Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/P2xh5AQS8g63oefSEJQg-RsTiE4.roa
File: P2xh5AQS8g63oefSEJQg-RsTiE4.roa (raw, json)
Hash identifier: fyGkFWMTxDql0OoutRE6aQhGU1Ek1V6QoGNhwV3E3j8=
Subject key identifier: 3F:6C:61:E4:04:12:F2:0E:B7:A1:E7:D2:10:94:20:F9:1B:13:88:4E
Certificate issuer: /CN=4a7a917ddcfc26e8c87b30858b6f07f29a3db43e
Certificate serial: 019420D64490A04AA08648720B1B1D2D07B1
Authority key identifier: 4A:7A:91:7D:DC:FC:26:E8:C8:7B:30:85:8B:6F:07:F2:9A:3D:B4:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SnqRfdz8JujIezCFi28H8po9tD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/P2xh5AQS8g63oefSEJQg-RsTiE4.roa
Signing time: Wed 01 Jan 2025 07:48:20 +0000
ROA not before: Wed 01 Jan 2025 07:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29453
IP address blocks: 195.140.164.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:44:90:a0:4a:a0:86:48:72:0b:1b:1d:2d:07:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a7a917ddcfc26e8c87b30858b6f07f29a3db43e
Validity
Not Before: Jan 1 07:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f6c61e40412f20eb7a1e7d2109420f91b13884e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:15:e3:28:9e:7c:69:15:01:c4:b7:d5:ef:6e:
9a:eb:c2:09:19:82:15:fd:13:b1:7a:11:31:d1:23:
a2:a5:65:85:ce:5f:0f:d2:0d:a0:7a:02:10:c6:a9:
17:d6:f6:38:b7:a8:10:42:20:93:02:fb:24:f0:e3:
c3:07:68:80:cf:57:94:66:90:b2:09:b4:28:7d:ab:
99:c4:71:a7:ee:89:91:6e:1f:d4:d7:e5:d7:b1:bd:
49:42:ec:4c:ab:a7:8d:b1:d5:24:02:df:50:89:c3:
0a:3e:d3:a8:1e:77:a5:6d:5c:1a:82:40:f7:60:e9:
8c:23:ea:c0:c2:53:0a:5c:a3:31:ef:60:87:52:4f:
b7:2f:71:30:67:f2:b7:2a:71:7d:5f:5d:18:ff:e8:
29:31:04:33:0a:5d:ec:e6:06:5f:4b:82:df:93:1d:
6e:4a:ed:ad:68:ca:ba:19:98:a4:87:da:7f:fb:ac:
bf:ab:b8:e3:00:de:13:e4:51:e8:d6:ca:67:95:4c:
b0:b8:e1:71:29:3f:51:9f:8e:eb:f1:ae:df:41:88:
d1:a5:e2:e4:e2:e7:ad:32:16:27:76:a9:06:3f:ff:
91:ee:ef:8e:7e:05:0a:1a:c9:01:5e:ed:cc:72:92:
ec:54:1c:a5:d4:56:29:ec:4d:99:15:d2:4f:b3:63:
c1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6C:61:E4:04:12:F2:0E:B7:A1:E7:D2:10:94:20:F9:1B:13:88:4E
X509v3 Authority Key Identifier:
keyid:4A:7A:91:7D:DC:FC:26:E8:C8:7B:30:85:8B:6F:07:F2:9A:3D:B4:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SnqRfdz8JujIezCFi28H8po9tD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/P2xh5AQS8g63oefSEJQg-RsTiE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/SnqRfdz8JujIezCFi28H8po9tD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.140.164.0/22
Signature Algorithm: sha256WithRSAEncryption
