Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bi9syuAhKd7iLHCrMpxwtf0bqzk.roa
File: bi9syuAhKd7iLHCrMpxwtf0bqzk.roa (raw, json)
Hash identifier: 47oCnLgV2l/SQXG+IMBslAr3ekflmAhjU1fyFlXiTfc=
Subject key identifier: 6E:2F:6C:CA:E0:21:29:DE:E2:2C:70:AB:32:9C:70:B5:FD:1B:AB:39
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019606C6BDD37DB55FE82B9922F644851FE2
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bi9syuAhKd7iLHCrMpxwtf0bqzk.roa
Signing time: Sat 05 Apr 2025 16:26:50 +0000
ROA not before: Sat 05 Apr 2025 16:26:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396356
IP address blocks: 31.56.139.0/24 maxlen: 24
31.57.90.0/24 maxlen: 24
31.57.186.0/23 maxlen: 23
31.58.72.0/22 maxlen: 24
31.58.108.0/22 maxlen: 24
31.58.124.0/22 maxlen: 24
31.58.136.0/24 maxlen: 24
31.59.11.0/24 maxlen: 24
31.59.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:06:c6:bd:d3:7d:b5:5f:e8:2b:99:22:f6:44:85:1f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 5 16:26:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e2f6ccae02129dee22c70ab329c70b5fd1bab39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a7:e1:d9:3b:84:fd:03:a0:96:de:39:f2:46:
56:b5:7a:02:a9:b6:63:f5:8c:8f:5e:a1:c8:aa:11:
97:0c:2d:9f:0e:b1:60:e3:ba:58:2c:6e:14:a3:1c:
10:08:30:c4:b9:8d:7b:b7:13:51:62:64:4f:f3:89:
da:40:27:34:b4:a2:7b:e4:e3:70:11:6d:4d:95:c9:
62:7e:be:1e:c6:a9:56:df:95:bf:3b:1a:28:6f:90:
85:b0:c3:9d:79:ec:27:83:f3:9e:5b:52:34:e1:f6:
75:61:c6:cd:89:77:14:2b:85:bc:f8:9a:e2:f7:88:
8b:d4:b4:f7:e3:97:3a:6a:b5:f2:7c:2c:01:0f:d9:
73:56:7d:c0:fc:be:56:95:b5:5c:b6:9f:54:76:9d:
8c:7c:ee:11:3a:c5:ea:fe:03:f0:92:9d:50:69:ab:
26:ff:c0:5e:fb:a9:c1:0c:77:ae:b3:50:2d:f2:ef:
e4:6b:6c:40:fa:00:31:bc:dd:6e:88:6e:b1:c3:32:
b5:2d:59:a4:f3:7e:be:61:69:f1:c3:08:f7:b4:63:
5a:e5:ce:f5:99:9f:18:a8:20:50:a6:e3:3d:17:d3:
3c:0a:1a:5d:3c:29:8d:26:3e:04:be:14:a6:37:1d:
d4:42:f6:8a:97:5b:97:5e:b6:87:14:9a:2a:ac:da:
22:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:2F:6C:CA:E0:21:29:DE:E2:2C:70:AB:32:9C:70:B5:FD:1B:AB:39
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bi9syuAhKd7iLHCrMpxwtf0bqzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.139.0/24
31.57.90.0/24
31.57.186.0/23
31.58.72.0/22
31.58.108.0/22
31.58.124.0/22
31.58.136.0/24
31.59.11.0/24
31.59.107.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:e9:b5:c4:84:17:f1:fa:d8:d0:87:76:fb:b5:08:c3:53:80:
79:39:f8:62:ad:58:f3:23:f8:a0:d1:df:7a:ae:77:c3:b7:56:
52:93:0a:db:69:1c:7c:ab:41:ce:10:64:90:24:fb:1f:bf:de:
76:c1:34:12:df:0f:80:a2:54:6a:30:0c:ac:d4:c0:ea:c5:44:
d7:51:c7:83:18:d6:ae:a3:99:15:3f:88:a6:42:62:40:a9:53:
c1:3b:72:e1:83:3f:f7:4f:51:7f:9b:84:90:ff:aa:28:67:64:
c9:99:89:33:fd:59:55:1a:bc:89:d5:6c:08:01:1b:20:de:28:
69:c5:f1:25:e6:ea:5e:04:38:fe:92:9e:59:96:01:ae:05:75:
6f:77:fa:63:97:2d:28:4e:3c:5b:f1:7d:fb:6f:4d:31:ed:11:
13:5e:ab:71:b4:f7:00:36:b9:3f:41:33:90:1b:8b:3e:9d:1d:
6e:b5:89:63:89:08:5c:1f:53:c7:01:43:c7:64:3a:5d:f1:01:
7e:bb:aa:e1:83:4c:03:20:38:a5:6e:f6:2f:be:76:ff:00:ac:
05:5e:02:26:d3:73:dd:e8:8d:47:75:79:e5:2b:63:41:99:f2:
f8:f3:1e:c5:fd:0a:4d:fe:c5:91:d9:b0:ca:48:5a:06:0a:11:
4a:a7:2a:d6
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAZYGxr3TfbVf6CuZIvZEhR/iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwNDA1MTYyNjUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTJmNmNjYWUwMjEyOWRlZTIyYzcwYWIzMjljNzBiNWZkMWJhYjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwafh2TuE/QOglt458kZWtXoCqbZj
9YyPXqHIqhGXDC2fDrFg47pYLG4UoxwQCDDEuY17txNRYmRP84naQCc0tKJ75ONw
EW1Nlclifr4exqlW35W/Oxoob5CFsMOdeewng/OeW1I04fZ1YcbNiXcUK4W8+Jri
94iL1LT345c6arXyfCwBD9lzVn3A/L5WlbVctp9Udp2MfO4ROsXq/gPwkp1Qaasm
/8Be+6nBDHeus1At8u/ka2xA+gAxvN1uiG6xwzK1LVmk836+YWnxwwj3tGNa5c71
mZ8YqCBQpuM9F9M8ChpdPCmNJj4EvhSmNx3UQvaKl1uXXraHFJoqrNoiHwIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFG4vbMrgISne4ixwqzKccLX9G6s5MB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvYmk5c3l1QWhLZDdpTEhDck1weHd0ZjBicXprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQAHziLAwQA
HzlaAwQBHzm6AwQCHzpIAwQCHzpsAwQCHzp8AwQAHzqIAwQAHzsLAwQAHztrMA0G
CSqGSIb3DQEBCwUAA4IBAQAr6bXEhBfx+tjQh3b7tQjDU4B5OfhirVjzI/ig0d96
rnfDt1ZSkwrbaRx8q0HOEGSQJPsfv952wTQS3w+AolRqMAys1MDqxUTXUceDGNau
o5kVP4imQmJAqVPBO3Lhgz/3T1F/m4SQ/6ooZ2TJmYkz/VlVGryJ1WwIARsg3ihp
xfEl5upeBDj+kp5ZlgGuBXVvd/pjly0oTjxb8X37b00x7RETXqtxtPcANrk/QTOQ
G4s+nR1utYljiQhcH1PHAUPHZDpd8QF+u6rhg0wDIDilbvYvvnb/AKwFXgIm03Pd
6I1HdXnlK2NBmfL48x7F/QpN/sWR2bDKSFoGChFKpyrW
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:26 2025 by rpki-client on console.sobornost.net