Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3d2415-8133-40a0-9d8c-a6319ab179bf/1/F9Es2mSBeEPcByc2eF_egK6MKLM.roa
File: F9Es2mSBeEPcByc2eF_egK6MKLM.roa (raw, json)
Hash identifier: Eg2cQe6ayySWIx0OqzxZdVZLUVHyOu5zCl7u6iMfiyU=
Subject key identifier: 17:D1:2C:DA:64:81:78:43:DC:07:27:36:78:5F:DE:80:AE:8C:28:B3
Certificate issuer: /CN=73a1b76664717e2a4d2e5cf2bde3b9731907f8c2
Certificate serial: 0194258F78623AD608F3E6528DA91B4C51DB
Authority key identifier: 73:A1:B7:66:64:71:7E:2A:4D:2E:5C:F2:BD:E3:B9:73:19:07:F8:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c6G3ZmRxfipNLlzyveO5cxkH-MI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3d2415-8133-40a0-9d8c-a6319ab179bf/1/F9Es2mSBeEPcByc2eF_egK6MKLM.roa
Signing time: Thu 02 Jan 2025 05:49:06 +0000
ROA not before: Thu 02 Jan 2025 05:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29695
IP address blocks: 193.160.148.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:78:62:3a:d6:08:f3:e6:52:8d:a9:1b:4c:51:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73a1b76664717e2a4d2e5cf2bde3b9731907f8c2
Validity
Not Before: Jan 2 05:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=17d12cda64817843dc072736785fde80ae8c28b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c9:a3:2a:59:33:34:ff:94:6c:6b:dc:f3:e7:
0c:0a:ca:d4:87:d4:94:7f:df:86:fe:09:11:0e:c6:
05:6a:2a:60:45:e4:53:f2:b7:62:2b:fb:6b:2e:eb:
41:c3:5e:84:11:2e:9f:77:1a:44:09:5a:05:df:28:
cd:3a:44:8e:cc:d5:c8:53:91:e3:6e:1b:f3:91:f3:
22:09:2c:1c:d2:0c:a7:d5:06:28:7e:fc:ea:78:f0:
18:55:29:0f:bd:5f:fa:42:1d:7d:d0:0a:65:cc:b9:
22:c8:39:d9:e2:e7:54:0e:94:97:45:24:b1:c1:54:
20:6b:f1:2a:36:c7:5c:af:88:c3:a8:7f:d5:04:e8:
26:1f:be:37:89:47:40:8a:a4:d4:03:e6:33:19:95:
2f:ba:46:4a:1a:c8:1a:e9:f9:13:f1:68:39:25:f8:
f3:57:88:13:4e:95:b3:5d:e1:9c:49:14:fd:c4:97:
57:e6:86:f1:df:a7:81:07:df:53:55:4d:3f:9e:64:
c6:fd:b9:83:ac:a5:a7:1f:37:36:bd:ab:32:3a:e4:
48:24:d5:39:ad:d8:93:bd:82:53:70:62:e7:db:e9:
26:6a:05:df:6f:96:c5:a1:46:1c:f1:96:74:bd:44:
0d:20:7e:96:d3:1c:e7:85:18:73:aa:dc:72:1a:10:
17:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D1:2C:DA:64:81:78:43:DC:07:27:36:78:5F:DE:80:AE:8C:28:B3
X509v3 Authority Key Identifier:
keyid:73:A1:B7:66:64:71:7E:2A:4D:2E:5C:F2:BD:E3:B9:73:19:07:F8:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6G3ZmRxfipNLlzyveO5cxkH-MI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3d2415-8133-40a0-9d8c-a6319ab179bf/1/F9Es2mSBeEPcByc2eF_egK6MKLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3d2415-8133-40a0-9d8c-a6319ab179bf/1/c6G3ZmRxfipNLlzyveO5cxkH-MI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.148.0/22