50:ab:75:91:bb:fe:e1:8d:b9:75:66:79:c4:e9:9c:d7:09:6e:
e5:11:9f:b1:86:f0:29:9f:a3:e5:1b:a3:2d:07:cb:ec:0b:61:
78:f7:1f:7c:72:12:d6:13:cf:28:e5:9a:f2:42:f3:52:e2:7b:
09:ab:69:1f:73:d5:4b:3a:1e:09:5b:86:55:ea:55:0a:9e:8a:
f3:fd:92:1c:ce:85:13:34:41:cd:c7:f5:e9:85:ce:64:e2:c8:
a5:83:66:f4:94:79:37:99:27:79:a3:ed:52:62:11:66:f0:3e:
8c:76:54:66:bb:56:55:ea:5b:02:50:bf:92:2f:ba:7a:71:5e:
f5:35:1e:cc:4d:10:3e:a6:1f:d7:b1:af:78:93:07:86:47:2e:
5e:76:fe:cd:71:eb:99:78:06:1f:57:80:6d:11:80:13:e6:43:
03:6a:f5:74:9e:82:08:34:cb:99:93:c3:53:9a:7d:a4:6e:a7:
76:85:b8:e8:61:21:0d:fe:14:39:9b:34:f2:1e:12:a2:cd:22:
01:38:0c:e8:5c:d3:ee:81:5a:be:55:68:6f:43:b3:73:98:0d:
0f:9a:5b:22:a6:0c:a5:23:11:18:e9:fc:e6:a9:a0:bc:8f:0a:
ed:4a:67:43:21:60:48:9f:58:52:2a:d2:20:eb:99:9e:38:ff:
e7:63:7d:a8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1kSQoEqghkhyCxsdLQexMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhN2E5MTdkZGNmYzI2ZThjODdiMzA4NThiNmYwN2YyOWEz
ZGI0M2UwHhcNMjUwMTAxMDc0ODIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZjZjNjFlNDA0MTJmMjBlYjdhMWU3ZDIxMDk0MjBmOTFiMTM4ODRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBXjKJ58aRUBxLfV726a68IJGYIV
/ROxehEx0SOipWWFzl8P0g2gegIQxqkX1vY4t6gQQiCTAvsk8OPDB2iAz1eUZpCy
CbQofauZxHGn7omRbh/U1+XXsb1JQuxMq6eNsdUkAt9QicMKPtOoHnelbVwagkD3
YOmMI+rAwlMKXKMx72CHUk+3L3EwZ/K3KnF9X10Y/+gpMQQzCl3s5gZfS4Lfkx1u
Su2taMq6GZikh9p/+6y/q7jjAN4T5FHo1spnlUywuOFxKT9Rn47r8a7fQYjRpeLk
4uetMhYndqkGP/+R7u+OfgUKGskBXu3McpLsVByl1FYp7E2ZFdJPs2PBwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD9sYeQEEvIOt6Hn0hCUIPkbE4hOMB8GA1UdIwQY
MBaAFEp6kX3c/CboyHswhYtvB/KaPbQ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU25xUmZkejhKdWpJZXpDRmkyOEg4cG85dEQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8zNGMyYmItNzllYS00ZjM5LWFjODIt
ODIwMTZkZTQyMjEyLzEvUDJ4aDVBUVM4ZzYzb2VmU0VKUWctUnNUaUU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8zNGMyYmItNzllYS00ZjM5LWFjODItODIwMTZkZTQyMjEy
LzEvU25xUmZkejhKdWpJZXpDRmkyOEg4cG85dEQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw4ykMA0G
CSqGSIb3DQEBCwUAA4IBAQBQq3WRu/7hjbl1ZnnE6ZzXCW7lEZ+xhvApn6PlG6Mt
B8vsC2F49x98chLWE88o5ZryQvNS4nsJq2kfc9VLOh4JW4ZV6lUKnorz/ZIczoUT
NEHNx/Xphc5k4silg2b0lHk3mSd5o+1SYhFm8D6MdlRmu1ZV6lsCUL+SL7p6cV71
NR7MTRA+ph/Xsa94kweGRy5edv7NceuZeAYfV4BtEYAT5kMDavV0noIINMuZk8NT
mn2kbqd2hbjoYSEN/hQ5mzTyHhKizSIBOAzoXNPugVq+VWhvQ7NzmA0Pmlsipgyl
IxEY6fzmqaC8jwrtSmdDIWBIn1hSKtIg65meOP/nY32o
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:30 2025 by rpki-client on console.sobornost.net