Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/29aea2-b6c8-4af9-ad84-03fb54187ee2/1/Fuy491MIuQQL2jajAzSDiE08E4M.roa
File: Fuy491MIuQQL2jajAzSDiE08E4M.roa (raw, json)
Hash identifier: OOdZKwslLtcdbBXB1+gaVbeLp6u/ksn9961CzGcL/H0=
Subject key identifier: 16:EC:B8:F7:53:08:B9:04:0B:DA:36:A3:03:34:83:88:4D:3C:13:83
Certificate issuer: /CN=bc9d7c42e917844cbc2de4a91c6c1701de5971b5
Certificate serial: 018CC7952A7F8AFA46563E1DF90B67A9AB5E
Authority key identifier: BC:9D:7C:42:E9:17:84:4C:BC:2D:E4:A9:1C:6C:17:01:DE:59:71:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJ18QukXhEy8LeSpHGwXAd5ZcbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/29aea2-b6c8-4af9-ad84-03fb54187ee2/1/Fuy491MIuQQL2jajAzSDiE08E4M.roa
Signing time: Tue 02 Jan 2024 00:31:30 +0000
ROA not before: Tue 02 Jan 2024 00:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34119
IP address blocks: 185.211.176.0/22 maxlen: 22
77.95.32.0/21 maxlen: 21
31.22.4.0/24 maxlen: 24
31.22.0.0/21 maxlen: 21
31.22.7.0/24 maxlen: 24
185.2.168.0/22 maxlen: 22
2a02:5300::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:2a:7f:8a:fa:46:56:3e:1d:f9:0b:67:a9:ab:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc9d7c42e917844cbc2de4a91c6c1701de5971b5
Validity
Not Before: Jan 2 00:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16ecb8f75308b9040bda36a3033483884d3c1383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a5:ad:8b:12:39:41:c0:90:ff:8a:6b:bc:c8:
20:e8:d8:b8:c5:30:d0:73:dd:6d:5b:4d:ff:e7:73:
d4:9e:84:bf:9a:41:f2:78:b1:b0:0a:69:ce:e7:a0:
ea:84:9a:7a:81:03:22:17:c3:d9:b5:ca:97:1a:93:
20:fb:b9:c6:b5:79:11:ce:5d:c8:b6:a6:b2:1f:08:
18:ca:ba:8d:d3:fc:b6:d1:0e:63:89:03:40:8a:02:
97:66:c8:56:1a:4f:e8:92:c7:4a:e1:8a:3f:ba:c2:
1e:cf:92:3d:1c:7b:15:9f:81:d5:bd:04:3a:91:c5:
a6:5a:ac:ec:1f:a3:da:3b:78:32:27:ae:6f:82:ec:
19:45:d9:43:84:b1:59:f4:e4:bd:c3:1f:72:d4:96:
54:4c:96:8a:ab:5b:96:1b:12:5f:d9:38:ed:3f:bb:
fc:c8:56:a9:2b:dd:f3:2a:be:5f:fd:86:ce:48:1a:
41:b2:6e:7e:33:c8:82:d7:9c:52:70:11:b7:a7:06:
87:c3:e7:83:9a:7c:a9:44:45:60:7f:25:72:80:61:
c6:a7:a6:70:83:94:15:11:a5:58:ab:4b:47:be:98:
fd:a3:32:b0:18:eb:c0:7b:04:aa:e1:83:1f:0f:49:
a1:da:e8:38:fd:e3:74:b4:b7:6d:c0:e7:5c:87:30:
fe:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:EC:B8:F7:53:08:B9:04:0B:DA:36:A3:03:34:83:88:4D:3C:13:83
X509v3 Authority Key Identifier:
keyid:BC:9D:7C:42:E9:17:84:4C:BC:2D:E4:A9:1C:6C:17:01:DE:59:71:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJ18QukXhEy8LeSpHGwXAd5ZcbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29aea2-b6c8-4af9-ad84-03fb54187ee2/1/Fuy491MIuQQL2jajAzSDiE08E4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29aea2-b6c8-4af9-ad84-03fb54187ee2/1/vJ18QukXhEy8LeSpHGwXAd5ZcbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.22.0.0/21
