Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/VxiD4HUxKgW1vEZZyATw5bMv9L8.roa
File: VxiD4HUxKgW1vEZZyATw5bMv9L8.roa (raw, json)
Hash identifier: ylf1VldJyPdr/drypoeOfXLzDtAKT1eP7jNDjJOFr+Y=
Subject key identifier: 57:18:83:E0:75:31:2A:05:B5:BC:46:59:C8:04:F0:E5:B3:2F:F4:BF
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 08B449AC
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/VxiD4HUxKgW1vEZZyATw5bMv9L8.roa
Signing time: Mon 16 May 2022 10:21:29 +0000
ROA not before: Mon 16 May 2022 10:21:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9125
IP address blocks: 93.93.192.0/21 maxlen: 21
93.93.199.0/24 maxlen: 24
92.42.253.0/24 maxlen: 24
92.42.252.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.65.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
89.23.74.0/24 maxlen: 24
178.254.134.0/24 maxlen: 24
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.144.0/20 maxlen: 20
178.254.140.0/22 maxlen: 22
178.254.160.0/22 maxlen: 22
178.254.169.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.184.0/24 maxlen: 24
178.254.184.0/21 maxlen: 21
178.254.128.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.116.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
185.157.44.0/24 maxlen: 24
109.111.254.0/24 maxlen: 24
217.169.208.0/22 maxlen: 22
217.169.208.0/20 maxlen: 20
217.169.212.0/22 maxlen: 22
217.169.219.0/24 maxlen: 24
217.169.216.0/22 maxlen: 22
217.169.220.0/22 maxlen: 22
5.172.32.0/21 maxlen: 21
109.111.226.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.232.0/22 maxlen: 22
109.111.229.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.227.0/24 maxlen: 24
109.111.236.0/22 maxlen: 22
109.111.246.0/24 maxlen: 24
109.111.243.0/24 maxlen: 24
109.111.244.0/24 maxlen: 24
109.111.250.0/24 maxlen: 24
109.111.252.0/23 maxlen: 24
109.111.247.0/24 maxlen: 24
109.111.248.0/24 maxlen: 24
2a02:b58::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146033068 (0x8b449ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: May 16 10:21:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=571883e075312a05b5bc4659c804f0e5b32ff4bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c5:dc:57:d9:f9:ee:1e:51:7e:6a:b5:b6:07:
d7:4f:26:e1:77:e7:60:8b:d7:5f:df:a0:1b:3f:74:
89:44:6f:1c:12:4c:db:b4:70:44:cc:7a:e3:f6:bc:
a9:66:fb:97:d2:65:c1:45:d5:f1:50:bd:c4:14:15:
94:18:99:90:f7:ba:3f:0b:6c:46:be:47:37:1a:68:
47:48:2b:ab:4f:81:dc:a8:ea:2b:82:1d:c0:6c:a9:
33:e6:fc:dc:32:4b:a6:97:95:f2:15:7a:00:d3:af:
11:56:b6:52:6c:dc:01:05:85:47:b9:05:85:88:a3:
c9:41:ae:00:7a:c3:44:7e:5a:40:ed:ad:07:16:2b:
06:0b:cd:e2:da:58:c6:96:15:76:05:36:96:40:90:
1b:f7:8e:05:90:71:63:88:ea:ad:43:93:f2:a4:d7:
08:43:fe:17:df:1f:a6:bd:1b:8c:0c:77:24:49:20:
2c:4a:8e:6f:dd:c7:2a:32:27:03:f5:10:71:f7:6a:
72:64:48:2f:94:a0:90:e0:50:a8:9f:48:fe:72:b3:
d7:c6:72:7c:e6:9d:b9:07:c6:8c:f4:ae:68:40:1b:
e9:73:23:ca:bf:a9:12:1b:15:a8:0c:2e:97:05:40:
6d:1c:ef:95:54:a4:42:76:2f:a0:b5:48:4f:6f:98:
9b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:18:83:E0:75:31:2A:05:B5:BC:46:59:C8:04:F0:E5:B3:2F:F4:BF
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/VxiD4HUxKgW1vEZZyATw5bMv9L8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.32.0/21
89.23.65.0/24
89.23.68.0-89.23.70.255
89.23.74.0/23
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0/20
109.111.243.0-109.111.244.255
109.111.246.0-109.111.248.255
109.111.250.0/24
109.111.252.0-109.111.254.255
178.254.128.0-178.254.163.255
178.254.169.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0/24
178.254.184.0/21
185.157.44.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
7e:4c:55:ec:93:53:76:7d:f5:a7:21:60:a0:e3:29:d5:9d:a9:
e1:61:e0:6e:51:17:e1:65:a9:ec:c4:39:bf:b1:d4:dd:f5:84:
98:4a:97:10:f2:6e:2d:53:45:0b:97:f3:0f:05:56:93:f0:e9:
fb:37:be:7f:6a:e3:32:0a:b9:09:38:ff:be:d1:bf:91:78:b3:
9c:c1:e3:65:e8:78:28:1e:07:a2:9b:d0:ea:30:84:56:28:82:
cc:1d:03:e6:ad:55:8d:db:87:3a:2d:ca:23:8f:7f:27:eb:90:
a8:b5:fd:57:da:f5:a2:ed:96:11:8f:0c:e5:a9:01:5d:c7:31:
3f:5c:3a:d0:88:0c:f0:b0:c4:e5:51:c8:00:93:9f:08:b3:cf:
37:fa:af:0f:56:ca:98:21:ef:dd:0c:f4:4d:2f:e1:e3:80:33:
86:9e:b4:02:cb:65:58:9e:bf:7a:ab:b1:6c:6f:df:e2:55:33:
f0:36:db:83:c0:f2:d8:03:0d:92:b4:63:7e:17:86:3e:8b:bf:
9c:54:01:54:17:59:5e:5d:61:9b:18:b9:ef:01:ac:5f:f2:a1:
32:74:a9:17:57:a2:ea:1d:ba:f0:1b:5a:32:22:b7:21:74:e3:
b0:eb:6a:e9:85:5e:cf:67:4c:4a:e6:49:28:36:df:97:0f:9c:
78:b6:17:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net