Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/U0KY9ZKPsJlqZ_fjj5KuOfG7liQ.roa
File: U0KY9ZKPsJlqZ_fjj5KuOfG7liQ.roa (raw, json)
Hash identifier: 5isKje1lpF1TP+xkv3pk/79DT+7Q32SYKgQSnAuwk8E=
Subject key identifier: 53:42:98:F5:92:8F:B0:99:6A:67:F7:E3:8F:92:AE:39:F1:BB:96:24
Certificate issuer: /CN=bc6c8c06d2d3c2801f05458fc83413db0a5ddfad
Certificate serial: 01941F8C30273139DB65F999753AB0259D26
Authority key identifier: BC:6C:8C:06:D2:D3:C2:80:1F:05:45:8F:C8:34:13:DB:0A:5D:DF:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGyMBtLTwoAfBUWPyDQT2wpd360.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/U0KY9ZKPsJlqZ_fjj5KuOfG7liQ.roa
Signing time: Wed 01 Jan 2025 01:47:48 +0000
ROA not before: Wed 01 Jan 2025 01:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59653
IP address blocks: 81.94.40.0/24 maxlen: 24
193.33.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:30:27:31:39:db:65:f9:99:75:3a:b0:25:9d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc6c8c06d2d3c2801f05458fc83413db0a5ddfad
Validity
Not Before: Jan 1 01:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=534298f5928fb0996a67f7e38f92ae39f1bb9624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0e:f6:0b:f0:5c:e5:ca:cf:1f:1a:2f:fe:22:
c5:a0:cf:33:6e:f7:3a:de:df:55:bb:aa:18:42:73:
42:8e:06:24:0e:e9:f6:4d:f9:42:d8:c2:a0:84:9b:
2f:33:c6:81:9f:bb:12:24:b9:06:7e:96:83:55:27:
8a:cb:8c:e8:b0:ca:cf:01:1f:81:c9:e7:7a:d6:98:
08:1f:55:1b:85:7f:8e:0e:9f:58:70:2a:41:d0:cb:
1a:a6:a4:54:52:6c:e5:4d:83:1e:b9:d3:a4:8f:4c:
ba:5e:ca:6a:b8:7b:0c:29:f5:de:ba:32:e9:7c:42:
34:a2:5d:ab:47:79:34:99:79:57:94:f7:f3:16:12:
98:26:de:17:78:67:b0:a1:97:fa:94:58:79:8c:4d:
58:58:45:af:e7:a6:98:26:70:cd:3a:c8:00:56:57:
26:a0:e4:5c:15:76:79:6e:07:32:03:3b:e0:96:1c:
62:1c:eb:1e:a5:11:a0:99:a7:6f:3e:37:4b:01:ce:
80:cf:27:61:62:ae:62:c3:7d:c7:03:44:54:a6:5c:
a5:ff:7d:4d:2c:79:84:f9:ca:e8:d8:fb:d7:3b:d9:
ce:71:c0:64:d6:8c:f6:7e:8f:74:59:39:3b:81:03:
05:66:d5:ca:77:4c:83:7c:0b:43:3d:c9:31:6b:73:
10:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:42:98:F5:92:8F:B0:99:6A:67:F7:E3:8F:92:AE:39:F1:BB:96:24
X509v3 Authority Key Identifier:
keyid:BC:6C:8C:06:D2:D3:C2:80:1F:05:45:8F:C8:34:13:DB:0A:5D:DF:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGyMBtLTwoAfBUWPyDQT2wpd360.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/U0KY9ZKPsJlqZ_fjj5KuOfG7liQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/vGyMBtLTwoAfBUWPyDQT2wpd360.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.94.40.0/24
193.33.208.0/24
Signature Algorithm: sha256WithRSAEncryption
