Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/JboU1YA5nGSdBhAlJ_wwpPgO9RE.roa
File: JboU1YA5nGSdBhAlJ_wwpPgO9RE.roa (raw, json)
Hash identifier: 1D+yhn8j2zaxKBQogb2KXnvO3DKfm791cYznArIl2f0=
Subject key identifier: 25:BA:14:D5:80:39:9C:64:9D:06:10:25:27:FC:30:A4:F8:0E:F5:11
Certificate issuer: /CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Certificate serial: 019426D8DB81A2921A448C8F066C67F4477F
Authority key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/JboU1YA5nGSdBhAlJ_wwpPgO9RE.roa
Signing time: Thu 02 Jan 2025 11:48:53 +0000
ROA not before: Thu 02 Jan 2025 11:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211560
IP address blocks: 185.137.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:db:81:a2:92:1a:44:8c:8f:06:6c:67:f4:47:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Validity
Not Before: Jan 2 11:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=25ba14d580399c649d06102527fc30a4f80ef511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:48:de:b7:13:b7:c3:83:98:67:e3:e2:c7:30:
df:32:cf:62:c7:49:08:cc:b3:90:b3:11:72:a3:9a:
c1:6e:ec:cd:f8:07:5d:9e:e8:9e:53:09:40:e1:59:
49:29:40:44:00:90:6b:94:b1:ef:80:17:45:ef:b3:
2c:60:5a:4f:d8:60:51:8b:7a:a5:94:4f:c1:c1:3d:
56:8a:56:82:94:c0:e1:4f:87:c6:34:e8:02:ce:62:
db:fb:01:00:0b:6c:2e:fd:03:a4:98:09:9f:87:07:
84:e1:5d:45:f7:1e:4d:dd:89:96:ff:08:f5:a0:92:
a0:05:54:a3:bc:db:d3:8b:70:f9:bd:d2:f1:f8:7c:
83:5c:8e:7f:86:e4:f8:f7:f8:fb:70:3f:a6:7f:59:
56:07:c2:6a:71:26:f3:c2:56:1d:08:8e:eb:54:bd:
a8:2a:4d:6e:67:86:f3:97:00:87:4c:bd:2d:2f:76:
b5:b9:d3:48:05:08:3f:1a:19:f3:9d:45:d5:a4:6c:
b4:6e:94:ba:3e:a8:66:36:70:7e:b6:d2:15:0e:c4:
7c:7a:2d:fe:4a:a0:fe:22:97:7e:c6:c3:f0:1a:3b:
6f:b8:f1:6b:ed:7f:9c:f6:c9:cc:1d:21:b8:f3:e3:
fc:e3:69:ee:45:ed:a8:a6:ea:74:ac:59:bd:52:e1:
3f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:BA:14:D5:80:39:9C:64:9D:06:10:25:27:FC:30:A4:F8:0E:F5:11
X509v3 Authority Key Identifier:
keyid:CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/JboU1YA5nGSdBhAlJ_wwpPgO9RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.98.0/24
Signature Algorithm: sha256WithRSAEncryption
37:fc:c2:5d:a6:fe:09:1a:75:3c:a8:0a:a6:4f:08:39:8f:f1:
c1:b4:7e:0c:d4:05:0d:5f:22:d9:fd:1e:a9:e0:a5:b4:de:a5:
f1:53:64:d0:ab:2a:51:e6:50:14:e4:18:14:4b:bd:32:b8:00:
b9:2d:bd:62:9a:4b:8e:9d:58:1b:bd:0e:7e:b7:f5:2d:09:b6:
58:45:73:25:c3:06:d4:75:c4:40:63:e7:d3:c8:25:2e:3a:94:
92:2a:e4:b3:c7:9b:6e:07:2e:75:22:8a:c1:6a:ed:63:9c:b0:
3c:eb:96:66:85:6d:2f:69:ee:eb:8b:67:6c:68:62:9d:44:e3:
61:db:81:91:4b:09:35:54:c7:22:2f:c9:83:01:fb:17:f1:bf:
76:8d:75:12:c7:f0:05:c3:77:66:45:8b:39:e4:49:93:ae:33:
71:81:64:c7:fd:3c:77:5a:85:90:4c:a9:3c:47:38:b6:fe:5d:
be:82:c8:84:b2:06:48:78:c0:ee:c2:fe:d4:dd:3e:a0:dc:5f:
e0:9a:64:a2:29:44:ea:c4:aa:0d:c5:96:c7:8c:2a:e5:28:57:
d6:2d:d3:c3:5f:d0:dd:a4:92:8c:be:79:27:68:19:8c:9d:9f:
9f:cb:b0:de:4d:39:89:9e:a9:9f:ad:41:6a:57:6a:4e:76:55:
12:b2:a2:ae
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2NuBopIaRIyPBmxn9Ed/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkMGMwMzI4OTJmNjk1YWY0YzEzZmIwYWNhODA0M2QxN2Ix
Yjk3YmYwHhcNMjUwMTAyMTE0ODUzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNWJhMTRkNTgwMzk5YzY0OWQwNjEwMjUyN2ZjMzBhNGY4MGVmNTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5EjetxO3w4OYZ+PixzDfMs9ix0kI
zLOQsxFyo5rBbuzN+AddnuieUwlA4VlJKUBEAJBrlLHvgBdF77MsYFpP2GBRi3ql
lE/BwT1WilaClMDhT4fGNOgCzmLb+wEAC2wu/QOkmAmfhweE4V1F9x5N3YmW/wj1
oJKgBVSjvNvTi3D5vdLx+HyDXI5/huT49/j7cD+mf1lWB8JqcSbzwlYdCI7rVL2o
Kk1uZ4bzlwCHTL0tL3a1udNIBQg/GhnznUXVpGy0bpS6PqhmNnB+ttIVDsR8ei3+
SqD+Ipd+xsPwGjtvuPFr7X+c9snMHSG48+P842nuRe2opup0rFm9UuE/owIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCW6FNWAOZxknQYQJSf8MKT4DvURMB8GA1UdIwQY
MBaAFM0MAyiS9pWvTBP7CsqAQ9F7G5e/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelF3REtKTDJsYTlNRV9zS3lvQkQwWHNibDc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8zODRhMzItM2UxYy00ZDg2LWJkYjgt
MzUyNzZiNzk3NWFlLzEvSmJvVTFZQTVuR1NkQmhBbEpfd3dwUGdPOVJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8zODRhMzItM2UxYy00ZDg2LWJkYjgtMzUyNzZiNzk3NWFl
LzEvelF3REtKTDJsYTlNRV9zS3lvQkQwWHNibDc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYliMA0G
CSqGSIb3DQEBCwUAA4IBAQA3/MJdpv4JGnU8qAqmTwg5j/HBtH4M1AUNXyLZ/R6p
4KW03qXxU2TQqypR5lAU5BgUS70yuAC5Lb1imkuOnVgbvQ5+t/UtCbZYRXMlwwbU
dcRAY+fTyCUuOpSSKuSzx5tuBy51IorBau1jnLA865ZmhW0vae7ri2dsaGKdRONh
24GRSwk1VMciL8mDAfsX8b92jXUSx/AFw3dmRYs55EmTrjNxgWTH/Tx3WoWQTKk8
Rzi2/l2+gsiEsgZIeMDuwv7U3T6g3F/gmmSiKUTqxKoNxZbHjCrlKFfWLdPDX9Dd
pJKMvnknaBmMnZ+fy7DeTTmJnqmfrUFqV2pOdlUSsqKu
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:11 2025 by rpki-client on console.sobornost.net