Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5e1be9-e4ea-4c84-a8b7-d0d476f41fd6/1/8cafwJu77pkBukQtIkYtwta4vzE.roa
File: 8cafwJu77pkBukQtIkYtwta4vzE.roa (raw, json)
Hash identifier: 5ZeO0GQQRhcOKBhez5TUCQIoMyl73wJ5RRHIFaIhJkM=
Subject key identifier: F1:C6:9F:C0:9B:BB:EE:99:01:BA:44:2D:22:46:2D:C2:D6:B8:BF:31
Certificate issuer: /CN=744dcb72e8cb478cfc4b25aeb1f03b406266375c
Certificate serial: 0194228D8F9A6AE406D490AF536E0EE186E5
Authority key identifier: 74:4D:CB:72:E8:CB:47:8C:FC:4B:25:AE:B1:F0:3B:40:62:66:37:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dE3LcujLR4z8SyWusfA7QGJmN1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5e1be9-e4ea-4c84-a8b7-d0d476f41fd6/1/8cafwJu77pkBukQtIkYtwta4vzE.roa
Signing time: Wed 01 Jan 2025 15:48:10 +0000
ROA not before: Wed 01 Jan 2025 15:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12350
IP address blocks: 193.246.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:8f:9a:6a:e4:06:d4:90:af:53:6e:0e:e1:86:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=744dcb72e8cb478cfc4b25aeb1f03b406266375c
Validity
Not Before: Jan 1 15:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1c69fc09bbbee9901ba442d22462dc2d6b8bf31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ea:c0:a4:6d:40:71:c8:9a:b2:0b:a8:ce:c4:
41:71:60:81:35:c1:70:44:41:c7:a8:aa:91:45:27:
0b:8f:3b:7b:93:54:7c:9e:b4:67:f2:1d:9d:91:37:
ae:ac:ac:c6:89:aa:24:57:5a:9b:a0:5a:9c:1f:f0:
2c:c5:43:42:87:4e:98:fc:00:4a:dd:60:30:b1:df:
96:a6:4c:14:79:12:eb:52:86:a9:f3:a0:49:11:42:
c9:6b:c2:eb:ad:d6:f9:62:ca:2e:4b:fa:46:c7:9e:
35:2e:bb:1c:2e:9f:ca:3b:4d:7e:fc:6e:11:3f:4a:
64:70:cd:96:44:2a:fc:fe:6f:27:e0:c9:03:f2:bc:
d9:6f:ae:de:71:4b:0f:87:6b:8a:57:e1:75:fc:de:
34:50:33:0c:99:f5:a8:e3:a4:4b:c0:5a:23:49:01:
42:28:0e:3b:a7:62:58:b1:8d:62:f4:59:7d:31:4d:
94:47:61:24:26:f5:c8:66:7f:ed:11:d8:42:9d:05:
85:df:39:5e:b0:4a:3c:30:42:a3:37:48:16:1b:30:
c1:91:e1:b1:6c:cf:fa:bd:9f:00:aa:f7:f3:5d:80:
c9:d0:1a:62:45:23:7f:41:ca:dc:cb:b7:a3:8f:14:
40:71:42:be:a6:92:15:7e:08:1b:ab:00:7b:1d:10:
f4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C6:9F:C0:9B:BB:EE:99:01:BA:44:2D:22:46:2D:C2:D6:B8:BF:31
X509v3 Authority Key Identifier:
keyid:74:4D:CB:72:E8:CB:47:8C:FC:4B:25:AE:B1:F0:3B:40:62:66:37:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dE3LcujLR4z8SyWusfA7QGJmN1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5e1be9-e4ea-4c84-a8b7-d0d476f41fd6/1/8cafwJu77pkBukQtIkYtwta4vzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5e1be9-e4ea-4c84-a8b7-d0d476f41fd6/1/dE3LcujLR4z8SyWusfA7QGJmN1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.207.0/24
