Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/8vTJiwHLCM9tnVcL_Zi37ERXRRc.roa
File: 8vTJiwHLCM9tnVcL_Zi37ERXRRc.roa (raw, json)
Hash identifier: 25+fDWDDgyvYNM8euwekf5W3B0i3g4NQI76ggbEC4bk=
Subject key identifier: F2:F4:C9:8B:01:CB:08:CF:6D:9D:57:0B:FD:98:B7:EC:44:57:45:17
Certificate issuer: /CN=91bbc51e4541cfbb504ff5ef2a396df6a54b5e6d
Certificate serial: 02E06868
Authority key identifier: 91:BB:C5:1E:45:41:CF:BB:50:4F:F5:EF:2A:39:6D:F6:A5:4B:5E:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kbvFHkVBz7tQT_XvKjlt9qVLXm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/8vTJiwHLCM9tnVcL_Zi37ERXRRc.roa
Signing time: Fri 25 Mar 2022 08:30:16 +0000
ROA not before: Fri 25 Mar 2022 08:30:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.215.1.0/24 maxlen: 24
178.239.254.0/24 maxlen: 24
31.222.98.0/24 maxlen: 24
31.222.97.0/24 maxlen: 24
31.222.96.0/24 maxlen: 24
31.222.104.0/22 maxlen: 24
31.222.103.0/24 maxlen: 24
31.222.102.0/24 maxlen: 24
31.222.101.0/24 maxlen: 24
31.222.100.0/24 maxlen: 24
31.222.99.0/24 maxlen: 24
31.222.112.0/24 maxlen: 24
31.222.110.0/24 maxlen: 24
31.222.109.0/24 maxlen: 24
31.222.117.0/24 maxlen: 24
31.222.115.0/24 maxlen: 24
31.222.114.0/24 maxlen: 24
31.222.125.0/24 maxlen: 24
31.222.124.0/24 maxlen: 24
31.222.123.0/24 maxlen: 24
31.222.121.0/24 maxlen: 24
31.44.144.0/22 maxlen: 22
178.239.240.0/24 maxlen: 24
31.44.152.0/23 maxlen: 23
31.44.151.0/24 maxlen: 24
31.44.150.0/24 maxlen: 24
178.239.241.0/24 maxlen: 24
31.44.158.0/24 maxlen: 24
31.44.157.0/24 maxlen: 24
178.239.250.0/24 maxlen: 24
31.44.156.0/24 maxlen: 24
178.239.249.0/24 maxlen: 24
31.44.154.0/23 maxlen: 24
31.44.159.0/24 maxlen: 24
185.30.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48261224 (0x2e06868)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91bbc51e4541cfbb504ff5ef2a396df6a54b5e6d
Validity
Not Before: Mar 25 08:30:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2f4c98b01cb08cf6d9d570bfd98b7ec44574517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2c:22:01:3f:5c:82:ca:70:0a:6a:42:07:5a:
39:b4:19:e2:3c:c9:67:65:6d:47:09:25:99:fa:88:
c1:b2:c0:8c:5a:52:01:e1:18:30:de:23:f9:5e:c3:
3d:5a:5f:eb:25:62:d6:23:51:37:75:6d:01:ab:7a:
c8:5a:f2:a8:c0:ba:ca:d6:64:7e:36:bf:5b:44:44:
6b:70:5f:b1:99:f3:ad:41:19:f6:99:68:2c:bb:4f:
e6:e9:28:6f:78:06:91:73:5e:1f:8e:89:1a:f8:2f:
02:52:68:ab:5c:10:c2:85:1c:9c:58:10:0c:67:02:
12:de:2e:94:67:36:5e:41:52:f3:92:13:cd:62:bf:
a5:da:ac:78:1c:2b:8d:d2:4c:29:4d:0e:36:26:5f:
ad:dd:5e:bb:54:8f:72:18:41:29:3d:33:52:9a:a1:
8f:bb:9c:60:99:94:38:17:e5:37:06:88:63:d6:8a:
ba:b9:2a:bb:1b:05:6d:ae:d5:24:88:08:e4:5d:14:
b4:df:33:b5:50:50:89:f6:0c:4a:be:df:63:9b:72:
5b:b7:a5:f3:d7:df:8f:ff:b5:c2:db:6c:80:ad:4e:
3a:43:bd:d1:d9:72:6f:fd:02:3e:a2:5d:48:92:2b:
1f:f1:cb:43:7b:a0:77:1f:72:b8:93:81:2e:81:1a:
88:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F4:C9:8B:01:CB:08:CF:6D:9D:57:0B:FD:98:B7:EC:44:57:45:17
X509v3 Authority Key Identifier:
keyid:91:BB:C5:1E:45:41:CF:BB:50:4F:F5:EF:2A:39:6D:F6:A5:4B:5E:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kbvFHkVBz7tQT_XvKjlt9qVLXm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/8vTJiwHLCM9tnVcL_Zi37ERXRRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/kbvFHkVBz7tQT_XvKjlt9qVLXm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.144.0/22
31.44.150.0-31.44.159.255
31.222.96.0-31.222.107.255
31.222.109.0-31.222.110.255
31.222.112.0/24
31.222.114.0/23
31.222.117.0/24
31.222.121.0/24
31.222.123.0-31.222.125.255
178.239.240.0/23
178.239.249.0-178.239.250.255
178.239.254.0/24
185.30.197.0/24
185.215.1.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:e0:9e:56:95:f8:79:81:a0:b0:4c:62:0a:66:ef:88:9d:77:
44:1e:10:8e:7c:0a:71:e8:62:53:bd:f7:8f:9b:40:ff:0e:e9:
0d:71:56:01:d6:27:9a:77:e9:a4:8d:b8:ac:90:a6:8e:ea:c9:
ff:80:26:92:94:25:ee:e9:0e:e0:ce:7a:58:23:a3:e1:bd:4c:
4a:9f:00:c5:5d:72:fc:0a:ee:2a:78:41:f1:69:37:f7:3a:3e:
99:31:1d:59:42:de:7e:b1:a3:d7:28:42:77:0d:7e:fa:d5:57:
67:12:6a:ca:7e:03:fd:12:97:58:5c:1a:ea:59:83:d7:f2:42:
df:9f:72:43:a8:d6:9f:dc:06:77:8e:37:e7:83:9b:54:25:cf:
80:eb:da:ba:fb:fe:55:40:47:97:1e:68:91:de:d2:21:d9:b3:
b3:d4:53:96:5b:5f:8c:02:c1:f7:f7:0d:6f:73:d2:33:72:57:
91:71:de:08:a1:0c:ec:94:07:b4:c1:b7:e1:13:c4:b8:26:d8:
53:14:58:ba:f3:89:ef:e5:cd:32:72:7a:7e:74:37:63:22:d7:
e3:51:c7:66:93:6c:2e:c5:92:15:65:80:79:a9:d8:31:e7:12:
27:e9:03:ef:5c:be:64:21:72:ed:69:03:2f:04:2f:9a:ea:83:
c5:77:c3:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:03 2023 by rpki-client on console.sobornost.net