Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3ef386-0571-460e-8991-996a623b633e/1/bS6FP0-RWfuMzsBRZquHdjUbynI.roa
File: bS6FP0-RWfuMzsBRZquHdjUbynI.roa (raw, json)
Hash identifier: kkw9ceZnHPEpX3rLpD2wmL4u+vt4FdSYPPqT4A+84KY=
Subject key identifier: 6D:2E:85:3F:4F:91:59:FB:8C:CE:C0:51:66:AB:87:76:35:1B:CA:72
Certificate issuer: /CN=1d4c6078a5941c5cb157d5f2957cb314d7ed1bed
Certificate serial: 019425FDE0E15F9D36F3EC150804D92BA275
Authority key identifier: 1D:4C:60:78:A5:94:1C:5C:B1:57:D5:F2:95:7C:B3:14:D7:ED:1B:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HUxgeKWUHFyxV9XylXyzFNftG-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3ef386-0571-460e-8991-996a623b633e/1/bS6FP0-RWfuMzsBRZquHdjUbynI.roa
Signing time: Thu 02 Jan 2025 07:49:42 +0000
ROA not before: Thu 02 Jan 2025 07:49:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210425
IP address blocks: 194.60.144.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:e0:e1:5f:9d:36:f3:ec:15:08:04:d9:2b:a2:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d4c6078a5941c5cb157d5f2957cb314d7ed1bed
Validity
Not Before: Jan 2 07:49:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6d2e853f4f9159fb8ccec05166ab8776351bca72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:85:8d:4f:76:43:50:c7:d2:94:01:49:d6:06:
8e:2a:9d:ee:63:6d:c7:7e:c5:ee:96:dc:20:b4:81:
f5:52:9a:d6:23:12:15:be:91:16:80:12:55:3a:08:
83:a8:02:8e:58:b7:0b:d6:50:8c:0b:1d:34:8f:28:
af:c6:07:f7:8c:a9:a1:db:28:09:ca:b7:36:ec:6f:
45:51:7b:e1:b7:98:67:38:02:5c:b6:e4:8a:b9:dd:
35:74:12:6b:23:e8:21:cd:ec:8a:df:0b:f2:33:11:
88:5d:a4:0a:46:b5:92:3c:44:c8:9a:b2:78:59:36:
a5:26:bb:19:d3:99:43:bd:69:65:00:68:13:b3:e0:
00:7d:83:21:02:99:b0:eb:a0:93:78:c7:f7:22:be:
a5:20:fd:0f:6e:d6:63:c7:78:c7:4b:26:4d:1d:b3:
b6:8f:61:46:67:0e:d7:fc:0a:d9:6c:6f:1a:c2:0a:
bd:de:4e:4d:01:66:eb:5e:85:63:73:2c:33:62:65:
40:15:01:3b:58:26:a5:2c:1e:79:1e:7e:b6:67:e8:
58:a1:4c:ef:85:65:bb:7d:35:47:cf:70:57:6f:1a:
74:ec:5f:6d:6c:48:fd:ac:e7:ea:bf:22:d3:38:6c:
69:55:6f:c9:f4:dc:56:1f:f6:a4:93:1c:0b:70:62:
50:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2E:85:3F:4F:91:59:FB:8C:CE:C0:51:66:AB:87:76:35:1B:CA:72
X509v3 Authority Key Identifier:
keyid:1D:4C:60:78:A5:94:1C:5C:B1:57:D5:F2:95:7C:B3:14:D7:ED:1B:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HUxgeKWUHFyxV9XylXyzFNftG-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3ef386-0571-460e-8991-996a623b633e/1/bS6FP0-RWfuMzsBRZquHdjUbynI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3ef386-0571-460e-8991-996a623b633e/1/HUxgeKWUHFyxV9XylXyzFNftG-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.144.0/20
