Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b597c4-6a32-4008-b2ee-2da625eb7242/1/Y1KfRgbBfVzefGdkb0Fwgsciahg.roa
File: Y1KfRgbBfVzefGdkb0Fwgsciahg.roa (raw, json)
Hash identifier: aNRmz1hoVc6DWpXca8uL7+cZ3Jjgl7p4/PhhQMng11U=
Subject key identifier: 63:52:9F:46:06:C1:7D:5C:DE:7C:67:64:6F:41:70:82:C7:22:6A:18
Certificate issuer: /CN=0024b1f1359110bff991e9ac6f51469fdcb487af
Certificate serial: 0194214401BBAD5E9B1A5AFBEC5E7E58C4FB
Authority key identifier: 00:24:B1:F1:35:91:10:BF:F9:91:E9:AC:6F:51:46:9F:DC:B4:87:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACSx8TWREL_5kemsb1FGn9y0h68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b597c4-6a32-4008-b2ee-2da625eb7242/1/Y1KfRgbBfVzefGdkb0Fwgsciahg.roa
Signing time: Wed 01 Jan 2025 09:48:12 +0000
ROA not before: Wed 01 Jan 2025 09:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215919
IP address blocks: 195.210.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:01:bb:ad:5e:9b:1a:5a:fb:ec:5e:7e:58:c4:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0024b1f1359110bff991e9ac6f51469fdcb487af
Validity
Not Before: Jan 1 09:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63529f4606c17d5cde7c67646f417082c7226a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4b:b1:30:65:c8:7a:61:4b:0b:52:c5:ff:24:
03:a9:a3:cd:12:ec:91:c1:ba:1e:ab:50:ce:64:3b:
bd:fe:9d:37:df:0f:90:7f:1b:f8:10:3b:ca:ae:19:
bc:5b:bc:9e:73:d8:82:82:f6:de:1b:d3:78:1d:c9:
81:fe:71:2d:a6:5b:c1:10:5a:ef:6f:7a:35:2b:4f:
1d:c2:d2:b2:1e:20:13:db:95:2e:ad:bc:be:1d:b1:
be:db:c9:81:58:88:b9:a7:71:30:58:8c:55:1d:67:
41:6a:77:dd:a7:ae:77:6a:e6:f5:b8:ec:bf:25:84:
c4:de:84:02:a5:0e:4f:7a:7b:fe:a2:75:aa:93:a5:
17:78:44:12:2d:79:53:fc:03:20:75:4c:b5:0a:ff:
28:e0:48:f0:e9:f0:ce:4b:70:28:66:46:52:79:ff:
01:1f:7d:e5:f9:30:77:dc:f7:0b:e0:bb:ea:4d:89:
6c:e8:ab:72:3d:e1:cd:c2:46:72:f9:5e:d8:60:05:
0d:2f:01:01:db:01:d1:4b:76:18:0f:4d:95:72:fe:
3a:d2:21:8f:75:8e:e5:3f:c7:a1:7b:56:51:10:0c:
f1:f5:91:2d:5c:fe:42:42:a4:3f:d0:a5:24:7f:67:
bf:01:8a:8a:d6:ce:6a:88:83:a3:58:2b:9a:ba:54:
05:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:52:9F:46:06:C1:7D:5C:DE:7C:67:64:6F:41:70:82:C7:22:6A:18
X509v3 Authority Key Identifier:
keyid:00:24:B1:F1:35:91:10:BF:F9:91:E9:AC:6F:51:46:9F:DC:B4:87:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACSx8TWREL_5kemsb1FGn9y0h68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b597c4-6a32-4008-b2ee-2da625eb7242/1/Y1KfRgbBfVzefGdkb0Fwgsciahg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b597c4-6a32-4008-b2ee-2da625eb7242/1/ACSx8TWREL_5kemsb1FGn9y0h68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.210.32.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:53:1d:a2:59:99:3d:7c:d2:3d:74:d8:a4:79:ac:c0:47:dc:
