Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/RNunNkTlRavCIWC6GWUuTV58ZmQ.roa
File: RNunNkTlRavCIWC6GWUuTV58ZmQ.roa (raw, json)
Hash identifier: gKrJFKjacm0BkE8pyBxq+mcxr78x3vhWqOMKiIcTERc=
Subject key identifier: 44:DB:A7:36:44:E5:45:AB:C2:21:60:BA:19:65:2E:4D:5E:7C:66:64
Certificate issuer: /CN=b921277f3e7954a4af5520a99042fb0893af804d
Certificate serial: 019426D95536115068D04A08BFE3BDB95EC1
Authority key identifier: B9:21:27:7F:3E:79:54:A4:AF:55:20:A9:90:42:FB:08:93:AF:80:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uSEnfz55VKSvVSCpkEL7CJOvgE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/RNunNkTlRavCIWC6GWUuTV58ZmQ.roa
Signing time: Thu 02 Jan 2025 11:49:24 +0000
ROA not before: Thu 02 Jan 2025 11:49:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43372
IP address blocks: 195.88.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:55:36:11:50:68:d0:4a:08:bf:e3:bd:b9:5e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b921277f3e7954a4af5520a99042fb0893af804d
Validity
Not Before: Jan 2 11:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=44dba73644e545abc22160ba19652e4d5e7c6664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c0:62:9f:5a:61:f9:e6:d3:96:b3:84:76:16:
81:e6:08:42:3e:f3:8e:ff:0c:70:ad:d0:83:06:4f:
51:82:7c:2a:e7:27:62:a3:7b:00:54:5f:7f:0b:6d:
d0:47:5f:9e:9d:1d:8d:dc:44:26:fd:ef:86:3c:9c:
72:8d:b7:10:f9:7d:64:21:e4:da:64:e9:fa:d1:9e:
6f:6e:d8:df:dd:35:73:b7:08:3f:3c:e1:18:4b:b4:
1f:10:55:43:95:7b:ae:89:36:e9:4f:62:40:5e:04:
b2:45:58:c4:9e:3a:50:44:88:87:9d:6d:c7:24:6f:
5d:8e:9f:15:49:58:43:9c:c1:4b:88:47:05:bb:45:
32:3f:2d:df:c7:d1:d8:95:3d:8c:8c:47:ae:29:b7:
3b:93:fa:fc:5b:ef:86:7a:1b:4e:9f:2c:13:28:9a:
84:01:f4:af:bd:df:65:61:99:16:7a:95:13:de:07:
f0:b5:ab:c2:e7:fc:42:09:e7:29:b2:00:23:6d:7d:
16:b4:6e:ba:70:af:18:f8:85:19:d9:1a:b1:da:4e:
89:0f:7c:8f:5f:3b:0a:4f:ed:21:ca:d1:57:9a:f1:
41:db:08:4e:31:2a:c5:89:dd:91:a2:0f:dd:38:5a:
00:dc:f9:91:3b:51:e4:1b:0d:ad:d0:1a:fe:b5:54:
3a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DB:A7:36:44:E5:45:AB:C2:21:60:BA:19:65:2E:4D:5E:7C:66:64
X509v3 Authority Key Identifier:
keyid:B9:21:27:7F:3E:79:54:A4:AF:55:20:A9:90:42:FB:08:93:AF:80:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uSEnfz55VKSvVSCpkEL7CJOvgE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/RNunNkTlRavCIWC6GWUuTV58ZmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/uSEnfz55VKSvVSCpkEL7CJOvgE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.232.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:1b:c1:ca:d4:34:a5:56:5f:99:ed:88:30:ba:f5:28:0a:13:
