Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/t8qCCGDpUfS0J6I6XbvncbO3oj8.roa
File: t8qCCGDpUfS0J6I6XbvncbO3oj8.roa (raw, json)
Hash identifier: Iyx9JHpAQGefum0TpWjgjz4Y3/sW9UIqr0H/OceNU7w=
Subject key identifier: B7:CA:82:08:60:E9:51:F4:B4:27:A2:3A:5D:BB:E7:71:B3:B7:A2:3F
Certificate issuer: /CN=b12caece23c6adf6917039293e25baaa906ce556
Certificate serial: 17E3B597
Authority key identifier: B1:2C:AE:CE:23:C6:AD:F6:91:70:39:29:3E:25:BA:AA:90:6C:E5:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sSyuziPGrfaRcDkpPiW6qpBs5VY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/t8qCCGDpUfS0J6I6XbvncbO3oj8.roa
Signing time: Thu 28 Apr 2022 00:18:04 +0000
ROA not before: Thu 28 Apr 2022 00:18:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43561
IP address blocks: 37.157.183.0/24 maxlen: 24
37.157.136.0/21 maxlen: 24
37.157.160.0/19 maxlen: 19
84.40.64.0/24 maxlen: 24
84.40.71.0/24 maxlen: 24
84.40.70.0/24 maxlen: 24
84.40.68.0/24 maxlen: 24
84.40.69.0/24 maxlen: 24
84.40.64.0/18 maxlen: 24
84.40.66.0/24 maxlen: 24
84.40.67.0/24 maxlen: 24
84.40.65.0/24 maxlen: 24
84.40.76.0/24 maxlen: 24
84.40.77.0/24 maxlen: 24
84.40.75.0/24 maxlen: 24
84.40.73.0/24 maxlen: 24
84.40.74.0/24 maxlen: 24
84.40.72.0/24 maxlen: 24
84.40.78.0/24 maxlen: 24
84.40.85.0/24 maxlen: 24
84.40.83.0/24 maxlen: 24
84.40.84.0/24 maxlen: 24
84.40.82.0/24 maxlen: 24
84.40.80.0/24 maxlen: 24
84.40.79.0/24 maxlen: 24
84.40.90.0/24 maxlen: 24
84.40.91.0/24 maxlen: 24
84.40.89.0/24 maxlen: 24
84.40.87.0/24 maxlen: 24
84.40.88.0/24 maxlen: 24
84.40.86.0/24 maxlen: 24
84.40.97.0/24 maxlen: 24
84.40.98.0/24 maxlen: 24
84.40.96.0/24 maxlen: 24
84.40.94.0/24 maxlen: 24
84.40.95.0/24 maxlen: 24
84.40.92.0/24 maxlen: 24
84.40.93.0/24 maxlen: 24
84.40.104.0/24 maxlen: 24
84.40.105.0/24 maxlen: 24
84.40.103.0/24 maxlen: 24
46.249.64.0/19 maxlen: 19
84.40.101.0/24 maxlen: 24
84.40.102.0/24 maxlen: 24
84.40.99.0/24 maxlen: 24
84.40.100.0/24 maxlen: 24
185.60.66.0/24 maxlen: 24
185.60.67.0/24 maxlen: 24
95.87.243.0/24 maxlen: 24
84.40.111.0/24 maxlen: 24
84.40.112.0/24 maxlen: 24
84.40.110.0/24 maxlen: 24
84.40.108.0/24 maxlen: 24
84.40.109.0/24 maxlen: 24
84.40.106.0/24 maxlen: 24
84.40.107.0/24 maxlen: 24
84.40.118.0/24 maxlen: 24
84.40.116.0/24 maxlen: 24
84.40.117.0/24 maxlen: 24
84.40.115.0/24 maxlen: 24