39:27:9f:4e:10:c0:ad:c7:2d:e4:67:ba:5b:72:42:84:3f:e5:
d9:80:14:8d:9c:e8:36:1a:d4:00:98:d2:0f:7d:9c:0c:2c:0e:
06:8e:44:71:fe:42:2c:de:49:3e:bd:a0:e3:bb:59:c1:8f:d3:
7f:ba:d6:74:41:51:72:ab:04:e4:c1:6d:9a:93:76:a5:bc:97:
8f:b9:ea:8b:a6:97:b1:21:9b:5d:27:4d:4e:c4:75:13:72:14:
aa:b8:29:a9:a4:6d:9b:38:b9:80:47:43:fa:ff:0d:c2:fa:1f:
d9:18:11:bf:b1:f6:4c:e4:9a:b0:04:e7:5d:80:57:f2:3a:56:
2d:ce:d4:65:95:72:9d:9a:86:b4:b2:4d:41:fb:ae:f4:fe:3d:
2c:5d:45:bc:d2:91:a2:a3:be:6c:58:c2:2a:d0:61:d1:b8:ea:
7c:15:95:f8:ad:76:65:7c:fe:d9:48:71:7f:82:e3:2d:4b:c5:
51:e3:7f:ad:49:4a:d4:4e:b5:de:3b:d5:42:8c:c1:fd:06:df:
4f:e8:8a:8f:af:65:bb:66:bd:79:78:1c:95:4d:16:9d:a7:5d:
d6:5f:58:10:87:d4:f7:30:25:71:f2:a6:2f:74:7f:3e:47:e2:
e7:80:db:9a:ae:14:6b:c2:7f:4c:b5:32:ff:6d:38:eb:06:38:
5f:23:47:00
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQfjDAnMTnbZfmZdTqwJZ0mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjNmM4YzA2ZDJkM2MyODAxZjA1NDU4ZmM4MzQxM2RiMGE1
ZGRmYWQwHhcNMjUwMTAxMDE0NzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzQyOThmNTkyOGZiMDk5NmE2N2Y3ZTM4ZjkyYWUzOWYxYmI5NjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnw72C/Bc5crPHxov/iLFoM8zbvc6
3t9Vu6oYQnNCjgYkDun2TflC2MKghJsvM8aBn7sSJLkGfpaDVSeKy4zosMrPAR+B
yed61pgIH1UbhX+ODp9YcCpB0MsapqRUUmzlTYMeudOkj0y6XspquHsMKfXeujLp
fEI0ol2rR3k0mXlXlPfzFhKYJt4XeGewoZf6lFh5jE1YWEWv56aYJnDNOsgAVlcm
oORcFXZ5bgcyAzvglhxiHOsepRGgmadvPjdLAc6AzydhYq5iw33HA0RUplyl/31N
LHmE+cro2PvXO9nOccBk1oz2fo90WTk7gQMFZtXKd0yDfAtDPckxa3MQ2QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFNCmPWSj7CZamf344+Srjnxu5YkMB8GA1UdIwQY
MBaAFLxsjAbS08KAHwVFj8g0E9sKXd+tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkd5TUJ0TFR3b0FmQlVXUHlEUVQyd3BkMzYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8xN2FkZGYtZDMyNS00YWE3LTk3YTct
NGI0M2E0NzM4MmI2LzEvVTBLWTlaS1BzSmxxWl9mamo1S3VPZkc3bGlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni8xN2FkZGYtZDMyNS00YWE3LTk3YTctNGI0M2E0NzM4MmI2
LzEvdkd5TUJ0TFR3b0FmQlVXUHlEUVQyd3BkMzYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUV4oAwQA
wSHQMA0GCSqGSIb3DQEBCwUAA4IBAQA5J59OEMCtxy3kZ7pbckKEP+XZgBSNnOg2
GtQAmNIPfZwMLA4GjkRx/kIs3kk+vaDju1nBj9N/utZ0QVFyqwTkwW2ak3alvJeP
ueqLppexIZtdJ01OxHUTchSquCmppG2bOLmAR0P6/w3C+h/ZGBG/sfZM5JqwBOdd
gFfyOlYtztRllXKdmoa0sk1B+670/j0sXUW80pGio75sWMIq0GHRuOp8FZX4rXZl
fP7ZSHF/guMtS8VR43+tSUrUTrXeO9VCjMH9Bt9P6IqPr2W7Zr15eByVTRadp13W
X1gQh9T3MCVx8qYvdH8+R+LngNuarhRrwn9MtTL/bTjrBjhfI0cA
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:56 2025 by rpki-client on console.sobornost.net