Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/feh72HR-_mrzGLz7VSpEFnXqaJo.roa
File: feh72HR-_mrzGLz7VSpEFnXqaJo.roa (raw, json)
Hash identifier: LwnQ+vMA051C/u4c2Kzemun4LSgaDWuT73rcQZC4pSM=
Subject key identifier: 7D:E8:7B:D8:74:7E:FE:6A:F3:18:BC:FB:55:2A:44:16:75:EA:68:9A
Certificate issuer: /CN=e2110acce33ac85011ca8c22d2001666e45b9377
Certificate serial: 019426D9DDC7B49026FDCE12DE6BBDACAEC8
Authority key identifier: E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/feh72HR-_mrzGLz7VSpEFnXqaJo.roa
Signing time: Thu 02 Jan 2025 11:49:59 +0000
ROA not before: Thu 02 Jan 2025 11:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29550
IP address blocks: 193.111.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:dd:c7:b4:90:26:fd:ce:12:de:6b:bd:ac:ae:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2110acce33ac85011ca8c22d2001666e45b9377
Validity
Not Before: Jan 2 11:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7de87bd8747efe6af318bcfb552a441675ea689a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4e:ec:c4:6f:5f:2f:d8:05:c9:cb:7d:5d:dd:
ee:4c:15:fc:20:95:c4:6f:1d:fc:7f:0b:97:c7:ec:
05:38:0b:c0:99:a7:3f:17:a8:0f:ed:3c:1c:b0:7c:
42:53:4f:0d:8c:9f:fd:44:68:e8:cf:6a:02:22:f0:
74:6d:82:bf:49:ca:f1:55:fa:ca:ac:af:8f:45:bc:
51:06:d7:20:6c:3f:2b:12:d1:65:8e:d6:0e:63:9c:
85:2d:72:76:e4:70:99:98:b6:f2:b2:82:b6:d3:96:
e1:19:3a:cf:d7:c3:bf:d1:16:30:d1:de:93:82:76:
42:ad:02:a8:16:c2:03:8d:eb:89:bd:42:87:63:98:
0b:26:a6:16:e1:37:60:1f:12:38:06:3d:a4:41:65:
c1:39:44:f3:e1:65:7d:32:ad:9b:10:ca:34:16:09:
2a:51:15:7f:88:98:a2:5b:a1:19:ac:ae:58:77:d0:
33:03:41:55:dc:90:97:a6:6a:d4:b4:c2:7f:1c:61:
09:29:91:4b:4f:a0:6c:d9:60:33:7e:ae:27:7a:b5:
24:96:cf:c5:99:dc:c1:62:80:0c:a8:c1:82:47:2e:
a8:96:f2:9e:4b:6d:a6:33:d8:83:bf:ec:7d:94:b8:
91:0f:05:04:11:5b:3e:f1:2f:a0:d8:7b:84:c0:77:
3c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E8:7B:D8:74:7E:FE:6A:F3:18:BC:FB:55:2A:44:16:75:EA:68:9A
X509v3 Authority Key Identifier:
keyid:E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/feh72HR-_mrzGLz7VSpEFnXqaJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/4hEKzOM6yFARyowi0gAWZuRbk3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.95.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:0e:a2:be:02:ad:af:e5:5e:48:4e:04:4e:0c:c5:a2:e4:4e:
ed:ed:98:d0:f2:74:6e:0b:fc:90:04:3d:a1:94:64:8e:9c:7e:
