Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/BCN4ZtExcExoi2ZpeY5zxnXpqZs.roa
File: BCN4ZtExcExoi2ZpeY5zxnXpqZs.roa (raw, json)
Hash identifier: J4RuOv92rnUwTT9ZA2LqfolBgIUjjRVEb11UiMubpN8=
Subject key identifier: 04:23:78:66:D1:31:70:4C:68:8B:66:69:79:8E:73:C6:75:E9:A9:9B
Certificate issuer: /CN=8e0c54b3aae251915ffc98bd34a550181ffab49a
Certificate serial: 019427482518B6E86E269AA1E377D0A9F3F0
Authority key identifier: 8E:0C:54:B3:AA:E2:51:91:5F:FC:98:BD:34:A5:50:18:1F:FA:B4:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jgxUs6riUZFf_Ji9NKVQGB_6tJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/BCN4ZtExcExoi2ZpeY5zxnXpqZs.roa
Signing time: Thu 02 Jan 2025 13:50:26 +0000
ROA not before: Thu 02 Jan 2025 13:50:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8272
IP address blocks: 193.221.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:25:18:b6:e8:6e:26:9a:a1:e3:77:d0:a9:f3:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0c54b3aae251915ffc98bd34a550181ffab49a
Validity
Not Before: Jan 2 13:50:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=04237866d131704c688b6669798e73c675e9a99b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f9:03:40:17:e5:3c:7e:86:47:c1:a0:0f:65:
0d:6a:f8:b9:88:82:74:88:47:28:ed:a6:63:11:4a:
d9:79:ef:28:00:ee:a5:fb:95:a6:05:22:6e:39:27:
56:a6:c1:d6:c9:b5:cf:44:c4:b2:9f:83:f6:fa:34:
9c:9d:e4:58:27:5f:4a:94:b5:69:09:f3:fe:6a:87:
d4:40:51:57:15:54:c2:1d:d0:57:da:0d:de:08:47:
67:77:ab:f4:d1:08:5c:44:de:61:22:40:d9:77:f7:
82:db:54:48:67:76:d6:bb:88:b1:37:8a:e2:29:86:
67:a1:e9:03:90:b7:2a:e6:09:98:63:a1:35:53:03:
43:93:50:a7:58:9b:90:5b:6d:22:62:e8:76:48:d0:
64:d8:36:a1:db:6b:5a:5c:d2:f5:98:1a:d7:5b:b7:
34:b6:10:62:fe:c4:91:ac:fc:6b:3c:e2:fe:c0:f4:
6f:79:86:f8:dc:4b:19:46:09:04:bb:24:ce:6f:a6:
47:e7:33:d9:dc:45:c0:1b:39:ff:c0:e4:55:81:2e:
52:5b:bc:67:18:f0:96:4e:55:94:81:dd:f0:9d:dc:
09:a1:8c:30:c1:90:35:2b:6d:c6:be:de:b9:c3:1f:
45:98:93:fa:09:5f:2f:c0:46:27:61:ba:4d:68:b7:
b8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:23:78:66:D1:31:70:4C:68:8B:66:69:79:8E:73:C6:75:E9:A9:9B
X509v3 Authority Key Identifier:
keyid:8E:0C:54:B3:AA:E2:51:91:5F:FC:98:BD:34:A5:50:18:1F:FA:B4:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jgxUs6riUZFf_Ji9NKVQGB_6tJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/BCN4ZtExcExoi2ZpeY5zxnXpqZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/jgxUs6riUZFf_Ji9NKVQGB_6tJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.118.0/24
Signature Algorithm: sha256WithRSAEncryption
