Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/706837-d55d-432d-b0a4-b0814007528f/1/PiONgyQtYCxtAKel6AwlToYS7WY.roa
File: PiONgyQtYCxtAKel6AwlToYS7WY.roa (raw, json)
Hash identifier: GhuVBG356WKiZheC0jkKfbw1tCMHk61qHlrUSlnDnIk=
Subject key identifier: 3E:23:8D:83:24:2D:60:2C:6D:00:A7:A5:E8:0C:25:4E:86:12:ED:66
Certificate issuer: /CN=3bbe44355e06faadbeb19455adc316d9b9f0f10e
Certificate serial: 019420686E860EC1E12E06F93F3F2E879875
Authority key identifier: 3B:BE:44:35:5E:06:FA:AD:BE:B1:94:55:AD:C3:16:D9:B9:F0:F1:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O75ENV4G-q2-sZRVrcMW2bnw8Q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/706837-d55d-432d-b0a4-b0814007528f/1/PiONgyQtYCxtAKel6AwlToYS7WY.roa
Signing time: Wed 01 Jan 2025 05:48:22 +0000
ROA not before: Wed 01 Jan 2025 05:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28892
IP address blocks: 195.245.209.0/24 maxlen: 24
2001:67c:28b8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:6e:86:0e:c1:e1:2e:06:f9:3f:3f:2e:87:98:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bbe44355e06faadbeb19455adc316d9b9f0f10e
Validity
Not Before: Jan 1 05:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3e238d83242d602c6d00a7a5e80c254e8612ed66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:96:d9:27:93:12:1e:77:84:ec:56:01:96:f9:
79:18:06:07:cd:2c:85:8c:3b:53:9d:13:9d:8f:72:
4e:b8:80:6c:48:e1:c2:09:73:62:d7:37:aa:b4:a3:
12:f6:58:a2:2f:15:dd:5c:96:59:57:0f:69:33:59:
a5:68:d4:18:94:59:05:b9:62:a1:86:55:9e:fe:92:
9d:76:36:36:04:4e:16:44:04:13:e2:d1:7f:14:ec:
63:5a:b8:2d:01:7d:c0:fc:65:84:ee:fe:b3:c9:a8:
6f:db:b8:c0:0c:49:1a:41:e9:10:43:f9:53:f4:68:
72:01:46:6f:a6:e8:6e:92:ed:ef:8e:50:95:3c:6c:
15:c1:36:ba:0f:26:75:51:1f:3f:80:c3:b4:67:d1:
10:fa:ea:b3:2e:86:0b:5a:1d:8d:3b:a2:6a:5c:0b:
0b:f4:62:33:99:d9:7e:5b:49:1e:4c:34:20:b4:8f:
47:2f:d7:1b:2e:58:b2:4c:ca:ef:6f:cf:13:22:c9:
90:3c:c9:e6:06:c6:78:11:53:01:5f:99:99:84:cb:
06:eb:90:34:8e:3c:a4:6f:22:30:ee:cc:73:8d:4b:
05:01:48:70:41:50:c6:9e:77:b4:16:23:39:8f:0c:
df:89:53:3b:4b:b1:ad:4c:df:78:af:7d:c9:a0:6e:
16:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:23:8D:83:24:2D:60:2C:6D:00:A7:A5:E8:0C:25:4E:86:12:ED:66
X509v3 Authority Key Identifier:
keyid:3B:BE:44:35:5E:06:FA:AD:BE:B1:94:55:AD:C3:16:D9:B9:F0:F1:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O75ENV4G-q2-sZRVrcMW2bnw8Q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/706837-d55d-432d-b0a4-b0814007528f/1/PiONgyQtYCxtAKel6AwlToYS7WY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/706837-d55d-432d-b0a4-b0814007528f/1/O75ENV4G-q2-sZRVrcMW2bnw8Q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.209.0/24