77.95.32.0/21
185.2.168.0/22
185.211.176.0/22
IPv6:
2a02:5300::/32
Signature Algorithm: sha256WithRSAEncryption
42:77:51:f3:59:81:a8:47:ff:62:87:09:71:76:a3:3c:78:2b:
76:87:d0:4f:6d:f4:72:8e:af:65:b9:3a:46:97:e4:34:86:ba:
dc:7a:8a:78:33:b0:58:d3:57:13:39:a7:ce:4e:f2:62:77:bf:
b1:73:e3:df:0b:50:87:0b:8d:ed:be:29:00:a7:99:c7:5d:3a:
2e:87:d3:de:9f:56:c1:bc:d7:ff:e3:89:8f:a6:c6:1b:8d:86:
2b:58:8c:69:46:f2:9c:1e:f9:05:2f:2f:21:b1:19:ba:13:c5:
b5:37:90:a7:da:db:2f:3b:cc:0f:3b:1a:8b:48:66:fc:e4:01:
5f:d6:c2:c6:97:bb:e2:30:82:e4:10:2c:ea:7b:96:98:7a:ca:
ed:0f:76:0e:d6:91:dc:c5:b5:d5:fe:ec:fe:01:fd:58:dd:cb:
ef:7a:46:00:fc:6c:ef:2c:5c:a4:c3:c6:22:e7:19:7d:56:d1:
dd:34:f1:83:ee:30:45:65:f3:c4:1c:d8:6a:e4:00:2e:3e:8b:
8e:42:1b:cb:26:0b:6b:c5:7b:0b:d8:67:8b:c0:bd:51:c5:45:
75:bc:20:ab:78:18:f2:3b:2e:59:03:83:9c:5d:e7:cf:aa:22:
8a:9a:cd:3f:ad:89:61:bb:1c:0b:1c:36:33:70:b1:2c:99:bb:
c2:5c:c7:11
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgISAYzHlSp/ivpGVj4d+QtnqateMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjOWQ3YzQyZTkxNzg0NGNiYzJkZTRhOTFjNmMxNzAxZGU1
OTcxYjUwHhcNMjQwMTAyMDAzMTMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNmVjYjhmNzUzMDhiOTA0MGJkYTM2YTMwMzM0ODM4ODRkM2MxMzgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqWtixI5QcCQ/4prvMgg6Ni4xTDQ
c91tW03/53PUnoS/mkHyeLGwCmnO56DqhJp6gQMiF8PZtcqXGpMg+7nGtXkRzl3I
tqayHwgYyrqN0/y20Q5jiQNAigKXZshWGk/oksdK4Yo/usIez5I9HHsVn4HVvQQ6
kcWmWqzsH6PaO3gyJ65vguwZRdlDhLFZ9OS9wx9y1JZUTJaKq1uWGxJf2TjtP7v8
yFapK93zKr5f/YbOSBpBsm5+M8iC15xScBG3pwaHw+eDmnypREVgfyVygGHGp6Zw
g5QVEaVYq0tHvpj9ozKwGOvAewSq4YMfD0mh2ug4/eN0tLdtwOdchzD+owIDAQAB
o4ICKjCCAiYwHQYDVR0OBBYEFBbsuPdTCLkEC9o2owM0g4hNPBODMB8GA1UdIwQY
MBaAFLydfELpF4RMvC3kqRxsFwHeWXG1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkoxOFF1a1hoRXk4TGVTcEhHd1hBZDVaY2JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8yOWFlYTItYjZjOC00YWY5LWFkODQt
MDNmYjU0MTg3ZWUyLzEvRnV5NDkxTUl1UVFMMmphakF6U0RpRTA4RTRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC8yOWFlYTItYjZjOC00YWY5LWFkODQtMDNmYjU0MTg3ZWUy
LzEvdkoxOFF1a1hoRXk4TGVTcEhHd1hBZDVaY2JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQDHxYAAwQD
TV8gAwQCuQKoAwQCudOwMA0EAgACMAcDBQAqAlMAMA0GCSqGSIb3DQEBCwUAA4IB
AQBCd1HzWYGoR/9ihwlxdqM8eCt2h9BPbfRyjq9luTpGl+Q0hrrceop4M7BY01cT
OafOTvJid7+xc+PfC1CHC43tvikAp5nHXTouh9Pen1bBvNf/44mPpsYbjYYrWIxp
RvKcHvkFLy8hsRm6E8W1N5Cn2tsvO8wPOxqLSGb85AFf1sLGl7viMILkECzqe5aY
esrtD3YO1pHcxbXV/uz+Af1Y3cvvekYA/GzvLFykw8Yi5xl9VtHdNPGD7jBFZfPE
HNhq5AAuPouOQhvLJgtrxXsL2GeLwL1RxUV1vCCreBjyOy5ZA4OcXefPqiKKms0/
rYlhuxwLHDYzcLEsmbvCXMcR
-----END CERTIFICATE-----
Generated at Thu Aug 15 03:07:49 2024 by rpki-client on console.sobornost.net