Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/26f44a-ae53-4727-9075-437a346b22f7/1/xqtuxbgfgKOQAXDLHhW5kYSASLM.roa
File: xqtuxbgfgKOQAXDLHhW5kYSASLM.roa (raw, json)
Hash identifier: Akx0xbIbgUFrWIKc+N3GbCju1aCG4ckavEzXznoEvO4=
Subject key identifier: C6:AB:6E:C5:B8:1F:80:A3:90:01:70:CB:1E:15:B9:91:84:80:48:B3
Certificate issuer: /CN=73ff4b1cbeaf9dd75d3b5ef3ee9a75d5799f7280
Certificate serial: 01942143F470338597F0DFDF907F1E89E3B2
Authority key identifier: 73:FF:4B:1C:BE:AF:9D:D7:5D:3B:5E:F3:EE:9A:75:D5:79:9F:72:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_9LHL6vndddO17z7pp11XmfcoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/26f44a-ae53-4727-9075-437a346b22f7/1/xqtuxbgfgKOQAXDLHhW5kYSASLM.roa
Signing time: Wed 01 Jan 2025 09:48:09 +0000
ROA not before: Wed 01 Jan 2025 09:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12350
IP address blocks: 185.242.60.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:f4:70:33:85:97:f0:df:df:90:7f:1e:89:e3:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73ff4b1cbeaf9dd75d3b5ef3ee9a75d5799f7280
Validity
Not Before: Jan 1 09:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c6ab6ec5b81f80a3900170cb1e15b991848048b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3a:dc:bb:97:57:0b:55:ab:67:81:e7:49:cf:
3a:d2:20:a2:46:bd:6a:6b:c2:8c:85:07:87:76:04:
76:d9:22:2e:9b:5c:f8:bf:4e:e9:f8:5e:8c:51:bb:
5f:9e:f1:31:b6:e2:ef:0a:6a:19:1c:cf:f1:de:b9:
ba:d3:71:d3:2b:de:11:ab:43:59:6f:ee:67:42:d1:
53:e3:41:c5:54:02:58:26:a2:e6:66:20:72:f4:e2:
fb:01:9f:2f:6d:32:4a:95:70:88:17:7b:5e:5f:41:
25:09:b3:01:91:35:48:47:05:d0:d3:56:8b:3a:15:
6b:ee:08:5e:cf:32:58:ee:8d:e7:7c:e9:2a:49:80:
6a:52:9f:40:0c:04:03:2d:60:b2:1b:95:6a:26:ad:
16:76:37:a7:dd:d9:74:ce:ad:b1:96:d5:13:a1:26:
a2:06:ed:06:37:46:08:7c:42:96:2c:12:74:36:1b:
95:6c:75:fb:4f:54:42:38:ee:2d:40:c6:31:ca:2d:
bb:59:ca:94:f2:32:e2:30:22:f3:c5:0b:14:21:8e:
b0:57:fa:a5:76:d3:c3:f8:80:3a:08:3a:1f:b1:0f:
1c:74:ce:d8:fb:50:60:67:0f:b5:9a:a0:e1:df:d1:
65:39:5b:35:f3:09:76:a2:a1:86:22:f2:79:a0:e4:
7e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:AB:6E:C5:B8:1F:80:A3:90:01:70:CB:1E:15:B9:91:84:80:48:B3
X509v3 Authority Key Identifier:
keyid:73:FF:4B:1C:BE:AF:9D:D7:5D:3B:5E:F3:EE:9A:75:D5:79:9F:72:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_9LHL6vndddO17z7pp11XmfcoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/26f44a-ae53-4727-9075-437a346b22f7/1/xqtuxbgfgKOQAXDLHhW5kYSASLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/26f44a-ae53-4727-9075-437a346b22f7/1/c_9LHL6vndddO17z7pp11XmfcoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.60.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:f2:04:16:35:1d:0d:53:e4:69:6b:69:72:a2:d7:e8:28:d5:
