Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/bff48f-0a30-478d-b2db-ad4a1da393a1/1/iX_xELZoVhjZx2tmfK6PH-R4qfg.roa
File: iX_xELZoVhjZx2tmfK6PH-R4qfg.roa (raw, json)
Hash identifier: 8Md57/s7g7icy63N7gSiYrFS0c7WsDeTkry4vuIPhFc=
Subject key identifier: 89:7F:F1:10:B6:68:56:18:D9:C7:6B:66:7C:AE:8F:1F:E4:78:A9:F8
Certificate issuer: /CN=0c7887582d83d3f087682af8780a324a353ce782
Certificate serial: 0195EB68352AECB8DE4EE08C44F70B869167
Authority key identifier: 0C:78:87:58:2D:83:D3:F0:87:68:2A:F8:78:0A:32:4A:35:3C:E7:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DHiHWC2D0_CHaCr4eAoySjU854I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/bff48f-0a30-478d-b2db-ad4a1da393a1/1/iX_xELZoVhjZx2tmfK6PH-R4qfg.roa
Signing time: Mon 31 Mar 2025 08:53:49 +0000
ROA not before: Mon 31 Mar 2025 08:53:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 63150
IP address blocks: 213.179.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:eb:68:35:2a:ec:b8:de:4e:e0:8c:44:f7:0b:86:91:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c7887582d83d3f087682af8780a324a353ce782
Validity
Not Before: Mar 31 08:53:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=897ff110b6685618d9c76b667cae8f1fe478a9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:34:b4:cb:10:42:c1:45:8c:a2:d4:16:66:c5:
d5:f1:c2:56:85:50:76:76:08:99:9c:4f:af:5e:58:
58:c9:79:c7:45:60:e7:85:21:c4:cc:9b:c0:91:3a:
6d:5a:06:55:ef:6e:11:1f:aa:92:52:f2:1a:b8:3d:
87:a5:66:d3:ba:82:fa:82:8c:32:c0:8a:a8:f6:c0:
61:a2:27:19:55:f7:cb:94:37:15:0f:0a:a0:0c:67:
03:9c:13:c9:83:f0:78:0a:b1:49:9a:71:1c:38:11:
c7:34:4c:29:b6:3e:40:c4:8f:13:99:05:ca:fe:12:
89:50:1c:c7:bd:bd:0a:6d:f5:2f:43:6b:70:5a:7c:
ab:6c:42:1b:e0:94:6e:13:cd:a6:dc:db:86:a3:34:
67:3c:7e:ca:16:ca:11:86:70:94:c9:e8:4b:1d:ff:
49:9c:a9:2f:19:77:b4:36:69:38:7a:36:2d:70:bb:
3b:6b:0c:32:67:dd:77:7c:50:9d:01:4a:a8:91:f4:
e0:ac:3e:f1:17:4a:6b:c1:53:93:ce:94:c5:28:30:
ab:38:c8:92:5a:12:cc:15:71:de:43:68:60:17:90:
08:57:67:ce:b5:53:ba:7b:76:21:78:d7:36:ce:c0:
ef:bb:2f:f5:b9:5a:bc:d2:0a:2b:52:54:82:c6:6c:
5c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:7F:F1:10:B6:68:56:18:D9:C7:6B:66:7C:AE:8F:1F:E4:78:A9:F8
X509v3 Authority Key Identifier:
keyid:0C:78:87:58:2D:83:D3:F0:87:68:2A:F8:78:0A:32:4A:35:3C:E7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DHiHWC2D0_CHaCr4eAoySjU854I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bff48f-0a30-478d-b2db-ad4a1da393a1/1/iX_xELZoVhjZx2tmfK6PH-R4qfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bff48f-0a30-478d-b2db-ad4a1da393a1/1/DHiHWC2D0_CHaCr4eAoySjU854I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.179.69.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:e2:3c:ba:f1:55:8a:dd:49:8c:00:9a:67:af:e1:5f:2b:06:
