Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/LxkQ8lrRSSjKSSBTMw_C2yE3r7Q.roa
File: LxkQ8lrRSSjKSSBTMw_C2yE3r7Q.roa (raw, json)
Hash identifier: tLec+vYJjS89y0M+NBQ15ADmvUZY7g4F0xZqQMiozBQ=
Subject key identifier: 2F:19:10:F2:5A:D1:49:28:CA:49:20:53:33:0F:C2:DB:21:37:AF:B4
Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial: 0195EB255EED14BB898EA6AE0846814A7AFC
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/LxkQ8lrRSSjKSSBTMw_C2yE3r7Q.roa
Signing time: Mon 31 Mar 2025 07:40:49 +0000
ROA not before: Mon 31 Mar 2025 07:40:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 46.236.192.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:eb:25:5e:ed:14:bb:89:8e:a6:ae:08:46:81:4a:7a:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Validity
Not Before: Mar 31 07:40:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2f1910f25ad14928ca492053330fc2db2137afb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ca:7e:74:ec:80:a2:23:75:d2:5c:bd:98:b4:
83:88:bb:56:41:91:2d:33:d9:4b:d7:e2:73:6f:5c:
5d:42:e7:3a:8d:78:0c:62:3f:0d:bf:6a:d5:a2:43:
c4:b5:da:bb:80:4c:1f:6e:dd:a4:e0:67:b4:fe:67:
6b:7e:e1:56:ef:4b:85:8f:01:b8:2f:c3:4f:2b:e9:
f9:d8:bc:32:85:dd:7b:f2:01:c1:dd:67:04:1b:71:
52:e3:7f:a9:09:9a:6a:39:58:3d:76:a0:24:c3:a9:
3f:4c:33:eb:db:7d:fd:fd:8b:b1:7a:86:8a:f0:d6:
02:d4:a7:26:6a:34:31:5f:5d:e5:d6:a2:b5:05:1c:
0d:25:6d:8a:1b:ac:92:13:ca:90:49:fa:36:52:8c:
1a:bc:36:93:16:37:14:1b:72:3b:00:7b:90:8a:d6:
80:fc:5d:be:d9:ac:23:53:26:3c:74:cc:89:f8:43:
ca:68:a9:97:fa:38:33:a7:18:98:5a:9f:41:bb:88:
05:8b:a7:93:c8:f6:81:36:b7:d6:a5:ac:02:bc:43:
ef:0b:82:a6:60:1f:2b:43:57:26:dd:dd:c5:d6:fd:
f6:71:cb:c1:4a:56:c2:0c:84:78:4c:fd:df:c6:01:
27:6a:0c:04:f5:2a:ea:30:aa:d6:22:fc:e4:45:4d:
c3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:19:10:F2:5A:D1:49:28:CA:49:20:53:33:0F:C2:DB:21:37:AF:B4
X509v3 Authority Key Identifier:
keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/LxkQ8lrRSSjKSSBTMw_C2yE3r7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.192.0/20
Signature Algorithm: sha256WithRSAEncryption
60:a7:e9:b9:91:0e:49:20:77:aa:2b:fc:22:c6:ef:a0:3c:51:
67:04:6b:c3:ee:d5:be:f6:3e:c4:af:99:87:3c:c9:a9:4d:87:
4c:c4:c7:49:22:92:46:f9:c3:47:7a:aa:fb:3a:f5:13:ed:a2:
5d:15:e2:69:ec:9d:01:eb:de:da:ab:ec:9c:2b:0e:cf:06:e2:
17:8c:1f:a1:08:51:bf:b1:fb:c5:77:c5:61:4c:1c:fc:3d:ff:
c5:7a:c0:43:47:df:62:d8:1d:eb:be:a5:75:00:96:0b:6c:89:
5f:94:ce:28:67:cd:62:b4:67:a6:21:bf:cb:9d:2f:4b:63:14:
40:7d:6c:9a:72:87:ae:06:95:21:b9:66:96:6f:c9:d8:fa:8d:
ba:ba:f1:13:06:1a:f7:23:8b:a5:ad:62:9b:3f:07:6d:cc:02:
cd:15:36:90:cb:8d:95:44:34:0c:c2:b0:0b:d7:3c:5f:72:f0:
ad:e3:bd:4f:13:f9:8d:9d:05:a5:1b:e9:3f:76:07:bb:ad:61:
36:e5:54:c0:78:69:20:df:05:52:bb:33:a4:cd:0e:5f:94:94:
82:f8:ae:64:29:f3:61:95:cb:f9:a3:ae:6f:70:1c:eb:3b:71:
25:bb:b2:e1:6f:4e:c6:2b:c1:16:11:8d:f3:97:f9:4a:53:77:
58:19:d7:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZXrJV7tFLuJjqauCEaBSnr8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyYjEyZThkZjNhYmQ1NTU5ZjljZjk2ODBhZjY1ZGQxNjU4
OWRlODYwHhcNMjUwMzMxMDc0MDQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjE5MTBmMjVhZDE0OTI4Y2E0OTIwNTMzMzBmYzJkYjIxMzdhZmI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5sp+dOyAoiN10ly9mLSDiLtWQZEt
M9lL1+Jzb1xdQuc6jXgMYj8Nv2rVokPEtdq7gEwfbt2k4Ge0/mdrfuFW70uFjwG4
L8NPK+n52Lwyhd178gHB3WcEG3FS43+pCZpqOVg9dqAkw6k/TDPr2339/YuxeoaK
8NYC1KcmajQxX13l1qK1BRwNJW2KG6ySE8qQSfo2UowavDaTFjcUG3I7AHuQitaA
/F2+2awjUyY8dMyJ+EPKaKmX+jgzpxiYWp9Bu4gFi6eTyPaBNrfWpawCvEPvC4Km
YB8rQ1cm3d3F1v32ccvBSlbCDIR4TP3fxgEnagwE9SrqMKrWIvzkRU3DyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC8ZEPJa0UkoykkgUzMPwtshN6+0MB8GA1UdIwQY
MBaAFKKxLo3zq9VVn5z5aAr2XdFlid6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9lYzQ0ZWEtZWY0My00YjNhLWE2OWEt
YjRjYjYzN2RhOGMzLzEvTHhrUThsclJTU2pLU1NCVE13X0MyeUUzcjdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9lYzQ0ZWEtZWY0My00YjNhLWE2OWEtYjRjYjYzN2RhOGMz
LzEvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELuzAMA0G
CSqGSIb3DQEBCwUAA4IBAQBgp+m5kQ5JIHeqK/wixu+gPFFnBGvD7tW+9j7Er5mH
PMmpTYdMxMdJIpJG+cNHeqr7OvUT7aJdFeJp7J0B697aq+ycKw7PBuIXjB+hCFG/
sfvFd8VhTBz8Pf/FesBDR99i2B3rvqV1AJYLbIlflM4oZ81itGemIb/LnS9LYxRA
fWyacoeuBpUhuWaWb8nY+o26uvETBhr3I4ulrWKbPwdtzALNFTaQy42VRDQMwrAL
1zxfcvCt471PE/mNnQWlG+k/dge7rWE25VTAeGkg3wVSuzOkzQ5flJSC+K5kKfNh
lcv5o65vcBzrO3Elu7Lhb07GK8EWEY3zl/lKU3dYGdcT
-----END CERTIFICATE-----
Generated at Tue Apr 1 23:50:12 2025 by rpki-client on console.sobornost.net