Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/v-1dMJATbmCqn4ZIXY3_7O06Kgo.roa
File: v-1dMJATbmCqn4ZIXY3_7O06Kgo.roa (raw, json)
Hash identifier: e/oJSwkuDJQUs8pWr+iLRNfJ7vsAry7pnZFcOPKfgOQ=
Subject key identifier: BF:ED:5D:30:90:13:6E:60:AA:9F:86:48:5D:8D:FF:EC:ED:3A:2A:0A
Certificate issuer: /CN=662f55d377127f28ce26b78fd83becf41becad4b
Certificate serial: 019424B28B47D35BC6009C65E43371435285
Authority key identifier: 66:2F:55:D3:77:12:7F:28:CE:26:B7:8F:D8:3B:EC:F4:1B:EC:AD:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zi9V03cSfyjOJreP2Dvs9BvsrUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/v-1dMJATbmCqn4ZIXY3_7O06Kgo.roa
Signing time: Thu 02 Jan 2025 01:47:48 +0000
ROA not before: Thu 02 Jan 2025 01:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49683
IP address blocks: 31.25.234.0/24 maxlen: 24
171.22.172.0/24 maxlen: 24
171.22.173.0/24 maxlen: 24
171.22.174.0/24 maxlen: 24
185.44.64.0/24 maxlen: 24
185.44.65.0/24 maxlen: 24
185.44.66.0/24 maxlen: 24
185.44.67.0/24 maxlen: 24
185.85.240.0/24 maxlen: 24
185.85.241.0/24 maxlen: 24
185.85.242.0/24 maxlen: 24
185.85.243.0/24 maxlen: 24
185.116.236.0/24 maxlen: 24
185.116.237.0/24 maxlen: 24
185.116.239.0/24 maxlen: 24
185.122.164.0/24 maxlen: 24
185.122.165.0/24 maxlen: 24
185.122.166.0/24 maxlen: 24
185.122.167.0/24 maxlen: 24
185.168.192.0/24 maxlen: 24
185.168.193.0/24 maxlen: 24
185.168.194.0/24 maxlen: 24
185.168.195.0/24 maxlen: 24
185.184.68.0/24 maxlen: 24
185.184.69.0/24 maxlen: 24
185.184.70.0/24 maxlen: 24
185.184.71.0/24 maxlen: 24
185.189.56.0/24 maxlen: 24
185.189.57.0/24 maxlen: 24
185.189.58.0/24 maxlen: 24
185.189.59.0/24 maxlen: 24
2a0a:2f00:1::/48 maxlen: 48
2a0a:2f00:2::/48 maxlen: 48
2a0a:2f00:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:8b:47:d3:5b:c6:00:9c:65:e4:33:71:43:52:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=662f55d377127f28ce26b78fd83becf41becad4b
Validity
Not Before: Jan 2 01:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bfed5d3090136e60aa9f86485d8dffeced3a2a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:73:1c:cf:78:e2:ef:01:65:4c:6e:20:fc:47:
86:6b:79:3a:68:99:f2:97:8c:5d:e3:62:4c:7c:f3:
5d:03:00:da:ba:0e:b4:42:9b:8f:e6:d5:29:c6:78:
c7:d4:96:e6:7a:64:ef:48:50:6c:0f:c5:66:25:70:
35:5d:2b:94:93:d8:96:cf:80:83:de:02:b0:18:69:
99:4c:a8:d2:d2:9d:94:d3:39:d4:75:7b:88:05:28:
c6:60:6d:22:02:89:e7:3d:f3:b6:a0:fe:ce:c0:e5:
16:e7:f1:e2:42:4a:7f:78:a9:cc:46:f2:d2:73:fe:
69:c4:a0:6f:21:3b:6f:2c:33:64:f6:a1:99:92:bd:
97:a1:d8:f0:86:eb:96:eb:b9:d7:cd:96:01:79:26:
34:7e:c3:3c:b3:74:f5:c3:89:3c:a6:b0:df:be:e4:
c9:72:81:6e:19:f5:68:9d:25:4c:93:f6:9e:86:5e:
06:e0:cf:98:bf:76:b6:98:1f:e3:97:f3:e7:fb:ee:
46:7b:04:a5:69:fb:1f:47:f3:e5:68:48:c7:11:ee:
6c:a9:bc:c7:b3:15:9f:99:97:c7:46:67:29:be:69:
71:c1:77:20:a3:57:42:df:c7:73:dc:24:f0:de:07:
e6:e1:4b:3a:da:50:cc:02:74:89:a2:41:17:59:a5:
e0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:ED:5D:30:90:13:6E:60:AA:9F:86:48:5D:8D:FF:EC:ED:3A:2A:0A
X509v3 Authority Key Identifier:
keyid:66:2F:55:D3:77:12:7F:28:CE:26:B7:8F:D8:3B:EC:F4:1B:EC:AD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zi9V03cSfyjOJreP2Dvs9BvsrUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/v-1dMJATbmCqn4ZIXY3_7O06Kgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/Zi9V03cSfyjOJreP2Dvs9BvsrUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.234.0/24
171.22.172.0-171.22.174.255
185.44.64.0/22
185.85.240.0/22
185.116.236.0/23
185.116.239.0/24
185.122.164.0/22
185.168.192.0/22
185.184.68.0/22
185.189.56.0/22
IPv6:
2a0a:2f00:1::-2a0a:2f00:3:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
01:de:f7:ea:cf:f9:9a:a0:23:6a:3b:fd:18:2b:51:e2:5f:8b:
2c:79:68:47:55:c7:97:30:f2:5f:b9:fa:ad:1f:5b:42:81:4c:
0c:40:80:57:e9:ac:40:c4:c8:38:9c:32:ad:66:3b:94:c1:60:
9f:0e:26:0b:d7:e7:f5:5f:e7:a1:44:80:45:6e:cf:27:34:4f:
71:93:b8:b6:70:07:ef:93:57:01:a2:2d:85:d4:4d:15:ff:9e:
d6:8b:06:49:6a:77:8c:83:f9:d0:f6:60:b3:37:6c:fe:cc:08:
14:ad:78:1f:f2:9b:06:fa:8a:8e:6e:9f:80:8d:04:f2:f9:80:
cc:e9:1a:81:a0:2e:b7:6c:95:ed:d2:02:9b:f9:bb:99:d6:d1:
bb:ad:f8:19:fe:fb:12:41:0e:16:c9:30:db:e5:e5:a2:6f:96:
38:fd:1f:6e:8a:96:af:ed:84:24:3c:24:3b:3d:5b:53:5b:bc:
51:64:3d:3f:8f:f8:b7:cf:83:c2:c6:8c:f1:01:a1:71:bd:dd:
1b:8d:50:46:0c:34:10:53:39:f7:72:b5:40:38:0c:11:47:2f:
de:60:e0:93:41:59:ca:19:6a:96:26:c5:10:28:6a:85:d0:66:
6c:50:08:4a:91:48:65:21:32:1b:d4:b1:30:aa:74:c3:74:0b:
41:33:f9:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:53 2025 by rpki-client on console.sobornost.net