84.40.113.0/24 maxlen: 24
84.40.125.0/24 maxlen: 24
84.40.123.0/24 maxlen: 24
84.40.124.0/24 maxlen: 24
84.40.122.0/24 maxlen: 24
84.40.120.0/24 maxlen: 24
84.40.121.0/24 maxlen: 24
84.40.119.0/24 maxlen: 24
84.40.127.0/24 maxlen: 24
84.40.126.0/24 maxlen: 24
95.87.192.0/18 maxlen: 18
2a02:1338::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400799127 (0x17e3b597)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b12caece23c6adf6917039293e25baaa906ce556
Validity
Not Before: Apr 28 00:18:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7ca820860e951f4b427a23a5dbbe771b3b7a23f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:83:27:33:a1:3a:00:9a:da:f7:99:a6:58:dc:
58:92:dd:a1:ce:ae:d1:7e:8a:b8:17:d4:6a:92:7e:
9a:bd:5f:65:26:30:35:86:4c:56:29:0b:cc:8e:88:
c1:7b:8e:6b:58:46:6f:a3:53:71:1f:66:1a:75:aa:
94:b0:48:31:83:94:4c:5f:57:ea:d4:b5:15:a3:3d:
3a:ce:fa:be:93:99:60:de:6b:c3:5f:e1:9c:09:b2:
35:3c:ed:34:38:12:ac:ae:e8:47:17:ba:b8:9e:5a:
fd:c5:46:1d:e7:b4:6d:10:d4:c5:8c:b6:3c:98:ba:
b9:bb:ca:70:d5:e8:d6:34:23:58:39:e2:ea:61:c3:
bd:df:74:bc:16:54:fa:f8:19:51:a5:f4:e3:0f:a9:
99:09:58:b6:00:34:9f:f6:36:b2:d6:3b:6d:0f:62:
de:52:f3:72:4a:62:af:31:3d:6b:85:4b:04:f5:82:
d4:e1:91:0e:33:18:e6:96:9f:d0:18:6d:83:c3:86:
ae:53:17:fa:93:be:dd:93:3c:e4:32:79:c2:6f:67:
81:3b:9c:38:2c:27:20:85:b1:e5:58:11:5d:05:01:
9f:6a:b5:c4:7a:46:25:07:0a:c9:b7:bc:ad:4b:e6:
4f:6a:64:fe:d4:0c:bf:d8:97:16:2f:9a:ed:b4:5a:
e7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CA:82:08:60:E9:51:F4:B4:27:A2:3A:5D:BB:E7:71:B3:B7:A2:3F
X509v3 Authority Key Identifier:
keyid:B1:2C:AE:CE:23:C6:AD:F6:91:70:39:29:3E:25:BA:AA:90:6C:E5:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sSyuziPGrfaRcDkpPiW6qpBs5VY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/t8qCCGDpUfS0J6I6XbvncbO3oj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/sSyuziPGrfaRcDkpPiW6qpBs5VY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.157.136.0/21
37.157.160.0/19
46.249.64.0/19
84.40.64.0/18
95.87.192.0/18
185.60.66.0/23
IPv6:
2a02:1338::/32
Signature Algorithm: sha256WithRSAEncryption
89:83:80:3e:b1:ee:07:9d:2e:25:b6:91:1d:28:79:cc:4f:5e:
3d:65:18:66:ff:8a:13:3a:d4:8b:93:72:31:a6:23:96:e9:53:
32:0b:65:d7:b5:e9:52:97:07:a2:35:62:1e:44:8f:5c:a2:51:
cc:ee:de:8c:fd:c5:04:d6:af:e5:51:0a:dd:d5:e3:ca:4e:b8:
17:fc:9d:54:c6:8e:c8:8f:ba:ba:cd:e4:2c:ba:85:c8:5b:4b:
