Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/o8KjmVjBJD5o9ZmhCJyEtxllsIA.roa
File: o8KjmVjBJD5o9ZmhCJyEtxllsIA.roa (raw, json)
Hash identifier: X59lYMKYq/xba5whl10pgaeoe02S5XpQhjeu8O496Nw=
Subject key identifier: A3:C2:A3:99:58:C1:24:3E:68:F5:99:A1:08:9C:84:B7:19:65:B0:80
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 019427469C8E36B78DFF6FDA9009B780A85A
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/o8KjmVjBJD5o9ZmhCJyEtxllsIA.roa
Signing time: Thu 02 Jan 2025 13:48:46 +0000
ROA not before: Thu 02 Jan 2025 13:48:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48678
IP address blocks: 31.210.48.0/24 maxlen: 24
31.210.50.0/24 maxlen: 24
77.92.143.0/24 maxlen: 24
77.92.145.0/24 maxlen: 24
77.92.146.0/24 maxlen: 24
78.135.66.0/24 maxlen: 24
78.135.92.0/24 maxlen: 24
78.135.93.0/24 maxlen: 24
185.17.139.0/24 maxlen: 24
188.132.129.0/24 maxlen: 24
188.132.130.0/24 maxlen: 24
188.132.153.0/24 maxlen: 24
188.132.165.0/24 maxlen: 24
188.132.168.0/24 maxlen: 24
188.132.183.0/24 maxlen: 24
188.132.184.0/24 maxlen: 24
188.132.185.0/24 maxlen: 24
188.132.186.0/24 maxlen: 24
188.132.199.0/24 maxlen: 24
188.132.201.0/24 maxlen: 24
188.132.202.0/24 maxlen: 24
188.132.209.0/24 maxlen: 24
188.132.234.0/24 maxlen: 24
188.132.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:9c:8e:36:b7:8d:ff:6f:da:90:09:b7:80:a8:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 13:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a3c2a39958c1243e68f599a1089c84b71965b080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:21:51:a7:d6:7e:16:3d:c5:7c:23:08:51:87:
2d:90:cc:1e:1e:98:3e:3e:31:05:7d:81:58:6f:92:
e2:c4:ad:49:78:97:91:eb:06:4c:e8:e5:d6:74:d0:
f3:53:fe:bf:40:d7:7c:78:cb:b1:b4:1f:49:b0:77:
89:5f:86:c0:c1:a4:d2:89:4c:d9:ae:b5:03:b0:c1:
cc:e2:cf:7a:43:d9:9c:cb:33:1a:93:b1:db:1c:3e:
f3:ce:a3:9e:a0:b7:b6:49:a8:ad:f4:bf:a6:6e:4f:
b4:ab:ca:72:7f:ad:e8:38:f5:37:2b:c6:c3:49:bd:
92:83:63:66:52:52:57:d4:6d:59:15:0c:a7:dc:eb:
07:e2:df:31:9b:39:b5:26:47:10:aa:3c:15:bd:2a:
c1:93:7a:48:7b:31:e1:f6:cd:68:54:36:9e:f9:30:
58:e8:4e:44:52:22:d9:62:05:d1:4c:a7:0b:5a:e1:
47:16:6f:4f:c5:50:ec:64:8d:ef:b8:9b:24:f4:bc:
4f:ae:85:b4:65:7c:71:97:f5:00:9a:a7:06:f7:00:
1a:cb:0c:d9:59:7a:69:77:87:78:e0:89:15:f1:50:
f4:2e:ca:c6:b6:20:45:32:37:ef:ee:1b:a5:19:d5:
e4:a0:39:47:65:49:5a:4b:9a:9c:91:3f:d8:7a:cf:
00:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C2:A3:99:58:C1:24:3E:68:F5:99:A1:08:9C:84:B7:19:65:B0:80
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/o8KjmVjBJD5o9ZmhCJyEtxllsIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.48.0/24
31.210.50.0/24
77.92.143.0/24
77.92.145.0-77.92.146.255
78.135.66.0/24
78.135.92.0/23
185.17.139.0/24
188.132.129.0-188.132.130.255
188.132.153.0/24
188.132.165.0/24
188.132.168.0/24
188.132.183.0-188.132.186.255
188.132.199.0/24
188.132.201.0-188.132.202.255
188.132.209.0/24
188.132.234.0/23
Signature Algorithm: sha256WithRSAEncryption
31:e3:1f:d4:43:c6:c1:cf:ab:fc:8d:f0:de:99:28:34:33:93:
ac:b9:ec:a2:83:33:8b:5e:05:d7:71:ef:59:79:84:96:fc:11:
e7:65:3a:d8:b9:f5:9b:fb:0f:67:fb:c4:b3:61:b0:f6:a4:2b:
37:3b:8a:40:fc:38:03:5a:b8:db:7c:57:59:f9:46:15:04:01:
e4:23:c3:37:7f:ce:eb:e0:4a:db:97:9e:d9:1f:4a:b3:57:ab:
a9:14:7c:46:a5:29:5d:a1:b2:e5:ac:d3:07:e3:55:6f:c2:46:
3a:97:02:20:ff:04:6f:15:8c:4f:80:27:d0:94:07:23:72:46:
e3:1c:47:78:6f:1c:0d:fe:49:1b:b0:62:ee:ab:27:fb:f8:e9:
54:af:1b:aa:69:40:1c:7e:c7:9e:31:8b:55:27:aa:84:fa:5a:
db:f4:d5:7d:b0:38:e4:4f:b4:a8:bb:45:3d:95:84:a1:47:d8:
2f:8b:99:aa:aa:ec:15:47:fe:4c:a1:73:f8:cf:bd:b9:ed:6a:
91:d4:07:47:7d:64:a4:99:94:df:44:a4:6e:05:3b:86:f4:a1:
94:61:2f:0d:da:63:24:5a:26:cd:0e:f5:b6:db:a6:6f:a9:fd:
84:ac:60:73:1a:4e:b0:70:27:20:f5:d5:ca:84:ee:1e:5d:0b:
44:7b:1c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:02:51 2025 by rpki-client on console.sobornost.net