Signature Algorithm: sha256WithRSAEncryption
91:93:2e:d6:e2:4a:8f:e0:92:6b:24:67:b9:dd:a0:59:3a:95:
bc:37:e5:70:2f:16:f0:6d:bc:57:e3:cf:95:bb:64:99:66:02:
c6:6c:6f:95:53:e6:a4:93:e1:d8:6f:91:37:e4:ec:ae:17:00:
e8:ce:50:2e:ed:b3:a9:c7:4c:20:25:98:35:9e:10:af:d3:75:
12:34:be:5b:3e:83:cc:35:23:dc:3e:8b:12:e7:3a:ba:43:de:
d4:16:5e:f5:95:68:33:ea:7a:b7:c6:ac:dd:a8:8c:6d:e6:b9:
bc:de:82:13:df:8b:09:00:92:b7:2d:cf:5d:2c:11:dd:06:b6:
30:14:a8:f4:74:9c:40:82:c1:72:ab:d6:1a:3a:36:ec:5b:1f:
fd:c6:29:69:07:5f:a1:d9:f1:c5:28:08:dd:3c:28:b1:d3:11:
62:1b:7b:3d:b1:2f:2d:e6:0c:2b:89:6c:60:28:a1:a9:ce:a0:
83:54:bf:00:74:05:87:0f:c2:51:59:7f:8b:d1:6e:1f:15:fc:
68:e2:55:15:3f:89:3f:03:b4:2c:9c:fe:e6:11:b6:07:17:ab:
db:e5:1a:ae:89:76:cc:73:a7:5e:17:a3:3b:9b:21:fc:60:a3:
68:6a:89:57:0f:1b:ac:7e:e0:d5:81:dc:43:c6:a3:be:a6:91:
58:3a:61:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlj3hiOtYI8+ZSjakbTFHbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYTFiNzY2NjQ3MTdlMmE0ZDJlNWNmMmJkZTNiOTczMTkw
N2Y4YzIwHhcNMjUwMTAyMDU0OTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxN2QxMmNkYTY0ODE3ODQzZGMwNzI3MzY3ODVmZGU4MGFlOGMyOGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsmjKlkzNP+UbGvc8+cMCsrUh9SU
f9+G/gkRDsYFaipgReRT8rdiK/trLutBw16EES6fdxpECVoF3yjNOkSOzNXIU5Hj
bhvzkfMiCSwc0gyn1QYofvzqePAYVSkPvV/6Qh190AplzLkiyDnZ4udUDpSXRSSx
wVQga/EqNsdcr4jDqH/VBOgmH743iUdAiqTUA+YzGZUvukZKGsga6fkT8Wg5Jfjz
V4gTTpWzXeGcSRT9xJdX5obx36eBB99TVU0/nmTG/bmDrKWnHzc2vasyOuRIJNU5
rdiTvYJTcGLn2+kmagXfb5bFoUYc8ZZ0vUQNIH6W0xznhRhzqtxyGhAXowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBfRLNpkgXhD3AcnNnhf3oCujCizMB8GA1UdIwQY
MBaAFHOht2ZkcX4qTS5c8r3juXMZB/jCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzZHM1ptUnhmaXBOTGx6eXZlTzVjeGtILU1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8zZDI0MTUtODEzMy00MGEwLTlkOGMt
YTYzMTlhYjE3OWJmLzEvRjlFczJtU0JlRVBjQnljMmVGX2VnSzZNS0xNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8zZDI0MTUtODEzMy00MGEwLTlkOGMtYTYzMTlhYjE3OWJm
LzEvYzZHM1ptUnhmaXBOTGx6eXZlTzVjeGtILU1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwaCUMA0G
CSqGSIb3DQEBCwUAA4IBAQCRky7W4kqP4JJrJGe53aBZOpW8N+VwLxbwbbxX48+V
u2SZZgLGbG+VU+akk+HYb5E35OyuFwDozlAu7bOpx0wgJZg1nhCv03USNL5bPoPM
NSPcPosS5zq6Q97UFl71lWgz6nq3xqzdqIxt5rm83oIT34sJAJK3Lc9dLBHdBrYw
FKj0dJxAgsFyq9YaOjbsWx/9xilpB1+h2fHFKAjdPCix0xFiG3s9sS8t5gwriWxg
KKGpzqCDVL8AdAWHD8JRWX+L0W4fFfxo4lUVP4k/A7QsnP7mEbYHF6vb5RquiXbM
c6deF6M7myH8YKNoaolXDxusfuDVgdxDxqO+ppFYOmH8
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:45 2025 by rpki-client on console.sobornost.net