Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/aBalb1rSCNwtnoM2xSZCx80C3Uc.roa
File: aBalb1rSCNwtnoM2xSZCx80C3Uc.roa (raw, json)
Hash identifier: oRZP7rQbO4H8kd2d7x3vgKaPTH85VyVw4JgPt5PdLq4=
Subject key identifier: 68:16:A5:6F:5A:D2:08:DC:2D:9E:83:36:C5:26:42:C7:CD:02:DD:47
Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial: 019522BD3F06E25586ECB204D5AFB4936C16
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/aBalb1rSCNwtnoM2xSZCx80C3Uc.roa
Signing time: Thu 20 Feb 2025 09:43:02 +0000
ROA not before: Thu 20 Feb 2025 09:43:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214472
IP address blocks: 176.65.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:22:bd:3f:06:e2:55:86:ec:b2:04:d5:af:b4:93:6c:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Validity
Not Before: Feb 20 09:43:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6816a56f5ad208dc2d9e8336c52642c7cd02dd47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e3:60:f4:b1:7b:f7:5d:d5:fc:36:16:a5:e8:
92:4a:51:41:4f:9d:ec:f3:db:86:ec:05:24:6b:fd:
3e:ee:04:5d:1f:84:cb:a9:30:1d:ef:e1:f1:0d:d5:
1f:97:2e:3b:7b:d8:df:c2:9b:9c:d8:0f:58:72:58:
59:5f:2a:c3:1e:0b:c0:76:77:98:58:b6:28:25:7a:
c9:65:69:c4:59:56:a3:a2:e8:06:15:16:d3:d8:3c:
d7:55:cc:a0:f0:8b:f2:61:72:52:8e:ba:b0:d6:0d:
d2:47:f6:eb:01:a7:fc:9b:ef:64:6b:e7:e4:53:f3:
9d:25:e5:fc:82:7c:34:dd:2f:a3:e9:fb:ef:47:8e:
8e:b2:c6:e3:ff:bd:85:ab:1d:0b:da:65:18:09:0a:
79:78:e4:2d:72:e7:84:d8:15:bc:97:29:30:7d:dc:
e2:f8:8a:e2:a4:66:2d:64:5f:e2:5f:81:d6:74:db:
41:35:26:ae:8e:32:57:85:85:a6:06:e4:7c:29:34:
bd:7c:ca:b9:77:23:51:e0:b1:19:21:90:16:58:14:
6b:5d:85:b8:9c:09:d6:68:5c:96:46:5a:3d:59:7d:
f8:9f:65:d8:a2:4b:6d:6e:ea:2b:36:88:03:24:5e:
7a:05:c1:4c:13:7a:e1:34:f5:05:3a:1a:ef:0d:b1:
0e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:16:A5:6F:5A:D2:08:DC:2D:9E:83:36:C5:26:42:C7:CD:02:DD:47
X509v3 Authority Key Identifier:
keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/aBalb1rSCNwtnoM2xSZCx80C3Uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.65.149.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:4d:b1:7d:a0:11:13:be:b5:0a:0a:46:6b:98:b2:e2:28:6d:
2f:33:eb:e5:f3:84:71:9f:32:c7:04:49:26:af:07:3a:38:e8:
06:b4:cb:ce:94:5f:77:90:2c:b0:d7:fb:98:91:f0:5f:ca:5b:
2c:bc:18:de:65:a3:d0:b6:73:3c:af:45:83:ca:33:12:be:9e:
22:65:4b:3d:2e:99:10:ec:30:9d:08:ab:aa:36:f5:63:91:5c:
43:85:19:96:7d:79:70:52:51:44:4c:aa:dd:17:ee:ec:91:91:
44:45:47:39:f4:55:73:59:03:4d:41:d6:f1:9c:65:a3:0a:5b:
15:fc:07:f6:73:6a:c0:5d:af:cd:e3:31:cd:b8:1b:09:7e:b0:
51:c9:2d:4c:a1:37:a3:4f:33:51:73:d0:64:d6:52:48:03:8f:
76:5c:55:ce:ae:75:45:5a:f5:cc:c7:f5:ea:f1:64:cd:6c:53:
fb:02:24:41:c8:f5:ee:1c:ae:8d:8d:7d:45:df:81:fc:ff:1d:
2c:ba:86:d6:80:08:26:fd:05:0c:0a:78:c9:ae:fc:f0:35:7c:
c3:45:6f:5e:76:ff:4c:f7:bc:df:18:3b:aa:b3:f8:a6:7f:9e:
c2:38:6a:db:21:a2:3a:65:4e:93:b4:5d:e5:9a:b5:00:96:19:
0a:d3:91:8e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUivT8G4lWG7LIE1a+0k2wWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYTY2ZjNjMGYyNTc3NGU2OTZkMmE0NjcyMzI3N2ViOTYx
MTI4YzMwHhcNMjUwMjIwMDk0MzAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODE2YTU2ZjVhZDIwOGRjMmQ5ZTgzMzZjNTI2NDJjN2NkMDJkZDQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+Ng9LF7913V/DYWpeiSSlFBT53s
89uG7AUka/0+7gRdH4TLqTAd7+HxDdUfly47e9jfwpuc2A9YclhZXyrDHgvAdneY
WLYoJXrJZWnEWVajougGFRbT2DzXVcyg8IvyYXJSjrqw1g3SR/brAaf8m+9ka+fk
U/OdJeX8gnw03S+j6fvvR46Ossbj/72Fqx0L2mUYCQp5eOQtcueE2BW8lykwfdzi
+IripGYtZF/iX4HWdNtBNSaujjJXhYWmBuR8KTS9fMq5dyNR4LEZIZAWWBRrXYW4
nAnWaFyWRlo9WX34n2XYokttbuorNogDJF56BcFME3rhNPUFOhrvDbEOeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGgWpW9a0gjcLZ6DNsUmQsfNAt1HMB8GA1UdIwQY
MBaAFEymbzwPJXdOaW0qRnIyd+uWESjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUt
MzE5YjBjODc0NDQwLzEvYUJhbGIxclNDTnd0bm9NMnhTWkN4ODBDM1VjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUtMzE5YjBjODc0NDQw
LzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsEGVMA0G
CSqGSIb3DQEBCwUAA4IBAQArTbF9oBETvrUKCkZrmLLiKG0vM+vl84RxnzLHBEkm
rwc6OOgGtMvOlF93kCyw1/uYkfBfylssvBjeZaPQtnM8r0WDyjMSvp4iZUs9LpkQ
7DCdCKuqNvVjkVxDhRmWfXlwUlFETKrdF+7skZFERUc59FVzWQNNQdbxnGWjClsV
/Af2c2rAXa/N4zHNuBsJfrBRyS1MoTejTzNRc9Bk1lJIA492XFXOrnVFWvXMx/Xq
8WTNbFP7AiRByPXuHK6NjX1F34H8/x0suobWgAgm/QUMCnjJrvzwNXzDRW9edv9M
97zfGDuqs/imf57COGrbIaI6ZU6TtF3lmrUAlhkK05GO
-----END CERTIFICATE-----
Generated at Sat Mar 8 04:47:35 2025 by rpki-client on console.sobornost.net