Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/1a58d4-133f-4750-a7ed-65e996312cbe/1/oovi2OmG_5VdF1BT8Wlu5iiczL4.roa
File: oovi2OmG_5VdF1BT8Wlu5iiczL4.roa (raw, json)
Hash identifier: ULm+SV4rhE1jkvbhaN1N+xEz8jSZPDpTsULqKLOAFoY=
Subject key identifier: A2:8B:E2:D8:E9:86:FF:95:5D:17:50:53:F1:69:6E:E6:28:9C:CC:BE
Certificate issuer: /CN=c4145465f0696a70d5f03ee1d5decafd41dc6385
Certificate serial: 019426D9BA6A4E5144665DEFC1AC7C0B2FD0
Authority key identifier: C4:14:54:65:F0:69:6A:70:D5:F0:3E:E1:D5:DE:CA:FD:41:DC:63:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBRUZfBpanDV8D7h1d7K_UHcY4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/1a58d4-133f-4750-a7ed-65e996312cbe/1/oovi2OmG_5VdF1BT8Wlu5iiczL4.roa
Signing time: Thu 02 Jan 2025 11:49:50 +0000
ROA not before: Thu 02 Jan 2025 11:49:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48825
IP address blocks: 95.128.128.0/21 maxlen: 21
185.4.48.0/22 maxlen: 23
2a02:64c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:ba:6a:4e:51:44:66:5d:ef:c1:ac:7c:0b:2f:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4145465f0696a70d5f03ee1d5decafd41dc6385
Validity
Not Before: Jan 2 11:49:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a28be2d8e986ff955d175053f1696ee6289cccbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:99:06:8c:ba:cd:51:ce:a0:51:54:3c:df:78:
62:3f:1f:06:ee:f0:0d:74:c2:dc:4f:73:ae:87:cc:
d5:1f:29:85:ca:72:81:22:0d:5f:a5:89:b9:1f:b0:
32:15:b4:74:38:36:30:83:30:19:1a:bd:bb:cc:aa:
03:63:f7:1e:34:4d:ac:36:8d:8e:97:2e:3a:57:61:
22:f9:6a:30:8f:5c:06:c0:ce:98:74:2b:a6:a4:7d:
a0:de:b9:47:86:c1:48:dd:86:e2:6d:f9:43:be:15:
0a:4c:b7:d2:10:87:bf:46:45:43:9f:14:06:bb:0c:
39:c8:d9:61:d8:74:ae:90:85:71:42:c4:a7:93:73:
0b:c7:4a:27:2d:95:fc:1b:3a:33:80:09:d2:b1:47:
1b:7e:6b:90:95:6b:92:43:b4:4f:6a:76:a1:d8:d5:
ab:8f:3b:5f:9e:79:90:7e:61:bd:20:97:e8:94:c1:
76:09:42:8d:88:d5:d1:d5:f4:85:48:d2:48:19:c7:
5f:d3:9b:74:a6:d2:11:3d:89:dc:f7:96:ad:b2:6d:
99:10:b4:de:2f:13:df:99:3f:6a:a7:75:c6:cf:95:
63:7b:a6:50:29:84:7e:59:13:54:7a:15:78:29:0d:
19:19:64:0c:19:2c:cd:52:d4:0b:ff:f6:b9:81:9b:
c9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:8B:E2:D8:E9:86:FF:95:5D:17:50:53:F1:69:6E:E6:28:9C:CC:BE
X509v3 Authority Key Identifier:
keyid:C4:14:54:65:F0:69:6A:70:D5:F0:3E:E1:D5:DE:CA:FD:41:DC:63:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBRUZfBpanDV8D7h1d7K_UHcY4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/1a58d4-133f-4750-a7ed-65e996312cbe/1/oovi2OmG_5VdF1BT8Wlu5iiczL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/1a58d4-133f-4750-a7ed-65e996312cbe/1/xBRUZfBpanDV8D7h1d7K_UHcY4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.128.0/21
