Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/9d698d-d277-497f-833d-a2127c2aa1b3/1/HD7ZQ20BrfhIQig7jEtYMWBXqig.roa
File: HD7ZQ20BrfhIQig7jEtYMWBXqig.roa (raw, json)
Hash identifier: 0U8nx89LMB5Sbx+cfc6esGNSApn9xmAb50VsRUl9HHk=
Subject key identifier: 1C:3E:D9:43:6D:01:AD:F8:48:42:28:3B:8C:4B:58:31:60:57:AA:28
Certificate issuer: /CN=becb5526e841e770cb5564f304cc6696eab1e4bb
Certificate serial: 0194228E06794865BEA1972A42FEF1D30232
Authority key identifier: BE:CB:55:26:E8:41:E7:70:CB:55:64:F3:04:CC:66:96:EA:B1:E4:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vstVJuhB53DLVWTzBMxmluqx5Ls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/9d698d-d277-497f-833d-a2127c2aa1b3/1/HD7ZQ20BrfhIQig7jEtYMWBXqig.roa
Signing time: Wed 01 Jan 2025 15:48:40 +0000
ROA not before: Wed 01 Jan 2025 15:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9128
IP address blocks: 193.193.184.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:06:79:48:65:be:a1:97:2a:42:fe:f1:d3:02:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=becb5526e841e770cb5564f304cc6696eab1e4bb
Validity
Not Before: Jan 1 15:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1c3ed9436d01adf84842283b8c4b58316057aa28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5b:12:af:dc:18:8f:d7:5b:5e:e4:69:0e:1c:
7f:41:c4:39:7f:fa:8b:da:83:e4:17:e0:80:e4:51:
6c:43:63:b8:30:44:9d:3e:e9:99:c4:8c:9b:df:59:
2a:f3:52:ba:0e:5d:b1:aa:d9:22:8a:6b:6a:4c:d0:
74:d6:eb:cc:15:21:6a:88:34:2b:e0:70:b1:e9:18:
a7:50:20:07:d4:1c:1c:c0:1c:b7:8c:cc:75:c9:83:
19:9d:68:11:62:ac:64:bf:af:f3:91:68:5d:3e:b6:
ad:97:a5:fe:2f:15:10:2b:6b:bf:9b:53:b5:25:03:
3c:81:ff:f0:6d:d4:b8:5f:f4:29:8a:1a:4f:37:e3:
db:95:3c:fc:48:f1:c9:eb:a9:a3:5a:e0:2b:d1:e1:
ba:6a:b9:43:15:28:3b:81:c9:79:74:95:4d:5f:a7:
8c:c9:85:45:1c:6b:c3:e4:a0:19:10:d1:a1:8c:d1:
15:40:83:d4:b5:4b:f0:ee:70:45:31:2b:11:0e:99:
4d:a9:d9:d5:75:25:a2:98:7c:bc:0f:dc:7d:13:68:
ba:cf:df:2a:12:6c:bd:b9:28:1b:a5:14:43:e6:3f:
28:89:2d:6e:89:f9:40:01:82:35:f4:6f:d2:d9:b2:
14:7e:24:8f:9a:a7:57:2a:32:a2:cf:1b:ad:0d:77:
8c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:3E:D9:43:6D:01:AD:F8:48:42:28:3B:8C:4B:58:31:60:57:AA:28
X509v3 Authority Key Identifier:
keyid:BE:CB:55:26:E8:41:E7:70:CB:55:64:F3:04:CC:66:96:EA:B1:E4:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vstVJuhB53DLVWTzBMxmluqx5Ls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/9d698d-d277-497f-833d-a2127c2aa1b3/1/HD7ZQ20BrfhIQig7jEtYMWBXqig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/9d698d-d277-497f-833d-a2127c2aa1b3/1/vstVJuhB53DLVWTzBMxmluqx5Ls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.193.184.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:d7:ed:ab:e3:e2:8d:b9:4a:6a:94:b3:c3:35:64:99:56:d1:
