Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/51065b-904f-4ce3-8fe5-8ea2d14a642e/1/DdP_Bqbhgl16gdJsvkBhi1YcDjQ.roa
File: DdP_Bqbhgl16gdJsvkBhi1YcDjQ.roa (raw, json)
Hash identifier: I6Jh8sH5S9Q2lg3Ub1gkdbdEGtUo1NZqfvOrCbSIvmc=
Subject key identifier: 0D:D3:FF:06:A6:E1:82:5D:7A:81:D2:6C:BE:40:61:8B:56:1C:0E:34
Certificate issuer: /CN=2452de9370c20ef1ba4d7fe1bb018f3f6dfdc9ce
Certificate serial: 0194228D964D6921AE019A67CD4288059182
Authority key identifier: 24:52:DE:93:70:C2:0E:F1:BA:4D:7F:E1:BB:01:8F:3F:6D:FD:C9:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFLek3DCDvG6TX_huwGPP239yc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/51065b-904f-4ce3-8fe5-8ea2d14a642e/1/DdP_Bqbhgl16gdJsvkBhi1YcDjQ.roa
Signing time: Wed 01 Jan 2025 15:48:11 +0000
ROA not before: Wed 01 Jan 2025 15:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39930
IP address blocks: 195.95.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:96:4d:69:21:ae:01:9a:67:cd:42:88:05:91:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2452de9370c20ef1ba4d7fe1bb018f3f6dfdc9ce
Validity
Not Before: Jan 1 15:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0dd3ff06a6e1825d7a81d26cbe40618b561c0e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3f:3a:57:8c:c9:d2:a2:2e:7d:06:36:d7:66:
d3:b8:cb:bd:07:19:7e:d6:a5:dd:b1:9a:20:2a:c4:
24:14:fd:e1:37:3a:83:4d:0e:ad:d1:db:72:79:49:
18:91:85:e8:92:2c:95:84:bd:70:43:f1:33:bf:48:
95:ab:a0:24:9b:2f:8e:41:d7:88:ce:18:ba:36:41:
61:24:93:45:a1:98:43:ae:ca:84:00:61:3d:7c:b6:
99:b6:3c:d0:6e:1d:11:41:2d:53:fa:c5:5d:67:2e:
48:47:f2:bf:55:88:df:e7:1e:6e:37:95:f8:54:c7:
41:03:79:45:dd:b6:73:a1:4b:a5:9a:13:0e:7a:e6:
ad:30:3a:40:63:80:f6:77:c5:09:55:be:3f:0d:c6:
e8:2d:85:12:39:64:75:1b:ad:7e:ae:43:03:fe:72:
f6:c0:85:3b:02:99:e3:37:1c:2f:94:a7:dc:56:7b:
42:d8:5d:61:b5:a9:96:80:e8:a9:56:3e:8b:a6:6d:
d7:a4:21:4e:83:16:8d:13:3f:14:2d:15:a6:5c:ba:
ad:f0:bf:75:49:5b:b4:b2:c0:01:08:5d:9b:0e:c3:
cb:4f:c3:5d:f7:87:88:66:6e:85:bf:8c:d4:ab:68:
91:7e:49:1e:e4:2c:e2:51:61:7c:f6:32:32:05:8a:
bd:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:D3:FF:06:A6:E1:82:5D:7A:81:D2:6C:BE:40:61:8B:56:1C:0E:34
X509v3 Authority Key Identifier:
keyid:24:52:DE:93:70:C2:0E:F1:BA:4D:7F:E1:BB:01:8F:3F:6D:FD:C9:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFLek3DCDvG6TX_huwGPP239yc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/51065b-904f-4ce3-8fe5-8ea2d14a642e/1/DdP_Bqbhgl16gdJsvkBhi1YcDjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/51065b-904f-4ce3-8fe5-8ea2d14a642e/1/JFLek3DCDvG6TX_huwGPP239yc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.145.0/24
