Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/L-MaApnHDQHiH0jEsLJ_jw4vbr0.roa
File: L-MaApnHDQHiH0jEsLJ_jw4vbr0.roa (raw, json)
Hash identifier: /nilhJ6DrxdR25S7m0lSwM7yDPcHCpaV3t+H6a/aYao=
Subject key identifier: 2F:E3:1A:02:99:C7:0D:01:E2:1F:48:C4:B0:B2:7F:8F:0E:2F:6E:BD
Certificate issuer: /CN=37ed49efac9795987771acdc77a0e228904277ad
Certificate serial: 0194258F5773704C8EC17589F1F6C25E7E59
Authority key identifier: 37:ED:49:EF:AC:97:95:98:77:71:AC:DC:77:A0:E2:28:90:42:77:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N-1J76yXlZh3cazcd6DiKJBCd60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/L-MaApnHDQHiH0jEsLJ_jw4vbr0.roa
Signing time: Thu 02 Jan 2025 05:48:58 +0000
ROA not before: Thu 02 Jan 2025 05:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 81.22.193.0/24 maxlen: 24
89.221.203.0/24 maxlen: 24
89.221.204.0/24 maxlen: 24
89.221.206.0/24 maxlen: 24
92.61.64.0/24 maxlen: 24
92.61.65.0/24 maxlen: 24
92.61.70.0/24 maxlen: 24
92.61.71.0/24 maxlen: 24
109.172.8.0/24 maxlen: 24
109.172.9.0/24 maxlen: 24
109.172.16.0/24 maxlen: 24
109.172.17.0/24 maxlen: 24
109.172.18.0/24 maxlen: 24
109.172.19.0/24 maxlen: 24
109.172.20.0/24 maxlen: 24
109.172.21.0/24 maxlen: 24
109.172.22.0/24 maxlen: 24
109.172.23.0/24 maxlen: 24
109.172.30.0/24 maxlen: 24
109.172.31.0/24 maxlen: 24
109.172.36.0/24 maxlen: 24
109.172.37.0/24 maxlen: 24
109.172.38.0/24 maxlen: 24
109.172.39.0/24 maxlen: 24
109.172.54.0/24 maxlen: 24
109.172.55.0/24 maxlen: 24
109.172.78.0/24 maxlen: 24
109.172.79.0/24 maxlen: 24
109.172.96.0/24 maxlen: 24
109.172.97.0/24 maxlen: 24
109.172.98.0/24 maxlen: 24
109.172.99.0/24 maxlen: 24
109.172.100.0/24 maxlen: 24
109.172.101.0/24 maxlen: 24
109.172.116.0/24 maxlen: 24
109.172.117.0/24 maxlen: 24
109.172.120.0/24 maxlen: 24
109.172.121.0/24 maxlen: 24
109.172.122.0/24 maxlen: 24
109.172.123.0/24 maxlen: 24
109.172.124.0/24 maxlen: 24
109.172.125.0/24 maxlen: 24
109.172.126.0/24 maxlen: 24
109.172.127.0/24 maxlen: 24
178.130.16.0/24 maxlen: 24
178.130.17.0/24 maxlen: 24
178.130.18.0/24 maxlen: 24
178.130.19.0/24 maxlen: 24
178.130.20.0/24 maxlen: 24
178.130.21.0/24 maxlen: 24
178.130.22.0/24 maxlen: 24
178.130.23.0/24 maxlen: 24
178.130.46.0/24 maxlen: 24
178.130.47.0/24 maxlen: 24
178.130.48.0/24 maxlen: 24
178.130.49.0/24 maxlen: 24
178.130.50.0/24 maxlen: 24
178.130.51.0/24 maxlen: 24
178.130.52.0/24 maxlen: 24
178.130.53.0/24 maxlen: 24
178.130.54.0/24 maxlen: 24