50:ed:c4:f7:8d:e1:89:7a:86:12:6d:04:5e:94:5f:f8:3a:5f:
8e:c5:f2:53:5a:89:be:d8:01:6d:06:58:89:5f:5c:86:72:2b:
06:75:ff:bc:9b:e4:55:87:2a:56:43:5b:f1:bc:3f:3c:62:d2:
6d:a0:e9:0d:a3:1b:fa:2e:d3:7b:a1:b7:c5:c2:41:f0:9c:f7:
67:b4:e2:c1:20:3b:c5:e1:81:d6:75:2c:66:2b:1d:45:c7:41:
f6:ca:54:2d:f0:ab:21:42:af:49:59:b0:5b:d5:a7:9f:c7:55:
92:1b:c1:c8:31:c8:ce:88:65:b7:94:0a:7d:ae:18:9f:4b:32:
aa:01:1c:47:d0:ac:f1:36:ea:3c:cb:de:2e:bd:d8:ac:4c:92:
2e:66:8c:95:54:4f:a1:30:75:5c:91:06:13:45:a9:48:90:38:
52:3b:ef:ed
-----BEGIN CERTIFICATE-----
MIIFHDCCBASgAwIBAgIEF+O1lzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTJjYWVjZTIzYzZhZGY2OTE3MDM5MjkzZTI1YmFhYTkwNmNlNTU2MB4XDTIyMDQy
ODAwMTgwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjdjYTgyMDg2MGU5
NTFmNGI0MjdhMjNhNWRiYmU3NzFiM2I3YTIzZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMiDJzOhOgCa2veZpljcWJLdoc6u0X6KuBfUapJ+mr1fZSYw
NYZMVikLzI6IwXuOa1hGb6NTcR9mGnWqlLBIMYOUTF9X6tS1FaM9Os76vpOZYN5r
w1/hnAmyNTztNDgSrK7oRxe6uJ5a/cVGHee0bRDUxYy2PJi6ubvKcNXo1jQjWDni
6mHDvd90vBZU+vgZUaX04w+pmQlYtgA0n/Y2stY7bQ9i3lLzckpirzE9a4VLBPWC
1OGRDjMY5paf0Bhtg8OGrlMX+pO+3ZM85DJ5wm9ngTucOCwnIIWx5VgRXQUBn2q1
xHpGJQcKybe8rUvmT2pk/tQMv9iXFi+a7bRa50UCAwEAAaOCAjYwggIyMB0GA1Ud
DgQWBBS3yoIIYOlR9LQnojpdu+dxs7eiPzAfBgNVHSMEGDAWgBSxLK7OI8at9pFw
OSk+JbqqkGzlVjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NTeXV6aVBHcmZhUmNEa3BQaVc2cXBCczVWWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDcvMjhjZDQ4LTZhN2MtNGQwNS1iNGI5LTg3YWE1YTJkZDEyMi8x
L3Q4cUNDR0RwVWZTMEo2STZYYnZuY2JPM29qOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcv
MjhjZDQ4LTZhN2MtNGQwNS1iNGI5LTg3YWE1YTJkZDEyMi8xL3NTeXV6aVBHcmZh
UmNEa3BQaVc2cXBCczVWWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBM
BggrBgEFBQcBBwEB/wQ9MDswKgQCAAEwJAMEAyWdiAMEBSWdoAMEBS75QAMEBlQo
QAMEBl9XwAMEAbk8QjANBAIAAjAHAwUAKgITODANBgkqhkiG9w0BAQsFAAOCAQEA
iYOAPrHuB50uJbaRHSh5zE9ePWUYZv+KEzrUi5NyMaYjlulTMgtl17XpUpcHojVi
HkSPXKJRzO7ejP3FBNav5VEK3dXjyk64F/ydVMaOyI+6us3kLLqFyFtLUO3E943h
iXqGEm0EXpRf+DpfjsXyU1qJvtgBbQZYiV9chnIrBnX/vJvkVYcqVkNb8bw/PGLS
baDpDaMb+i7Te6G3xcJB8Jz3Z7TiwSA7xeGB1nUsZisdRcdB9spULfCrIUKvSVmw
W9Wnn8dVkhvByDHIzohlt5QKfa4Yn0syqgEcR9Cs8TbqPMveLr3YrEySLmaMlVRP
oTB1XJEGE0WpSJA4Ujvv7Q==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:36 2023 by rpki-client on console.sobornost.net