa:
e0:5d:e7:5e:a4:56:ef:f5:ad:e2:bc:70:f8:9e:0e:bf:b7:86:
04:db:e8:8d:53:79:f2:9d:f1:99:da:65:24:15:5a:a7:55:4d:
68:82:3d:45:af:8b:2c:c9:56:c9:fd:ca:63:50:67:06:da:39:
ae:5c:b9:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:21:43 2025 by rpki-client