Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/Fnl-4WGHpZ5LXFARfr2ATzp8vLk.roa
File: Fnl-4WGHpZ5LXFARfr2ATzp8vLk.roa (raw, json)
Hash identifier: ux6nyEJd1cHyE1av/8nhZIQD47mVZkeQGG+DrMwKlok=
Subject key identifier: 16:79:7E:E1:61:87:A5:9E:4B:5C:50:11:7E:BD:80:4F:3A:7C:BC:B9
Certificate issuer: /CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Certificate serial: 01955C9ABE2E9562DBF8E937FA21331A0100
Authority key identifier: A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/Fnl-4WGHpZ5LXFARfr2ATzp8vLk.roa
Signing time: Mon 03 Mar 2025 15:23:19 +0000
ROA not before: Mon 03 Mar 2025 15:23:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213420
IP address blocks: 85.222.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5c:9a:be:2e:95:62:db:f8:e9:37:fa:21:33:1a:01:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Validity
Not Before: Mar 3 15:23:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16797ee16187a59e4b5c50117ebd804f3a7cbcb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:59:2d:8f:f0:3b:c8:af:cd:90:ff:97:89:26:
ff:84:59:b2:eb:dd:68:d1:23:84:19:08:a8:47:49:
e2:4d:99:74:8e:70:8c:3f:ce:05:23:33:90:59:0f:
50:07:fe:d1:3a:44:1f:97:31:a1:90:42:04:1c:c1:
c5:21:ea:73:42:5f:f8:ad:92:95:5d:f5:ae:ba:bc:
90:f8:32:2c:6d:2e:02:84:a2:6a:96:0f:bf:48:ec:
c6:72:9c:b3:f3:d1:e2:4f:cc:8c:3b:6e:be:31:bd:
96:99:8d:3b:f3:54:4f:3a:cf:0b:d8:dd:4d:95:26:
ec:3b:86:a2:9e:64:c4:d5:42:8d:ab:d1:27:31:9f:
3d:fe:34:43:be:03:29:16:1d:65:81:3a:63:28:54:
77:64:f5:ec:77:24:0c:fe:b8:6f:9e:c8:b5:21:7d:
24:96:91:ad:a8:e0:29:e6:38:cb:bb:d3:e7:cf:17:
a2:af:6c:13:6f:ce:ac:13:06:0d:13:b3:13:cd:19:
9a:5f:06:90:4f:97:b4:a3:3a:48:80:fe:b4:de:ad:
9c:c9:2e:db:7f:5a:40:b5:14:1b:3e:16:5d:86:2d:
f3:d5:3a:99:8d:20:c0:41:d2:d6:5c:2a:30:ea:e9:
4b:be:7f:86:23:bf:19:fb:85:9c:ee:e7:35:a5:8b:
d4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:79:7E:E1:61:87:A5:9E:4B:5C:50:11:7E:BD:80:4F:3A:7C:BC:B9
X509v3 Authority Key Identifier:
keyid:A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/Fnl-4WGHpZ5LXFARfr2ATzp8vLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/p9eN4CNOb5lwFZL1NuRfX1WU7sM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.222.172.0/24
Signature Algorithm: sha256WithRSAEncryption
45:0b:6f:78:48:1e:41:b7:34:de:a9:7a:5a:61:6d:bf:dc:fb:
40:4c:e5:98:81:de:77:85:9b:32:fe:ea:17:49:20:ce:e4:05:
d3:8a:12:eb:c6:46:05:03:e5:c7:17:5c:d8:0d:ea:3f:44:64:
96:85:42:59:06:6f:fb:c2:0b:aa:90:59:6a:d8:01:32:fc:84:
0e:5d:32:e6:e4:27:df:70:87:8a:5c:5f:d3:93:f3:1f:df:f9:
6b:fd:d1:27:4d:b8:11:3d:fe:c8:85:99:5f:69:58:d0:ed:2b:
ed:1b:0d:79:6e:bc:51:6f:c2:20:60:dc:21:35:ed:6c:f9:0f:
e1:3f:0c:f0:26:ce:e1:ce:45:14:c3:86:f2:2e:ff:9a:44:2d:
c2:56:3c:f4:0f:fc:16:1b:25:c4:ae:e9:66:9a:b1:7d:3f:a7:
9e:86:42:66:9b:32:f8:49:70:31:49:76:12:1f:02:81:e9:96:
35:3c:59:c3:7f:98:5f:ee:62:1e:ec:0c:d0:a1:ea:b7:55:66:
9c:4b:a1:4b:14:a2:27:3d:0e:58:29:c5:f3:cb:53:87:d7:a9:
b4:31:a1:84:80:85:12:93:e6:15:eb:f8:a7:96:9d:1e:4e:7d:
52:30:e6:30:d9:7d:9e:9a:e2:41:4b:6d:f1:1f:a8:41:76:4f:
57:d2:4f:70
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZVcmr4ulWLb+Ok3+iEzGgEAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3ZDc4ZGUwMjM0ZTZmOTk3MDE1OTJmNTM2ZTQ1ZjVmNTU5
NGVlYzMwHhcNMjUwMzAzMTUyMzE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjc5N2VlMTYxODdhNTllNGI1YzUwMTE3ZWJkODA0ZjNhN2NiY2I5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlktj/A7yK/NkP+XiSb/hFmy691o
0SOEGQioR0niTZl0jnCMP84FIzOQWQ9QB/7ROkQflzGhkEIEHMHFIepzQl/4rZKV
XfWuuryQ+DIsbS4ChKJqlg+/SOzGcpyz89HiT8yMO26+Mb2WmY0781RPOs8L2N1N
lSbsO4ainmTE1UKNq9EnMZ89/jRDvgMpFh1lgTpjKFR3ZPXsdyQM/rhvnsi1IX0k
lpGtqOAp5jjLu9Pnzxeir2wTb86sEwYNE7MTzRmaXwaQT5e0ozpIgP603q2cyS7b
f1pAtRQbPhZdhi3z1TqZjSDAQdLWXCow6ulLvn+GI78Z+4Wc7uc1pYvUWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBZ5fuFhh6WeS1xQEX69gE86fLy5MB8GA1UdIwQY
MBaAFKfXjeAjTm+ZcBWS9TbkX19VlO7DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDllTjRDTk9iNWx3RlpMMU51UmZYMVdVN3NNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8zMWFhYmEtYWM3ZS00ODlmLTg3N2Mt
MjhkNWI2MDdhNDdmLzEvRm5sLTRXR0hwWjVMWEZBUmZyMkFUenA4dkxrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My8zMWFhYmEtYWM3ZS00ODlmLTg3N2MtMjhkNWI2MDdhNDdm
LzEvcDllTjRDTk9iNWx3RlpMMU51UmZYMVdVN3NNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVd6sMA0G
CSqGSIb3DQEBCwUAA4IBAQBFC294SB5BtzTeqXpaYW2/3PtATOWYgd53hZsy/uoX
SSDO5AXTihLrxkYFA+XHF1zYDeo/RGSWhUJZBm/7wguqkFlq2AEy/IQOXTLm5Cff
cIeKXF/Tk/Mf3/lr/dEnTbgRPf7IhZlfaVjQ7SvtGw15brxRb8IgYNwhNe1s+Q/h
PwzwJs7hzkUUw4byLv+aRC3CVjz0D/wWGyXErulmmrF9P6eehkJmmzL4SXAxSXYS
HwKB6ZY1PFnDf5hf7mIe7AzQoeq3VWacS6FLFKInPQ5YKcXzy1OH16m0MaGEgIUS
k+YV6/inlp0eTn1SMOYw2X2emuJBS23xH6hBdk9X0k9w
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:55 2025 by rpki-client on console.sobornost.net