Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/muNpJENCGJ0J_DTMRNj99Wufntw.roa
File: muNpJENCGJ0J_DTMRNj99Wufntw.roa (raw, json)
Hash identifier: rlTQFNlHRqLDCrFKsl2Oqf+npVqRQ0yuhfH2dviuMA0=
Subject key identifier: 9A:E3:69:24:43:42:18:9D:09:FC:34:CC:44:D8:FD:F5:6B:9F:9E:DC
Certificate issuer: /CN=a3674d5884a50a84e07dbdf6798ddcbb9cc2032e
Certificate serial: 0194236A3CC16E5B40A08413D4AC9D488C26
Authority key identifier: A3:67:4D:58:84:A5:0A:84:E0:7D:BD:F6:79:8D:DC:BB:9C:C2:03:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2dNWISlCoTgfb32eY3cu5zCAy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/muNpJENCGJ0J_DTMRNj99Wufntw.roa
Signing time: Wed 01 Jan 2025 19:49:12 +0000
ROA not before: Wed 01 Jan 2025 19:49:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42632
IP address blocks: 77.220.160.0/23 maxlen: 23
77.220.164.0/22 maxlen: 23
77.220.168.0/22 maxlen: 23
77.220.172.0/23 maxlen: 23
77.220.174.0/23 maxlen: 23
77.220.176.0/21 maxlen: 24
77.220.180.0/24 maxlen: 24
77.220.184.0/21 maxlen: 21
83.222.96.0/22 maxlen: 22
83.222.100.0/22 maxlen: 22
83.222.104.0/22 maxlen: 22
83.222.108.0/22 maxlen: 22
83.222.112.0/22 maxlen: 22
83.222.116.0/22 maxlen: 22
146.255.192.0/22 maxlen: 23
146.255.196.0/24 maxlen: 24
146.255.197.0/24 maxlen: 24
146.255.198.0/23 maxlen: 24
146.255.200.0/23 maxlen: 23
146.255.200.0/24 maxlen: 24
146.255.201.0/24 maxlen: 24
176.58.32.0/22 maxlen: 23
176.58.36.0/23 maxlen: 23
176.58.40.0/24 maxlen: 24
176.58.62.0/23 maxlen: 23
212.76.128.0/21 maxlen: 23
212.76.136.0/21 maxlen: 23
212.76.144.0/22 maxlen: 22
212.76.152.0/22 maxlen: 24
212.76.156.0/22 maxlen: 22
2a02:878:1::/48 maxlen: 48
2a02:878:2::/48 maxlen: 48
2a02:878:a::/48 maxlen: 48
2a02:878:10::/48 maxlen: 48
2a02:878:a801::/48 maxlen: 48
2a02:878:a80e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:3c:c1:6e:5b:40:a0:84:13:d4:ac:9d:48:8c:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3674d5884a50a84e07dbdf6798ddcbb9cc2032e
Validity
Not Before: Jan 1 19:49:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9ae369244342189d09fc34cc44d8fdf56b9f9edc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3c:a6:70:c6:c8:13:dd:be:78:2a:02:e9:9b:
f8:0f:ce:af:f0:cd:f1:5c:4c:7d:1a:6b:45:ef:f2:
38:3f:21:96:4a:16:5f:b3:fd:10:bd:be:a6:99:1c:
3e:c6:af:89:3a:37:9b:f1:fc:15:bd:01:8e:6b:dd:
5c:16:02:e0:ec:ef:70:35:e9:f6:69:04:19:ef:ea:
fb:54:b7:9f:32:d3:a5:9b:75:11:99:af:aa:21:3b:
4e:17:a2:d3:2b:e5:6c:95:6f:b3:72:33:05:3f:8e:
7b:97:8b:ff:cf:09:d0:93:fa:de:2d:60:8c:cb:b9:
e8:c3:14:12:06:95:97:97:a6:cb:3a:1e:24:a2:97:
3c:d5:ca:83:ad:0c:91:a4:5d:66:3a:3e:1c:7c:ca:
64:3b:44:ee:e3:53:39:95:f1:75:bc:f5:1e:2d:94:
9a:d1:c7:6e:c5:13:f9:d0:d4:b7:e0:84:1d:18:a7:
2a:8a:ea:32:65:ac:5f:ab:65:1f:9e:02:0b:c4:e1:
bd:2c:73:9f:33:76:37:44:c1:f5:b5:9c:ea:71:d8:
90:69:39:17:18:93:2f:df:e4:75:d3:00:6e:f8:bf:
97:c1:ea:d1:4b:84:bd:82:6a:a1:49:1d:aa:69:53:
25:89:2a:1c:a5:c4:ae:19:24:d1:0b:0d:95:f8:95:
a1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E3:69:24:43:42:18:9D:09:FC:34:CC:44:D8:FD:F5:6B:9F:9E:DC
X509v3 Authority Key Identifier:
keyid:A3:67:4D:58:84:A5:0A:84:E0:7D:BD:F6:79:8D:DC:BB:9C:C2:03:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2dNWISlCoTgfb32eY3cu5zCAy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/muNpJENCGJ0J_DTMRNj99Wufntw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/o2dNWISlCoTgfb32eY3cu5zCAy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.220.160.0/23
77.220.164.0-77.220.191.255
83.222.96.0-83.222.119.255
146.255.192.0-146.255.201.255
176.58.32.0-176.58.37.255
176.58.40.0/24
176.58.62.0/23
212.76.128.0-212.76.147.255
212.76.152.0/21
IPv6:
2a02:878:1::-2a02:878:2:ffff:ffff:ffff:ffff:ffff
2a02:878:a::/48
2a02:878:10::/48
2a02:878:a801::/48
2a02:878:a80e::/48
Signature Algorithm: sha256WithRSAEncryption
50:8f:59:33:34:6b:25:48:66:ea:f4:8a:e9:0e:08:67:f1:7f:
af:4f:9a:cd:9d:11:0a:4c:49:ed:81:07:d1:53:0d:b4:8a:4f:
53:14:2a:63:a0:d8:5c:91:19:87:09:85:04:45:fc:60:23:e8:
ef:8c:80:ef:79:c5:e0:b3:df:71:3d:46:4a:2d:2e:d4:b3:f2:
6e:8b:e1:c1:a7:a4:13:44:aa:0a:49:bf:35:88:3f:5c:3d:44:
15:e9:e7:47:be:16:2e:2e:62:61:a5:99:b2:2a:d7:e4:8d:0d:
3c:a7:29:78:b8:3f:fc:0e:9b:f2:79:95:9d:62:ab:82:32:a5:
c5:85:a6:51:c3:9a:97:cc:49:97:e0:b2:cf:8d:42:a2:21:6c:
f8:20:6a:2b:e7:b0:65:e2:b4:34:8d:92:23:d5:53:a4:22:7d:
2e:ec:21:64:99:f8:5e:2f:83:a6:7a:3e:25:a7:b5:a3:1a:fe:
45:bc:74:66:42:71:01:33:20:78:37:c9:69:af:0d:92:be:30:
2f:f0:20:38:a8:92:e1:4e:56:02:4e:23:ea:a4:10:ac:ab:1e:
24:09:b6:8e:e5:2c:d9:f6:0e:f6:28:88:c4:f4:1f:4d:b5:c4:
5d:5b:14:05:53:40:8d:02:57:59:ff:00:a0:58:2f:84:06:34:
56:80:0b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:54:19 2025 by rpki-client