Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ogHk75NFaxvXA5ubU8x5IA7bSEY.roa
File: ogHk75NFaxvXA5ubU8x5IA7bSEY.roa (raw, json)
Hash identifier: JWDqkT8KCFNecVDDe59p+D+8IAEGMVlV2xXic4m3/6E=
Subject key identifier: A2:01:E4:EF:93:45:6B:1B:D7:03:9B:9B:53:CC:79:20:0E:DB:48:46
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01962011FEC3FCB320F2BDA509D40974831A
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ogHk75NFaxvXA5ubU8x5IA7bSEY.roa
Signing time: Thu 10 Apr 2025 14:19:32 +0000
ROA not before: Thu 10 Apr 2025 14:19:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 31.56.156.0/24 maxlen: 24
31.56.204.0/22 maxlen: 22
31.57.92.0/22 maxlen: 22
31.57.129.0/24 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.142.0/24 maxlen: 24
31.57.151.0/24 maxlen: 24
31.57.191.0/24 maxlen: 24
31.57.206.0/24 maxlen: 24
31.58.33.0/24 maxlen: 24
31.58.90.0/24 maxlen: 24
31.58.157.0/24 maxlen: 24
31.58.160.0/24 maxlen: 24
31.58.163.0/24 maxlen: 24
31.58.168.0/24 maxlen: 24
31.58.224.0/24 maxlen: 24
31.58.230.0/23 maxlen: 24
31.58.231.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.108.0/24 maxlen: 24
31.59.109.0/24 maxlen: 24
31.59.110.0/24 maxlen: 24
31.59.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:20:11:fe:c3:fc:b3:20:f2:bd:a5:09:d4:09:74:83:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 10 14:19:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a201e4ef93456b1bd7039b9b53cc79200edb4846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1f:5b:99:3e:ce:e8:56:03:2d:51:32:ab:1d:
bc:56:92:67:e2:7d:af:b6:1f:6d:2b:3e:6c:49:84:
a5:2a:32:82:37:5e:c3:e2:d2:99:8d:c8:55:8b:e4:
82:40:1b:51:f9:c5:c6:90:1e:48:dc:e7:e6:2f:34:
ed:3f:60:bc:a9:9d:47:41:77:d1:0d:a7:50:17:cb:
63:f7:61:3f:d7:13:10:45:9b:1b:7f:fd:40:2b:d7:
48:f8:82:6d:ca:e9:09:82:9f:ab:66:2b:61:c8:73:
b8:d8:9a:a7:52:8e:11:9c:7c:77:3f:e4:b2:c0:3e:
01:f1:2c:c8:5b:88:1e:ac:82:d0:43:67:81:63:bb:
82:16:ee:04:1c:a3:15:1e:23:c9:76:23:aa:7a:8f:
8b:5c:d8:e3:40:28:bf:31:9f:08:74:7e:c6:cf:c4:
b8:3f:4d:13:d5:48:29:93:ba:08:b2:39:d9:2c:ef:
2d:9a:bf:59:f0:72:88:91:1a:fc:d1:32:5b:ed:5f:
40:6f:36:a4:6a:3a:4b:f8:a8:90:be:90:7a:73:3e:
9f:1d:17:c6:05:dd:00:28:92:c9:b0:33:97:cc:5f:
82:ce:5f:13:20:64:1e:f1:ea:5d:ce:bc:b6:d2:c5:
53:80:18:11:5e:d7:00:71:3e:1b:cc:dd:ff:cd:d7:
f3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:01:E4:EF:93:45:6B:1B:D7:03:9B:9B:53:CC:79:20:0E:DB:48:46
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ogHk75NFaxvXA5ubU8x5IA7bSEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.156.0/24
31.56.204.0/22
31.57.92.0/22
31.57.129.0/24
31.57.132.0/24