8b:b3:eb:02:be:76:0d:37:f0:2b:b5:8e:50:2a:96:fe:ff:50:
07:65:36:39:fa:55:b0:38:a6:6d:5c:ac:43:8b:25:d8:9d:b1:
78:46:70:d6:cd:64:6c:58:4e:c9:89:73:d0:10:77:a2:d0:7c:
91:d4:20:4b:3d:bb:b3:5e:b1:10:08:15:a6:c6:4e:ae:b5:3c:
ef:33:8e:d2:a4:7e:c8:8c:9b:45:77:46:20:65:dc:35:51:c5:
c0:5a:d9:0d:18:44:0f:17:33:42:23:bc:4e:f3:e2:c4:4a:5c:
a6:80:10:3c:fc:68:15:26:18:f4:1e:86:9c:44:f2:a8:69:6d:
0d:6f:2e:da:e9:5f:f2:f3:df:9a:7c:51:12:6a:37:35:c9:b9:
de:46:a0:a7:da:fc:e8:c2:b2:39:b1:bf:16:de:45:f4:c6:84:
d6:01:f9:c6:5a:e6:54:5b:1f:5d:4c:cf:6c:dd:ac:ac:09:d0:
15:b1:66:06:23:b7:5d:e5:c9:e3:88:98:dc:c8:7f:c9:c5:8d:
f2:da:16:72:6e:41:1d:6d:00:81:27:0a:05:7b:0d:e3:cc:f8:
e3:a2:db:ec:f6:bb:82:93:d1:21:a2:74:50:a6:64:3d:33:f5:
bf:74:4a:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2VU2EVBo0EoIv+O9uV7BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5MjEyNzdmM2U3OTU0YTRhZjU1MjBhOTkwNDJmYjA4OTNh
ZjgwNGQwHhcNMjUwMTAyMTE0OTI0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGRiYTczNjQ0ZTU0NWFiYzIyMTYwYmExOTY1MmU0ZDVlN2M2NjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8Bin1ph+ebTlrOEdhaB5ghCPvOO
/wxwrdCDBk9Rgnwq5ydio3sAVF9/C23QR1+enR2N3EQm/e+GPJxyjbcQ+X1kIeTa
ZOn60Z5vbtjf3TVztwg/POEYS7QfEFVDlXuuiTbpT2JAXgSyRVjEnjpQRIiHnW3H
JG9djp8VSVhDnMFLiEcFu0UyPy3fx9HYlT2MjEeuKbc7k/r8W++GehtOnywTKJqE
AfSvvd9lYZkWepUT3gfwtavC5/xCCecpsgAjbX0WtG66cK8Y+IUZ2Rqx2k6JD3yP
XzsKT+0hytFXmvFB2whOMSrFid2Rog/dOFoA3PmRO1HkGw2t0Br+tVQ6tQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFETbpzZE5UWrwiFguhllLk1efGZkMB8GA1UdIwQY
MBaAFLkhJ38+eVSkr1UgqZBC+wiTr4BNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVNFbmZ6NTVWS1N2VlNDcGtFTDdDSk92Z0UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi84Y2NiY2MtY2Q1MS00NGFlLThmMDUt
MzZmZDIzMzUxNGY5LzEvUk51bk5rVGxSYXZDSVdDNkdXVXVUVjU4Wm1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi84Y2NiY2MtY2Q1MS00NGFlLThmMDUtMzZmZDIzMzUxNGY5
LzEvdVNFbmZ6NTVWS1N2VlNDcGtFTDdDSk92Z0UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1joMA0G
CSqGSIb3DQEBCwUAA4IBAQANG8HK1DSlVl+Z7YgwuvUoChOLs+sCvnYNN/ArtY5Q
Kpb+/1AHZTY5+lWwOKZtXKxDiyXYnbF4RnDWzWRsWE7JiXPQEHei0HyR1CBLPbuz
XrEQCBWmxk6utTzvM47SpH7IjJtFd0YgZdw1UcXAWtkNGEQPFzNCI7xO8+LESlym
gBA8/GgVJhj0HoacRPKoaW0Nby7a6V/y89+afFESajc1ybneRqCn2vzowrI5sb8W
3kX0xoTWAfnGWuZUWx9dTM9s3aysCdAVsWYGI7dd5cnjiJjcyH/JxY3y2hZybkEd
bQCBJwoFew3jzPjjotvs9ruCk9EhonRQpmQ9M/W/dEo0
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:32 2025 by rpki-client on console.sobornost.net