Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/NgR9E--L8OGtLWDYEisSSXDhdo0.roa
File: NgR9E--L8OGtLWDYEisSSXDhdo0.roa (raw, json)
Hash identifier: 2D+QLTfpb+BXrHtU/zI2nDkh1Piz6nOMwxdV8hz+smg=
Subject key identifier: 36:04:7D:13:EF:8B:F0:E1:AD:2D:60:D8:12:2B:12:49:70:E1:76:8D
Certificate issuer: /CN=17a6fa80b2d1c43ec9ea824e7e8395f79294e38a
Certificate serial: 01941FFA1A48555DCB144D80DA3BDBCE9045
Authority key identifier: 17:A6:FA:80:B2:D1:C4:3E:C9:EA:82:4E:7E:83:95:F7:92:94:E3:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F6b6gLLRxD7J6oJOfoOV95KU44o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/NgR9E--L8OGtLWDYEisSSXDhdo0.roa
Signing time: Wed 01 Jan 2025 03:47:51 +0000
ROA not before: Wed 01 Jan 2025 03:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44336
IP address blocks: 195.93.204.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:1a:48:55:5d:cb:14:4d:80:da:3b:db:ce:90:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17a6fa80b2d1c43ec9ea824e7e8395f79294e38a
Validity
Not Before: Jan 1 03:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=36047d13ef8bf0e1ad2d60d8122b124970e1768d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6f:96:ab:7d:42:64:7e:8d:f4:82:8f:ef:67:
a1:b3:68:f5:a1:49:1d:3f:1e:22:57:1c:d7:b7:7f:
91:3e:aa:f7:ad:e4:88:20:97:83:5d:5d:03:f6:74:
e1:af:31:66:b4:a4:f0:a2:be:13:5e:6a:12:aa:10:
89:3e:d3:09:69:1b:26:ad:5d:3e:64:61:fb:58:e3:
60:aa:c0:2b:c2:42:22:fb:3d:36:cb:96:6f:35:ae:
5d:f3:e9:84:7a:d9:4e:cb:e3:e2:0c:7e:ba:bb:1c:
98:74:75:56:b4:60:c5:50:82:6f:b7:3a:82:8d:5d:
2a:31:2c:ae:68:48:e4:d9:8c:a8:75:3d:5b:e6:07:
84:00:c2:ea:99:cc:6f:a8:95:61:b9:7d:f2:c8:95:
9c:a8:8e:e7:60:49:ef:5b:46:9d:f4:7b:72:7e:7c:
a2:89:28:7a:67:a8:3c:c4:13:7d:f7:30:35:65:ed:
00:eb:3e:6e:20:bd:7d:21:4c:f9:11:a3:e2:6d:50:
28:f0:6d:21:86:72:f0:4c:0f:38:b6:55:db:dc:dc:
27:10:61:72:5a:f5:c7:64:13:0c:f7:f8:4a:53:72:
83:ea:e9:96:ab:7d:61:3d:1e:08:e7:e0:f6:c1:42:
33:47:91:9c:71:cf:16:44:8b:5c:1e:4c:70:54:d3:
29:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:04:7D:13:EF:8B:F0:E1:AD:2D:60:D8:12:2B:12:49:70:E1:76:8D
X509v3 Authority Key Identifier:
keyid:17:A6:FA:80:B2:D1:C4:3E:C9:EA:82:4E:7E:83:95:F7:92:94:E3:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F6b6gLLRxD7J6oJOfoOV95KU44o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/NgR9E--L8OGtLWDYEisSSXDhdo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/F6b6gLLRxD7J6oJOfoOV95KU44o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.204.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:ff:63:5b:72:84:e9:0f:70:ab:db:84:e7:15:56:0a:8d:6b:
