Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/KChU0Ss7IUSMmcrbp9hvvsOcKSI.roa
File: KChU0Ss7IUSMmcrbp9hvvsOcKSI.roa (raw, json)
Hash identifier: tqUwPcZIIPi8c5hbtPgv87qi30gm6VRMDquHIJzvPTE=
Subject key identifier: 28:28:54:D1:2B:3B:21:44:8C:99:CA:DB:A7:D8:6F:BE:C3:9C:29:22
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 01942445624958C5CE0E47D0F72CA25FD70B
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/KChU0Ss7IUSMmcrbp9hvvsOcKSI.roa
Signing time: Wed 01 Jan 2025 23:48:34 +0000
ROA not before: Wed 01 Jan 2025 23:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61061
IP address blocks: 134.255.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:62:49:58:c5:ce:0e:47:d0:f7:2c:a2:5f:d7:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: Jan 1 23:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=282854d12b3b21448c99cadba7d86fbec39c2922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2b:63:4c:67:bd:b4:84:97:0c:a5:d7:22:bd:
e9:59:06:47:c0:41:d0:07:35:67:ae:78:b4:c9:1e:
52:92:8f:26:f0:41:8d:86:61:f7:e8:9f:56:4c:7d:
b3:c6:71:6b:82:d1:a1:cb:94:0d:57:91:61:d4:00:
22:ec:71:27:5e:4b:26:bf:ca:4f:45:7a:0e:31:a5:
e1:2f:62:23:b8:57:ee:15:2d:e6:d7:14:bf:82:77:
6a:2e:0e:3e:93:44:03:6d:d4:37:9e:06:35:40:d6:
ed:a4:4a:0a:2f:81:b6:c4:25:85:81:d0:0d:b3:1e:
de:12:6d:48:80:68:f0:90:2c:9f:34:9a:7f:45:c8:
2e:f6:21:44:87:22:46:9f:7c:e1:e0:0b:6c:86:fd:
7a:e6:c1:06:bd:35:63:81:87:23:bc:6e:4d:1e:c2:
30:7a:b3:a9:b2:a7:e8:e2:6c:30:5a:cb:16:5c:dc:
14:9b:8d:f3:44:aa:6f:5c:39:c8:37:b0:40:19:67:
fb:44:00:44:c3:db:ac:0c:03:ee:52:01:8f:cc:5a:
d2:b9:3e:21:99:02:17:ff:93:7f:07:f1:11:36:16:
54:26:e8:03:40:c8:5c:04:74:5c:24:f4:37:32:5a:
4e:51:f1:49:99:1f:25:43:c4:e6:a6:a1:1f:c0:bc:
96:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:28:54:D1:2B:3B:21:44:8C:99:CA:DB:A7:D8:6F:BE:C3:9C:29:22
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/KChU0Ss7IUSMmcrbp9hvvsOcKSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.255.249.0/24
Signature Algorithm: sha256WithRSAEncryption
06:54:b8:0d:54:d3:ee:c7:2e:a8:10:70:88:25:07:1d:04:a1:
f3:95:ca:99:2c:55:1d:9f:35:e6:f7:62:e0:87:bf:0f:e5:87:
7c:e2:64:b2:9f:89:b4:e3:37:d5:e6:8f:ac:57:85:59:9c:04:
46:c2:db:db:25:65:31:26:a4:63:f4:0a:8b:73:88:b0:b0:28:
dd:de:d2:31:e6:f1:2f:7b:db:e5:ab:d2:06:f8:17:ed:c1:81:
78:ab:6f:25:d2:bb:7e:5b:4a:22:d6:f3:91:3c:ae:b2:6d:26:
00:e6:18:a0:84:a1:22:a1:5a:b9:9d:16:9a:47:1f:fc:a2:b5:
98:73:67:5c:96:cb:1d:b1:4f:62:d0:78:39:9c:05:9e:8c:44:
42:8a:2c:c5:ee:d3:1c:27:44:db:2f:8e:55:56:29:6a:fc:90:
e9:48:4b:bc:e4:9a:49:a3:8c:34:6b:74:2d:4e:12:61:62:a8:
a6:ea:75:23:cb:6d:77:94:93:d0:46:b7:1e:9a:f7:52:8e:57:
3f:ac:21:54:21:7e:cc:43:28:36:ad:b7:fc:51:ad:61:ed:da:
11:9a:cc:6b:00:c8:e9:d9:e4:98:4b:e2:6f:98:0e:10:2c:46:
f9:76:e3:0b:37:e3:08:da:38:01:ce:cd:67:a8:82:fb:c7:39:
89:dd:9a:90
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRWJJWMXODkfQ9yyiX9cLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmODE0YWRjMWQ1MjA5ZTA5OGYwNzhhZGJjODU2YmFkODNi
NzQ5YzIwHhcNMjUwMTAxMjM0ODM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODI4NTRkMTJiM2IyMTQ0OGM5OWNhZGJhN2Q4NmZiZWMzOWMyOTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2itjTGe9tISXDKXXIr3pWQZHwEHQ
BzVnrni0yR5Sko8m8EGNhmH36J9WTH2zxnFrgtGhy5QNV5Fh1AAi7HEnXksmv8pP
RXoOMaXhL2IjuFfuFS3m1xS/gndqLg4+k0QDbdQ3ngY1QNbtpEoKL4G2xCWFgdAN
sx7eEm1IgGjwkCyfNJp/Rcgu9iFEhyJGn3zh4Atshv165sEGvTVjgYcjvG5NHsIw
erOpsqfo4mwwWssWXNwUm43zRKpvXDnIN7BAGWf7RABEw9usDAPuUgGPzFrSuT4h
mQIX/5N/B/ERNhZUJugDQMhcBHRcJPQ3MlpOUfFJmR8lQ8TmpqEfwLyWmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCgoVNErOyFEjJnK26fYb77DnCkiMB8GA1UdIwQY
MBaAFC+BStwdUgngmPB4rbyFa62Dt0nCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDRGSzNCMVNDZUNZOEhpdHZJVnJyWU8zU2NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8xM2UxMmEtMmJhYy00NzUyLTk5N2Qt
ZGY4NmI2ZGQ5OTdjLzEvS0NoVTBTczdJVVNNbWNyYnA5aHZ2c09jS1NJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8xM2UxMmEtMmJhYy00NzUyLTk5N2QtZGY4NmI2ZGQ5OTdj
LzEvTDRGSzNCMVNDZUNZOEhpdHZJVnJyWU8zU2NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAhv/5MA0G
CSqGSIb3DQEBCwUAA4IBAQAGVLgNVNPuxy6oEHCIJQcdBKHzlcqZLFUdnzXm92Lg
h78P5Yd84mSyn4m04zfV5o+sV4VZnARGwtvbJWUxJqRj9AqLc4iwsCjd3tIx5vEv
e9vlq9IG+BftwYF4q28l0rt+W0oi1vORPK6ybSYA5highKEioVq5nRaaRx/8orWY
c2dclssdsU9i0Hg5nAWejERCiizF7tMcJ0TbL45VVilq/JDpSEu85JpJo4w0a3Qt
ThJhYqim6nUjy213lJPQRrcemvdSjlc/rCFUIX7MQyg2rbf8Ua1h7doRmsxrAMjp
2eSYS+JvmA4QLEb5duMLN+MI2jgBzs1nqIL7xzmJ3ZqQ
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:42 2025 by rpki-client on console.sobornost.net