Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/32zpIsJgdlIqqIACLbVIAjwrx7M.roa
File: 32zpIsJgdlIqqIACLbVIAjwrx7M.roa (raw, json)
Hash identifier: Ligd3+o9KGUaIfdKlVJ9nRwNjTGpzppDZI82Gtzp+SM=
Subject key identifier: DF:6C:E9:22:C2:60:76:52:2A:A8:80:02:2D:B5:48:02:3C:2B:C7:B3
Certificate issuer: /CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Certificate serial: 0194E1BBABDBB6C111A8765949BF720E7894
Authority key identifier: 13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/32zpIsJgdlIqqIACLbVIAjwrx7M.roa
Signing time: Fri 07 Feb 2025 18:46:00 +0000
ROA not before: Fri 07 Feb 2025 18:46:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50889
IP address blocks: 77.111.248.0/24 maxlen: 24
77.111.249.0/24 maxlen: 24
77.111.250.0/24 maxlen: 24
77.111.251.0/24 maxlen: 24
80.84.160.0/24 maxlen: 24
80.84.161.0/24 maxlen: 24
80.84.162.0/24 maxlen: 24
80.84.163.0/24 maxlen: 24
80.84.164.0/24 maxlen: 24
80.84.165.0/24 maxlen: 24
80.84.166.0/24 maxlen: 24
80.84.167.0/24 maxlen: 24
80.84.168.0/24 maxlen: 24
80.84.169.0/24 maxlen: 24
80.84.170.0/24 maxlen: 24
80.84.171.0/24 maxlen: 24
80.84.172.0/24 maxlen: 24
80.84.173.0/24 maxlen: 24
80.84.174.0/24 maxlen: 24
80.84.175.0/24 maxlen: 24
80.250.96.0/24 maxlen: 24
80.250.97.0/24 maxlen: 24
80.250.98.0/24 maxlen: 24
80.250.99.0/24 maxlen: 24
80.250.100.0/24 maxlen: 24
185.136.69.0/24 maxlen: 24
185.136.70.0/24 maxlen: 24
185.136.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e1:bb:ab:db:b6:c1:11:a8:76:59:49:bf:72:0e:78:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Validity
Not Before: Feb 7 18:46:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=df6ce922c26076522aa880022db548023c2bc7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9c:f4:0f:34:24:ac:ae:7e:c3:7b:85:8a:5a:
40:08:11:34:b1:89:03:58:bb:84:31:e2:00:8e:18:
fb:ef:cf:fb:71:f0:fe:ff:2f:8e:cd:64:a7:83:63:
f9:66:00:e3:ab:ea:7a:98:19:dd:23:68:38:91:0b:
65:9f:88:c3:07:c8:b6:d6:f9:7b:e9:18:da:88:51:
94:29:5d:97:b8:6f:c9:d3:9b:7c:2c:0d:ca:00:76:
fb:ea:51:da:1f:d9:1c:4b:0a:d8:47:e2:53:02:f8:
f2:6a:5e:cc:25:f3:89:4a:ca:59:8b:c4:01:87:20:
28:91:8e:b1:0e:f2:a1:d7:29:72:10:62:3d:9b:ed:
13:0b:3e:07:b6:0e:77:74:9f:83:0c:4a:cc:f9:50:
d1:14:8a:a6:83:f0:db:b9:21:5d:35:2d:7e:ae:eb:
87:13:b3:89:46:57:bf:99:2f:c2:7c:dd:a7:e4:d5:
c7:a2:58:cd:18:76:af:4d:0b:3d:4b:d5:87:fe:db:
fd:54:bb:af:28:43:cb:5b:ae:ac:cf:78:36:72:d5:
06:db:38:76:87:0a:41:6d:fc:b9:c8:8f:09:e3:f2:
1b:06:56:e0:07:b7:2c:4a:10:79:dd:29:06:ed:23:
60:2b:e9:5e:85:71:88:c6:28:01:bf:87:85:ec:94:
eb:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:6C:E9:22:C2:60:76:52:2A:A8:80:02:2D:B5:48:02:3C:2B:C7:B3
X509v3 Authority Key Identifier:
keyid:13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/32zpIsJgdlIqqIACLbVIAjwrx7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/E6D3FD_6IhE0QtyFie4TUuvj2qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.248.0/22
80.84.160.0/20
80.250.96.0-80.250.100.255
185.136.69.0-185.136.71.255
Signature Algorithm: sha256WithRSAEncryption
a1:a8:8f:a0:2a:83:28:90:40:9a:81:08:dd:03:d9:28:68:f4:
d3:e7:85:41:6d:45:30:57:58:4e:09:d5:4b:ad:f7:f6:7d:ce:
3d:a2:63:27:52:ff:d0:74:50:42:de:bb:9c:f0:8b:5e:73:11:
5f:64:67:51:fc:b8:f4:b5:05:0c:c0:bb:86:81:99:2a:3f:09:
01:79:17:a3:b6:6f:54:09:a9:e5:34:06:ae:53:85:f6:3e:c5:
99:a6:51:93:39:b7:8e:a7:bd:a4:95:79:93:89:e3:39:a2:50:
76:50:a2:15:28:e5:a3:ba:c3:47:4f:fe:be:a8:a5:7a:2f:78:
48:f0:64:af:63:23:71:3d:2b:dc:3b:0e:2f:8d:af:d6:d1:5a:
55:49:ea:84:33:aa:c1:b4:b0:ae:86:25:ee:84:8b:f6:ef:c6:
41:b3:15:6a:20:c9:39:fe:85:69:a0:18:21:a5:a7:4d:b8:93:
ff:be:2f:fd:3f:0b:21:a3:11:5b:97:cf:5c:d6:d1:64:75:5a:
b0:7f:a1:2a:64:ee:86:83:ae:f2:93:46:20:47:c8:ac:b9:27:
3f:e5:d3:04:15:7e:f8:b0:07:8f:6b:73:9e:b9:29:0a:b1:a4:
d0:9d:d4:fe:4d:23:15:51:ed:03:f6:a7:b3:f4:a4:34:da:ef:
de:32:c0:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:51:10 2025 by rpki-client