Signature Algorithm: sha256WithRSAEncryption
aa:8a:85:fd:73:f9:62:84:a6:27:d4:c6:61:48:b5:54:5c:74:
37:b5:f1:ac:01:5d:f0:d9:6c:5d:57:b3:c5:31:3e:d8:13:55:
db:5c:f8:e6:b6:5e:82:e9:fb:fc:14:3d:41:14:77:3e:28:f0:
a1:7e:52:78:4d:70:e4:21:b9:2d:bc:a2:0a:50:32:b6:d2:7e:
8a:b7:6e:d1:2f:68:cf:78:52:05:fe:9a:23:8e:48:34:f0:de:
e5:06:a4:01:e7:29:68:19:e9:6f:fb:07:3b:c3:40:12:31:7b:
e0:b0:f6:62:85:35:26:d0:4d:47:80:74:f1:3a:0a:5c:63:54:
d6:f5:b3:c3:1b:91:3e:c3:a5:da:28:17:01:91:e0:f4:c2:a7:
f3:fc:26:f9:1a:e0:8d:d6:07:c6:24:3a:43:2d:72:31:97:6e:
e4:ee:a1:25:a9:53:e8:ff:6c:f7:35:05:69:40:ea:e2:83:da:
d7:69:ab:6f:35:4c:e0:0b:6e:94:c0:bc:04:3c:b5:5a:b4:af:
eb:02:20:f1:1e:e9:c3:3e:31:53:0c:45:e4:5d:ac:58:5a:42:
ec:b5:bd:68:9e:3b:b8:ea:2b:6c:a2:32:c9:db:b5:18:b1:0d:
f1:e2:78:d2:bf:37:fe:69:6c:e1:78:37:b6:19:eb:cb:60:9e:
c8:a7:08:7d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/eDhX5028+wVCATZK6J1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkNGM2MDc4YTU5NDFjNWNiMTU3ZDVmMjk1N2NiMzE0ZDdl
ZDFiZWQwHhcNMjUwMTAyMDc0OTQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDJlODUzZjRmOTE1OWZiOGNjZWMwNTE2NmFiODc3NjM1MWJjYTcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4WNT3ZDUMfSlAFJ1gaOKp3uY23H
fsXultwgtIH1UprWIxIVvpEWgBJVOgiDqAKOWLcL1lCMCx00jyivxgf3jKmh2ygJ
yrc27G9FUXvht5hnOAJctuSKud01dBJrI+ghzeyK3wvyMxGIXaQKRrWSPETImrJ4
WTalJrsZ05lDvWllAGgTs+AAfYMhApmw66CTeMf3Ir6lIP0PbtZjx3jHSyZNHbO2
j2FGZw7X/ArZbG8awgq93k5NAWbrXoVjcywzYmVAFQE7WCalLB55Hn62Z+hYoUzv
hWW7fTVHz3BXbxp07F9tbEj9rOfqvyLTOGxpVW/J9NxWH/akkxwLcGJQtQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG0uhT9PkVn7jM7AUWarh3Y1G8pyMB8GA1UdIwQY
MBaAFB1MYHillBxcsVfV8pV8sxTX7RvtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFV4Z2VLV1VIRnl4VjlYeWxYeXpGTmZ0Ry0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zZWYzODYtMDU3MS00NjBlLTg5OTEt
OTk2YTYyM2I2MzNlLzEvYlM2RlAwLVJXZnVNenNCUlpxdUhkalVieW5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8zZWYzODYtMDU3MS00NjBlLTg5OTEtOTk2YTYyM2I2MzNl
LzEvSFV4Z2VLV1VIRnl4VjlYeWxYeXpGTmZ0Ry0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEwjyQMA0G
CSqGSIb3DQEBCwUAA4IBAQCqioX9c/lihKYn1MZhSLVUXHQ3tfGsAV3w2WxdV7PF
MT7YE1XbXPjmtl6C6fv8FD1BFHc+KPChflJ4TXDkIbktvKIKUDK20n6Kt27RL2jP
eFIF/pojjkg08N7lBqQB5yloGelv+wc7w0ASMXvgsPZihTUm0E1HgHTxOgpcY1TW
9bPDG5E+w6XaKBcBkeD0wqfz/Cb5GuCN1gfGJDpDLXIxl27k7qElqVPo/2z3NQVp
QOrig9rXaatvNUzgC26UwLwEPLVatK/rAiDxHunDPjFTDEXkXaxYWkLstb1onju4
6itsojLJ27UYsQ3x4njSvzf+aWzheDe2GevLYJ7Ipwh9
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:54 2025 by rpki-client on console.sobornost.net