44:98:94:71:24:83:e2:5f:90:8b:f1:e0:c2:79:01:79:e9:f4:
7c:3f:36:f9:d9:0f:d7:13:16:b6:bc:ba:1b:fa:cb:da:7c:2b:
9f:2b:69:e1:5c:04:9b:23:01:25:46:f4:d5:ef:21:4e:dc:0c:
03:b1:ac:df:e8:40:5c:14:82:74:08:1c:96:65:3f:7c:23:cd:
c3:b9:c5:32:23:82:13:54:33:79:ae:34:63:4f:8e:1e:3d:89:
bd:b8:1a:a2:f7:ab:6d:89:fe:7c:f4:24:8c:77:5e:32:1d:f9:
e9:c4:bc:f4:1f:d0:a7:4d:c2:70:73:a0:15:c9:b5:f4:92:fd:
2e:1e:54:9e:57:5e:3a:22:2c:b3:f5:1f:8a:f2:62:32:cf:29:
ff:33:49:dc:80:0e:be:1d:41:49:ff:b9:2e:85:40:3c:7c:fc:
ac:e6:d6:ac:25:5f:8d:fe:b5:c3:83:f3:76:9c:49:84:f2:43:
06:22:93:38:0b:4b:dc:a5:c7:69:f2:4f:d7:ae:06:ef:23:cb:
07:ad:c3:59:1d:31:0b:e8:40:5b:4f:fb:29:25:3d:a7:f7:b8:
b0:d7:fb:75:15:b7:fb:86:3a:2c:cd:6e:30:6e:2c:12:72:f1:
27:d9:ce:04:b0:30:c3:2a:e5:3c:16:f9:dc:40:ca:b2:e3:66:
68:22:ae:29
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnSCUYtuhuJpqh43fQqfPwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMGM1NGIzYWFlMjUxOTE1ZmZjOThiZDM0YTU1MDE4MWZm
YWI0OWEwHhcNMjUwMTAyMTM1MDI2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDIzNzg2NmQxMzE3MDRjNjg4YjY2Njk3OThlNzNjNjc1ZTlhOTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0fkDQBflPH6GR8GgD2UNavi5iIJ0
iEco7aZjEUrZee8oAO6l+5WmBSJuOSdWpsHWybXPRMSyn4P2+jScneRYJ19KlLVp
CfP+aofUQFFXFVTCHdBX2g3eCEdnd6v00QhcRN5hIkDZd/eC21RIZ3bWu4ixN4ri
KYZnoekDkLcq5gmYY6E1UwNDk1CnWJuQW20iYuh2SNBk2Dah22taXNL1mBrXW7c0
thBi/sSRrPxrPOL+wPRveYb43EsZRgkEuyTOb6ZH5zPZ3EXAGzn/wORVgS5SW7xn
GPCWTlWUgd3wndwJoYwwwZA1K23Gvt65wx9FmJP6CV8vwEYnYbpNaLe4pQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAQjeGbRMXBMaItmaXmOc8Z16ambMB8GA1UdIwQY
MBaAFI4MVLOq4lGRX/yYvTSlUBgf+rSaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamd4VXM2cmlVWkZmX0ppOU5LVlFHQl82dEpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9iNjI1MGMtZTA2Mi00MDM3LWI4ZjMt
YmYxZTFkZTJlYTYzLzEvQkNONFp0RXhjRXhvaTJacGVZNXp4blhwcVpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS9iNjI1MGMtZTA2Mi00MDM3LWI4ZjMtYmYxZTFkZTJlYTYz
LzEvamd4VXM2cmlVWkZmX0ppOU5LVlFHQl82dEpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwd12MA0G
CSqGSIb3DQEBCwUAA4IBAQBEmJRxJIPiX5CL8eDCeQF56fR8Pzb52Q/XExa2vLob
+svafCufK2nhXASbIwElRvTV7yFO3AwDsazf6EBcFIJ0CByWZT98I83DucUyI4IT
VDN5rjRjT44ePYm9uBqi96ttif589CSMd14yHfnpxLz0H9CnTcJwc6AVybX0kv0u
HlSeV146Iiyz9R+K8mIyzyn/M0ncgA6+HUFJ/7kuhUA8fPys5tasJV+N/rXDg/N2
nEmE8kMGIpM4C0vcpcdp8k/XrgbvI8sHrcNZHTEL6EBbT/spJT2n97iw1/t1Fbf7
hjoszW4wbiwScvEn2c4EsDDDKuU8FvncQMqy42ZoIq4p
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:03 2025 by rpki-client on console.sobornost.net