e7:91:50:30:87:5c:fc:b9:7e:10:3c:f0:b2:90:cd:f5:89:15:
7e:41:06:83:4a:40:03:07:05:a2:4e:ff:6b:e8:70:4b:02:b8:
a2:b7:05:e0:58:7c:5a:8e:31:6c:94:f5:2c:06:cc:12:ea:60:
d2:56:14:1d:46:f2:59:b8:85:30:a3:10:79:a5:11:6e:ae:e8:
65:8e:07:a5:33:0c:92:13:10:f2:52:4a:96:d3:ad:91:6b:45:
6d:51:0d:e5:b8:83:0b:c0:ae:1b:93:e2:6f:f8:a4:ac:bd:00:
c9:4c:da:cf:ed:1f:4a:a4:2e:d7:ff:33:b6:67:9d:45:2e:78:
9a:6e:6b:05:9b:68:a2:4a:7d:13:30:22:0d:30:c0:56:c9:99:
bb:8a:6d:a9:7a:d6:03:3f:6e:a9:80:15:94:e7:3f:1f:46:95:
cb:84:66:1d:45:e2:4e:bd:38:06:61:66:32:01:2e:8b:1d:6b:
3d:1e:b5:fd:c5:5e:49:56:d6:f6:bc:84:cf:f4:a8:f6:8e:50:
5e:49:a7:77:1f:14:84:0d:e4:60:45:66:22:61:8a:a7:76:a5:
f4:44:ea:02:0b:00:93:01:27:55:11:7d:d8:29:c7:31:98:5e:
45:8e:f5:6b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZXraDUq7LjeTuCMRPcLhpFnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjNzg4NzU4MmQ4M2QzZjA4NzY4MmFmODc4MGEzMjRhMzUz
Y2U3ODIwHhcNMjUwMzMxMDg1MzQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTdmZjExMGI2Njg1NjE4ZDljNzZiNjY3Y2FlOGYxZmU0NzhhOWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszS0yxBCwUWMotQWZsXV8cJWhVB2
dgiZnE+vXlhYyXnHRWDnhSHEzJvAkTptWgZV724RH6qSUvIauD2HpWbTuoL6gowy
wIqo9sBhoicZVffLlDcVDwqgDGcDnBPJg/B4CrFJmnEcOBHHNEwptj5AxI8TmQXK
/hKJUBzHvb0KbfUvQ2twWnyrbEIb4JRuE82m3NuGozRnPH7KFsoRhnCUyehLHf9J
nKkvGXe0Nmk4ejYtcLs7awwyZ913fFCdAUqokfTgrD7xF0prwVOTzpTFKDCrOMiS
WhLMFXHeQ2hgF5AIV2fOtVO6e3YheNc2zsDvuy/1uVq80gorUlSCxmxcbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIl/8RC2aFYY2cdrZnyujx/keKn4MB8GA1UdIwQY
MBaAFAx4h1gtg9Pwh2gq+HgKMko1POeCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREhpSFdDMkQwX0NIYUNyNGVBb3lTalU4NTRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iZmY0OGYtMGEzMC00NzhkLWIyZGIt
YWQ0YTFkYTM5M2ExLzEvaVhfeEVMWm9WaGpaeDJ0bWZLNlBILVI0cWZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9iZmY0OGYtMGEzMC00NzhkLWIyZGItYWQ0YTFkYTM5M2Ex
LzEvREhpSFdDMkQwX0NIYUNyNGVBb3lTalU4NTRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1bNFMA0G
CSqGSIb3DQEBCwUAA4IBAQBr4jy68VWK3UmMAJpnr+FfKwbnkVAwh1z8uX4QPPCy
kM31iRV+QQaDSkADBwWiTv9r6HBLAriitwXgWHxajjFslPUsBswS6mDSVhQdRvJZ
uIUwoxB5pRFuruhljgelMwySExDyUkqW062Ra0VtUQ3luIMLwK4bk+Jv+KSsvQDJ
TNrP7R9KpC7X/zO2Z51FLniabmsFm2iiSn0TMCINMMBWyZm7im2petYDP26pgBWU
5z8fRpXLhGYdReJOvTgGYWYyAS6LHWs9HrX9xV5JVtb2vITP9Kj2jlBeSad3HxSE
DeRgRWYiYYqndqX0ROoCCwCTASdVEX3YKccxmF5FjvVr
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:39 2025 by rpki-client on console.sobornost.net