Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/536cc4-b790-41c2-a32e-60b2c9821078/1/OHGF750j4DJGNc1Oe80dc-FWYaY.roa
File: OHGF750j4DJGNc1Oe80dc-FWYaY.roa (raw, json)
Hash identifier: h+xssOn739NLfAUDZmv5GlRt0V3PO+xTJdzfH9zAWE8=
Subject key identifier: 38:71:85:EF:9D:23:E0:32:46:35:CD:4E:7B:CD:1D:73:E1:56:61:A6
Certificate issuer: /CN=f41c7d47718a8a4a9d8c50b26083e718525b6c1b
Certificate serial: 019584C65B5864D6CD541F66D47679640C35
Authority key identifier: F4:1C:7D:47:71:8A:8A:4A:9D:8C:50:B2:60:83:E7:18:52:5B:6C:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Bx9R3GKikqdjFCyYIPnGFJbbBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/536cc4-b790-41c2-a32e-60b2c9821078/1/OHGF750j4DJGNc1Oe80dc-FWYaY.roa
Signing time: Tue 11 Mar 2025 10:35:46 +0000
ROA not before: Tue 11 Mar 2025 10:35:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13002
IP address blocks: 45.92.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:84:c6:5b:58:64:d6:cd:54:1f:66:d4:76:79:64:0c:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f41c7d47718a8a4a9d8c50b26083e718525b6c1b
Validity
Not Before: Mar 11 10:35:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=387185ef9d23e0324635cd4e7bcd1d73e15661a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fc:f5:11:bc:8e:ba:2c:85:d4:19:1b:41:2f:
79:7f:59:93:7d:a1:c4:42:c6:06:81:79:ba:8f:4c:
5b:26:60:f0:79:ed:f3:33:47:73:50:ea:6e:76:20:
9c:47:4f:6c:7d:f7:be:78:3b:95:c1:cf:21:62:1e:
d4:dc:f7:9a:05:94:d2:86:46:03:b4:ee:44:0b:62:
e2:2b:a1:c0:1e:f2:0b:22:2e:4a:81:13:1c:83:57:
f4:2e:bb:dd:45:ce:98:0f:f8:c6:70:71:66:73:04:
dd:3c:6f:f2:f1:14:10:15:54:0a:95:1f:1b:67:f8:
68:96:10:d4:3a:65:86:8d:bd:62:2b:ad:48:f5:4a:
40:db:8f:0c:a5:84:d4:a9:d9:6b:02:d2:ee:c4:fc:
14:54:84:7b:fe:23:04:8d:93:9c:97:cc:c7:0c:30:
d1:8b:16:39:a0:49:da:fc:a6:e5:00:98:97:ec:fe:
0d:d9:3f:b0:2a:96:2f:b1:65:a9:e2:a1:db:fa:d9:
76:c7:04:89:fe:4d:a4:2e:60:91:47:ce:96:d4:05:
07:80:18:2d:d4:da:a9:a6:9e:d4:58:dc:8e:44:48:
33:69:22:43:9a:95:7d:c2:c6:00:00:ab:44:43:25:
d8:6d:59:3c:cf:2c:53:89:80:21:13:ca:1d:08:1d:
75:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:71:85:EF:9D:23:E0:32:46:35:CD:4E:7B:CD:1D:73:E1:56:61:A6
X509v3 Authority Key Identifier:
keyid:F4:1C:7D:47:71:8A:8A:4A:9D:8C:50:B2:60:83:E7:18:52:5B:6C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Bx9R3GKikqdjFCyYIPnGFJbbBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/536cc4-b790-41c2-a32e-60b2c9821078/1/OHGF750j4DJGNc1Oe80dc-FWYaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/536cc4-b790-41c2-a32e-60b2c9821078/1/9Bx9R3GKikqdjFCyYIPnGFJbbBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.131.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:dc:d4:31:f3:b9:84:78:4d:ae:4d:dd:c3:4a:20:9f:22:18:
17:83:16:4b:64:5e:46:ff:e9:45:42:3e:47:76:95:e2:87:ed:
5f:d8:36:d8:ba:a3:28:39:be:de:e0:4d:4b:9f:d1:48:1b:d8:
95:6f:14:a6:25:4b:4e:ac:e3:7b:6c:77:f4:99:90:0e:d6:af:
b0:6e:64:50:47:c6:b1:25:b8:a0:30:d1:4d:9b:48:5f:ad:47:
25:0a:6d:01:45:fc:50:74:39:61:05:f2:91:5e:d7:dc:64:a8:
8a:aa:96:c9:80:74:54:af:18:b2:7a:2e:e1:e3:4a:84:12:4d:
3c:b3:82:99:bc:9d:b6:98:46:1b:5e:c6:c2:70:6e:75:1a:b3:
93:eb:ca:ff:06:d5:08:99:fb:9e:eb:dc:f2:3f:ea:f5:56:0e:
e9:35:9e:29:32:e3:42:f1:e6:cb:a3:65:85:a8:ce:a1:ae:e1:
36:4f:b1:84:a6:7b:80:d0:1d:ee:5f:d7:1c:db:6c:0a:82:48:
2e:86:51:25:b7:3c:3b:b3:66:11:e5:45:74:5f:ff:45:5f:44:
63:f8:20:f3:8e:bd:1c:c9:49:e9:5c:ef:c3:88:fd:2a:24:6f:
a2:dd:be:8d:03:42:7b:17:b4:8d:76:18:29:87:bb:91:59:14:
8b:3f:55:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZWExltYZNbNVB9m1HZ5ZAw1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0MWM3ZDQ3NzE4YThhNGE5ZDhjNTBiMjYwODNlNzE4NTI1
YjZjMWIwHhcNMjUwMzExMTAzNTQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzODcxODVlZjlkMjNlMDMyNDYzNWNkNGU3YmNkMWQ3M2UxNTY2MWE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvz1EbyOuiyF1BkbQS95f1mTfaHE
QsYGgXm6j0xbJmDwee3zM0dzUOpudiCcR09sffe+eDuVwc8hYh7U3PeaBZTShkYD
tO5EC2LiK6HAHvILIi5KgRMcg1f0LrvdRc6YD/jGcHFmcwTdPG/y8RQQFVQKlR8b
Z/holhDUOmWGjb1iK61I9UpA248MpYTUqdlrAtLuxPwUVIR7/iMEjZOcl8zHDDDR
ixY5oEna/KblAJiX7P4N2T+wKpYvsWWp4qHb+tl2xwSJ/k2kLmCRR86W1AUHgBgt
1Nqppp7UWNyOREgzaSJDmpV9wsYAAKtEQyXYbVk8zyxTiYAhE8odCB11XQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDhxhe+dI+AyRjXNTnvNHXPhVmGmMB8GA1UdIwQY
MBaAFPQcfUdxiopKnYxQsmCD5xhSW2wbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUJ4OVIzR0tpa3FkakZDeVlJUG5HRkpiYkJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81MzZjYzQtYjc5MC00MWMyLWEzMmUt
NjBiMmM5ODIxMDc4LzEvT0hHRjc1MGo0REpHTmMxT2U4MGRjLUZXWWFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS81MzZjYzQtYjc5MC00MWMyLWEzMmUtNjBiMmM5ODIxMDc4
LzEvOUJ4OVIzR0tpa3FkakZDeVlJUG5HRkpiYkJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVyDMA0G
CSqGSIb3DQEBCwUAA4IBAQBN3NQx87mEeE2uTd3DSiCfIhgXgxZLZF5G/+lFQj5H
dpXih+1f2DbYuqMoOb7e4E1Ln9FIG9iVbxSmJUtOrON7bHf0mZAO1q+wbmRQR8ax
JbigMNFNm0hfrUclCm0BRfxQdDlhBfKRXtfcZKiKqpbJgHRUrxiyei7h40qEEk08
s4KZvJ22mEYbXsbCcG51GrOT68r/BtUImfue69zyP+r1Vg7pNZ4pMuNC8ebLo2WF
qM6hruE2T7GEpnuA0B3uX9cc22wKgkguhlEltzw7s2YR5UV0X/9FX0Rj+CDzjr0c
yUnpXO/DiP0qJG+i3b6NA0J7F7SNdhgph7uRWRSLP1Wg
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:54 2025 by rpki-client on console.sobornost.net