Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/dwa1SVgeAHbSLLwbTRR7yyl10Qo.roa
File: dwa1SVgeAHbSLLwbTRR7yyl10Qo.roa (raw, json)
Hash identifier: EOG7RhGAZwKSmeitaUimX8BvHbJofF1Pbz7/6Kkc5lA=
Subject key identifier: 77:06:B5:49:58:1E:00:76:D2:2C:BC:1B:4D:14:7B:CB:29:75:D1:0A
Certificate issuer: /CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Certificate serial: 019425FC043076A388DCD11ED0425D31C0E7
Authority key identifier: A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/dwa1SVgeAHbSLLwbTRR7yyl10Qo.roa
Signing time: Thu 02 Jan 2025 07:47:40 +0000
ROA not before: Thu 02 Jan 2025 07:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201150
IP address blocks: 95.128.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:04:30:76:a3:88:dc:d1:1e:d0:42:5d:31:c0:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Validity
Not Before: Jan 2 07:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7706b549581e0076d22cbc1b4d147bcb2975d10a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ea:9f:80:8b:14:28:0c:5b:98:3c:1c:50:87:
16:66:2b:ce:54:7b:d5:bb:36:4e:e4:90:14:2f:bc:
a4:b7:dc:39:24:80:79:7f:59:56:0f:1e:cd:90:cf:
e6:82:90:01:1e:79:33:99:12:b3:44:a5:ec:53:e2:
e6:70:5e:fb:7f:15:3e:0f:a2:af:c3:ba:ad:70:08:
b7:1b:be:b9:50:90:4a:fc:5e:31:1d:28:1a:70:1c:
a2:c3:b0:7a:2e:4b:ee:e0:6a:94:17:2b:9e:10:5a:
78:72:c3:da:08:a4:32:2c:2e:53:71:bb:7e:c3:7c:
c8:36:35:d0:45:95:2b:5a:1d:0b:75:e8:0c:19:b1:
fb:88:2b:02:4c:69:37:cf:af:b6:79:59:88:01:29:
de:eb:47:8e:8b:01:81:aa:ea:c0:0f:4e:1e:22:92:
54:64:00:2a:f7:be:67:d9:c8:d2:55:5f:74:b7:d7:
67:fb:fe:d1:af:5b:87:d8:c0:46:47:ae:ba:9a:f6:
c6:a3:be:27:a8:cb:6b:12:f9:e8:d8:42:cb:0c:0f:
2a:fb:6e:86:da:db:0e:fb:62:95:34:1b:fa:c7:10:
e4:ae:b2:6a:ec:f3:2a:ef:30:78:5a:06:a8:7a:30:
da:a7:3b:cf:96:94:3b:ff:f1:c2:4f:3a:13:80:cf:
0f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:06:B5:49:58:1E:00:76:D2:2C:BC:1B:4D:14:7B:CB:29:75:D1:0A
X509v3 Authority Key Identifier:
keyid:A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/dwa1SVgeAHbSLLwbTRR7yyl10Qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.197.0/24
Signature Algorithm: sha256WithRSAEncryption
34:52:ad:1b:79:2f:d0:4c:a0:95:39:9f:f3:16:b3:fc:10:37:
bd:ba:bf:12:dc:a5:e5:27:5e:b2:5d:f2:c3:ea:14:af:9f:9a:
1b:cc:0e:fb:f4:78:87:e3:19:02:f6:5c:64:12:84:1a:6c:8b:
9f:ee:8e:3f:05:9e:81:49:72:b3:60:32:c1:60:9f:0b:86:ff:
70:fb:49:b7:de:e4:5b:3f:ac:0a:95:74:64:d1:90:ba:8e:48:
59:2f:54:4e:d2:75:07:0f:c5:c5:81:c9:92:46:73:7b:f7:64:
f8:2c:b8:2d:de:ed:a2:3b:5f:19:be:62:52:4c:1d:0d:b6:64:
f2:ba:7d:20:e1:b3:b7:4e:80:25:4b:fd:ec:6f:8b:af:70:85:
34:71:a6:46:75:63:cd:50:ed:28:03:71:32:ec:7e:32:58:ce:
ca:c9:1a:57:00:bf:fd:52:a0:3f:e2:4e:da:be:e0:e0:a1:7f:
9c:34:75:de:20:20:7e:e6:d0:e3:bf:53:53:e9:c5:99:c9:19:
45:b9:01:35:a9:2b:4d:fa:bc:1b:0a:1d:9c:65:4d:cf:af:ef:
16:99:8d:55:c8:18:37:94:4d:94:18:df:bc:eb:ed:c5:21:60:
ca:0d:35:36:89:ad:65:0f:6a:7e:2d:7e:e9:1f:95:da:67:94:
84:8f:fc:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/AQwdqOI3NEe0EJdMcDnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNjk1ZDU1NTgyNDFlMDRhODcyZGMxMzQ2ODk4ZjJjZWE3
MGRmZTcwHhcNMjUwMTAyMDc0NzQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzA2YjU0OTU4MWUwMDc2ZDIyY2JjMWI0ZDE0N2JjYjI5NzVkMTBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqeqfgIsUKAxbmDwcUIcWZivOVHvV
uzZO5JAUL7ykt9w5JIB5f1lWDx7NkM/mgpABHnkzmRKzRKXsU+LmcF77fxU+D6Kv
w7qtcAi3G765UJBK/F4xHSgacByiw7B6Lkvu4GqUFyueEFp4csPaCKQyLC5Tcbt+
w3zINjXQRZUrWh0LdegMGbH7iCsCTGk3z6+2eVmIASne60eOiwGBqurAD04eIpJU
ZAAq975n2cjSVV90t9dn+/7Rr1uH2MBGR666mvbGo74nqMtrEvno2ELLDA8q+26G
2tsO+2KVNBv6xxDkrrJq7PMq7zB4WgaoejDapzvPlpQ7//HCTzoTgM8P/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHcGtUlYHgB20iy8G00Ue8spddEKMB8GA1UdIwQY
MBaAFKFpXVVYJB4EqHLcE0aJjyzqcN/nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1dsZFZWZ2tIZ1NvY3R3VFJvbVBMT3B3My1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8yN2NhN2YtNjZiNC00YmIxLTlmNWYt
ZjViYTRmZTJiZjU0LzEvZHdhMVNWZ2VBSGJTTEx3YlRSUjd5eWwxMFFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC8yN2NhN2YtNjZiNC00YmIxLTlmNWYtZjViYTRmZTJiZjU0
LzEvb1dsZFZWZ2tIZ1NvY3R3VFJvbVBMT3B3My1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX4DFMA0G
CSqGSIb3DQEBCwUAA4IBAQA0Uq0beS/QTKCVOZ/zFrP8EDe9ur8S3KXlJ16yXfLD
6hSvn5obzA779HiH4xkC9lxkEoQabIuf7o4/BZ6BSXKzYDLBYJ8Lhv9w+0m33uRb
P6wKlXRk0ZC6jkhZL1RO0nUHD8XFgcmSRnN792T4LLgt3u2iO18ZvmJSTB0NtmTy
un0g4bO3ToAlS/3sb4uvcIU0caZGdWPNUO0oA3Ey7H4yWM7KyRpXAL/9UqA/4k7a
vuDgoX+cNHXeICB+5tDjv1NT6cWZyRlFuQE1qStN+rwbCh2cZU3Pr+8WmY1VyBg3
lE2UGN+86+3FIWDKDTU2ia1lD2p+LX7pH5XaZ5SEj/zq
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:33 2025 by rpki-client on console.sobornost.net