Signature Algorithm: sha256WithRSAEncryption
03:d7:af:23:3c:69:b6:f8:8f:f8:21:52:90:e4:63:3e:78:30:
01:44:e4:5d:f9:16:50:43:02:2d:fe:eb:39:74:f1:77:9c:bd:
20:86:29:3c:96:83:13:a2:ce:03:31:04:fe:84:50:c8:ea:ad:
05:78:f3:e6:72:3f:ad:ae:dc:7b:16:4c:3f:78:0e:46:b5:6a:
b1:88:41:f3:a9:b6:83:8e:0e:c1:05:26:4c:c0:f6:e0:ea:fa:
1e:ab:35:81:15:09:90:37:73:cc:37:c6:0b:17:f2:82:8a:4c:
72:b6:b9:88:0e:0a:13:e3:d4:3f:99:f5:86:4f:a1:38:30:13:
5c:d1:0a:16:c5:2b:86:d2:1c:58:84:47:c0:c0:12:d5:ae:51:
71:75:b9:ac:25:02:c1:f2:71:f5:a4:dc:25:4f:a8:a9:e5:89:
dd:99:66:a3:f5:06:5f:9e:89:7b:6d:6b:7e:61:e9:81:3d:ee:
b0:e1:b9:0b:69:38:bb:40:a7:51:9d:94:42:18:89:09:74:2c:
30:67:b3:90:ef:32:8e:43:67:08:8b:3e:32:15:3c:ff:21:6e:
e6:ba:a2:48:8a:dc:57:57:7c:2f:87:23:03:74:de:07:60:29:
e7:5e:62:db:1f:ae:08:36:8f:db:3d:0e:08:7d:d6:81:6c:1f:
3f:12:ff:5f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijZZNaSGuAZpnzUKIBZGCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0NTJkZTkzNzBjMjBlZjFiYTRkN2ZlMWJiMDE4ZjNmNmRm
ZGM5Y2UwHhcNMjUwMTAxMTU0ODExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZGQzZmYwNmE2ZTE4MjVkN2E4MWQyNmNiZTQwNjE4YjU2MWMwZTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4D86V4zJ0qIufQY212bTuMu9Bxl+
1qXdsZogKsQkFP3hNzqDTQ6t0dtyeUkYkYXokiyVhL1wQ/Ezv0iVq6Akmy+OQdeI
zhi6NkFhJJNFoZhDrsqEAGE9fLaZtjzQbh0RQS1T+sVdZy5IR/K/VYjf5x5uN5X4
VMdBA3lF3bZzoUulmhMOeuatMDpAY4D2d8UJVb4/DcboLYUSOWR1G61+rkMD/nL2
wIU7ApnjNxwvlKfcVntC2F1htamWgOipVj6Lpm3XpCFOgxaNEz8ULRWmXLqt8L91
SVu0ssABCF2bDsPLT8Nd94eIZm6Fv4zUq2iRfkke5CziUWF89jIyBYq9TwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA3T/wam4YJdeoHSbL5AYYtWHA40MB8GA1UdIwQY
MBaAFCRS3pNwwg7xuk1/4bsBjz9t/cnOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkZMZWszRENEdkc2VFhfaHV3R1BQMjM5eWM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi81MTA2NWItOTA0Zi00Y2UzLThmZTUt
OGVhMmQxNGE2NDJlLzEvRGRQX0JxYmhnbDE2Z2RKc3ZrQmhpMVljRGpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi81MTA2NWItOTA0Zi00Y2UzLThmZTUtOGVhMmQxNGE2NDJl
LzEvSkZMZWszRENEdkc2VFhfaHV3R1BQMjM5eWM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1+RMA0G
CSqGSIb3DQEBCwUAA4IBAQAD168jPGm2+I/4IVKQ5GM+eDABRORd+RZQQwIt/us5
dPF3nL0ghik8loMTos4DMQT+hFDI6q0FePPmcj+trtx7Fkw/eA5GtWqxiEHzqbaD
jg7BBSZMwPbg6voeqzWBFQmQN3PMN8YLF/KCikxytrmIDgoT49Q/mfWGT6E4MBNc
0QoWxSuG0hxYhEfAwBLVrlFxdbmsJQLB8nH1pNwlT6ip5YndmWaj9QZfnol7bWt+
YemBPe6w4bkLaTi7QKdRnZRCGIkJdCwwZ7OQ7zKOQ2cIiz4yFTz/IW7muqJIitxX
V3wvhyMDdN4HYCnnXmLbH64INo/bPQ4IfdaBbB8/Ev9f
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:10 2025 by rpki-client on console.sobornost.net