Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/fd757c-3a7c-4b31-b4a1-cfa7a310d542/1/vn8Vk2vP0QzgnWs8YePhZCt8-Lc.roa
File: vn8Vk2vP0QzgnWs8YePhZCt8-Lc.roa (raw, json)
Hash identifier: NAYB0xo+Xhi57/QawXnfFqpG2CzRv0IH2N4vezreDYQ=
Subject key identifier: BE:7F:15:93:6B:CF:D1:0C:E0:9D:6B:3C:61:E3:E1:64:2B:7C:F8:B7
Certificate issuer: /CN=42004477243ca20b95dc8efe07337639806f6075
Certificate serial: 019420D5E2BEED1DC1F867F29C0C811429B2
Authority key identifier: 42:00:44:77:24:3C:A2:0B:95:DC:8E:FE:07:33:76:39:80:6F:60:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QgBEdyQ8oguV3I7-BzN2OYBvYHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/fd757c-3a7c-4b31-b4a1-cfa7a310d542/1/vn8Vk2vP0QzgnWs8YePhZCt8-Lc.roa
Signing time: Wed 01 Jan 2025 07:47:55 +0000
ROA not before: Wed 01 Jan 2025 07:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43242
IP address blocks: 185.135.96.0/24 maxlen: 24
185.135.97.0/24 maxlen: 24
185.135.98.0/24 maxlen: 24
185.135.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:e2:be:ed:1d:c1:f8:67:f2:9c:0c:81:14:29:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42004477243ca20b95dc8efe07337639806f6075
Validity
Not Before: Jan 1 07:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be7f15936bcfd10ce09d6b3c61e3e1642b7cf8b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:76:35:a1:14:6d:dc:c8:c1:ed:b3:0e:31:17:
ce:59:ad:84:0b:51:c0:72:53:53:fa:04:36:5c:d4:
e3:af:79:6d:16:75:c1:ee:5b:29:21:fd:ae:d8:48:
37:7a:4a:e2:4b:9c:02:9b:62:69:c8:88:1d:38:0d:
9b:01:95:f5:f7:0f:e5:d3:ed:88:79:35:39:f7:ea:
41:13:9a:06:fc:6f:40:fc:6e:3a:55:45:97:6f:e6:
c4:1c:c5:e9:c0:8a:e1:8c:e7:20:c1:57:bd:4a:b6:
05:fe:7b:9e:60:69:42:a4:fc:09:ba:ff:e2:9b:2f:
d3:0d:a5:2e:7d:0e:4f:1f:f6:86:8a:19:d4:65:06:
f6:c3:db:e5:8c:05:b5:bb:0d:37:24:49:15:d0:cb:
3c:40:47:24:b8:48:2f:14:77:72:7d:e9:18:4d:e4:
19:b1:67:8c:39:dc:2b:f2:7a:bf:53:4b:46:89:7f:
b6:59:b3:d0:b2:3f:29:db:38:18:04:c2:01:5d:93:
d0:45:ce:68:1a:ca:74:0b:17:43:f0:e5:3d:31:28:
b8:a8:ea:f3:98:3e:5d:89:eb:8b:e0:85:f9:0a:0b:
f8:75:81:73:af:52:97:50:17:55:bc:d2:71:c7:bc:
00:f4:6f:f8:36:72:7d:24:ae:bf:e8:cc:1c:ad:72:
3e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7F:15:93:6B:CF:D1:0C:E0:9D:6B:3C:61:E3:E1:64:2B:7C:F8:B7
X509v3 Authority Key Identifier:
keyid:42:00:44:77:24:3C:A2:0B:95:DC:8E:FE:07:33:76:39:80:6F:60:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QgBEdyQ8oguV3I7-BzN2OYBvYHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/fd757c-3a7c-4b31-b4a1-cfa7a310d542/1/vn8Vk2vP0QzgnWs8YePhZCt8-Lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/fd757c-3a7c-4b31-b4a1-cfa7a310d542/1/QgBEdyQ8oguV3I7-BzN2OYBvYHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.96.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:8b:63:1d:fe:b0:37:3d:5d:e7:62:12:37:c7:d8:45:5c:ed:
b4:08:85:0a:c9:fc:51:7d:90:0b:ae:cd:ea:62:b0:38:47:3d:
b3:8e:56:64:af:d8:56:3b:35:59:73:1e:1d:88:b6:97:4a:c5:
4c:15:4e:d1:a7:f7:57:10:8b:bc:16:9d:f6:56:fa:e0:3c:88:
58:b4:a6:85:ce:70:fd:2b:dd:d7:95:f8:06:a3:11:68:c3:b0:
41:fe:f4:f4:50:c1:9f:f1:d2:bd:fc:56:e2:59:3c:1b:0f:53:
23:91:2f:37:92:78:31:8f:c8:8e:7f:c5:26:00:0d:f1:02:15:
8b:64:e7:c1:46:87:84:7f:4e:f9:04:e8:34:6c:f9:e1:68:8c:
bc:c8:10:2e:08:e8:6f:a6:f3:87:6e:92:0c:3d:23:a7:07:e4:
bc:89:67:4b:1d:ec:83:4b:b9:68:8f:8a:c6:92:b5:fb:17:de:
2b:36:33:f9:cc:56:86:22:fa:12:ab:d9:90:ec:86:4f:67:51:
76:f0:04:8e:59:14:c1:50:d9:32:88:42:63:6d:27:94:52:e6:
1d:2b:aa:38:83:8f:d7:c2:f9:c0:78:ef:bb:3e:81:a9:a7:1c:
a9:be:89:f2:66:08:e8:a9:d0:a5:17:79:6c:48:68:a5:85:75:
15:8c:58:58
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1eK+7R3B+GfynAyBFCmyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMDA0NDc3MjQzY2EyMGI5NWRjOGVmZTA3MzM3NjM5ODA2
ZjYwNzUwHhcNMjUwMTAxMDc0NzU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTdmMTU5MzZiY2ZkMTBjZTA5ZDZiM2M2MWUzZTE2NDJiN2NmOGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlnY1oRRt3MjB7bMOMRfOWa2EC1HA
clNT+gQ2XNTjr3ltFnXB7lspIf2u2Eg3ekriS5wCm2JpyIgdOA2bAZX19w/l0+2I
eTU59+pBE5oG/G9A/G46VUWXb+bEHMXpwIrhjOcgwVe9SrYF/nueYGlCpPwJuv/i
my/TDaUufQ5PH/aGihnUZQb2w9vljAW1uw03JEkV0Ms8QEckuEgvFHdyfekYTeQZ
sWeMOdwr8nq/U0tGiX+2WbPQsj8p2zgYBMIBXZPQRc5oGsp0CxdD8OU9MSi4qOrz
mD5dieuL4IX5Cgv4dYFzr1KXUBdVvNJxx7wA9G/4NnJ9JK6/6MwcrXI+PQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL5/FZNrz9EM4J1rPGHj4WQrfPi3MB8GA1UdIwQY
MBaAFEIARHckPKILldyO/gczdjmAb2B1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWdCRWR5UThvZ3VWM0k3LUJ6TjJPWUJ2WUhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9mZDc1N2MtM2E3Yy00YjMxLWI0YTEt
Y2ZhN2EzMTBkNTQyLzEvdm44VmsydlAwUXpnbldzOFllUGhaQ3Q4LUxjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9mZDc1N2MtM2E3Yy00YjMxLWI0YTEtY2ZhN2EzMTBkNTQy
LzEvUWdCRWR5UThvZ3VWM0k3LUJ6TjJPWUJ2WUhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYdgMA0G
CSqGSIb3DQEBCwUAA4IBAQBci2Md/rA3PV3nYhI3x9hFXO20CIUKyfxRfZALrs3q
YrA4Rz2zjlZkr9hWOzVZcx4diLaXSsVMFU7Rp/dXEIu8Fp32VvrgPIhYtKaFznD9
K93XlfgGoxFow7BB/vT0UMGf8dK9/FbiWTwbD1MjkS83kngxj8iOf8UmAA3xAhWL
ZOfBRoeEf075BOg0bPnhaIy8yBAuCOhvpvOHbpIMPSOnB+S8iWdLHeyDS7loj4rG
krX7F94rNjP5zFaGIvoSq9mQ7IZPZ1F28ASOWRTBUNkyiEJjbSeUUuYdK6o4g4/X
wvnAeO+7PoGppxypvonyZgjoqdClF3lsSGilhXUVjFhY
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:40 2025 by rpki-client on console.sobornost.net