b9:66:6f:48:2c:a8:1d:b4:b2:f8:a1:45:65:75:3b:16:f5:ce:
7f:2f:b4:0e:2d:5b:20:53:72:d2:b6:a4:a5:bf:02:a5:b5:a3:
59:a2:57:aa:e7:07:94:8e:87:66:77:e3:3f:04:21:83:c4:d3:
1d:52:d9:b7:11:51:91:6c:7b:cf:e9:ad:c2:c4:db:79:bd:8d:
a2:8a:44:0b:fd:20:f4:68:ab:ee:91:37:8c:1c:7a:92:b7:f2:
08:4a:56:db:88:d7:f4:39:3e:32:2c:c1:06:2b:1e:41:b7:60:
a1:8f:25:26:3d:96:4d:9a:02:fb:6d:cd:b6:ed:33:00:61:0b:
5b:26:89:ef:c7:40:05:bc:5a:f2:3a:95:91:d8:e1:e9:2c:ec:
bf:c0:91:dc:09:9a:2d:da:ac:ef:d2:db:a3:61:69:a8:ab:4e:
80:59:5a:30:35:7e:48:0a:17:00:9a:f8:c2:d7:e0:78:c3:77:
2b:a9:04:4c:01:cf:f4:a1:1c:eb:a9:d8:5c:09:c0:4b:56:6c:
6d:4c:00:ec:0e:d3:8e:b4:97:37:46:43:94:66:ff:9f:9b:73:
cd:9d:cb:a7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2d3HtJAm/c4S3mu9rK7IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyMTEwYWNjZTMzYWM4NTAxMWNhOGMyMmQyMDAxNjY2ZTQ1
YjkzNzcwHhcNMjUwMTAyMTE0OTU5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGU4N2JkODc0N2VmZTZhZjMxOGJjZmI1NTJhNDQxNjc1ZWE2ODlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxE7sxG9fL9gFyct9Xd3uTBX8IJXE
bx38fwuXx+wFOAvAmac/F6gP7TwcsHxCU08NjJ/9RGjoz2oCIvB0bYK/ScrxVfrK
rK+PRbxRBtcgbD8rEtFljtYOY5yFLXJ25HCZmLbysoK205bhGTrP18O/0RYw0d6T
gnZCrQKoFsIDjeuJvUKHY5gLJqYW4TdgHxI4Bj2kQWXBOUTz4WV9Mq2bEMo0Fgkq
URV/iJiiW6EZrK5Yd9AzA0FV3JCXpmrUtMJ/HGEJKZFLT6Bs2WAzfq4nerUkls/F
mdzBYoAMqMGCRy6olvKeS22mM9iDv+x9lLiRDwUEEVs+8S+g2HuEwHc8ZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH3oe9h0fv5q8xi8+1UqRBZ16miaMB8GA1UdIwQY
MBaAFOIRCszjOshQEcqMItIAFmbkW5N3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGhFS3pPTTZ5RkFSeW93aTBnQVdadVJiazNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8wNTEwMzUtMjAwZC00MWU4LWFkZjEt
ZDMzZjA4ZjNhNDhkLzEvZmVoNzJIUi1fbXJ6R0x6N1ZTcEVGblhxYUpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8wNTEwMzUtMjAwZC00MWU4LWFkZjEtZDMzZjA4ZjNhNDhk
LzEvNGhFS3pPTTZ5RkFSeW93aTBnQVdadVJiazNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwW9fMA0G
CSqGSIb3DQEBCwUAA4IBAQCcDqK+Aq2v5V5ITgRODMWi5E7t7ZjQ8nRuC/yQBD2h
lGSOnH65Zm9ILKgdtLL4oUVldTsW9c5/L7QOLVsgU3LStqSlvwKltaNZoleq5weU
jodmd+M/BCGDxNMdUtm3EVGRbHvP6a3CxNt5vY2iikQL/SD0aKvukTeMHHqSt/II
SlbbiNf0OT4yLMEGKx5Bt2ChjyUmPZZNmgL7bc227TMAYQtbJonvx0AFvFryOpWR
2OHpLOy/wJHcCZot2qzv0tujYWmoq06AWVowNX5IChcAmvjC1+B4w3crqQRMAc/0
oRzrqdhcCcBLVmxtTADsDtOOtJc3RkOUZv+fm3PNncun
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:44 2025 by rpki-client on console.sobornost.net