Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/QzkaU5PeUOyG7zE42GOEmTvgRqA.roa
File: QzkaU5PeUOyG7zE42GOEmTvgRqA.roa (raw, json)
Hash identifier: zZ4VgdYz8AUJnIf/QxJmzBX5ifr5x8OIk60FhVPxWdc=
Subject key identifier: 43:39:1A:53:93:DE:50:EC:86:EF:31:38:D8:63:84:99:3B:E0:46:A0
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0194244553BD1DA5425EF70F090C44328B7D
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/QzkaU5PeUOyG7zE42GOEmTvgRqA.roa
Signing time: Wed 01 Jan 2025 23:48:30 +0000
ROA not before: Wed 01 Jan 2025 23:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34117
IP address blocks: 195.46.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:53:bd:1d:a5:42:5e:f7:0f:09:0c:44:32:8b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 23:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43391a5393de50ec86ef3138d86384993be046a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:39:49:eb:16:98:1d:15:ef:f3:43:5b:df:1c:
f0:5a:f8:7f:0d:be:05:50:35:bb:83:77:52:d0:cc:
f8:42:16:20:a1:10:f4:dd:ab:2e:47:56:98:52:61:
e2:fd:4f:93:c1:e0:d4:f4:8d:dc:ac:b6:cd:e2:cd:
ec:df:b1:87:9e:0d:3f:d1:96:79:8e:e2:00:a5:6f:
8d:d4:2f:0d:35:09:d2:ea:7c:43:73:74:a6:a8:29:
23:1d:6f:1d:a0:3c:fd:f5:5a:57:32:e2:8b:53:b4:
28:26:13:27:25:d1:ef:82:72:71:0d:39:08:05:7b:
cc:1a:33:fd:0f:39:84:b1:d6:1f:69:d4:22:7f:d1:
5c:40:ce:1b:fd:cf:bd:d9:06:23:71:d5:9a:6d:27:
c4:7e:d9:3b:a1:14:f6:7c:40:8f:1d:a2:26:eb:7a:
e0:d3:6e:d7:fb:33:35:63:93:3d:4d:bd:23:c8:8b:
9d:35:d3:11:02:76:c1:ea:e0:4c:eb:13:86:2a:f1:
29:82:72:70:76:e9:5c:df:87:4c:e4:57:60:37:c9:
ef:df:9d:8c:6e:bc:09:dc:9a:2d:e3:df:8c:4c:c1:
99:72:8b:3a:44:45:3f:56:07:e9:21:ee:d6:16:5d:
0d:02:ae:8a:c4:da:d5:da:9e:61:91:a8:10:0d:f9:
dc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:39:1A:53:93:DE:50:EC:86:EF:31:38:D8:63:84:99:3B:E0:46:A0
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/QzkaU5PeUOyG7zE42GOEmTvgRqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.46.130.0/24
Signature Algorithm: sha256WithRSAEncryption
34:12:34:59:b4:3e:c8:82:07:b5:50:9c:60:c6:38:82:0b:35:
f6:b1:b9:00:a0:dd:5c:8f:08:b5:db:73:a7:3a:13:a0:6e:73:
e0:8c:ed:de:06:e2:1c:7b:2f:af:c8:3f:7f:40:94:f2:3b:1f:
3d:8a:02:c1:fd:26:30:e6:0f:1c:b7:7f:1a:a1:c5:1e:b5:5d:
00:75:ed:ca:da:27:d1:3b:74:4b:65:96:e0:80:5f:88:fd:6c:
4a:2f:5b:d9:49:e7:44:25:f8:5b:d9:ea:90:d0:e8:23:47:81:
c5:e0:32:df:08:15:63:07:cb:46:68:49:e9:1b:c4:82:cf:27:
82:a2:3b:c9:10:91:87:31:a7:fc:7f:3a:94:13:66:6d:c7:99:
20:14:f8:24:d1:48:0c:ab:a4:8b:17:69:77:4a:61:6e:10:27:
a0:81:4e:20:83:6f:f0:8e:2d:33:12:f1:2e:a5:6e:90:85:1c:
ee:8f:60:ae:68:94:fd:d1:5e:7d:9e:2a:13:60:af:ca:3b:42:
a7:a3:c9:48:e4:f7:63:37:75:24:66:ff:1c:c8:07:c1:91:e1:
9d:f0:1c:c0:b7:68:c5:23:20:26:d1:9f:f2:3d:27:24:51:f9:
14:a5:ec:d4:b0:f5:f6:25:ce:00:1b:a8:35:74:72:a3:6e:dd:
05:91:1f:3f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRVO9HaVCXvcPCQxEMot9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2OGZlMzVjYzk2MjYzM2EyNzU3YWYxMGEwZTZlOGFiNmQw
MWY0YzkwHhcNMjUwMTAxMjM0ODMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzM5MWE1MzkzZGU1MGVjODZlZjMxMzhkODYzODQ5OTNiZTA0NmEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTlJ6xaYHRXv80Nb3xzwWvh/Db4F
UDW7g3dS0Mz4QhYgoRD03asuR1aYUmHi/U+TweDU9I3crLbN4s3s37GHng0/0ZZ5
juIApW+N1C8NNQnS6nxDc3SmqCkjHW8doDz99VpXMuKLU7QoJhMnJdHvgnJxDTkI
BXvMGjP9DzmEsdYfadQif9FcQM4b/c+92QYjcdWabSfEftk7oRT2fECPHaIm63rg
027X+zM1Y5M9Tb0jyIudNdMRAnbB6uBM6xOGKvEpgnJwdulc34dM5FdgN8nv352M
brwJ3Jot49+MTMGZcos6REU/VgfpIe7WFl0NAq6KxNrV2p5hkagQDfnclQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEM5GlOT3lDshu8xONhjhJk74EagMB8GA1UdIwQY
MBaAFFaP41zJYmM6J1evEKDm6KttAfTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMt
ODNkNjQ4Zjc5NzQ2LzEvUXprYVU1UGVVT3lHN3pFNDJHT0VtVHZnUnFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMtODNkNjQ4Zjc5NzQ2
LzEvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwy6CMA0G
CSqGSIb3DQEBCwUAA4IBAQA0EjRZtD7Igge1UJxgxjiCCzX2sbkAoN1cjwi123On
OhOgbnPgjO3eBuIcey+vyD9/QJTyOx89igLB/SYw5g8ct38aocUetV0Ade3K2ifR
O3RLZZbggF+I/WxKL1vZSedEJfhb2eqQ0OgjR4HF4DLfCBVjB8tGaEnpG8SCzyeC
ojvJEJGHMaf8fzqUE2Ztx5kgFPgk0UgMq6SLF2l3SmFuECeggU4gg2/wji0zEvEu
pW6QhRzuj2CuaJT90V59nioTYK/KO0Kno8lI5PdjN3UkZv8cyAfBkeGd8BzAt2jF
IyAm0Z/yPSckUfkUpezUsPX2Jc4AG6g1dHKjbt0FkR8/
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:47 2025 by rpki-client on console.sobornost.net