Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/DGQD2SqACP9MOKA0CX6XHgrWjRs.roa
File: DGQD2SqACP9MOKA0CX6XHgrWjRs.roa (raw, json)
Hash identifier: sj9uWI0gw1/82gyxOIewNWbCJ1L5Y50MYlsXHvvq7IQ=
Subject key identifier: 0C:64:03:D9:2A:80:08:FF:4C:38:A0:34:09:7E:97:1E:0A:D6:8D:1B
Certificate issuer: /CN=91bbc51e4541cfbb504ff5ef2a396df6a54b5e6d
Certificate serial: 02EFB21E
Authority key identifier: 91:BB:C5:1E:45:41:CF:BB:50:4F:F5:EF:2A:39:6D:F6:A5:4B:5E:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kbvFHkVBz7tQT_XvKjlt9qVLXm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/DGQD2SqACP9MOKA0CX6XHgrWjRs.roa
Signing time: Tue 29 Mar 2022 14:22:25 +0000
ROA not before: Tue 29 Mar 2022 14:22:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50129
IP address blocks: 185.215.0.0/24 maxlen: 24
178.239.255.0/24 maxlen: 24
31.222.96.0/24 maxlen: 24
31.222.98.0/24 maxlen: 24
31.222.99.0/24 maxlen: 24
31.222.104.0/22 maxlen: 22
31.222.102.0/24 maxlen: 24
31.222.103.0/24 maxlen: 24
31.222.108.0/24 maxlen: 24
31.222.116.0/24 maxlen: 24
31.222.118.0/24 maxlen: 24
31.222.122.0/24 maxlen: 24
31.222.122.0/23 maxlen: 23
31.222.119.0/24 maxlen: 24
31.222.120.0/24 maxlen: 24
31.222.126.0/24 maxlen: 24
31.222.127.0/24 maxlen: 24
178.239.242.0/24 maxlen: 24
31.44.150.0/23 maxlen: 23
178.239.241.0/24 maxlen: 24
178.239.246.0/24 maxlen: 24
31.44.148.0/24 maxlen: 24
178.239.243.0/24 maxlen: 24
31.44.149.0/24 maxlen: 24
178.239.244.0/24 maxlen: 24
31.44.150.0/24 maxlen: 24
178.239.245.0/24 maxlen: 24
178.239.248.0/24 maxlen: 24
178.239.247.0/24 maxlen: 24
31.44.156.0/24 maxlen: 24
178.239.251.0/24 maxlen: 24
31.44.157.0/24 maxlen: 24
178.239.252.0/24 maxlen: 24
31.44.158.0/24 maxlen: 24
178.239.253.0/24 maxlen: 24
178.239.252.0/23 maxlen: 23
31.44.154.0/23 maxlen: 23
185.30.196.0/24 maxlen: 24
185.30.198.0/24 maxlen: 24
185.30.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49263134 (0x2efb21e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91bbc51e4541cfbb504ff5ef2a396df6a54b5e6d
Validity
Not Before: Mar 29 14:22:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c6403d92a8008ff4c38a034097e971e0ad68d1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ac:0d:e3:83:75:fe:23:84:ec:86:6c:0f:3c:
5b:b0:5c:d2:ad:d1:23:b5:bf:10:3f:bf:2a:97:10:
c0:f3:1f:2c:61:09:34:82:cf:eb:2f:82:0c:78:4a:
ec:39:26:79:4d:35:35:b3:d6:17:37:db:b5:57:3f:
51:dd:ad:a1:a7:4a:24:2e:d9:e3:8b:d8:fa:54:8a:
35:63:99:6d:6a:7c:0f:21:33:c5:e5:5c:ae:f5:b7:
22:ab:96:da:12:b2:e5:07:57:ec:85:2e:35:1f:59:
fd:4e:51:4a:d6:81:fa:7f:4b:ab:08:d9:5f:31:d2:
a4:96:73:d2:be:89:ae:8a:b3:bd:09:24:13:62:9d:
1b:34:f3:ee:0e:f9:60:65:d7:1d:de:a5:47:a2:7c:
9e:0a:33:aa:7d:a0:a2:7d:18:2e:b9:36:b2:65:e9:
79:2f:81:2e:05:79:d7:ff:e3:64:39:48:1a:46:69:
cd:67:0e:e3:e3:35:6a:b9:dd:3b:6a:30:a7:cb:a4:
8d:62:4d:e1:10:44:8c:ff:6d:9f:12:fd:5e:b5:dd:
19:f9:11:d0:dc:a2:6d:60:22:23:3a:25:09:3e:d4:
86:87:33:27:ae:d0:14:de:d3:66:4e:14:26:60:49:
61:6f:d8:ea:f9:05:a7:b6:74:62:e6:30:ec:9c:d7:
3a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:64:03:D9:2A:80:08:FF:4C:38:A0:34:09:7E:97:1E:0A:D6:8D:1B
X509v3 Authority Key Identifier:
keyid:91:BB:C5:1E:45:41:CF:BB:50:4F:F5:EF:2A:39:6D:F6:A5:4B:5E:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kbvFHkVBz7tQT_XvKjlt9qVLXm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/DGQD2SqACP9MOKA0CX6XHgrWjRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/kbvFHkVBz7tQT_XvKjlt9qVLXm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.148.0/22
31.44.154.0-31.44.158.255
31.222.96.0/24
31.222.98.0/23
31.222.102.0-31.222.108.255
31.222.116.0/24
31.222.118.0-31.222.120.255
31.222.122.0/23
31.222.126.0/23
178.239.241.0-178.239.248.255
178.239.251.0-178.239.253.255
178.239.255.0/24
185.30.196.0/24
185.30.198.0/23
185.215.0.0/24
Signature Algorithm: sha256WithRSAEncryption
37:8a:0c:cf:74:16:b9:56:71:b6:af:5a:56:93:60:e4:87:3e:
66:c1:81:72:eb:df:05:5b:2d:f9:f0:87:7f:de:2d:d3:bb:45:
e8:68:74:df:35:4b:64:72:e1:56:a1:dd:80:7e:61:4d:fc:90:
5d:e2:8a:10:36:86:c7:e8:75:5a:e5:06:d5:b3:32:0d:dc:04:
f9:75:bd:4e:96:69:fd:76:56:ac:23:29:90:45:d6:4c:8b:51:
ec:03:26:ea:e0:c0:1c:81:4b:67:c8:c2:07:d7:be:a9:f8:24:
eb:ee:2c:eb:e6:e7:4f:b4:da:71:f1:36:d2:c7:4f:6f:3c:e3:
e0:14:07:b1:09:70:25:4f:4f:eb:22:fe:a3:ef:ad:5f:eb:7c:
3b:23:5c:a0:37:5b:6e:26:6c:50:aa:5a:b5:a2:87:4e:18:a7:
41:bf:cd:7d:9d:b0:8a:12:93:33:51:63:a9:74:73:f6:0d:a6:
82:2a:bc:73:b8:87:53:32:90:77:b5:9a:ed:79:8b:98:56:84:
d3:0d:a3:35:f4:f5:84:9e:ae:f6:15:fb:5f:a1:2c:fe:db:c6:
a7:72:0e:7b:06:2d:1d:ba:92:fd:aa:e0:af:e9:23:e6:26:17:
54:ef:a7:c6:69:d0:09:82:44:35:fb:36:5d:b1:58:f6:0f:28:
ab:05:e4:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:03 2023 by rpki-client on console.sobornost.net