178.130.55.0/24 maxlen: 24
178.130.56.0/24 maxlen: 24
178.130.57.0/24 maxlen: 24
178.130.58.0/24 maxlen: 24
178.130.59.0/24 maxlen: 24
178.130.60.0/24 maxlen: 24
178.130.61.0/24 maxlen: 24
178.130.62.0/24 maxlen: 24
178.130.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:57:73:70:4c:8e:c1:75:89:f1:f6:c2:5e:7e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ed49efac9795987771acdc77a0e228904277ad
Validity
Not Before: Jan 2 05:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2fe31a0299c70d01e21f48c4b0b27f8f0e2f6ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5a:04:64:d1:51:df:4d:e6:97:c7:bd:69:40:
8f:b1:38:2e:fb:a3:52:de:c0:bb:75:a7:d5:8a:0c:
09:55:4a:3e:21:af:a8:a8:49:ad:3c:e5:08:c9:89:
e0:09:5a:97:ac:19:ef:c4:04:c0:17:c8:57:5b:0c:
44:6c:b9:97:05:09:aa:8b:68:bf:61:28:1c:5c:ee:
c5:29:ce:b9:92:24:09:16:c9:b9:f9:eb:42:f1:31:
56:9b:3b:b8:fe:82:a9:9e:44:80:41:d8:77:c3:c6:
dd:d6:bd:3b:dd:c9:f3:eb:1e:0d:f0:e0:f6:d4:b5:
0a:c1:6a:67:e7:54:9d:20:59:97:a1:14:4a:50:93:
fa:b6:8b:2a:59:cd:a3:6d:4c:f4:f3:e5:b3:04:40:
d4:52:5e:49:81:9b:db:84:18:13:fb:37:b0:8a:f1:
52:78:24:69:4c:71:2f:ed:fa:8c:be:54:aa:23:f6:
3d:c2:4e:57:93:03:30:07:60:65:55:9d:70:23:1f:
4d:4e:98:24:c8:c3:40:31:62:bc:fa:21:31:f4:5c:
b0:0b:3f:79:fb:cc:57:da:b1:cb:43:92:dc:fe:a9:
05:bf:69:da:5e:9d:b4:7c:73:02:d4:01:00:25:f7:
3e:ae:4d:86:8d:9e:00:d5:f9:22:e4:8f:1b:db:af:
84:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E3:1A:02:99:C7:0D:01:E2:1F:48:C4:B0:B2:7F:8F:0E:2F:6E:BD
X509v3 Authority Key Identifier:
keyid:37:ED:49:EF:AC:97:95:98:77:71:AC:DC:77:A0:E2:28:90:42:77:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N-1J76yXlZh3cazcd6DiKJBCd60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/L-MaApnHDQHiH0jEsLJ_jw4vbr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/N-1J76yXlZh3cazcd6DiKJBCd60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.193.0/24
89.221.203.0-89.221.204.255
89.221.206.0/24
92.61.64.0/23
92.61.70.0/23
109.172.8.0/23
109.172.16.0/21
109.172.30.0/23
109.172.36.0/22
109.172.54.0/23
109.172.78.0/23
109.172.96.0-109.172.101.255
109.172.116.0/23
109.172.120.0/21
178.130.16.0/21
178.130.46.0-178.130.63.255
Signature Algorithm: sha256WithRSAEncryption
4d:41:42:dd:4b:c1:72:68:25:b3:f9:a0:4f:82:af:31:6d:bc:
33:b3:69:c9:04:db:06:95:32:6c:b8:b9:d3:ce:65:f2:a3:56:
12:91:8b:05:90:bf:ff:4a:ad:a1:56:e7:20:3a:e9:81:9b:10:
14:72:ac:fa:46:87:c4:13:a0:95:b6:f8:61:0f:54:1a:37:bc:
8f:e5:66:e2:69:e7:06:dc:40:61:b0:a8:17:7b:d2:29:ab:de:
45:40:38:d3:b0:5f:f4:67:b3:19:ee:8f:06:f4:73:a1:40:6b:
02:65:87:71:9f:e1:01:45:70:6c:59:a6:ad:7b:6b:4b:5b:88:
61:a0:3e:f1:95:0d:2f:8f:d9:c4:8a:da:b7:fe:60:ea:0d:0b:
b1:d4:9b:41:e6:c7:13:b7:0f:c6:aa:56:c0:41:81:e0:86:f3:
75:04:a9:07:44:9c:ef:02:5d:4e:ae:22:5e:de:34:d9:e1:40:
02:81:fe:55:2d:b2:54:21:51:71:c1:d9:a2:63:f0:69:21:00:
6b:9b:f2:fd:23:e2:11:6f:ea:2e:d6:47:78:eb:18:10:a5:3f:
43:16:c6:21:c7:68:5f:ae:0a:d7:2b:97:05:1f:0c:6d:d2:28:
00:10:5f:04:cf:8f:6c:e1:0b:15:80:93:23:83:f8:8c:35:ad:
ed:00:9a:c0
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgISAZQlj1dzcEyOwXWJ8fbCXn5ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3ZWQ0OWVmYWM5Nzk1OTg3NzcxYWNkYzc3YTBlMjI4OTA0
Mjc3YWQwHhcNMjUwMTAyMDU0ODU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmUzMWEwMjk5YzcwZDAxZTIxZjQ4YzRiMGIyN2Y4ZjBlMmY2ZWJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl1oEZNFR303ml8e9aUCPsTgu+6NS
3sC7dafVigwJVUo+Ia+oqEmtPOUIyYngCVqXrBnvxATAF8hXWwxEbLmXBQmqi2i/
YSgcXO7FKc65kiQJFsm5+etC8TFWmzu4/oKpnkSAQdh3w8bd1r073cnz6x4N8OD2
1LUKwWpn51SdIFmXoRRKUJP6tosqWc2jbUz08+WzBEDUUl5JgZvbhBgT+zewivFS
eCRpTHEv7fqMvlSqI/Y9wk5XkwMwB2BlVZ1wIx9NTpgkyMNAMWK8+iEx9FywCz95
+8xX2rHLQ5Lc/qkFv2naXp20fHMC1AEAJfc+rk2GjZ4A1fki5I8b26+E8QIDAQAB
o4ICfjCCAnowHQYDVR0OBBYEFC/jGgKZxw0B4h9IxLCyf48OL269MB8GA1UdIwQY
MBaAFDftSe+sl5WYd3Gs3Heg4iiQQnetMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTi0xSjc2eVhsWmgzY2F6Y2Q2RGlLSkJDZDYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8yMTcxYmUtYjA4My00NzliLWE1ODAt
NmEwNmI3NTAyYmQ3LzEvTC1NYUFwbkhEUUhpSDBqRXNMSl9qdzR2YnIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8yMTcxYmUtYjA4My00NzliLWE1ODAtNmEwNmI3NTAyYmQ3
LzEvTi0xSjc2eVhsWmgzY2F6Y2Q2RGlLSkJDZDYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGTBggrBgEFBQcBBwEB/wSBgzCBgDB+BAIAATB4AwQAURbB
MAwDBABZ3csDBABZ3cwDBABZ3c4DBAFcPUADBAFcPUYDBAFtrAgDBANtrBADBAFt
rB4DBAJtrCQDBAFtrDYDBAFtrE4wDAMEBW2sYAMEAW2sZAMEAW2sdAMEA22seAME
A7KCEDAMAwQBsoIuAwQGsoIAMA0GCSqGSIb3DQEBCwUAA4IBAQBNQULdS8FyaCWz
+aBPgq8xbbwzs2nJBNsGlTJsuLnTzmXyo1YSkYsFkL//Sq2hVucgOumBmxAUcqz6
RofEE6CVtvhhD1QaN7yP5WbiaecG3EBhsKgXe9Ipq95FQDjTsF/0Z7MZ7o8G9HOh
QGsCZYdxn+EBRXBsWaate2tLW4hhoD7xlQ0vj9nEitq3/mDqDQux1JtB5scTtw/G
qlbAQYHghvN1BKkHRJzvAl1OriJe3jTZ4UACgf5VLbJUIVFxwdmiY/BpIQBrm/L9
I+IRb+ou1kd46xgQpT9DFsYhx2hfrgrXK5cFHwxt0igAEF8Ez49s4QsVgJMjg/iM
Na3tAJrA
-----END CERTIFICATE-----
Generated at Fri Apr 25 13:16:40 2025 by rpki-client