Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/e5iG0NrhDrp6icKbnA1WfGXch84.roa
File: e5iG0NrhDrp6icKbnA1WfGXch84.roa (raw, json)
Hash identifier: VH94mAm3k4HVKms6/I1hJTOP8X0APzu6BTW2lgaDliw=
Subject key identifier: 7B:98:86:D0:DA:E1:0E:BA:7A:89:C2:9B:9C:0D:56:7C:65:DC:87:CE
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194F459F4BB38D4A5E3FDAA65A8E413C895
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/e5iG0NrhDrp6icKbnA1WfGXch84.roa
Signing time: Tue 11 Feb 2025 09:32:03 +0000
ROA not before: Tue 11 Feb 2025 09:32:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 36530
IP address blocks: 31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.200.0/24 maxlen: 24
31.56.202.0/24 maxlen: 24
31.57.104.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.215.0/24 maxlen: 24
31.57.219.0/24 maxlen: 24
31.57.221.0/24 maxlen: 24
31.57.252.0/24 maxlen: 24
31.57.253.0/24 maxlen: 24
31.57.255.0/24 maxlen: 24
31.58.88.0/24 maxlen: 24
31.58.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f4:59:f4:bb:38:d4:a5:e3:fd:aa:65:a8:e4:13:c8:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Feb 11 09:32:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7b9886d0dae10eba7a89c29b9c0d567c65dc87ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ed:88:2f:00:30:5e:43:cb:5e:69:73:b3:49:
a9:92:58:d8:da:5f:37:46:7b:d6:99:cb:c4:1a:45:
bd:d8:4a:55:b5:3b:23:6a:54:b0:17:a8:a8:97:5d:
72:6a:5c:84:1d:0c:ac:38:73:f4:e6:43:4d:5d:05:
70:c9:51:b8:47:f7:7b:a1:6a:05:8b:c1:19:5e:18:
51:9e:ed:dd:98:8f:2f:d4:ea:e4:8b:9e:df:ca:b4:
ac:b2:0a:3f:48:44:75:6a:e8:20:5f:ba:65:e1:b5:
42:f2:cb:da:40:34:ee:c8:0c:92:62:56:5d:e9:8a:
e1:4e:61:a3:fe:fa:c7:62:4d:73:ca:01:2d:d6:ba:
b0:ba:d8:9a:43:78:7d:7a:9a:32:3d:48:c6:5a:e5:
7c:ea:0b:3f:53:08:68:6e:76:5b:62:dc:2c:66:4c:
56:44:87:cf:86:99:dc:7f:3c:19:22:d9:7a:11:17:
ef:2d:5b:fa:35:04:02:42:04:2d:02:80:98:8a:29:
40:f5:8c:fe:12:fe:d7:18:87:e5:2a:3a:7e:26:1f:
2d:65:72:ea:2a:23:43:78:58:cf:58:08:27:b5:88:
fa:c2:3a:1a:ab:08:ea:bc:df:cd:76:d1:75:98:9a:
d6:3c:67:70:ad:46:9c:93:a3:19:95:84:27:6e:e5:
d0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:98:86:D0:DA:E1:0E:BA:7A:89:C2:9B:9C:0D:56:7C:65:DC:87:CE
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/e5iG0NrhDrp6icKbnA1WfGXch84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.200.0/24
31.56.202.0/24
31.57.104.0/24
31.57.181.0/24
31.57.215.0/24
