Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/_K1pDCbBWOfBSTY7iYXwJMRFvTE.roa
File: _K1pDCbBWOfBSTY7iYXwJMRFvTE.roa (raw, json)
Hash identifier: CNOL6bgt/D7RlzA1qOVvWQYBYhtShOyl6CF9OeXYBvk=
Subject key identifier: FC:AD:69:0C:26:C1:58:E7:C1:49:36:3B:89:85:F0:24:C4:45:BD:31
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 01955BD5E79E26A4AC4EA0C29A06D70058FE
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/_K1pDCbBWOfBSTY7iYXwJMRFvTE.roa
Signing time: Mon 03 Mar 2025 11:48:19 +0000
ROA not before: Mon 03 Mar 2025 11:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211500
IP address blocks: 176.118.160.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5b:d5:e7:9e:26:a4:ac:4e:a0:c2:9a:06:d7:00:58:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Mar 3 11:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fcad690c26c158e7c149363b8985f024c445bd31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a8:e7:c4:e7:ac:5f:57:0b:c2:3e:85:c2:c4:
37:57:64:18:74:c8:38:54:52:3e:05:f8:a9:d8:7e:
6f:e8:26:7b:24:7a:2f:07:f2:c1:75:ad:6c:a4:0e:
64:b0:3f:f8:58:59:3e:ba:f7:d6:e1:78:fa:0b:3c:
6a:da:a5:02:c2:11:c8:ce:56:c6:dd:50:61:bf:00:
57:9f:a4:17:22:62:2d:05:80:21:de:74:99:21:0c:
df:2a:9f:90:63:38:c1:a4:66:b8:9b:07:2f:b2:6b:
21:3a:bf:6c:c8:55:f8:cc:be:67:3a:a3:ce:ac:57:
25:12:59:90:2e:19:a2:71:ef:9b:a9:b1:2e:49:f3:
ea:a3:29:1b:a4:df:5b:1f:a2:77:3b:ae:fe:d1:fb:
5c:66:94:61:74:ef:18:79:c0:fc:ca:9f:22:be:e1:
8b:b8:f1:94:db:c7:83:f3:88:53:a6:57:10:aa:5f:
f6:cd:66:da:6b:62:e1:5e:aa:23:7a:60:9c:53:1d:
7f:6e:8a:cc:c4:8f:39:18:a6:35:d6:61:27:4b:a6:
85:1d:50:95:fd:5d:55:cf:5e:84:04:03:71:c5:6c:
88:18:e3:5c:c8:55:69:c8:23:d5:88:28:c1:d4:03:
69:50:cf:82:ed:24:de:44:05:8e:16:b9:aa:4b:0d:
64:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AD:69:0C:26:C1:58:E7:C1:49:36:3B:89:85:F0:24:C4:45:BD:31
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/_K1pDCbBWOfBSTY7iYXwJMRFvTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.160.0/22
Signature Algorithm: sha256WithRSAEncryption
33:ef:46:91:c0:55:d2:49:af:25:36:e0:70:b3:b6:9e:0b:51:
63:cd:4f:e7:a4:fb:07:0c:92:0a:f9:f4:3c:cd:d8:4e:99:63:
cc:50:3e:e7:4b:7e:34:f6:0b:a4:91:63:31:53:aa:e7:cd:6f:
a1:21:9c:14:ff:5b:8f:c6:6a:ff:bf:db:b8:ee:1a:59:01:51:
83:94:8b:51:bc:51:49:04:3a:24:e9:41:6b:1f:16:79:18:81:
0f:45:a3:32:47:13:db:44:40:75:90:56:d1:33:74:cc:57:47:
38:93:0d:f3:76:99:3d:c3:1d:84:ac:a7:1d:38:26:d4:eb:3f:
1e:30:14:0d:89:35:9a:5c:ed:46:2a:ac:9d:17:6a:6f:5a:e7:
83:3a:ec:0b:a7:f5:9f:0d:47:52:d6:33:ca:80:f6:1b:7c:32:
9a:8b:ea:c1:1a:1a:04:75:04:62:d0:97:f5:61:82:93:f2:70:
fe:35:fe:18:f9:79:83:40:ef:cf:22:b2:7e:d3:41:d8:e8:d3:
5b:14:40:4d:11:23:c2:20:30:e0:5e:0e:5a:91:cb:83:8f:f2:
52:8e:13:b3:b5:42:7f:ee:c8:a9:b5:35:f5:84:60:88:9c:91:
4b:9f:c6:84:53:ca:bf:4a:6b:e5:9b:27:8d:08:fe:cf:0c:fd:
fe:91:7b:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZVb1eeeJqSsTqDCmgbXAFj+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1
YmE2ODEwHhcNMjUwMzAzMTE0ODE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmY2FkNjkwYzI2YzE1OGU3YzE0OTM2M2I4OTg1ZjAyNGM0NDViZDMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ajnxOesX1cLwj6FwsQ3V2QYdMg4
VFI+Bfip2H5v6CZ7JHovB/LBda1spA5ksD/4WFk+uvfW4Xj6Czxq2qUCwhHIzlbG
3VBhvwBXn6QXImItBYAh3nSZIQzfKp+QYzjBpGa4mwcvsmshOr9syFX4zL5nOqPO
rFclElmQLhmice+bqbEuSfPqoykbpN9bH6J3O67+0ftcZpRhdO8YecD8yp8ivuGL
uPGU28eD84hTplcQql/2zWbaa2LhXqojemCcUx1/borMxI85GKY11mEnS6aFHVCV
/V1Vz16EBANxxWyIGONcyFVpyCPViCjB1ANpUM+C7STeRAWOFrmqSw1k6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPytaQwmwVjnwUk2O4mF8CTERb0xMB8GA1UdIwQY
MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt
YTg3NzNkZTc2OGY3LzEvX0sxcERDYkJXT2ZCU1RZN2lZWHdKTVJGdlRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3
LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCsHagMA0G
CSqGSIb3DQEBCwUAA4IBAQAz70aRwFXSSa8lNuBws7aeC1FjzU/npPsHDJIK+fQ8
zdhOmWPMUD7nS3409gukkWMxU6rnzW+hIZwU/1uPxmr/v9u47hpZAVGDlItRvFFJ
BDok6UFrHxZ5GIEPRaMyRxPbREB1kFbRM3TMV0c4kw3zdpk9wx2ErKcdOCbU6z8e
MBQNiTWaXO1GKqydF2pvWueDOuwLp/WfDUdS1jPKgPYbfDKai+rBGhoEdQRi0Jf1
YYKT8nD+Nf4Y+XmDQO/PIrJ+00HY6NNbFEBNESPCIDDgXg5akcuDj/JSjhOztUJ/
7siptTX1hGCInJFLn8aEU8q/SmvlmyeNCP7PDP3+kXuR
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:35 2025 by rpki-client on console.sobornost.net