Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/sy3IobYqDzwXhyeIFrFIGPVEXUs.roa
File: sy3IobYqDzwXhyeIFrFIGPVEXUs.roa (raw, json)
Hash identifier: YjBao2aaBJHtSQI+nLAVxqsIEqVU0dpFh76FzVGe+pk=
Subject key identifier: B3:2D:C8:A1:B6:2A:0F:3C:17:87:27:88:16:B1:48:18:F5:44:5D:4B
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 019121CE78183747FB7C8620B6996439AE61
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/sy3IobYqDzwXhyeIFrFIGPVEXUs.roa
Signing time: Mon 05 Aug 2024 09:11:04 +0000
ROA not before: Mon 05 Aug 2024 09:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211559
IP address blocks: 31.11.48.0/21 maxlen: 21
31.11.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.60.0/22 maxlen: 22
37.186.60.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.166.0/23 maxlen: 23
80.76.166.0/24 maxlen: 24
80.76.167.0/24 maxlen: 24
80.76.168.0/23 maxlen: 23
80.76.168.0/24 maxlen: 24
80.76.169.0/24 maxlen: 24
103.14.208.0/22 maxlen: 22
103.14.211.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
185.247.89.0/24 maxlen: 24
212.70.100.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.105.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.123.0/24 maxlen: 24
212.70.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:21:ce:78:18:37:47:fb:7c:86:20:b6:99:64:39:ae:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Aug 5 09:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b32dc8a1b62a0f3c1787278816b14818f5445d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4d:74:d2:80:22:a2:05:6d:61:9f:af:25:42:
52:d6:68:3c:36:07:a8:a8:38:df:2b:b9:4a:98:46:
2d:51:56:59:5f:28:75:7f:67:e2:61:03:88:11:f3:
c4:7f:59:84:cd:e2:e2:2b:53:5d:cc:19:81:c0:c2:
ce:2d:95:50:8d:05:18:2e:17:d8:af:f0:c2:dc:e9:
56:62:61:dc:89:34:20:50:f6:71:46:90:48:e1:62:
9d:47:fa:e3:2b:c3:9e:65:4c:64:70:11:87:c6:00:
35:98:80:e3:77:bc:bb:94:e9:a9:8b:8b:bd:50:e1:
8c:4a:2c:eb:e4:f0:3f:80:16:cc:61:30:fe:b8:de:
8d:a3:d3:7e:34:2d:da:c2:f8:d1:c9:23:c4:8d:20:
55:39:96:c6:5b:f4:31:cc:d3:15:58:8a:14:94:7d:
c0:b4:ac:7f:07:d7:d8:e6:e2:88:2b:1f:7c:6c:35:
dc:ba:95:97:1e:f0:ca:b6:0d:70:28:14:59:ea:11:
cd:92:ec:42:a9:dd:c2:5d:8a:e3:fc:fe:11:94:58:
94:a2:2f:19:d3:10:68:88:a4:81:7b:c3:9e:34:ef:
36:41:44:f3:a3:20:b3:a9:cc:59:c4:83:be:27:c8:
02:3f:14:b1:1f:0e:4e:99:62:c4:92:c0:36:56:e2:
5e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:2D:C8:A1:B6:2A:0F:3C:17:87:27:88:16:B1:48:18:F5:44:5D:4B
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/sy3IobYqDzwXhyeIFrFIGPVEXUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.56.0/23
37.186.60.0/22
80.76.165.0-80.76.169.255
103.14.208.0/22
103.225.72.0-103.225.74.255
185.247.88.0/22
212.70.100.0-212.70.105.255
212.70.109.0/24
212.70.120.0-212.70.124.255
Signature Algorithm: sha256WithRSAEncryption
08:6e:98:bf:8a:02:86:e6:d1:d4:97:22:71:69:13:a0:37:6c:
7c:68:81:cb:6a:05:dc:d4:38:90:b3:12:51:00:bf:a6:47:7f:
ab:83:d5:1d:84:cb:f5:b1:fa:47:6d:ce:ab:35:d4:1f:2b:97:
90:38:ee:2d:95:a3:fc:93:5e:4f:72:a8:48:04:8a:e2:bd:fa:
ee:d4:d7:4d:6e:4f:0c:62:90:e8:93:1e:48:57:90:d4:21:fb:
27:c0:81:74:b6:40:b3:22:7c:4f:e4:25:2f:bf:fb:da:02:72:
82:de:39:9e:14:00:60:8e:26:46:63:e8:59:8e:fe:aa:f7:8e:
2b:b9:71:8b:de:ed:f0:a1:34:5c:78:9b:02:26:19:af:b1:f4:
b7:b0:d0:82:ef:62:52:c9:1b:0a:6e:6f:d8:f9:6e:59:cf:d5:
b4:fd:1f:04:b6:1d:9e:fa:92:44:a7:c5:e8:38:a3:42:29:54:
4b:88:1e:1e:57:8f:50:e3:3b:e4:0a:d4:dd:a0:94:28:26:08:
f9:61:18:7d:97:41:3a:87:2e:ea:a2:ae:f9:5e:2f:a2:3d:c0:
92:f1:24:ce:64:d5:da:64:cd:c1:eb:29:38:a4:51:9b:a9:d1:
e9:ee:d9:b7:f6:b6:37:c5:3e:9a:2e:c4:55:59:46:09:4a:d8:
8e:e4:af:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 19:21:50 2024 by rpki-client on console.sobornost.net