Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d5460e-0de1-4a74-951b-3e77d567ccc8/1/la8Gu0e9NFTcytY3rinS9beRvyM.roa
File: la8Gu0e9NFTcytY3rinS9beRvyM.roa (raw, json)
Hash identifier: GOd6sot0dQYbGPdHExjo0+isssXCDdzMsAFY+Gqjv+0=
Subject key identifier: 95:AF:06:BB:47:BD:34:54:DC:CA:D6:37:AE:29:D2:F5:B7:91:BF:23
Certificate issuer: /CN=122b2d2fa8bcf5f836210b9f49211ee6d094d0d2
Certificate serial: 1F2D98
Authority key identifier: 12:2B:2D:2F:A8:BC:F5:F8:36:21:0B:9F:49:21:1E:E6:D0:94:D0:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EistL6i89fg2IQufSSEe5tCU0NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d5460e-0de1-4a74-951b-3e77d567ccc8/1/la8Gu0e9NFTcytY3rinS9beRvyM.roa
Signing time: Mon 14 Feb 2022 18:20:08 +0000
ROA not before: Mon 14 Feb 2022 18:20:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203950
IP address blocks: 89.40.161.0/24 maxlen: 24
89.35.72.0/24 maxlen: 24
89.39.242.0/24 maxlen: 24
89.36.73.0/24 maxlen: 24
89.35.127.0/24 maxlen: 24
93.113.213.0/24 maxlen: 24
89.40.35.0/24 maxlen: 24
185.170.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2043288 (0x1f2d98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=122b2d2fa8bcf5f836210b9f49211ee6d094d0d2
Validity
Not Before: Feb 14 18:20:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95af06bb47bd3454dccad637ae29d2f5b791bf23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b2:8c:20:fe:62:37:2a:14:7d:e7:d9:77:4d:
82:ca:96:b3:c7:13:57:1f:87:c8:5d:8d:40:d1:42:
db:e9:62:dd:0b:60:6d:d1:7f:f7:e6:a3:71:bc:71:
e9:58:fc:12:fb:c6:6a:14:fd:7c:e8:49:ec:09:e0:
5c:64:e7:d3:88:b9:11:45:77:77:96:04:ac:d1:4a:
8f:cd:9f:6c:91:11:1c:7c:0a:21:11:5a:c5:7e:7f:
9c:5e:73:a7:6a:d2:48:83:c1:f5:ff:85:35:08:3b:
ef:74:53:02:72:d7:3f:ef:cb:8f:55:99:7b:35:4d:
f8:f4:9e:1b:ad:66:44:f5:86:e7:f9:f9:06:7d:70:
ba:5d:65:93:91:f2:91:03:0f:75:32:a9:3e:44:16:
d1:07:81:25:36:0a:ef:94:56:1c:f0:33:b5:66:64:
ca:eb:52:69:2b:ae:62:ac:39:d7:35:c5:b3:39:f8:
fa:28:32:29:9e:52:f5:ff:e7:1b:d4:3c:67:0a:98:
59:95:81:4e:59:e6:01:6b:a0:03:59:e1:7c:15:dc:
45:38:f0:f6:95:37:6a:9f:6a:f8:32:b0:72:47:f1:
9e:ee:a4:d1:76:34:db:39:cb:38:88:fc:07:ab:4f:
28:5e:bc:5c:12:aa:23:ee:5c:c0:14:cf:a3:e1:e9:
14:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:AF:06:BB:47:BD:34:54:DC:CA:D6:37:AE:29:D2:F5:B7:91:BF:23
X509v3 Authority Key Identifier:
keyid:12:2B:2D:2F:A8:BC:F5:F8:36:21:0B:9F:49:21:1E:E6:D0:94:D0:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EistL6i89fg2IQufSSEe5tCU0NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d5460e-0de1-4a74-951b-3e77d567ccc8/1/la8Gu0e9NFTcytY3rinS9beRvyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d5460e-0de1-4a74-951b-3e77d567ccc8/1/EistL6i89fg2IQufSSEe5tCU0NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.72.0/24