e6:5e:b1:83:72:3f:43:6f:b2:71:b1:1f:c8:e3:9f:ef:ce:40:
33:8f:35:54:02:57:d2:4d:3a:57:7d:6e:b1:f7:38:75:d5:6b:
36:0d:cb:c0:b7:ac:f7:be:1b:7b:43:28:fe:bc:34:18:5b:14:
72:f5:d6:35:da:61:2a:67:73:a3:76:42:d4:27:9f:3e:62:b0:
c3:c8:25:d9:00:2c:7d:92:24:b3:a8:00:00:1d:62:8d:27:ad:
fd:1d:f9:23:91:81:63:e6:99:60:4c:dc:2f:a9:1a:f4:a3:8e:
92:e7:45:be:55:c9:b6:c9:61:f7:d7:9a:ee:fa:68:1d:ea:b2:
5c:15:07:be:d0:db:de:59:ca:67:0d:36:bc:2a:54:06:95:c2:
2e:02:5e:28:21:ad:f1:90:05:22:35:2e:95:34:da:82:c4:fc:
93:e9:64:b2:5b:4d:7a:88:50:52:3f:93:29:b2:fe:3d:d2:6b:
8f:f2:f8:b7:88:4e:b9:86:6e:11:7d:e6:c8:76:ec:c8:e4:62:
ec:4a:b5:3f:a6:88:1a:e8:33:67:b8:30:ae:5d:dd:21:71:29:
ce:42:bd:a3:f4:4b:41:b3:ad:52:15:46:b8:46:b5:68:e9:5a:
52:dc:98:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijgZ5SGW+oZcqQv7x0wIyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlY2I1NTI2ZTg0MWU3NzBjYjU1NjRmMzA0Y2M2Njk2ZWFi
MWU0YmIwHhcNMjUwMTAxMTU0ODQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYzNlZDk0MzZkMDFhZGY4NDg0MjI4M2I4YzRiNTgzMTYwNTdhYTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwlsSr9wYj9dbXuRpDhx/QcQ5f/qL
2oPkF+CA5FFsQ2O4MESdPumZxIyb31kq81K6Dl2xqtkiimtqTNB01uvMFSFqiDQr
4HCx6RinUCAH1BwcwBy3jMx1yYMZnWgRYqxkv6/zkWhdPratl6X+LxUQK2u/m1O1
JQM8gf/wbdS4X/QpihpPN+PblTz8SPHJ66mjWuAr0eG6arlDFSg7gcl5dJVNX6eM
yYVFHGvD5KAZENGhjNEVQIPUtUvw7nBFMSsRDplNqdnVdSWimHy8D9x9E2i6z98q
Emy9uSgbpRRD5j8oiS1uiflAAYI19G/S2bIUfiSPmqdXKjKizxutDXeMMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBw+2UNtAa34SEIoO4xLWDFgV6ooMB8GA1UdIwQY
MBaAFL7LVSboQedwy1Vk8wTMZpbqseS7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnN0Vkp1aEI1M0RMVldUekJNeG1sdXF4NUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi85ZDY5OGQtZDI3Ny00OTdmLTgzM2Qt
YTIxMjdjMmFhMWIzLzEvSEQ3WlEyMEJyZmhJUWlnN2pFdFlNV0JYcWlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi85ZDY5OGQtZDI3Ny00OTdmLTgzM2QtYTIxMjdjMmFhMWIz
LzEvdnN0Vkp1aEI1M0RMVldUekJNeG1sdXF4NUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwcG4MA0G
CSqGSIb3DQEBCwUAA4IBAQAO1+2r4+KNuUpqlLPDNWSZVtHmXrGDcj9Db7JxsR/I
45/vzkAzjzVUAlfSTTpXfW6x9zh11Ws2DcvAt6z3vht7Qyj+vDQYWxRy9dY12mEq
Z3OjdkLUJ58+YrDDyCXZACx9kiSzqAAAHWKNJ639HfkjkYFj5plgTNwvqRr0o46S
50W+Vcm2yWH315ru+mgd6rJcFQe+0NveWcpnDTa8KlQGlcIuAl4oIa3xkAUiNS6V
NNqCxPyT6WSyW016iFBSP5Mpsv490muP8vi3iE65hm4RfebIduzI5GLsSrU/poga
6DNnuDCuXd0hcSnOQr2j9EtBs61SFUa4RrVo6VpS3JhN
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:49 2025 by rpki-client on console.sobornost.net