31.57.142.0/24
31.57.151.0/24
31.57.191.0/24
31.57.206.0/24
31.58.33.0/24
31.58.90.0/24
31.58.157.0/24
31.58.160.0/24
31.58.163.0/24
31.58.168.0/24
31.58.224.0/24
31.58.230.0/23
31.59.57.0/24
31.59.108.0-31.59.110.255
31.59.236.0/22
Signature Algorithm: sha256WithRSAEncryption
19:97:89:1d:cb:ff:31:d9:47:c8:db:f9:83:98:85:cf:e5:c8:
d6:f5:7f:3a:0f:18:9d:4a:3e:a3:d7:74:63:af:23:5a:98:59:
87:da:ee:16:f5:f4:a9:fe:33:ef:dc:97:a3:c7:de:e5:44:de:
d2:a1:24:9e:77:b9:f8:44:05:61:3d:00:f4:1f:59:07:d8:0f:
23:5e:49:d5:f6:2c:f2:ff:ce:90:2c:17:16:ee:38:b8:46:0e:
be:c9:63:b2:4b:fd:9e:11:91:82:78:56:c2:a8:78:08:96:3a:
00:63:b4:0a:88:c6:d3:14:db:a7:47:d7:79:09:d3:e2:a2:c3:
30:e0:85:be:b0:51:e6:39:54:89:cc:b6:f7:29:4f:81:da:0a:
f7:28:62:61:db:2a:3e:90:f2:65:a2:7b:b6:10:2f:86:f1:91:
b8:4d:c0:02:c0:9a:d9:64:5b:5c:a8:55:37:31:0e:3b:c7:a1:
7f:a6:05:77:de:70:fd:35:96:97:cf:81:b4:7b:2c:6f:32:3e:
44:6a:ae:ae:38:56:65:1e:ec:f6:02:70:ed:dc:62:c5:8f:b1:
55:7d:0c:3a:b0:e1:c8:34:eb:88:58:0d:7f:8d:a5:ab:50:49:
b7:2e:85:34:8e:c2:18:fc:0c:11:a3:40:39:e9:1e:68:bf:91:
f4:ec:87:4b
-----BEGIN CERTIFICATE-----
MIIFfDCCBGSgAwIBAgISAZYgEf7D/LMg8r2lCdQJdIMaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwNDEwMTQxOTMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjAxZTRlZjkzNDU2YjFiZDcwMzliOWI1M2NjNzkyMDBlZGI0ODQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArh9bmT7O6FYDLVEyqx28VpJn4n2v
th9tKz5sSYSlKjKCN17D4tKZjchVi+SCQBtR+cXGkB5I3OfmLzTtP2C8qZ1HQXfR
DadQF8tj92E/1xMQRZsbf/1AK9dI+IJtyukJgp+rZithyHO42JqnUo4RnHx3P+Sy
wD4B8SzIW4gerILQQ2eBY7uCFu4EHKMVHiPJdiOqeo+LXNjjQCi/MZ8IdH7Gz8S4
P00T1Ugpk7oIsjnZLO8tmr9Z8HKIkRr80TJb7V9AbzakajpL+KiQvpB6cz6fHRfG
Bd0AKJLJsDOXzF+Czl8TIGQe8epdzry20sVTgBgRXtcAcT4bzN3/zdfzJQIDAQAB
o4ICiDCCAoQwHQYDVR0OBBYEFKIB5O+TRWsb1wObm1PMeSAO20hGMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvb2dIazc1TkZheHZYQTV1YlU4eDVJQTdiU0VZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGdBggrBgEFBQcBBwEB/wSBjTCBijCBhwQCAAEwgYADBAAf
OJwDBAIfOMwDBAIfOVwDBAAfOYEDBAAfOYQDBAAfOY4DBAAfOZcDBAAfOb8DBAAf
Oc4DBAAfOiEDBAAfOloDBAAfOp0DBAAfOqADBAAfOqMDBAAfOqgDBAAfOuADBAEf
OuYDBAAfOzkwDAMEAh87bAMEAB87bgMEAh877DANBgkqhkiG9w0BAQsFAAOCAQEA
GZeJHcv/MdlHyNv5g5iFz+XI1vV/Og8YnUo+o9d0Y68jWphZh9ruFvX0qf4z79yX
o8fe5UTe0qEknne5+EQFYT0A9B9ZB9gPI15J1fYs8v/OkCwXFu44uEYOvsljskv9
nhGRgnhWwqh4CJY6AGO0CojG0xTbp0fXeQnT4qLDMOCFvrBR5jlUicy29ylPgdoK
9yhiYdsqPpDyZaJ7thAvhvGRuE3AAsCa2WRbXKhVNzEOO8ehf6YFd95w/TWWl8+B
tHssbzI+RGqurjhWZR7s9gJw7dxixY+xVX0MOrDhyDTriFgNf42lq1BJty6FNI7C
GPwMEaNAOekeaL+R9OyHSw==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:26 2025 by rpki-client on console.sobornost.net