89.35.127.0/24
89.36.73.0/24
89.39.242.0/24
89.40.35.0/24
89.40.161.0/24
93.113.213.0/24
185.170.65.0/24
Signature Algorithm: sha256WithRSAEncryption
86:37:f9:8d:4d:c5:a0:9b:ef:4d:9a:f4:7a:bc:97:be:41:be:
84:24:2c:bc:1d:4c:32:1d:2b:77:f1:3f:e5:0d:f8:6c:a2:ba:
42:1e:7d:f7:01:06:49:a3:0b:84:ad:bf:99:11:41:02:0d:c8:
19:0d:d9:2b:b9:f5:56:65:16:bb:a4:dc:23:6b:1a:3d:68:ad:
12:e5:c0:6c:71:5f:03:bd:fa:5d:57:d1:34:4d:06:6a:2b:f6:
9e:ab:ed:e7:1d:5e:00:f1:19:30:72:b8:e6:38:20:75:c7:71:
8b:f0:4f:4b:c1:50:0a:cd:36:16:cd:a8:ba:ae:36:28:2c:8e:
8d:77:20:5a:ea:67:8d:d5:4b:75:aa:09:14:68:71:f0:00:54:
38:fc:7a:01:97:c5:55:db:7b:ec:87:79:97:da:b9:be:c1:d8:
ce:68:d0:4f:df:47:8c:63:ee:7c:6c:56:82:e2:60:29:8f:10:
1d:c9:61:a7:19:d2:e7:83:bf:c7:78:27:be:f5:18:85:9e:f4:
eb:95:86:2e:cc:8e:a9:71:b6:13:50:6d:be:ea:21:60:b4:9e:
e6:37:52:43:ba:c9:63:7c:b9:23:f5:13:41:94:a9:c2:a2:14:
2b:4b:0f:db:00:7b:f5:a8:de:15:5d:48:99:47:c6:01:af:42:
68:ce:9f:ac
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgIDHy2YMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDEy
MmIyZDJmYThiY2Y1ZjgzNjIxMGI5ZjQ5MjExZWU2ZDA5NGQwZDIwHhcNMjIwMjE0
MTgyMDA4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5NWFmMDZiYjQ3YmQz
NDU0ZGNjYWQ2MzdhZTI5ZDJmNWI3OTFiZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAxbKMIP5iNyoUfefZd02CypazxxNXH4fIXY1A0ULb6WLdC2Bt
0X/35qNxvHHpWPwS+8ZqFP186EnsCeBcZOfTiLkRRXd3lgSs0UqPzZ9skREcfAoh
EVrFfn+cXnOnatJIg8H1/4U1CDvvdFMCctc/78uPVZl7NU349J4brWZE9Ybn+fkG
fXC6XWWTkfKRAw91Mqk+RBbRB4ElNgrvlFYc8DO1ZmTK61JpK65irDnXNcWzOfj6
KDIpnlL1/+cb1DxnCphZlYFOWeYBa6ADWeF8FdxFOPD2lTdqn2r4MrByR/Ge7qTR
djTbOcs4iPwHq08oXrxcEqoj7lzAFM+j4ekUdQIDAQABo4ICMzCCAi8wHQYDVR0O
BBYEFJWvBrtHvTRU3MrWN64p0vW3kb8jMB8GA1UdIwQYMBaAFBIrLS+ovPX4NiEL
n0khHubQlNDSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
RWlzdEw2aTg5ZmcySVF1ZlNTRWU1dENVME5JLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8wMC9kNTQ2MGUtMGRlMS00YTc0LTk1MWItM2U3N2Q1NjdjY2M4LzEv
bGE4R3UwZTlORlRjeXRZM3JpblM5YmVSdnlNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9k
NTQ2MGUtMGRlMS00YTc0LTk1MWItM2U3N2Q1NjdjY2M4LzEvRWlzdEw2aTg5Zmcy
SVF1ZlNTRWU1dENVME5JLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEkG
CCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAWSNIAwQAWSN/AwQAWSRJAwQAWSfy
AwQAWSgjAwQAWSihAwQAXXHVAwQAuapBMA0GCSqGSIb3DQEBCwUAA4IBAQCGN/mN
TcWgm+9NmvR6vJe+Qb6EJCy8HUwyHSt38T/lDfhsorpCHn33AQZJowuErb+ZEUEC
DcgZDdkrufVWZRa7pNwjaxo9aK0S5cBscV8DvfpdV9E0TQZqK/aeq+3nHV4A8Rkw
crjmOCB1x3GL8E9LwVAKzTYWzai6rjYoLI6NdyBa6meN1Ut1qgkUaHHwAFQ4/HoB
l8VV23vsh3mX2rm+wdjOaNBP30eMY+58bFaC4mApjxAdyWGnGdLng7/HeCe+9RiF
nvTrlYYuzI6pcbYTUG2+6iFgtJ7mN1JDusljfLkj9RNBlKnCohQrSw/bAHv1qN4V
XUiZR8YBr0Jozp+s
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:32 2023 by rpki-client on console.sobornost.net