Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/1182cb-5f95-4cd4-b72f-46b46fc0e496/1/Zkat7ibcLmD2h_0_XMZ8A60Ar4Y.roa
File: Zkat7ibcLmD2h_0_XMZ8A60Ar4Y.roa (raw, json)
Hash identifier: S9WARRHeF7XnyVkRNyrlC/MJ9g6e/aBgMKh17IrDCTs=
Subject key identifier: 66:46:AD:EE:26:DC:2E:60:F6:87:FD:3F:5C:C6:7C:03:AD:00:AF:86
Certificate issuer: /CN=b2ed1d6066f4e4654ef5f3cc70a5d905a9af8290
Certificate serial: 019423D7ECD1BB381AF1A70B7CF3CB6AF28E
Authority key identifier: B2:ED:1D:60:66:F4:E4:65:4E:F5:F3:CC:70:A5:D9:05:A9:AF:82:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/su0dYGb05GVO9fPMcKXZBamvgpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/1182cb-5f95-4cd4-b72f-46b46fc0e496/1/Zkat7ibcLmD2h_0_XMZ8A60Ar4Y.roa
Signing time: Wed 01 Jan 2025 21:49:00 +0000
ROA not before: Wed 01 Jan 2025 21:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16344
IP address blocks: 217.145.160.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:ec:d1:bb:38:1a:f1:a7:0b:7c:f3:cb:6a:f2:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2ed1d6066f4e4654ef5f3cc70a5d905a9af8290
Validity
Not Before: Jan 1 21:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6646adee26dc2e60f687fd3f5cc67c03ad00af86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5d:3d:4e:10:01:a0:e0:75:0d:92:b3:99:02:
71:77:51:96:d9:db:c7:d8:a5:28:21:82:c1:9b:fc:
3a:18:b6:14:13:a7:bd:de:7d:c9:d7:17:2a:d7:80:
2b:3e:85:76:07:7c:ce:66:5a:25:b7:cf:39:88:45:
9f:c9:ae:e3:10:98:0f:2e:bc:09:7e:66:49:da:2b:
24:5c:6b:ac:15:ce:cc:31:51:22:ab:de:ea:51:c1:
8a:ca:20:37:da:5a:72:67:da:b0:23:37:60:f3:7e:
d3:90:9b:6c:ea:d2:71:a2:6d:b1:be:83:93:9b:dc:
02:e7:4c:2f:2a:da:ee:ac:db:fa:80:95:ef:a1:2a:
04:9a:30:62:60:2d:4d:0d:ed:f2:ef:ca:2d:fb:9d:
ac:d0:73:d7:88:8e:fe:50:bc:80:2d:bf:d6:11:63:
f1:53:78:5c:b0:45:88:8b:3d:a5:30:c0:4a:6b:95:
96:54:e6:a8:c3:8e:d6:35:ae:8d:67:4b:dd:bd:0d:
cb:58:2d:01:a4:71:2e:13:1a:42:2a:0e:1f:94:fc:
22:36:1c:fe:c1:82:b8:8d:4e:73:21:a4:5b:1a:74:
aa:b2:02:80:1d:7f:85:57:31:32:1a:0b:e8:c2:ad:
99:2f:dc:61:4a:de:31:06:b4:d1:81:0e:4c:77:10:
28:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:46:AD:EE:26:DC:2E:60:F6:87:FD:3F:5C:C6:7C:03:AD:00:AF:86
X509v3 Authority Key Identifier:
keyid:B2:ED:1D:60:66:F4:E4:65:4E:F5:F3:CC:70:A5:D9:05:A9:AF:82:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/su0dYGb05GVO9fPMcKXZBamvgpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1182cb-5f95-4cd4-b72f-46b46fc0e496/1/Zkat7ibcLmD2h_0_XMZ8A60Ar4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1182cb-5f95-4cd4-b72f-46b46fc0e496/1/su0dYGb05GVO9fPMcKXZBamvgpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.160.0/20
