Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/3921b7-444c-4fef-8b77-c3c471afeed6/1/1vBMBG0o3kK0G5AO6rHT6QfuiQU.roa
File: 1vBMBG0o3kK0G5AO6rHT6QfuiQU.roa (raw, json)
Hash identifier: x5mwdvHMtr0Nboo6qic2tIhAY+Z6b4JhzzXvBCN4doU=
Subject key identifier: D6:F0:4C:04:6D:28:DE:42:B4:1B:90:0E:EA:B1:D3:E9:07:EE:89:05
Certificate issuer: /CN=b2e58cc2c45e5a73f48494315558259f2fc506d7
Certificate serial: 019425FCC30691FE18D03C20C29BE33713D1
Authority key identifier: B2:E5:8C:C2:C4:5E:5A:73:F4:84:94:31:55:58:25:9F:2F:C5:06:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suWMwsReWnP0hJQxVVglny_FBtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/3921b7-444c-4fef-8b77-c3c471afeed6/1/1vBMBG0o3kK0G5AO6rHT6QfuiQU.roa
Signing time: Thu 02 Jan 2025 07:48:29 +0000
ROA not before: Thu 02 Jan 2025 07:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34650
IP address blocks: 193.33.98.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:c3:06:91:fe:18:d0:3c:20:c2:9b:e3:37:13:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e58cc2c45e5a73f48494315558259f2fc506d7
Validity
Not Before: Jan 2 07:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d6f04c046d28de42b41b900eeab1d3e907ee8905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:13:33:53:64:4e:6a:e5:e9:9f:00:f4:3d:20:
8f:5a:be:f6:c4:4b:08:7f:2b:3b:b4:e9:45:16:19:
8c:d2:15:5a:df:d4:e5:05:a4:50:72:8f:71:41:2a:
01:8b:44:62:d3:0d:13:8f:18:cd:9e:21:15:4d:53:
22:4f:ff:b3:d4:00:d0:31:7b:2e:d0:0f:7e:4b:66:
52:1a:a1:e7:8b:37:ca:ba:a6:2c:68:11:86:bf:90:
02:e6:28:3e:69:c9:88:71:e8:ae:75:96:95:a3:d9:
fb:5d:56:76:1c:63:f0:c6:75:6d:52:89:f4:06:b6:
5b:9f:55:ce:a8:66:51:85:b7:72:f3:1a:2d:b4:2c:
fc:07:2a:cc:51:3c:ba:69:a2:27:39:ea:fc:4a:81:
26:0d:5a:ae:b4:d3:b3:70:7a:a1:b2:54:75:80:fa:
c0:96:da:51:da:24:2c:63:0d:4f:09:de:42:00:26:
e0:17:79:26:9b:87:3d:64:18:f7:c2:d1:93:f7:29:
88:99:43:c3:a3:49:de:f4:8e:a2:7f:1e:42:b9:5d:
6a:d0:a4:82:a8:d4:13:12:3a:bf:fa:5f:51:0e:b4:
c8:af:21:ca:f0:88:15:b2:47:00:08:d7:58:d3:30:
45:84:67:cf:ff:64:48:37:f1:f2:a0:c5:e7:97:08:
ec:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F0:4C:04:6D:28:DE:42:B4:1B:90:0E:EA:B1:D3:E9:07:EE:89:05
X509v3 Authority Key Identifier:
keyid:B2:E5:8C:C2:C4:5E:5A:73:F4:84:94:31:55:58:25:9F:2F:C5:06:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suWMwsReWnP0hJQxVVglny_FBtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/3921b7-444c-4fef-8b77-c3c471afeed6/1/1vBMBG0o3kK0G5AO6rHT6QfuiQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/3921b7-444c-4fef-8b77-c3c471afeed6/1/suWMwsReWnP0hJQxVVglny_FBtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.98.0/23