9f:b7:b8:52:00:52:4e:45:fe:9d:eb:54:d0:c5:9b:65:ec:67:
88:db:e5:d6:e1:0e:2e:9f:c3:37:53:e9:bc:f0:3b:43:20:89:
82:04:59:41:ae:23:9c:19:45:cd:e0:c8:24:d4:d8:4a:b2:eb:
58:3f:8d:6f:d0:78:29:9b:10:b4:15:03:e7:ac:c5:eb:eb:df:
fa:3e:d3:f7:91:2e:55:8d:7f:a9:4a:c5:2b:ad:17:e0:21:c5:
f7:01:0a:9b:01:d3:ba:d5:99:b6:07:3a:c7:40:cd:65:3c:20:
b3:25:18:b5:0b:52:e3:71:0d:86:8d:4d:ad:44:a2:9a:7b:8a:
97:cc:c8:63:75:97:b3:46:4c:f6:ac:60:8a:60:2e:ba:69:61:
e7:81:98:f9:1c:26:39:d5:40:8d:d1:fb:e3:91:73:a9:ad:e5:
f9:7f:80:a5:bb:a4:eb:e1:04:6f:79:5e:59:51:fc:96:14:e0:
e1:aa:72:c6:1e:8d:4c:c5:76:7b:42:41:62:47:a6:b8:6d:c4:
20:2c:48:d4:d9:14:80:8e:55:de:27:f8:93:bf:46:e2:36:6b:
da:d0:77:44:3a:04:8d:ca:71:89:d0:55:46:0a:d7:ec:73:50:
6b:c3:34:aa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhQ/RwM4WX8N/fkH8eieOyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczZmY0YjFjYmVhZjlkZDc1ZDNiNWVmM2VlOWE3NWQ1Nzk5
ZjcyODAwHhcNMjUwMTAxMDk0ODA5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmFiNmVjNWI4MWY4MGEzOTAwMTcwY2IxZTE1Yjk5MTg0ODA0OGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDrcu5dXC1WrZ4HnSc860iCiRr1q
a8KMhQeHdgR22SIum1z4v07p+F6MUbtfnvExtuLvCmoZHM/x3rm603HTK94Rq0NZ
b+5nQtFT40HFVAJYJqLmZiBy9OL7AZ8vbTJKlXCIF3teX0ElCbMBkTVIRwXQ01aL
OhVr7ghezzJY7o3nfOkqSYBqUp9ADAQDLWCyG5VqJq0Wdjen3dl0zq2xltUToSai
Bu0GN0YIfEKWLBJ0NhuVbHX7T1RCOO4tQMYxyi27WcqU8jLiMCLzxQsUIY6wV/ql
dtPD+IA6CDofsQ8cdM7Y+1BgZw+1mqDh39FlOVs18wl2oqGGIvJ5oOR+FwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMarbsW4H4CjkAFwyx4VuZGEgEizMB8GA1UdIwQY
MBaAFHP/Sxy+r53XXTte8+6addV5n3KAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY185TEhMNnZuZGRkTzE3ejdwcDExWG1mY29BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yNmY0NGEtYWU1My00NzI3LTkwNzUt
NDM3YTM0NmIyMmY3LzEveHF0dXhiZ2ZnS09RQVhETEhoVzVrWVNBU0xNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8yNmY0NGEtYWU1My00NzI3LTkwNzUtNDM3YTM0NmIyMmY3
LzEvY185TEhMNnZuZGRkTzE3ejdwcDExWG1mY29BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBufI8MA0G
CSqGSIb3DQEBCwUAA4IBAQBc8gQWNR0NU+Rpa2lyotfoKNWft7hSAFJORf6d61TQ
xZtl7GeI2+XW4Q4un8M3U+m88DtDIImCBFlBriOcGUXN4Mgk1NhKsutYP41v0Hgp
mxC0FQPnrMXr69/6PtP3kS5VjX+pSsUrrRfgIcX3AQqbAdO61Zm2BzrHQM1lPCCz
JRi1C1LjcQ2GjU2tRKKae4qXzMhjdZezRkz2rGCKYC66aWHngZj5HCY51UCN0fvj
kXOpreX5f4Clu6Tr4QRveV5ZUfyWFODhqnLGHo1MxXZ7QkFiR6a4bcQgLEjU2RSA
jlXeJ/iTv0biNmva0HdEOgSNynGJ0FVGCtfsc1BrwzSq
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:33 2025 by rpki-client on console.sobornost.net