Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/cccc48-5781-4d64-a2b2-1bf6c509d0c5/1/NQOLfJVX_vVpBv1f8Gp913T9yy0.roa
File: NQOLfJVX_vVpBv1f8Gp913T9yy0.roa (raw, json)
Hash identifier: stjbo1zNgVaXdBLW+9MS1MMZaoclllk3ul73C9N6vmM=
Subject key identifier: 35:03:8B:7C:95:57:FE:F5:69:06:FD:5F:F0:6A:7D:D7:74:FD:CB:2D
Certificate issuer: /CN=41773e5f1d69dea0c01f31397962e7d74b43d7ba
Certificate serial: 0194282409BE96A201B510135158926F1C1E
Authority key identifier: 41:77:3E:5F:1D:69:DE:A0:C0:1F:31:39:79:62:E7:D7:4B:43:D7:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXc-Xx1p3qDAHzE5eWLn10tD17o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/cccc48-5781-4d64-a2b2-1bf6c509d0c5/1/NQOLfJVX_vVpBv1f8Gp913T9yy0.roa
Signing time: Thu 02 Jan 2025 17:50:37 +0000
ROA not before: Thu 02 Jan 2025 17:50:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47612
IP address blocks: 195.190.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:24:09:be:96:a2:01:b5:10:13:51:58:92:6f:1c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41773e5f1d69dea0c01f31397962e7d74b43d7ba
Validity
Not Before: Jan 2 17:50:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=35038b7c9557fef56906fd5ff06a7dd774fdcb2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:14:54:95:e5:3c:20:89:ee:83:22:e0:33:2b:
0d:12:8d:77:69:9e:a1:01:4b:91:b3:43:1a:6e:df:
4f:a6:96:ec:4b:92:b6:a1:75:73:3e:bf:c0:0e:3d:
1b:8a:57:68:b3:07:28:dd:0c:d7:a7:d1:be:ba:8b:
32:29:e3:3d:b6:19:06:49:c2:b6:b8:69:fb:55:0d:
05:1e:a1:16:86:53:cd:5f:76:85:74:9e:cf:ef:6d:
07:42:54:ab:63:34:f8:33:64:8c:15:c6:01:38:10:
0a:b0:06:7b:48:70:c9:5c:de:68:cb:3a:d9:c5:a2:
47:fd:71:b3:6b:45:73:e9:78:56:9d:36:9e:87:7f:
0e:74:66:14:ac:bb:4c:b8:13:3b:d7:ab:d9:3c:30:
36:40:cf:ff:2e:42:9b:41:92:a8:e7:24:3c:07:10:
f6:42:c9:97:b5:e1:30:b7:91:dc:f6:be:cb:b0:c3:
3c:21:51:f1:c0:11:8b:2d:05:b6:bd:59:f7:12:1f:
39:71:3a:ce:51:c9:f0:a7:30:f3:42:7c:25:43:3b:
a8:42:d2:4e:41:b2:27:a1:fd:4b:c2:b5:9d:d9:3e:
fc:bf:e5:77:72:14:2d:a2:a5:e6:5c:de:21:ec:7e:
f6:a5:69:9c:ce:3a:e2:9f:ec:bd:c3:46:2a:27:e7:
48:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:03:8B:7C:95:57:FE:F5:69:06:FD:5F:F0:6A:7D:D7:74:FD:CB:2D
X509v3 Authority Key Identifier:
keyid:41:77:3E:5F:1D:69:DE:A0:C0:1F:31:39:79:62:E7:D7:4B:43:D7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXc-Xx1p3qDAHzE5eWLn10tD17o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cccc48-5781-4d64-a2b2-1bf6c509d0c5/1/NQOLfJVX_vVpBv1f8Gp913T9yy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cccc48-5781-4d64-a2b2-1bf6c509d0c5/1/QXc-Xx1p3qDAHzE5eWLn10tD17o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.3.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:04:78:34:71:b3:9e:3e:21:7e:8d:f9:70:d9:00:af:73:04:
10:84:00:5e:fd:45:a9:fc:a7:3c:03:12:69:98:47:c6:db:f4:
6f:57:67:f3:e7:23:c2:82:85:58:e9:eb:9b:b1:77:12:38:ca:
f3:54:f1:a4:2f:e1:85:ec:48:e7:4d:d6:b8:24:ea:f3:6d:95:
6d:0b:98:77:92:ad:79:ed:cc:1e:c7:4c:e7:ae:89:ed:ba:ef:
ce:07:9f:c0:f3:7d:b2:bb:d0:32:c9:a1:58:64:50:9c:6d:4a:
01:09:d2:ee:00:c6:c2:c0:f6:94:7a:b6:cb:ba:87:c4:bd:9d:
44:7e:b4:17:77:08:e3:b8:ef:46:84:b7:0c:89:44:34:e8:8a:
4c:e1:60:c8:8f:f4:e7:cf:d6:be:57:31:65:03:46:39:6a:73:
f6:c6:2c:8e:2d:56:59:cf:20:d8:36:ae:5f:d5:53:85:0f:db:
b6:30:91:d3:f8:18:68:11:fd:dc:aa:4a:59:54:1e:82:66:50:
85:23:06:c8:e6:ce:ee:e5:2a:5d:fe:99:a1:56:78:c7:df:ff:
42:69:ce:4a:3f:b4:8d:c4:19:80:2e:f7:92:3f:55:72:0c:80:
97:fe:60:fd:4a:18:8a:1c:38:0f:1c:bb:1d:fd:8f:9b:19:a2:
50:f0:f6:1d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoJAm+lqIBtRATUViSbxweMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxNzczZTVmMWQ2OWRlYTBjMDFmMzEzOTc5NjJlN2Q3NGI0
M2Q3YmEwHhcNMjUwMTAyMTc1MDM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNTAzOGI3Yzk1NTdmZWY1NjkwNmZkNWZmMDZhN2RkNzc0ZmRjYjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRRUleU8IInugyLgMysNEo13aZ6h
AUuRs0Mabt9PppbsS5K2oXVzPr/ADj0bildoswco3QzXp9G+uosyKeM9thkGScK2
uGn7VQ0FHqEWhlPNX3aFdJ7P720HQlSrYzT4M2SMFcYBOBAKsAZ7SHDJXN5oyzrZ
xaJH/XGza0Vz6XhWnTaeh38OdGYUrLtMuBM716vZPDA2QM//LkKbQZKo5yQ8BxD2
QsmXteEwt5Hc9r7LsMM8IVHxwBGLLQW2vVn3Eh85cTrOUcnwpzDzQnwlQzuoQtJO
QbInof1LwrWd2T78v+V3chQtoqXmXN4h7H72pWmczjrin+y9w0YqJ+dI7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDUDi3yVV/71aQb9X/Bqfdd0/cstMB8GA1UdIwQY
MBaAFEF3Pl8dad6gwB8xOXli59dLQ9e6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVhjLVh4MXAzcURBSHpFNWVXTG4xMHREMTdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jY2NjNDgtNTc4MS00ZDY0LWEyYjIt
MWJmNmM1MDlkMGM1LzEvTlFPTGZKVlhfdlZwQnYxZjhHcDkxM1Q5eXkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9jY2NjNDgtNTc4MS00ZDY0LWEyYjItMWJmNmM1MDlkMGM1
LzEvUVhjLVh4MXAzcURBSHpFNWVXTG4xMHREMTdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw74DMA0G
CSqGSIb3DQEBCwUAA4IBAQBOBHg0cbOePiF+jflw2QCvcwQQhABe/UWp/Kc8AxJp
mEfG2/RvV2fz5yPCgoVY6eubsXcSOMrzVPGkL+GF7EjnTda4JOrzbZVtC5h3kq15
7cwex0znrontuu/OB5/A832yu9AyyaFYZFCcbUoBCdLuAMbCwPaUerbLuofEvZ1E
frQXdwjjuO9GhLcMiUQ06IpM4WDIj/Tnz9a+VzFlA0Y5anP2xiyOLVZZzyDYNq5f
1VOFD9u2MJHT+BhoEf3cqkpZVB6CZlCFIwbI5s7u5Spd/pmhVnjH3/9Cac5KP7SN
xBmALveSP1VyDICX/mD9ShiKHDgPHLsd/Y+bGaJQ8PYd
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:55 2025 by rpki-client on console.sobornost.net