Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/d58727-d970-44d9-abdc-93b3ad12d2f3/1/uVtBGLIuuEGxoP0dBsGk7byflhM.roa
File: uVtBGLIuuEGxoP0dBsGk7byflhM.roa (raw, json)
Hash identifier: rDqd+P94LifyvyCC8cdOWKZEmJ1UXdoYSLqbuW0PEqs=
Subject key identifier: B9:5B:41:18:B2:2E:B8:41:B1:A0:FD:1D:06:C1:A4:ED:BC:9F:96:13
Certificate issuer: /CN=9c11139ae553d6dc7307887f467e4207880045eb
Certificate serial: 0668563E
Authority key identifier: 9C:11:13:9A:E5:53:D6:DC:73:07:88:7F:46:7E:42:07:88:00:45:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nBETmuVT1txzB4h_Rn5CB4gARes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/d58727-d970-44d9-abdc-93b3ad12d2f3/1/uVtBGLIuuEGxoP0dBsGk7byflhM.roa
Signing time: Thu 24 Mar 2022 00:03:33 +0000
ROA not before: Thu 24 Mar 2022 00:03:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41368
IP address blocks: 89.29.128.0/20 maxlen: 20
89.29.129.0/24 maxlen: 24
89.29.132.0/24 maxlen: 24
89.29.134.0/24 maxlen: 24
89.29.133.0/24 maxlen: 24
89.29.136.0/22 maxlen: 22
89.29.135.0/24 maxlen: 24
89.29.144.0/22 maxlen: 22
89.29.144.0/21 maxlen: 21
89.29.148.0/24 maxlen: 24
89.29.150.0/24 maxlen: 24
89.29.149.0/24 maxlen: 24
185.64.243.0/24 maxlen: 24
89.29.152.0/24 maxlen: 24
89.29.152.0/22 maxlen: 22
89.29.151.0/24 maxlen: 24
89.29.155.0/24 maxlen: 24
89.29.157.0/24 maxlen: 24
89.29.156.0/23 maxlen: 23
89.29.156.0/24 maxlen: 24
89.29.156.0/22 maxlen: 22
89.29.159.0/24 maxlen: 24
89.29.158.0/24 maxlen: 24
89.29.153.0/24 maxlen: 24
89.29.232.0/24 maxlen: 24
89.29.233.0/24 maxlen: 24
89.29.232.0/22 maxlen: 22
89.29.235.0/24 maxlen: 24
89.29.234.0/24 maxlen: 24
89.29.236.0/22 maxlen: 22
89.29.254.0/24 maxlen: 24
185.40.37.0/24 maxlen: 24
185.40.38.0/23 maxlen: 23
176.57.104.0/22 maxlen: 22
176.57.108.0/22 maxlen: 22
176.57.108.0/24 maxlen: 24
2a00:4b80:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107501118 (0x668563e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c11139ae553d6dc7307887f467e4207880045eb
Validity
Not Before: Mar 24 00:03:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b95b4118b22eb841b1a0fd1d06c1a4edbc9f9613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e9:32:16:a4:63:4d:ce:6f:a7:7b:da:46:db:
b8:77:62:18:af:90:5b:c0:cd:cd:48:fd:89:ab:08:
b3:b5:17:f5:ab:6f:ae:83:9a:57:c4:df:5a:a7:fd:
d3:83:d3:e7:02:c3:c3:3e:60:75:97:1c:23:4e:dd:
4e:9f:63:3f:01:3f:ad:83:5f:1b:90:19:61:9d:1f:
a0:b2:de:11:35:44:c7:55:a8:b0:ca:4c:e3:e9:95:
2b:b7:6f:eb:d7:ed:96:09:a9:df:25:06:11:fd:c2:
cb:55:3b:63:0f:5e:dc:9c:f9:9b:69:3e:36:80:e5:
cf:79:56:8f:5e:e0:ed:1d:1d:14:0b:e5:2f:4b:f6:
db:bb:00:64:4d:a9:3a:07:91:16:2c:c8:a5:a3:aa:
fe:5c:aa:9a:f5:1c:00:6f:b9:1f:04:46:07:fc:25:
75:48:e4:af:98:e7:e0:36:58:50:98:b0:2e:37:0e:
eb:3c:b3:0e:5a:62:e5:f4:fc:03:30:21:ff:81:36:
24:67:b9:50:42:b3:3a:24:2b:7a:cd:d5:81:ff:b7:
b5:6d:78:2d:57:c3:a8:3a:a2:53:af:f2:2e:aa:28:
dc:f9:18:e5:a9:18:37:43:83:3f:61:57:5c:08:75:
9e:9a:7c:4f:88:af:74:e3:7f:12:3e:66:60:89:c4:
b9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5B:41:18:B2:2E:B8:41:B1:A0:FD:1D:06:C1:A4:ED:BC:9F:96:13
X509v3 Authority Key Identifier:
keyid:9C:11:13:9A:E5:53:D6:DC:73:07:88:7F:46:7E:42:07:88:00:45:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nBETmuVT1txzB4h_Rn5CB4gARes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/d58727-d970-44d9-abdc-93b3ad12d2f3/1/uVtBGLIuuEGxoP0dBsGk7byflhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/d58727-d970-44d9-abdc-93b3ad12d2f3/1/nBETmuVT1txzB4h_Rn5CB4gARes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.29.128.0/19
89.29.232.0/21
89.29.254.0/24
176.57.104.0/21
185.40.37.0-185.40.39.255
185.64.243.0/24
IPv6:
2a00:4b80:3::/48
Signature Algorithm: sha256WithRSAEncryption
82:4a:73:6e:26:4f:88:f2:3e:8f:25:23:8f:74:d4:d5:be:99:
6c:b2:de:5d:d4:dc:0d:b7:74:79:2d:1b:30:da:b6:5d:88:9c:
63:df:d9:ee:ad:d2:fa:6c:90:48:eb:e2:e1:24:53:84:65:b3:
7f:f0:4f:f6:93:bf:d9:68:ee:42:07:9d:bf:9f:8b:e3:b6:cc:
b7:72:de:d4:70:50:0c:45:8b:d3:ef:0f:dc:6a:ed:4f:99:cd:
38:51:93:54:d3:60:0a:dd:8e:6f:8b:5c:f5:f8:9b:e5:bb:6e:
59:6c:08:0f:b8:bd:cc:42:78:1d:cb:df:4a:9e:8d:e5:2e:4e:
7a:25:4e:81:07:ec:89:c5:0f:76:34:85:26:a6:be:1d:90:4f:
a1:49:af:f6:9f:4b:14:59:4b:1d:12:17:35:e4:ad:94:97:57:
e3:05:ae:88:ef:5e:45:6d:99:5f:51:bb:6a:26:01:bc:23:ff:
b1:a2:0e:df:4e:f0:eb:fe:16:4b:75:2f:10:4a:d2:78:38:67:
38:c2:c0:99:f8:67:44:48:e9:83:7a:74:14:0d:be:36:cb:9b:
c2:ad:4e:5b:4a:a3:97:14:46:2b:cd:cc:51:7f:c2:56:27:6f:
4d:40:57:55:97:bd:6d:3e:36:c5:2f:f8:15:35:be:98:e6:bc:
1c:6f:40:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:53 2023 by rpki-client on console.sobornost.net