31.57.219.0/24
31.57.221.0/24
31.57.252.0/23
31.57.255.0/24
31.58.88.0/23
Signature Algorithm: sha256WithRSAEncryption
44:c6:82:0b:89:e5:a5:2a:9c:fd:ef:70:4a:17:f9:56:a2:9b:
48:41:b6:fe:53:00:e1:9a:36:fd:99:0f:68:0f:2e:ee:ea:39:
89:88:54:62:96:fc:16:80:3d:9d:32:f2:3c:ca:3a:d0:b4:22:
f7:7f:4e:6f:fd:4b:07:b2:3f:94:e0:93:6d:2a:65:d6:b4:be:
cb:2c:cd:ad:2d:08:0b:c3:e0:ae:a5:66:b8:fe:2a:40:17:20:
7d:96:83:4c:42:30:9e:d6:38:4e:ce:f3:5f:cd:90:eb:da:93:
e6:9e:74:5f:8d:22:c1:59:4d:e8:ef:b2:7e:fb:53:3e:3d:89:
63:2c:b1:e6:1c:e1:0a:6f:de:c3:29:0a:d9:58:0c:5f:a1:c1:
e4:c3:75:f0:d2:6a:9c:d8:54:63:45:8e:3f:c3:f9:9c:6f:97:
76:95:9f:ce:64:c1:47:99:80:45:c0:38:f7:a3:a3:e4:e6:95:
14:3c:07:e7:75:4b:c6:87:21:94:93:6d:5a:48:35:90:3d:08:
bf:cd:7f:6b:41:d8:42:26:8b:43:0c:21:c3:be:28:3b:8b:79:
32:99:aa:92:3e:45:ca:df:bc:a2:af:22:0e:c1:f4:bc:49:bc:
d4:0c:89:8e:1b:d9:db:4b:78:c6:1d:19:43:92:95:2c:2d:86:
72:2e:5d:f3
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAZT0WfS7ONSl4/2qZajkE8iVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwMjExMDkzMjAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Yjk4ODZkMGRhZTEwZWJhN2E4OWMyOWI5YzBkNTY3YzY1ZGM4N2NlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuO2ILwAwXkPLXmlzs0mpkljY2l83
RnvWmcvEGkW92EpVtTsjalSwF6iol11yalyEHQysOHP05kNNXQVwyVG4R/d7oWoF
i8EZXhhRnu3dmI8v1Orki57fyrSssgo/SER1auggX7pl4bVC8svaQDTuyAySYlZd
6YrhTmGj/vrHYk1zygEt1rqwutiaQ3h9epoyPUjGWuV86gs/UwhobnZbYtwsZkxW
RIfPhpncfzwZItl6ERfvLVv6NQQCQgQtAoCYiilA9Yz+Ev7XGIflKjp+Jh8tZXLq
KiNDeFjPWAgntYj6wjoaqwjqvN/NdtF1mJrWPGdwrUack6MZlYQnbuXQKwIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFHuYhtDa4Q66eonCm5wNVnxl3IfOMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvZTVpRzBOcmhEcnA2aWNLYm5BMVdmR1hjaDg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQAHzhFAwQA
HzhIAwQAHzhUAwQAHzjIAwQAHzjKAwQAHzloAwQAHzm1AwQAHznXAwQAHznbAwQA
HzndAwQBHzn8AwQAHzn/AwQBHzpYMA0GCSqGSIb3DQEBCwUAA4IBAQBExoILieWl
Kpz973BKF/lWoptIQbb+UwDhmjb9mQ9oDy7u6jmJiFRilvwWgD2dMvI8yjrQtCL3
f05v/UsHsj+U4JNtKmXWtL7LLM2tLQgLw+CupWa4/ipAFyB9loNMQjCe1jhOzvNf
zZDr2pPmnnRfjSLBWU3o77J++1M+PYljLLHmHOEKb97DKQrZWAxfocHkw3Xw0mqc
2FRjRY4/w/mcb5d2lZ/OZMFHmYBFwDj3o6Pk5pUUPAfndUvGhyGUk21aSDWQPQi/
zX9rQdhCJotDDCHDvig7i3kymaqSPkXK37yiryIOwfS8SbzUDImOG9nbS3jGHRlD
kpUsLYZyLl3z
-----END CERTIFICATE-----
Generated at Sat Mar 8 04:51:18 2025 by rpki-client on console.sobornost.net