Signature Algorithm: sha256WithRSAEncryption
82:60:11:39:99:61:e4:2a:be:33:24:2c:b6:35:3e:f1:74:9e:
e0:65:ce:78:90:bd:fb:83:7f:eb:64:21:14:8d:6f:9d:11:ba:
9a:38:4d:d9:24:09:96:a3:73:10:29:11:f7:2a:e6:d6:d3:10:
d4:dd:4e:c6:16:78:06:c9:42:f9:2d:80:11:27:b7:a6:92:86:
4d:e8:52:57:56:29:66:e3:6c:6a:4d:ce:cd:4a:95:02:e3:ed:
0f:24:c4:f6:ef:66:60:13:d2:27:f7:1a:ac:ce:7c:8f:31:96:
30:c2:09:60:a5:54:f1:79:40:21:06:1e:41:64:ed:45:51:eb:
0b:67:23:c9:70:0e:d3:8d:ee:bb:81:f3:fa:ae:a4:2a:a9:5c:
86:1a:01:45:a6:0b:f6:c7:d9:05:28:34:a0:d9:49:84:7b:d7:
77:7c:a1:c4:a3:a7:22:4d:30:56:5c:e0:42:1b:74:d1:af:05:
07:98:45:f9:df:22:6e:bf:4e:d6:08:5c:f5:aa:ed:53:3b:26:
66:e7:2d:7b:24:51:18:70:22:78:18:11:b4:4b:a2:8e:ee:d7:
16:12:0e:8f:c9:8b:88:66:46:27:97:bd:88:e7:d4:8b:19:58:
6d:b9:e7:e8:f7:6e:41:09:4c:be:5e:26:a4:ff:cd:7a:c2:21:
a5:ae:39:e5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijY+aauQG1JCvU24O4YblMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NGRjYjcyZThjYjQ3OGNmYzRiMjVhZWIxZjAzYjQwNjI2
NjM3NWMwHhcNMjUwMTAxMTU0ODEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMWM2OWZjMDliYmJlZTk5MDFiYTQ0MmQyMjQ2MmRjMmQ2YjhiZjMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+rApG1AcciasguozsRBcWCBNcFw
REHHqKqRRScLjzt7k1R8nrRn8h2dkTeurKzGiaokV1qboFqcH/AsxUNCh06Y/ABK
3WAwsd+WpkwUeRLrUoap86BJEULJa8Lrrdb5YsouS/pGx541LrscLp/KO01+/G4R
P0pkcM2WRCr8/m8n4MkD8rzZb67ecUsPh2uKV+F1/N40UDMMmfWo46RLwFojSQFC
KA47p2JYsY1i9Fl9MU2UR2EkJvXIZn/tEdhCnQWF3zlesEo8MEKjN0gWGzDBkeGx
bM/6vZ8AqvfzXYDJ0BpiRSN/Qcrcy7ejjxRAcUK+ppIVfggbqwB7HRD0LwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPHGn8Cbu+6ZAbpELSJGLcLWuL8xMB8GA1UdIwQY
MBaAFHRNy3Loy0eM/EslrrHwO0BiZjdcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEUzTGN1akxSNHo4U3lXdXNmQTdRR0ptTjF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81ZTFiZTktZTRlYS00Yzg0LWE4Yjct
ZDBkNDc2ZjQxZmQ2LzEvOGNhZndKdTc3cGtCdWtRdElrWXR3dGE0dnpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi81ZTFiZTktZTRlYS00Yzg0LWE4YjctZDBkNDc2ZjQxZmQ2
LzEvZEUzTGN1akxSNHo4U3lXdXNmQTdRR0ptTjF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwfbPMA0G
CSqGSIb3DQEBCwUAA4IBAQCCYBE5mWHkKr4zJCy2NT7xdJ7gZc54kL37g3/rZCEU
jW+dEbqaOE3ZJAmWo3MQKRH3KubW0xDU3U7GFngGyUL5LYARJ7emkoZN6FJXVilm
42xqTc7NSpUC4+0PJMT272ZgE9In9xqsznyPMZYwwglgpVTxeUAhBh5BZO1FUesL
ZyPJcA7Tje67gfP6rqQqqVyGGgFFpgv2x9kFKDSg2UmEe9d3fKHEo6ciTTBWXOBC
G3TRrwUHmEX53yJuv07WCFz1qu1TOyZm5y17JFEYcCJ4GBG0S6KO7tcWEg6PyYuI
ZkYnl72I59SLGVhtuefo925BCUy+Xiak/816wiGlrjnl
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:52 2025 by rpki-client on console.sobornost.net