Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/i7O_oqy1hOvPc2P58vmTI6wRVkU.roa
File: i7O_oqy1hOvPc2P58vmTI6wRVkU.roa (raw, json)
Hash identifier: ySE4UK1lU4KlZ7T7JZOZsfcplexjqn6fZrZ127xQdOY=
Subject key identifier: 8B:B3:BF:A2:AC:B5:84:EB:CF:73:63:F9:F2:F9:93:23:AC:11:56:45
Certificate issuer: /CN=4840325995428043b5d905d8d2c17c302b8b3465
Certificate serial: 019421442E41CCBCEA22F9840AA931E16F2F
Authority key identifier: 48:40:32:59:95:42:80:43:B5:D9:05:D8:D2:C1:7C:30:2B:8B:34:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SEAyWZVCgEO12QXY0sF8MCuLNGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/i7O_oqy1hOvPc2P58vmTI6wRVkU.roa
Signing time: Wed 01 Jan 2025 09:48:23 +0000
ROA not before: Wed 01 Jan 2025 09:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49322
IP address blocks: 92.43.96.0/21 maxlen: 21
2a00:1638::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:2e:41:cc:bc:ea:22:f9:84:0a:a9:31:e1:6f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4840325995428043b5d905d8d2c17c302b8b3465
Validity
Not Before: Jan 1 09:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8bb3bfa2acb584ebcf7363f9f2f99323ac115645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:0b:b5:3f:ac:51:46:90:ec:e5:cd:cc:ca:
a0:82:98:b8:74:b0:7d:26:57:4a:ea:f3:4a:a1:32:
71:65:92:a2:30:40:51:e1:20:5c:9d:b7:c3:57:7f:
ac:bd:94:83:c0:48:f7:6a:dd:4e:3d:4b:f0:d7:38:
05:7d:83:3a:53:ed:2f:90:87:7c:e2:32:f9:06:5f:
5f:81:7a:da:ca:44:35:7d:c3:f2:49:38:39:21:50:
e9:c2:db:da:d8:f4:6f:ea:3e:d3:fd:a2:60:fc:50:
1c:b5:d4:9f:01:4b:19:70:59:20:44:67:a5:9d:93:
7a:d6:85:c3:8c:87:f9:b0:0e:f4:5a:13:22:c5:ae:
e9:f0:40:29:ab:c4:93:66:e7:c9:a9:22:59:90:a3:
f2:d6:05:14:30:5c:40:ac:cd:1e:56:b8:07:27:cf:
0a:ab:8f:ee:f5:ca:30:ec:8f:e3:ac:24:75:f8:de:
85:73:d8:54:b2:04:ab:87:ca:d5:29:7f:01:e8:c2:
4e:06:0b:91:94:b0:12:19:0e:e2:80:e1:a7:e2:10:
e9:78:c1:06:9f:da:c6:14:cc:9a:2d:e9:84:58:17:
97:74:78:f9:ac:07:97:0c:11:71:0e:ad:50:ca:db:
2f:65:bf:42:6c:ab:af:b7:2f:21:b0:22:1f:82:f1:
c7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B3:BF:A2:AC:B5:84:EB:CF:73:63:F9:F2:F9:93:23:AC:11:56:45
X509v3 Authority Key Identifier:
keyid:48:40:32:59:95:42:80:43:B5:D9:05:D8:D2:C1:7C:30:2B:8B:34:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SEAyWZVCgEO12QXY0sF8MCuLNGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/i7O_oqy1hOvPc2P58vmTI6wRVkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/SEAyWZVCgEO12QXY0sF8MCuLNGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.96.0/21
IPv6:
2a00:1638::/32
Signature Algorithm: sha256WithRSAEncryption
