Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/SogtTMkJGfYlDY87Si1zWszQnwk.roa
File: SogtTMkJGfYlDY87Si1zWszQnwk.roa (raw, json)
Hash identifier: WbdXkG9yjZRzLd3D25dfrCr00Y6rQrR2ePODbmwq/N0=
Subject key identifier: 4A:88:2D:4C:C9:09:19:F6:25:0D:8F:3B:4A:2D:73:5A:CC:D0:9F:09
Certificate issuer: /CN=9eb5e717cef9f6644cd8849b8a18d41dc74f408a
Certificate serial: 363ABF4A
Authority key identifier: 9E:B5:E7:17:CE:F9:F6:64:4C:D8:84:9B:8A:18:D4:1D:C7:4F:40:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nrXnF8759mRM2ISbihjUHcdPQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/SogtTMkJGfYlDY87Si1zWszQnwk.roa
Signing time: Tue 03 May 2022 11:30:47 +0000
ROA not before: Tue 03 May 2022 11:30:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.146.220.0/22 maxlen: 24
88.212.144.0/21 maxlen: 24
88.212.152.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 23
31.172.160.0/21 maxlen: 24
31.172.160.0/22 maxlen: 24
185.4.60.0/22 maxlen: 24
185.4.60.0/23 maxlen: 24
185.91.220.0/22 maxlen: 24
185.91.224.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
82.196.25.0/24 maxlen: 24
82.196.27.0/24 maxlen: 24
88.202.236.0/22 maxlen: 24
212.18.242.0/24 maxlen: 24
212.18.240.0/21 maxlen: 24
82.163.36.0/22 maxlen: 24
2a00:78c0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 909819722 (0x363abf4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eb5e717cef9f6644cd8849b8a18d41dc74f408a
Validity
Not Before: May 3 11:30:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a882d4cc90919f6250d8f3b4a2d735accd09f09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ba:fa:76:02:11:3a:40:e2:aa:50:30:ca:f9:
df:da:f1:1e:62:98:84:ce:71:e3:f2:d8:d0:b1:bf:
d0:de:2a:50:d4:7c:84:6f:1d:d5:d3:b0:dc:e0:d2:
df:11:32:bc:fe:85:8f:bd:d4:8d:d1:c6:72:46:f0:
00:2a:49:90:7a:15:db:ae:7a:88:6b:dc:4c:96:dd:
fd:bc:c3:1c:4f:01:ca:41:a0:5d:6b:29:25:f8:cb:
17:3b:e4:6e:0f:40:3b:05:3c:f3:d6:14:32:45:20:
20:ae:65:96:6e:9f:e6:df:02:85:f7:ec:a7:e6:2d:
ea:9e:cf:d6:79:fb:17:cc:e9:3a:96:9e:fa:71:92:
5e:28:62:39:f1:25:b1:a2:ff:52:6c:be:16:b2:43:
d1:4f:7b:01:57:a1:9c:af:90:b5:42:e8:ad:b7:37:
52:99:38:be:cf:34:df:0f:27:c0:98:0a:54:55:5a:
1c:b9:0a:4f:a4:c3:65:f1:82:9a:69:60:aa:5c:d6:
d6:18:cb:b7:03:84:74:f7:fe:c7:48:f0:db:53:56:
a3:9c:a0:7b:bd:96:d4:54:1d:89:d1:6d:44:71:42:
63:23:68:9d:e8:84:fa:07:4d:25:8d:dd:de:09:e7:
0b:dd:ba:ea:13:8b:6e:65:93:83:43:22:0b:01:5d:
72:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:88:2D:4C:C9:09:19:F6:25:0D:8F:3B:4A:2D:73:5A:CC:D0:9F:09
X509v3 Authority Key Identifier:
keyid:9E:B5:E7:17:CE:F9:F6:64:4C:D8:84:9B:8A:18:D4:1D:C7:4F:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nrXnF8759mRM2ISbihjUHcdPQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/SogtTMkJGfYlDY87Si1zWszQnwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/nrXnF8759mRM2ISbihjUHcdPQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.160.0/21
46.231.216.0/21
82.163.36.0/22
