Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/f3vX6-Gj-Jcs4ApHc64mFJpq-_Y.roa
File: f3vX6-Gj-Jcs4ApHc64mFJpq-_Y.roa (raw, json)
Hash identifier: R+Y23Sxg5axIgi94kzI2UaT8olLdTDCm+6MPTALHDC4=
Subject key identifier: 7F:7B:D7:EB:E1:A3:F8:97:2C:E0:0A:47:73:AE:26:14:9A:6A:FB:F6
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 077D90F8
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/f3vX6-Gj-Jcs4ApHc64mFJpq-_Y.roa
Signing time: Sat 01 Jan 2022 00:59:02 +0000
ROA not before: Sat 01 Jan 2022 00:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9125
IP address blocks: 93.93.192.0/21 maxlen: 21
93.93.199.0/24 maxlen: 24
92.42.253.0/24 maxlen: 24
92.42.252.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.65.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
89.23.74.0/24 maxlen: 24
178.254.134.0/24 maxlen: 24
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.144.0/20 maxlen: 20
178.254.140.0/22 maxlen: 22
178.254.160.0/22 maxlen: 22
178.254.169.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.184.0/24 maxlen: 24
178.254.184.0/21 maxlen: 21
178.254.128.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.116.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
185.157.44.0/24 maxlen: 24
217.169.208.0/20 maxlen: 20
217.169.208.0/22 maxlen: 22
217.169.212.0/22 maxlen: 22
217.169.216.0/22 maxlen: 22
217.169.220.0/22 maxlen: 22
5.172.32.0/21 maxlen: 21
109.111.226.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.229.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.227.0/24 maxlen: 24
109.111.232.0/22 maxlen: 22
109.111.236.0/22 maxlen: 22
109.111.244.0/24 maxlen: 24
109.111.240.0/20 maxlen: 24
109.111.247.0/24 maxlen: 24
2a02:b58::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125669624 (0x77d90f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jan 1 00:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f7bd7ebe1a3f8972ce00a4773ae26149a6afbf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b4:eb:e7:9c:42:a1:7e:8a:99:f8:fa:76:80:
bd:07:6a:18:64:a9:3d:4d:3d:db:09:02:40:b4:32:
0a:45:d7:5a:f7:cf:a7:71:26:ec:a6:41:c0:ef:48:
3e:24:72:7e:1e:1a:26:c2:5c:0f:20:1b:8b:59:15:
3c:22:a3:18:8a:89:cf:98:3b:9b:30:33:27:6c:2a:
ad:a4:6e:8a:05:5e:90:5b:2a:df:f0:91:ab:81:2c:
f1:48:7b:3f:3b:b4:f9:1b:a3:1f:44:de:d3:c0:e5:
22:fe:e5:d8:a4:a3:dc:18:63:22:cd:07:c5:d1:f4:
05:2c:ba:3d:df:c5:6c:cf:17:ac:42:72:3e:94:04:
3e:ba:36:67:23:cd:bb:a3:3b:a3:40:3b:ba:57:c4:
a2:24:5a:c2:e8:63:ad:c8:97:e3:cb:da:1f:a4:b0:
e5:f4:3f:8d:23:35:ff:f8:bb:a1:45:30:96:51:8e:
fd:1d:c9:05:22:a5:f8:ae:9b:ab:25:72:5a:7c:93:
e8:0e:9a:e8:41:d9:0f:30:2b:b1:9e:8e:5b:f0:76:
b2:0a:e4:b0:49:1f:03:34:fa:08:eb:d2:c0:bb:62:
ad:ea:a9:b3:e4:c6:6b:74:7f:90:a4:43:40:75:67:
05:15:a7:48:7f:b3:f6:9b:6e:05:d2:0e:9d:14:a6:
ba:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:7B:D7:EB:E1:A3:F8:97:2C:E0:0A:47:73:AE:26:14:9A:6A:FB:F6
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/f3vX6-Gj-Jcs4ApHc64mFJpq-_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.32.0/21
89.23.65.0/24
89.23.68.0-89.23.70.255
89.23.74.0/23
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0/19
178.254.128.0-178.254.163.255
178.254.169.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0/24
178.254.184.0/21
185.157.44.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
4d:3d:66:d2:c2:49:83:41:c3:63:3c:fd:5a:f6:eb:f2:66:c1:
fd:75:4e:5f:dd:72:d3:b7:c8:a0:19:ad:ea:d0:24:9b:30:88:
5d:87:5e:bb:67:c7:62:24:c1:4e:e5:d1:4f:6c:37:f5:79:f2:
ce:36:64:bf:9b:39:10:45:57:de:f6:90:cd:78:86:97:cd:28:
0e:d1:09:31:4d:a7:0e:8d:6a:94:e6:c4:89:1f:15:52:de:a7:
47:20:f6:81:84:96:97:54:b8:81:f1:40:41:78:19:16:21:2e:
e5:b2:c7:94:f9:6c:99:63:16:b8:97:a2:dc:1c:8d:43:3c:bf:
3a:19:73:20:a8:d9:31:7e:6e:c5:20:2c:bc:21:40:fa:2e:5a:
fe:22:2f:2f:73:69:e6:a7:de:4c:1b:1c:5e:35:0f:c0:9a:53:
0a:8a:15:c1:88:6d:16:57:e7:46:ab:22:f7:7d:04:1f:fc:3e:
24:dd:f6:23:e9:8b:a7:5a:3e:46:ed:1b:3a:d1:f8:9e:6d:95:
c2:8b:ce:6a:6a:d8:44:16:73:db:9e:97:a9:c1:e2:a6:fc:a6:
e2:6a:79:55:fd:2c:f3:1a:71:fb:29:c0:10:ee:aa:b0:5a:48:
3c:c3:f7:88:af:77:10:ef:f6:5f:e8:45:05:4b:d8:ff:c0:95:
4b:23:db:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net