6b:9e:f3:91:bf:03:c6:7e:4b:20:ed:63:65:75:a7:87:82:f1:
d4:be:b0:ec:d7:fb:f7:76:54:12:43:63:9e:17:97:80:a8:9f:
9f:30:d8:b2:92:06:c5:2e:0f:8b:a9:6c:6d:0a:4b:e0:a8:ca:
fb:11:32:4e:d4:97:a5:e9:8d:67:ce:c6:5d:80:dd:82:9b:c1:
79:bf:3e:7e:32:77:e5:8b:39:ab:bb:18:3b:74:4c:e2:39:ef:
72:1a:d1:4d:b9:b0:99:3c:a1:ab:5f:74:5b:a9:61:0d:13:6e:
82:6f:32:21:fa:89:1b:0b:33:0a:09:02:4f:dc:e5:29:fb:e2:
cf:d3:e9:af:23:91:f9:97:97:95:e8:15:60:30:4f:80:70:f3:
08:14:69:8c:16:7b:98:79:e8:b8:8d:a2:19:65:79:01:0b:90:
8c:99:fb:8b:01:3c:c2:a8:5c:a8:82:6d:f0:47:3f:8c:e7:33:
90:30:ea:7d:4b:e3:6e:3d:c4:54:2d:01:e8:6b:d5:c4:52:56:
99:99:3d:28:44:0d:79:68:fd:72:b6:b8:d4:64:19:e0:f5:ee:
fb:a3:d0:ac:b8:4d:3c:98:da:72:a0:35:f8:f6:d7:8e:06:c1:
4d:22:98:a4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhRAG7rV6bGlr77F5+WMT7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMjRiMWYxMzU5MTEwYmZmOTkxZTlhYzZmNTE0NjlmZGNi
NDg3YWYwHhcNMjUwMTAxMDk0ODEyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzUyOWY0NjA2YzE3ZDVjZGU3YzY3NjQ2ZjQxNzA4MmM3MjI2YTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0uxMGXIemFLC1LF/yQDqaPNEuyR
wboeq1DOZDu9/p033w+Qfxv4EDvKrhm8W7yec9iCgvbeG9N4HcmB/nEtplvBEFrv
b3o1K08dwtKyHiAT25Uurby+HbG+28mBWIi5p3EwWIxVHWdBanfdp653aub1uOy/
JYTE3oQCpQ5Penv+onWqk6UXeEQSLXlT/AMgdUy1Cv8o4Ejw6fDOS3AoZkZSef8B
H33l+TB33PcL4LvqTYls6KtyPeHNwkZy+V7YYAUNLwEB2wHRS3YYD02Vcv460iGP
dY7lP8ehe1ZREAzx9ZEtXP5CQqQ/0KUkf2e/AYqK1s5qiIOjWCuaulQFEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGNSn0YGwX1c3nxnZG9BcILHImoYMB8GA1UdIwQY
MBaAFAAksfE1kRC/+ZHprG9RRp/ctIevMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUNTeDhUV1JFTF81a2Vtc2IxRkduOXkwaDY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9iNTk3YzQtNmEzMi00MDA4LWIyZWUt
MmRhNjI1ZWI3MjQyLzEvWTFLZlJnYkJmVnplZkdka2IwRndnc2NpYWhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9iNTk3YzQtNmEzMi00MDA4LWIyZWUtMmRhNjI1ZWI3MjQy
LzEvQUNTeDhUV1JFTF81a2Vtc2IxRkduOXkwaDY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9IgMA0G
CSqGSIb3DQEBCwUAA4IBAQAvUx2iWZk9fNI9dNikeazAR9xrnvORvwPGfksg7WNl
daeHgvHUvrDs1/v3dlQSQ2OeF5eAqJ+fMNiykgbFLg+LqWxtCkvgqMr7ETJO1Jel
6Y1nzsZdgN2Cm8F5vz5+Mnflizmruxg7dEziOe9yGtFNubCZPKGrX3RbqWENE26C
bzIh+okbCzMKCQJP3OUp++LP0+mvI5H5l5eV6BVgME+AcPMIFGmMFnuYeei4jaIZ
ZXkBC5CMmfuLATzCqFyogm3wRz+M5zOQMOp9S+NuPcRULQHoa9XEUlaZmT0oRA15
aP1ytrjUZBng9e77o9CsuE08mNpyoDX49teOBsFNIpik
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:06 2025 by rpki-client on console.sobornost.net