185.4.48.0/22
IPv6:
2a02:64c0::/32
Signature Algorithm: sha256WithRSAEncryption
02:6a:f8:42:25:b1:5f:d1:13:f6:fe:34:48:36:04:34:ce:28:
5d:c4:71:c3:35:41:4b:78:79:52:e1:a6:3c:0e:55:e0:38:7d:
29:f1:3b:13:98:d7:f3:5c:5a:12:25:2e:33:2b:21:62:14:08:
03:19:6c:a3:fd:57:9d:35:95:b4:d5:48:c7:22:89:7a:99:39:
8e:f7:55:cf:a0:ab:87:a5:2b:58:6b:72:7b:62:92:14:09:e1:
ff:3b:26:d2:05:dc:e2:01:57:ac:6b:8a:9b:1d:4f:a5:69:54:
2e:eb:d5:f8:ff:73:ca:96:03:d9:4c:84:42:c1:d7:74:cd:b3:
2b:55:4d:9b:09:bc:a1:c1:43:c7:94:5c:d9:fd:05:60:b2:20:
0b:4f:58:83:16:74:cb:c6:8d:92:af:3d:5a:d0:1e:4f:ae:a1:
ec:45:5e:ea:f8:33:ed:e9:1a:f1:28:d5:8c:cf:5a:18:42:9c:
de:55:0b:9d:36:66:41:92:72:3a:53:50:07:69:b7:dc:9c:8a:
23:9c:4f:0c:c5:96:0b:cf:5f:70:ab:a8:7b:43:7b:9e:b6:9f:
a1:cf:1a:40:11:da:fb:0f:73:51:14:a7:7b:26:ff:c3:3e:d5:
79:fd:43:9d:df:13:2e:23:db:97:c9:4b:8c:89:a2:a7:12:72:
00:a6:ba:ee
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAZQm2bpqTlFEZl3vwax8Cy/QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0MTQ1NDY1ZjA2OTZhNzBkNWYwM2VlMWQ1ZGVjYWZkNDFk
YzYzODUwHhcNMjUwMTAyMTE0OTUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjhiZTJkOGU5ODZmZjk1NWQxNzUwNTNmMTY5NmVlNjI4OWNjY2JlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZkGjLrNUc6gUVQ833hiPx8G7vAN
dMLcT3Ouh8zVHymFynKBIg1fpYm5H7AyFbR0ODYwgzAZGr27zKoDY/ceNE2sNo2O
ly46V2Ei+Wowj1wGwM6YdCumpH2g3rlHhsFI3YbibflDvhUKTLfSEIe/RkVDnxQG
uww5yNlh2HSukIVxQsSnk3MLx0onLZX8GzozgAnSsUcbfmuQlWuSQ7RPanah2NWr
jztfnnmQfmG9IJfolMF2CUKNiNXR1fSFSNJIGcdf05t0ptIRPYnc95atsm2ZELTe
LxPfmT9qp3XGz5Vje6ZQKYR+WRNUehV4KQ0ZGWQMGSzNUtQL//a5gZvJ4QIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFKKL4tjphv+VXRdQU/FpbuYonMy+MB8GA1UdIwQY
MBaAFMQUVGXwaWpw1fA+4dXeyv1B3GOFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEJSVVpmQnBhbkRWOEQ3aDFkN0tfVUhjWTRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS8xYTU4ZDQtMTMzZi00NzUwLWE3ZWQt
NjVlOTk2MzEyY2JlLzEvb292aTJPbUdfNVZkRjFCVDhXbHU1aWljekw0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS8xYTU4ZDQtMTMzZi00NzUwLWE3ZWQtNjVlOTk2MzEyY2Jl
LzEveEJSVVpmQnBhbkRWOEQ3aDFkN0tfVUhjWTRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDX4CAAwQC
uQQwMA0EAgACMAcDBQAqAmTAMA0GCSqGSIb3DQEBCwUAA4IBAQACavhCJbFf0RP2
/jRINgQ0zihdxHHDNUFLeHlS4aY8DlXgOH0p8TsTmNfzXFoSJS4zKyFiFAgDGWyj
/VedNZW01UjHIol6mTmO91XPoKuHpStYa3J7YpIUCeH/OybSBdziAVesa4qbHU+l
aVQu69X4/3PKlgPZTIRCwdd0zbMrVU2bCbyhwUPHlFzZ/QVgsiALT1iDFnTLxo2S
rz1a0B5PrqHsRV7q+DPt6RrxKNWMz1oYQpzeVQudNmZBknI6U1AHabfcnIojnE8M
xZYLz19wq6h7Q3uetp+hzxpAEdr7D3NRFKd7Jv/DPtV5/UOd3xMuI9uXyUuMiaKn
EnIAprru
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:56 2025 by rpki-client on console.sobornost.net