82.196.24.0/21
88.202.236.0/22
88.212.144.0-88.212.155.255
185.4.60.0/22
185.91.220.0-185.91.227.255
185.146.220.0/22
212.18.240.0/21
212.85.229.0-212.85.231.255
IPv6:
2a00:78c0::/29
Signature Algorithm: sha256WithRSAEncryption
c4:bc:2b:25:68:6b:79:19:3f:d0:72:4f:29:87:99:f1:d8:3b:
48:6e:4b:b3:f8:c4:27:b4:8a:ff:d7:2b:50:b7:4a:87:26:74:
da:af:93:df:e5:a0:ca:14:7f:73:b8:2b:d1:d2:7c:5b:99:22:
d9:a5:44:d6:a6:8d:89:e8:f7:ab:21:ce:1f:6d:d1:0b:a6:a0:
f4:50:74:fe:9a:a1:fa:f5:ea:ab:d1:61:cc:12:37:07:c4:c0:
6b:c2:67:57:cc:87:c6:c3:60:8e:3c:37:c1:89:15:45:7b:64:
09:48:ed:5a:f7:30:10:a8:ed:1b:2d:ed:58:c8:e0:f8:7a:3a:
2f:69:e8:01:b8:32:e7:39:f6:0a:e6:23:1b:50:91:1d:27:ff:
ce:72:2d:a2:40:50:7f:3e:b3:5a:f9:72:5c:74:9f:44:93:28:
c3:59:84:65:dd:9e:5e:6a:02:62:cd:d0:38:41:51:9c:e9:0a:
62:bd:3b:8a:b7:a0:87:02:bd:ce:b4:37:01:f2:f0:62:36:5f:
ce:b9:50:cc:8c:0f:09:ac:05:7c:1e:65:28:2a:2b:89:f2:ee:
2c:d9:22:d6:7a:1f:1d:5c:98:39:e3:6f:d0:d1:2d:85:a5:dd:
b7:6e:7a:d1:c0:ab:8f:07:6c:fb:12:aa:32:00:33:86:3f:1f:
04:fd:38:06
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgIENjq/SjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZWI1ZTcxN2NlZjlmNjY0NGNkODg0OWI4YTE4ZDQxZGM3NGY0MDhhMB4XDTIyMDUw
MzExMzA0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGE4ODJkNGNjOTA5
MTlmNjI1MGQ4ZjNiNGEyZDczNWFjY2QwOWYwOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMS6+nYCETpA4qpQMMr539rxHmKYhM5x4/LY0LG/0N4qUNR8
hG8d1dOw3ODS3xEyvP6Fj73UjdHGckbwACpJkHoV2656iGvcTJbd/bzDHE8BykGg
XWspJfjLFzvkbg9AOwU889YUMkUgIK5llm6f5t8Chffsp+Yt6p7P1nn7F8zpOpae
+nGSXihiOfElsaL/Umy+FrJD0U97AVehnK+QtULorbc3Upk4vs803w8nwJgKVFVa
HLkKT6TDZfGCmmlgqlzW1hjLtwOEdPf+x0jw21NWo5yge72W1FQdidFtRHFCYyNo
neiE+gdNJY3d3gnnC9266hOLbmWTg0MiCwFdcosCAwEAAaOCAm0wggJpMB0GA1Ud
DgQWBBRKiC1MyQkZ9iUNjztKLXNazNCfCTAfBgNVHSMEGDAWgBSetecXzvn2ZEzY
hJuKGNQdx09AijAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25yWG5GODc1OW1STTJJU2JpaGpVSGNkUFFJby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjkvYjg5MzJhLTA4NzktNDc1MS05ODhjLTZlZTNmNTAwN2VhYi8x
L1NvZ3RUTWtKR2ZZbERZODdTaTF6V3N6UW53ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjkv
Yjg5MzJhLTA4NzktNDc1MS05ODhjLTZlZTNmNTAwN2VhYi8xL25yWG5GODc1OW1S
TTJJU2JpaGpVSGNkUFFJby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
ggYIKwYBBQUHAQcBAf8EczBxMGAEAgABMFoDBAMfrKADBAMu59gDBAJSoyQDBANS
xBgDBAJYyuwwDAMEBFjUkAMEAljUmAMEArkEPDAMAwQCuVvcAwQCuVvgAwQCuZLc
AwQD1BLwMAwDBADUVeUDBAPUVeAwDQQCAAIwBwMFAyoAeMAwDQYJKoZIhvcNAQEL
BQADggEBAMS8KyVoa3kZP9ByTymHmfHYO0huS7P4xCe0iv/XK1C3SocmdNqvk9/l
oMoUf3O4K9HSfFuZItmlRNamjYno96shzh9t0QumoPRQdP6aofr16qvRYcwSNwfE
wGvCZ1fMh8bDYI48N8GJFUV7ZAlI7Vr3MBCo7Rst7VjI4Ph6Oi9p6AG4Muc59grm
IxtQkR0n/85yLaJAUH8+s1r5clx0n0STKMNZhGXdnl5qAmLN0DhBUZzpCmK9O4q3
oIcCvc60NwHy8GI2X865UMyMDwmsBXweZSgqK4ny7izZItZ6Hx1cmDnjb9DRLYWl
3bduetHAq48HbPsSqjIAM4Y/HwT9OAY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:22 2024 by rpki-client on console-fra.rpki-client.org