Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/8L2O5GlhNp_lrqBMRrzhkCl_FU4.roa
File: 8L2O5GlhNp_lrqBMRrzhkCl_FU4.roa (raw, json)
Hash identifier: MpUCXGi4iU4O/s2W0Ri/evmaR2tEREi873mtgHCWuJE=
Subject key identifier: F0:BD:8E:E4:69:61:36:9F:E5:AE:A0:4C:46:BC:E1:90:29:7F:15:4E
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 019423D753BFB32AB527FCB374E7A39AFFC8
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/8L2O5GlhNp_lrqBMRrzhkCl_FU4.roa
Signing time: Wed 01 Jan 2025 21:48:21 +0000
ROA not before: Wed 01 Jan 2025 21:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30886
IP address blocks: 31.43.64.0/19 maxlen: 19
31.43.64.0/24 maxlen: 24
31.43.65.0/24 maxlen: 24
31.43.66.0/24 maxlen: 24
31.43.67.0/24 maxlen: 24
31.43.68.0/24 maxlen: 24
31.43.69.0/24 maxlen: 24
31.43.70.0/24 maxlen: 24
31.43.71.0/24 maxlen: 24
31.43.72.0/24 maxlen: 24
31.43.73.0/24 maxlen: 24
31.43.74.0/24 maxlen: 24
31.43.75.0/24 maxlen: 24
31.43.76.0/24 maxlen: 24
31.43.77.0/24 maxlen: 24
31.43.78.0/24 maxlen: 24
31.43.79.0/24 maxlen: 24
31.43.80.0/24 maxlen: 24
31.43.81.0/24 maxlen: 24
31.43.82.0/24 maxlen: 24
31.43.83.0/24 maxlen: 24
31.43.84.0/24 maxlen: 24
31.43.85.0/24 maxlen: 24
31.43.86.0/24 maxlen: 24
31.43.87.0/24 maxlen: 24
31.43.88.0/24 maxlen: 24
31.43.89.0/24 maxlen: 24
31.43.90.0/24 maxlen: 24
31.43.91.0/24 maxlen: 24
31.43.92.0/24 maxlen: 24
31.43.93.0/24 maxlen: 24
31.43.94.0/24 maxlen: 24
31.43.95.0/24 maxlen: 24
91.196.52.0/22 maxlen: 22
91.196.52.0/24 maxlen: 24
91.196.53.0/24 maxlen: 24
91.196.54.0/24 maxlen: 24
91.196.55.0/24 maxlen: 24
94.231.64.0/20 maxlen: 20
94.231.64.0/24 maxlen: 24
94.231.65.0/24 maxlen: 24
94.231.66.0/24 maxlen: 24
94.231.67.0/24 maxlen: 24
94.231.68.0/24 maxlen: 24
94.231.69.0/24 maxlen: 24
94.231.70.0/24 maxlen: 24
94.231.71.0/24 maxlen: 24
94.231.72.0/24 maxlen: 24
94.231.73.0/24 maxlen: 24
94.231.74.0/24 maxlen: 24
94.231.75.0/24 maxlen: 24
94.231.76.0/24 maxlen: 24
94.231.77.0/24 maxlen: 24
94.231.78.0/24 maxlen: 24
94.231.79.0/24 maxlen: 24
193.27.208.0/23 maxlen: 23
193.27.208.0/24 maxlen: 24
193.27.209.0/24 maxlen: 24
193.84.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:53:bf:b3:2a:b5:27:fc:b3:74:e7:a3:9a:ff:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: Jan 1 21:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f0bd8ee46961369fe5aea04c46bce190297f154e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:02:cf:7d:0f:ba:ce:79:7f:87:c7:49:bc:ba:
dc:b9:04:1f:ec:d1:0e:dc:0d:4c:54:23:ac:6c:b9:
dd:a1:12:8f:d6:86:38:10:01:a7:f3:6b:62:df:0e:
04:1a:62:26:91:10:54:cd:9e:ba:df:32:d5:9a:0f:
8f:e8:a8:84:27:e6:1b:ea:dd:b6:e0:fe:05:76:b3:
61:c5:48:30:1c:8e:3b:92:64:8f:80:75:4a:40:0e:
7c:2a:91:36:da:05:be:05:67:7b:6f:f0:9c:35:20:
98:bb:d2:a8:79:e5:76:bc:b4:43:e2:e8:c4:7f:e9:
28:85:8e:2c:7f:79:79:4b:df:ae:ad:40:12:86:02:
e5:8d:89:cf:35:73:86:de:31:5a:72:35:41:3d:14:
8e:c0:8f:ff:4f:94:24:c9:ae:da:d3:d0:32:a1:2f:
93:92:02:06:40:d5:f0:b6:93:98:db:44:16:80:fc:
c2:fe:ca:9c:7c:6e:a9:25:da:d6:ee:0c:a2:94:d5:
af:f6:53:af:7e:30:b9:eb:ff:8a:12:6c:b1:5a:d5:
ad:f6:f5:72:49:85:d6:b5:e1:a9:ee:24:9b:16:1d:
5e:50:c9:44:be:27:77:96:65:5a:f9:0c:a6:0f:d9:
01:aa:0b:97:e7:e7:31:a8:7c:bd:1d:a0:4e:8c:bb:
da:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:BD:8E:E4:69:61:36:9F:E5:AE:A0:4C:46:BC:E1:90:29:7F:15:4E
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/8L2O5GlhNp_lrqBMRrzhkCl_FU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.64.0/19
91.196.52.0/22
94.231.64.0/20
193.27.208.0/23
193.84.22.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:a7:50:d7:61:93:61:1a:30:65:ba:c9:34:50:d2:0a:09:ff:
b6:07:f6:9f:34:ca:97:cc:e1:c3:76:5e:e8:08:27:e9:57:d4:
c7:ad:6d:85:3e:c1:3a:01:fe:c4:a8:10:d9:c9:c4:01:f2:d5:
ea:a7:50:c7:78:d4:e2:e2:05:7d:f6:26:a0:0f:0d:ed:c8:dc:
fa:5d:e2:30:df:58:bd:64:b3:76:1b:59:a1:ac:b1:ba:b9:7f:
9b:21:26:fc:24:33:ea:a1:f4:03:18:7b:70:f2:c3:26:b6:06:
1f:a0:f0:f8:2d:0d:f3:5f:7f:cd:f4:91:4e:5e:3e:12:2e:d2:
ab:ba:20:b3:b8:7e:40:ff:77:21:55:8c:43:b6:42:59:c3:a6:
61:e5:56:53:e3:3e:da:c6:1b:7c:69:32:c1:66:a0:2a:4a:d7:
5a:73:9a:30:da:62:f1:02:37:4a:b9:90:fa:38:ff:d6:76:12:
18:40:4b:6f:4b:bc:76:c0:86:f1:dc:a3:c3:3f:9e:33:0b:fe:
00:8d:17:4d:9c:3f:8f:f9:1c:22:08:69:b8:b9:5d:5e:19:72:
21:d4:98:1c:01:bf:10:c3:c4:de:27:bb:22:7a:4e:e2:71:81:
a6:1c:54:66:49:3e:16:f0:e3:80:52:f5:08:88:62:17:a2:5d:
ca:15:d9:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:18 2025 by rpki-client on console.sobornost.net