Signature Algorithm: sha256WithRSAEncryption
40:8d:43:a1:8f:ec:70:36:19:5f:b8:54:04:29:4e:b3:b8:76:
56:df:0c:96:08:29:4a:da:87:e9:5b:92:9f:44:78:cf:01:b8:
51:e8:03:72:af:0a:7e:27:5b:e9:d2:1b:a5:25:db:45:83:2d:
fa:8e:6d:82:1f:5c:91:10:f6:01:4e:e1:4c:65:af:cb:0b:84:
b1:ad:ed:fb:84:97:77:1a:bd:bd:14:d6:04:72:ce:c9:13:e2:
e8:06:47:27:ce:65:04:94:a6:44:f3:58:b4:4d:af:14:0d:16:
19:87:24:f8:8c:91:99:3b:e1:13:43:3a:89:37:e3:fa:9c:b1:
19:62:20:36:8f:ec:28:48:51:37:62:1b:b5:a2:ad:8a:b4:2d:
f9:03:65:47:f5:26:43:18:0a:9a:71:5a:c1:e4:04:c6:7c:7b:
fd:a7:bf:fd:52:b6:86:49:9c:fc:54:72:d8:58:47:83:d7:7c:
2c:6d:98:62:a1:e3:2c:52:76:09:c6:f5:c7:73:7c:95:ea:63:
6d:2e:62:34:ec:11:e7:35:a8:3d:db:c2:70:48:70:59:92:20:
aa:60:07:f6:36:1c:38:2e:59:40:ea:77:40:a4:3a:dd:7b:d9:
85:2a:fd:ca:a8:5e:7d:4c:0f:5e:08:8a:ab:e7:22:34:ea:6d:
9f:4b:33:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQj1+zRuzga8acLfPPLavKOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZWQxZDYwNjZmNGU0NjU0ZWY1ZjNjYzcwYTVkOTA1YTlh
ZjgyOTAwHhcNMjUwMTAxMjE0OTAwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjQ2YWRlZTI2ZGMyZTYwZjY4N2ZkM2Y1Y2M2N2MwM2FkMDBhZjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5F09ThABoOB1DZKzmQJxd1GW2dvH
2KUoIYLBm/w6GLYUE6e93n3J1xcq14ArPoV2B3zOZlolt885iEWfya7jEJgPLrwJ
fmZJ2iskXGusFc7MMVEiq97qUcGKyiA32lpyZ9qwIzdg837TkJts6tJxom2xvoOT
m9wC50wvKtrurNv6gJXvoSoEmjBiYC1NDe3y78ot+52s0HPXiI7+ULyALb/WEWPx
U3hcsEWIiz2lMMBKa5WWVOaow47WNa6NZ0vdvQ3LWC0BpHEuExpCKg4flPwiNhz+
wYK4jU5zIaRbGnSqsgKAHX+FVzEyGgvowq2ZL9xhSt4xBrTRgQ5MdxAoewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGZGre4m3C5g9of9P1zGfAOtAK+GMB8GA1UdIwQY
MBaAFLLtHWBm9ORlTvXzzHCl2QWpr4KQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3UwZFlHYjA1R1ZPOWZQTWNLWFpCYW12Z3BBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8xMTgyY2ItNWY5NS00Y2Q0LWI3MmYt
NDZiNDZmYzBlNDk2LzEvWmthdDdpYmNMbUQyaF8wX1hNWjhBNjBBcjRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8xMTgyY2ItNWY5NS00Y2Q0LWI3MmYtNDZiNDZmYzBlNDk2
LzEvc3UwZFlHYjA1R1ZPOWZQTWNLWFpCYW12Z3BBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE2ZGgMA0G
CSqGSIb3DQEBCwUAA4IBAQBAjUOhj+xwNhlfuFQEKU6zuHZW3wyWCClK2ofpW5Kf
RHjPAbhR6ANyrwp+J1vp0hulJdtFgy36jm2CH1yREPYBTuFMZa/LC4Sxre37hJd3
Gr29FNYEcs7JE+LoBkcnzmUElKZE81i0Ta8UDRYZhyT4jJGZO+ETQzqJN+P6nLEZ
YiA2j+woSFE3Yhu1oq2KtC35A2VH9SZDGAqacVrB5ATGfHv9p7/9UraGSZz8VHLY
WEeD13wsbZhioeMsUnYJxvXHc3yV6mNtLmI07BHnNag928JwSHBZkiCqYAf2Nhw4
LllA6ndApDrde9mFKv3KqF59TA9eCIqr5yI06m2fSzN4
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:36 2025 by rpki-client on console.sobornost.net