Signature Algorithm: sha256WithRSAEncryption
83:ab:e7:7e:d3:5d:67:3f:be:e1:5f:f3:dd:8c:6a:4b:0a:c1:
04:b5:7b:2e:b8:98:94:dc:47:3d:c3:ef:25:6c:98:5f:3b:34:
24:a8:0f:dc:c4:77:af:29:6b:9b:06:ee:8e:45:28:b8:12:a3:
c7:a9:db:e6:fe:68:66:1a:21:bf:3c:09:e3:f0:e7:74:94:7d:
83:87:be:2b:58:5a:ca:79:5a:db:6f:d1:3a:e2:2f:df:59:5f:
8c:92:2f:aa:b4:57:bf:b5:25:01:52:d5:19:f7:2e:91:4a:1b:
51:ae:17:de:c0:18:4c:67:7f:82:4b:88:bc:8e:42:ac:e1:a4:
b0:c8:2a:75:c0:d9:0d:c4:be:c1:de:c8:c0:76:4e:67:50:19:
bf:8f:55:19:7e:37:77:64:8a:ba:34:d8:1a:68:45:a4:83:af:
ca:b2:a0:e7:da:5c:d9:b1:1e:8e:67:b9:16:74:f3:f1:6f:23:
f6:07:3c:d8:e5:79:73:0b:79:57:a5:53:49:98:07:45:7e:fa:
52:1a:98:9f:f3:d8:aa:3e:5b:3f:77:52:b2:38:7d:c9:ce:01:
80:a9:2f:2e:6e:97:fe:27:8f:66:d8:66:8c:06:71:88:52:b5:
7e:0b:ba:82:7b:51:5e:7e:c3:22:b8:48:11:42:a1:c6:40:56:
40:8b:7d:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/MMGkf4Y0DwgwpvjNxPRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZTU4Y2MyYzQ1ZTVhNzNmNDg0OTQzMTU1NTgyNTlmMmZj
NTA2ZDcwHhcNMjUwMTAyMDc0ODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNmYwNGMwNDZkMjhkZTQyYjQxYjkwMGVlYWIxZDNlOTA3ZWU4OTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4BMzU2ROauXpnwD0PSCPWr72xEsI
fys7tOlFFhmM0hVa39TlBaRQco9xQSoBi0Ri0w0TjxjNniEVTVMiT/+z1ADQMXsu
0A9+S2ZSGqHnizfKuqYsaBGGv5AC5ig+acmIceiudZaVo9n7XVZ2HGPwxnVtUon0
BrZbn1XOqGZRhbdy8xottCz8ByrMUTy6aaInOer8SoEmDVqutNOzcHqhslR1gPrA
ltpR2iQsYw1PCd5CACbgF3kmm4c9ZBj3wtGT9ymImUPDo0ne9I6ifx5CuV1q0KSC
qNQTEjq/+l9RDrTIryHK8IgVskcACNdY0zBFhGfP/2RIN/HyoMXnlwjsJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNbwTARtKN5CtBuQDuqx0+kH7okFMB8GA1UdIwQY
MBaAFLLljMLEXlpz9ISUMVVYJZ8vxQbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3VXTXdzUmVXblAwaEpReFZWZ2xueV9GQnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8zOTIxYjctNDQ0Yy00ZmVmLThiNzct
YzNjNDcxYWZlZWQ2LzEvMXZCTUJHMG8za0swRzVBTzZySFQ2UWZ1aVFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC8zOTIxYjctNDQ0Yy00ZmVmLThiNzctYzNjNDcxYWZlZWQ2
LzEvc3VXTXdzUmVXblAwaEpReFZWZ2xueV9GQnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwSFiMA0G
CSqGSIb3DQEBCwUAA4IBAQCDq+d+011nP77hX/PdjGpLCsEEtXsuuJiU3Ec9w+8l
bJhfOzQkqA/cxHevKWubBu6ORSi4EqPHqdvm/mhmGiG/PAnj8Od0lH2Dh74rWFrK
eVrbb9E64i/fWV+Mki+qtFe/tSUBUtUZ9y6RShtRrhfewBhMZ3+CS4i8jkKs4aSw
yCp1wNkNxL7B3sjAdk5nUBm/j1UZfjd3ZIq6NNgaaEWkg6/KsqDn2lzZsR6OZ7kW
dPPxbyP2BzzY5XlzC3lXpVNJmAdFfvpSGpif89iqPls/d1KyOH3JzgGAqS8ubpf+
J49m2GaMBnGIUrV+C7qCe1FefsMiuEgRQqHGQFZAi30o
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:22 2025 by rpki-client on console.sobornost.net