a8:7b:f8:e2:da:fe:39:66:04:0b:4a:48:82:3d:49:27:48:14:
a3:a0:4e:11:28:ea:f5:1c:dc:b9:a2:6a:51:f0:f5:b5:19:ad:
f5:06:91:a7:f1:a6:7e:37:60:61:ed:c3:9c:b6:68:14:09:5b:
db:28:07:71:53:7a:e3:e4:e5:8d:8c:00:51:5a:0e:0a:a4:5c:
99:26:ba:f3:c2:28:7e:5a:4c:81:a0:45:e6:b9:ea:88:6f:bd:
5a:fd:47:88:6e:0f:09:bb:2f:98:ba:43:6d:f3:8e:86:a1:00:
b5:c2:e0:20:4f:e9:59:cc:d9:25:e7:18:f6:9e:3b:ec:79:e2:
f9:62:c2:20:9c:48:1f:1f:5e:6e:f6:ec:79:fa:5a:98:b8:a8:
0c:10:6f:ec:e9:34:4b:e5:d0:f9:d6:4a:02:8f:b8:7c:d7:32:
29:8b:c6:76:ba:32:b0:0f:c5:3d:ab:95:e1:9d:d5:4c:77:d9:
2c:2f:3c:8b:4e:d2:81:4d:1f:15:65:3f:b3:ac:ba:2f:a5:c6:
49:c2:5f:5c:c9:f7:12:9d:22:72:b1:58:f2:b9:22:ea:39:23:
04:0c:88:3b:c3:c7:ff:ed:23:7b:9e:7f:a9:d9:aa:21:12:92:
83:39:8c:92:63:7f:62:89:60:fa:de:be:be:d7:d4:bb:10:58:
9f:40:f3:23
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQhRC5BzLzqIvmECqkx4W8vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4NDAzMjU5OTU0MjgwNDNiNWQ5MDVkOGQyYzE3YzMwMmI4
YjM0NjUwHhcNMjUwMTAxMDk0ODIzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YmIzYmZhMmFjYjU4NGViY2Y3MzYzZjlmMmY5OTMyM2FjMTE1NjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo94LtT+sUUaQ7OXNzMqggpi4dLB9
JldK6vNKoTJxZZKiMEBR4SBcnbfDV3+svZSDwEj3at1OPUvw1zgFfYM6U+0vkId8
4jL5Bl9fgXraykQ1fcPySTg5IVDpwtva2PRv6j7T/aJg/FActdSfAUsZcFkgRGel
nZN61oXDjIf5sA70WhMixa7p8EApq8STZufJqSJZkKPy1gUUMFxArM0eVrgHJ88K
q4/u9cow7I/jrCR1+N6Fc9hUsgSrh8rVKX8B6MJOBguRlLASGQ7igOGn4hDpeMEG
n9rGFMyaLemEWBeXdHj5rAeXDBFxDq1QytsvZb9CbKuvty8hsCIfgvHHrQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFIuzv6KstYTrz3Nj+fL5kyOsEVZFMB8GA1UdIwQY
MBaAFEhAMlmVQoBDtdkF2NLBfDArizRlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0VBeVdaVkNnRU8xMlFYWTBzRjhNQ3VMTkdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81ZTc3YmMtMTE3YS00Mzg5LTlkYWQt
NGFjZTNkYzVhMjYyLzEvaTdPX29xeTFoT3ZQYzJQNTh2bVRJNndSVmtVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC81ZTc3YmMtMTE3YS00Mzg5LTlkYWQtNGFjZTNkYzVhMjYy
LzEvU0VBeVdaVkNnRU8xMlFYWTBzRjhNQ3VMTkdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDXCtgMA0E
AgACMAcDBQAqABY4MA0GCSqGSIb3DQEBCwUAA4IBAQCoe/ji2v45ZgQLSkiCPUkn
SBSjoE4RKOr1HNy5ompR8PW1Ga31BpGn8aZ+N2Bh7cOctmgUCVvbKAdxU3rj5OWN
jABRWg4KpFyZJrrzwih+WkyBoEXmueqIb71a/UeIbg8Juy+YukNt846GoQC1wuAg
T+lZzNkl5xj2njvseeL5YsIgnEgfH15u9ux5+lqYuKgMEG/s6TRL5dD51koCj7h8
1zIpi8Z2ujKwD8U9q5XhndVMd9ksLzyLTtKBTR8VZT+zrLovpcZJwl9cyfcSnSJy
sVjyuSLqOSMEDIg7w8f/7SN7nn+p2aohEpKDOYySY39iiWD63r6+19S7EFifQPMj
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:53 2025 by rpki-client on console.sobornost.net