Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/R2mD77hmpsVmuXDLS5MKhfCuuLY.roa
File: R2mD77hmpsVmuXDLS5MKhfCuuLY.roa (raw, json)
Hash identifier: pt+cJ5CBvCpZNDQAlitB+/AAA5orehKVHB8rW7G+QBc=
Subject key identifier: 47:69:83:EF:B8:66:A6:C5:66:B9:70:CB:4B:93:0A:85:F0:AE:B8:B6
Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Certificate serial: 019086AC03F695127791D81557CC787757E2
Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/R2mD77hmpsVmuXDLS5MKhfCuuLY.roa
Signing time: Sat 06 Jul 2024 06:12:18 +0000
ROA not before: Sat 06 Jul 2024 06:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56503
IP address blocks: 91.106.64.0/24 maxlen: 24
91.106.65.0/24 maxlen: 24
91.106.66.0/24 maxlen: 24
91.106.67.0/24 maxlen: 24
91.106.68.0/24 maxlen: 24
91.106.69.0/24 maxlen: 24
91.106.70.0/24 maxlen: 24
91.106.71.0/24 maxlen: 24
91.106.72.0/24 maxlen: 24
91.106.73.0/24 maxlen: 24
91.106.74.0/24 maxlen: 24
91.106.75.0/24 maxlen: 24
91.106.76.0/24 maxlen: 24
91.106.77.0/24 maxlen: 24
91.106.78.0/24 maxlen: 24
91.106.79.0/24 maxlen: 24
91.106.80.0/24 maxlen: 24
91.106.81.0/24 maxlen: 24
91.106.82.0/24 maxlen: 24
91.106.83.0/24 maxlen: 24
91.106.84.0/24 maxlen: 24
91.106.85.0/24 maxlen: 24
91.106.86.0/24 maxlen: 24
91.106.87.0/24 maxlen: 24
91.106.88.0/24 maxlen: 24
91.106.89.0/24 maxlen: 24
91.106.90.0/24 maxlen: 24
91.106.91.0/24 maxlen: 24
91.106.92.0/24 maxlen: 24
91.106.93.0/24 maxlen: 24
91.106.94.0/24 maxlen: 24
91.106.95.0/24 maxlen: 24
185.26.232.0/23 maxlen: 23
185.26.234.0/23 maxlen: 23
185.103.244.0/22 maxlen: 22
185.103.248.0/22 maxlen: 22
185.104.232.0/22 maxlen: 22
185.104.240.0/22 maxlen: 22
185.106.136.0/22 maxlen: 22
185.106.144.0/22 maxlen: 22
185.107.28.0/24 maxlen: 24
185.107.29.0/24 maxlen: 24
185.107.30.0/23 maxlen: 23
185.108.164.0/22 maxlen: 22
2a04:1380::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:86:ac:03:f6:95:12:77:91:d8:15:57:cc:78:77:57:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Validity
Not Before: Jul 6 06:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=476983efb866a6c566b970cb4b930a85f0aeb8b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2f:00:6c:f4:d5:fc:a6:db:4b:f2:3e:06:df:
be:ce:66:74:82:7d:4e:8c:6b:f4:37:5c:e6:ae:6e:
3b:c8:61:68:77:1e:4e:c9:c0:65:6b:39:15:5d:1a:
14:e7:69:9a:c8:49:be:bd:fd:6e:82:52:38:e5:66:
5a:11:d2:12:be:43:69:42:1d:e3:28:90:d5:35:f4:
49:74:d5:ef:ee:e0:f3:27:06:1d:00:d1:b5:73:29:
95:cc:5e:a6:c5:13:7c:5a:1a:b7:15:79:9f:5c:f6:
58:9c:b5:a1:da:0c:bc:e0:67:2f:83:b7:82:ae:cb:
fc:a6:7f:5b:36:4c:70:ee:c4:b3:60:e7:59:87:5f:
9b:99:02:e0:63:07:12:cb:27:e7:6b:38:67:74:f1:
0e:44:0c:33:77:59:6f:32:9f:10:b2:9b:75:f4:cf:
9c:00:69:54:b9:d4:fb:34:7e:7b:58:cf:de:08:48:
e8:2f:4d:8e:60:3d:ca:08:96:87:e9:21:e6:5c:0a:
0c:09:8c:82:72:1b:6f:f2:77:c1:fd:fc:89:52:8a:
60:da:fd:fc:1d:51:10:4f:3e:b7:65:eb:3c:b7:d0:
19:f8:c8:73:dc:99:bf:1c:68:36:c8:c1:a3:51:23:
20:99:2d:5a:2d:bd:c7:a0:78:71:13:b5:62:d6:fc:
85:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:69:83:EF:B8:66:A6:C5:66:B9:70:CB:4B:93:0A:85:F0:AE:B8:B6
X509v3 Authority Key Identifier:
keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/R2mD77hmpsVmuXDLS5MKhfCuuLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.64.0/19
185.26.232.0/22
185.103.244.0-185.103.251.255
185.104.232.0/22
185.104.240.0/22
185.106.136.0/22
185.106.144.0/22
185.107.28.0/22
185.108.164.0/22
IPv6:
2a04:1380::/29
Signature Algorithm: sha256WithRSAEncryption
d6:82:ce:7a:59:b7:f3:af:ce:c8:b8:51:9a:44:be:a5:fa:20:
4b:50:75:73:11:60:66:ae:5e:fc:d2:53:7e:8b:a1:2f:30:dd:
dc:c5:40:4a:ed:1e:ed:f0:12:98:6d:5d:9d:2d:a3:80:2c:1d:
4c:20:e6:07:8e:01:2d:27:3d:0a:41:60:09:ee:f7:e8:b8:cf:
ff:fb:f4:2d:8f:be:4e:3e:d5:d2:1c:3c:64:ef:b2:d2:01:20:
9e:65:8a:cf:45:c5:8d:03:9e:3b:61:ba:e3:eb:fe:8f:cf:a5:
67:e6:af:51:01:33:eb:b5:a7:cf:54:b2:8d:9d:f9:e0:e0:72:
9b:17:6d:01:7f:61:ac:be:21:97:d6:82:6d:0f:65:a5:49:93:
34:23:f2:06:e7:5a:90:3d:e9:9d:82:0e:77:08:bf:04:5a:18:
a5:e2:65:be:99:b5:fe:72:fa:43:a6:07:2d:0f:ea:ed:80:56:
68:2f:b1:17:6a:46:52:43:0f:e3:e5:35:b3:33:63:9b:15:d4:
06:67:cb:7a:f8:d8:65:91:2f:33:ad:f2:d7:45:65:40:12:74:
42:45:df:be:08:d6:bf:cd:b7:87:99:3d:94:44:ad:23:07:03:
fe:14:2b:84:cb:76:bb:21:cc:dc:6f:c7:d8:f8:0f:a0:b8:fd:
85:a9:b7:73
-----BEGIN CERTIFICATE-----
MIIFRDCCBCygAwIBAgISAZCGrAP2lRJ3kdgVV8x4d1fiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhODE2MGVmZTM5ZjFhMzA3N2ZkZDJmYWYyMmE2NDgwNGI1
NDEzODIwHhcNMjQwNzA2MDYxMjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzY5ODNlZmI4NjZhNmM1NjZiOTcwY2I0YjkzMGE4NWYwYWViOGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2S8AbPTV/KbbS/I+Bt++zmZ0gn1O
jGv0N1zmrm47yGFodx5OycBlazkVXRoU52mayEm+vf1uglI45WZaEdISvkNpQh3j
KJDVNfRJdNXv7uDzJwYdANG1cymVzF6mxRN8Whq3FXmfXPZYnLWh2gy84Gcvg7eC
rsv8pn9bNkxw7sSzYOdZh1+bmQLgYwcSyyfnazhndPEORAwzd1lvMp8Qspt19M+c
AGlUudT7NH57WM/eCEjoL02OYD3KCJaH6SHmXAoMCYyCchtv8nfB/fyJUopg2v38
HVEQTz63Zes8t9AZ+Mhz3Jm/HGg2yMGjUSMgmS1aLb3HoHhxE7Vi1vyFYQIDAQAB
o4ICUDCCAkwwHQYDVR0OBBYEFEdpg++4ZqbFZrlwy0uTCoXwrri2MB8GA1UdIwQY
MBaAFMqBYO/jnxowd/3S+vIqZIBLVBOCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9kMjUwMTUtN2QyNC00YWQ1LWEyYzEt
YWM0ZTI4YzJjNWI2LzEvUjJtRDc3aG1wc1ZtdVhETFM1TUtoZkN1dUxZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9kMjUwMTUtN2QyNC00YWQ1LWEyYzEtYWM0ZTI4YzJjNWI2
LzEveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTBEBAIAATA+AwQFW2pAAwQC
uRroMAwDBAK5Z/QDBAK5Z/gDBAK5aOgDBAK5aPADBAK5aogDBAK5apADBAK5axwD
BAK5bKQwDQQCAAIwBwMFAyoEE4AwDQYJKoZIhvcNAQELBQADggEBANaCznpZt/Ov
zsi4UZpEvqX6IEtQdXMRYGauXvzSU36LoS8w3dzFQErtHu3wEphtXZ0to4AsHUwg
5geOAS0nPQpBYAnu9+i4z//79C2Pvk4+1dIcPGTvstIBIJ5lis9FxY0DnjthuuPr
/o/PpWfmr1EBM+u1p89Uso2d+eDgcpsXbQF/Yay+IZfWgm0PZaVJkzQj8gbnWpA9
6Z2CDncIvwRaGKXiZb6Ztf5y+kOmBy0P6u2AVmgvsRdqRlJDD+PlNbMzY5sV1AZn
y3r42GWRLzOt8tdFZUASdEJF374I1r/Nt4eZPZRErSMHA/4UK4TLdrshzNxvx9j4
D6C4/YWpt3M=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:44 2024 by rpki-client on console.sobornost.net