59:97:14:6f:bd:e9:5c:9d:ac:4b:66:9a:9a:99:ff:2a:ea:1b:
20:35:d1:71:75:b4:8c:09:cf:38:c4:ea:d3:a8:87:9a:6d:a5:
1c:4a:e7:5e:74:38:72:95:a3:26:c7:36:f6:25:b3:28:e5:fc:
e7:8f:a6:2d:5e:13:e3:e7:03:a0:64:c4:2f:54:e7:a3:6e:03:
ba:80:ce:77:7f:df:01:1f:1c:fd:8f:3b:0c:57:10:ce:88:dc:
97:a6:1c:ed:1a:9b:cf:39:1a:1c:af:e2:e9:01:eb:74:79:fa:
f1:f6:cb:17:e8:67:67:7c:34:16:70:03:00:d5:6c:d7:c2:f0:
20:2a:12:8d:04:84:04:00:8b:65:a9:7e:30:53:8d:6f:23:c6:
69:9c:29:5e:f4:82:c0:79:7b:7c:be:69:c0:29:69:2a:a0:e6:
ba:de:f2:1c:65:86:84:93:e4:81:f4:6c:ad:b9:9a:aa:0e:43:
3e:c2:bf:ea:eb:a4:b5:9b:28:4a:6f:2e:71:be:06:67:81:45:
54:86:65:95:e0:9e:c5:7b:11:a7:f3:a3:82:47:fc:21:d9:ee:
11:fd:af:30:1e:53:96:21:de:eb:fc:91:26:3a:59:95:48:86:
72:04:e4:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQf+hpIVV3LFE2A2jvbzpBFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3YTZmYTgwYjJkMWM0M2VjOWVhODI0ZTdlODM5NWY3OTI5
NGUzOGEwHhcNMjUwMTAxMDM0NzUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjA0N2QxM2VmOGJmMGUxYWQyZDYwZDgxMjJiMTI0OTcwZTE3NjhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2+Wq31CZH6N9IKP72ehs2j1oUkd
Px4iVxzXt3+RPqr3reSIIJeDXV0D9nThrzFmtKTwor4TXmoSqhCJPtMJaRsmrV0+
ZGH7WONgqsArwkIi+z02y5ZvNa5d8+mEetlOy+PiDH66uxyYdHVWtGDFUIJvtzqC
jV0qMSyuaEjk2YyodT1b5geEAMLqmcxvqJVhuX3yyJWcqI7nYEnvW0ad9Htyfnyi
iSh6Z6g8xBN99zA1Ze0A6z5uIL19IUz5EaPibVAo8G0hhnLwTA84tlXb3NwnEGFy
WvXHZBMM9/hKU3KD6umWq31hPR4I5+D2wUIzR5Gccc8WRItcHkxwVNMpGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDYEfRPvi/DhrS1g2BIrEklw4XaNMB8GA1UdIwQY
MBaAFBem+oCy0cQ+yeqCTn6DlfeSlOOKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjZiNmdMTFJ4RDdKNm9KT2ZvT1Y5NUtVNDRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iYmZlNDgtZjE0ZC00MGQxLTlmMWEt
Y2I5ZTQ1YmIwYzYzLzEvTmdSOUUtLUw4T0d0TFdEWUVpc1NTWERoZG8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9iYmZlNDgtZjE0ZC00MGQxLTlmMWEtY2I5ZTQ1YmIwYzYz
LzEvRjZiNmdMTFJ4RDdKNm9KT2ZvT1Y5NUtVNDRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw13MMA0G
CSqGSIb3DQEBCwUAA4IBAQAa/2NbcoTpD3Cr24TnFVYKjWtZlxRvvelcnaxLZpqa
mf8q6hsgNdFxdbSMCc84xOrTqIeabaUcSudedDhylaMmxzb2JbMo5fznj6YtXhPj
5wOgZMQvVOejbgO6gM53f98BHxz9jzsMVxDOiNyXphztGpvPORocr+LpAet0efrx
9ssX6GdnfDQWcAMA1WzXwvAgKhKNBIQEAItlqX4wU41vI8ZpnCle9ILAeXt8vmnA
KWkqoOa63vIcZYaEk+SB9GytuZqqDkM+wr/q66S1myhKby5xvgZngUVUhmWV4J7F
exGn86OCR/wh2e4R/a8wHlOWId7r/JEmOlmVSIZyBOSg
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:39 2025 by rpki-client on console.sobornost.net