IPv6:
2001:67c:28b8::/48
Signature Algorithm: sha256WithRSAEncryption
81:ce:b6:eb:e3:68:76:06:42:16:32:e6:17:df:22:c4:9f:92:
4b:49:42:ec:0f:4c:0f:f9:ca:86:23:16:10:43:ce:df:22:ef:
1d:f6:32:a5:49:c4:2e:2a:7e:d2:15:8d:5b:aa:bf:4c:ff:5f:
4a:bf:cb:c0:cc:a5:37:8f:bb:81:e9:73:ae:3a:2a:79:02:63:
35:c9:00:b5:25:58:5f:55:95:7a:1d:cf:f1:2e:d9:b0:e5:9d:
8b:69:54:e9:c7:54:0e:02:20:1f:0f:a5:e8:8e:bb:6e:38:3e:
b7:ce:ff:1d:6e:b1:0e:d5:4d:a4:38:2d:50:d4:d9:20:7c:70:
93:dd:b8:18:82:78:c6:48:17:85:86:75:ee:54:e6:54:4f:2a:
47:c9:38:8f:91:e2:7b:2b:52:84:6f:92:8c:5e:26:ac:6a:85:
f4:6f:3c:bf:83:30:ae:e9:f9:2e:be:4c:0d:9d:ab:4a:0d:92:
00:c9:19:9b:c7:df:7a:ca:a6:be:60:e4:2e:af:d6:c2:eb:d3:
5b:6c:65:63:87:0e:6a:5f:25:c8:c8:eb:22:b5:8f:61:1a:5b:
8d:32:ec:d5:ff:2e:e5:50:fe:c9:43:94:19:ef:d7:8d:fb:14:
53:ff:64:32:ea:ed:f0:b1:6f:7e:14:0e:ac:ca:1f:6c:2c:9f:
70:f8:2f:44
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQgaG6GDsHhLgb5Pz8uh5h1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiYmU0NDM1NWUwNmZhYWRiZWIxOTQ1NWFkYzMxNmQ5Yjlm
MGYxMGUwHhcNMjUwMTAxMDU0ODIyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTIzOGQ4MzI0MmQ2MDJjNmQwMGE3YTVlODBjMjU0ZTg2MTJlZDY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5bZJ5MSHneE7FYBlvl5GAYHzSyF
jDtTnROdj3JOuIBsSOHCCXNi1zeqtKMS9liiLxXdXJZZVw9pM1mlaNQYlFkFuWKh
hlWe/pKddjY2BE4WRAQT4tF/FOxjWrgtAX3A/GWE7v6zyahv27jADEkaQekQQ/lT
9GhyAUZvpuhuku3vjlCVPGwVwTa6DyZ1UR8/gMO0Z9EQ+uqzLoYLWh2NO6JqXAsL
9GIzmdl+W0keTDQgtI9HL9cbLliyTMrvb88TIsmQPMnmBsZ4EVMBX5mZhMsG65A0
jjykbyIw7sxzjUsFAUhwQVDGnne0FiM5jwzfiVM7S7GtTN94r33JoG4W3wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFD4jjYMkLWAsbQCnpegMJU6GEu1mMB8GA1UdIwQY
MBaAFDu+RDVeBvqtvrGUVa3DFtm58PEOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzc1RU5WNEctcTItc1pSVnJjTVcyYm53OFE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS83MDY4MzctZDU1ZC00MzJkLWIwYTQt
YjA4MTQwMDc1MjhmLzEvUGlPTmd5UXRZQ3h0QUtlbDZBd2xUb1lTN1dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS83MDY4MzctZDU1ZC00MzJkLWIwYTQtYjA4MTQwMDc1Mjhm
LzEvTzc1RU5WNEctcTItc1pSVnJjTVcyYm53OFE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAw/XRMA8E
AgACMAkDBwAgAQZ8KLgwDQYJKoZIhvcNAQELBQADggEBAIHOtuvjaHYGQhYy5hff
IsSfkktJQuwPTA/5yoYjFhBDzt8i7x32MqVJxC4qftIVjVuqv0z/X0q/y8DMpTeP
u4Hpc646KnkCYzXJALUlWF9VlXodz/Eu2bDlnYtpVOnHVA4CIB8PpeiOu244PrfO
/x1usQ7VTaQ4LVDU2SB8cJPduBiCeMZIF4WGde5U5lRPKkfJOI+R4nsrUoRvkoxe
JqxqhfRvPL+DMK7p+S6+TA2dq0oNkgDJGZvH33rKpr5g5C6v1sLr01tsZWOHDmpf
JcjI6yK1j2EaW40y7NX/LuVQ/slDlBnv1437FFP/ZDLq7fCxb34UDqzKH2wsn3D4
L0Q=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:08 2025 by rpki-client on console.sobornost.net