Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/LuyH1oX8EXWypVZ7iAaDpvRYVVc.roa
File: LuyH1oX8EXWypVZ7iAaDpvRYVVc.roa (raw, json)
Hash identifier: PwqXxZGK4PUOy9TXRGdRnGJ0Q9f2SZmolPNVfAk0WgM=
Subject key identifier: 2E:EC:87:D6:85:FC:11:75:B2:A5:56:7B:88:06:83:A6:F4:58:55:57
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 019420D59947B8F33A6565A562AF40E2E41B
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/LuyH1oX8EXWypVZ7iAaDpvRYVVc.roa
Signing time: Wed 01 Jan 2025 07:47:36 +0000
ROA not before: Wed 01 Jan 2025 07:47:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206362
IP address blocks: 212.70.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:99:47:b8:f3:3a:65:65:a5:62:af:40:e2:e4:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Jan 1 07:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2eec87d685fc1175b2a5567b880683a6f4585557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4f:9e:0e:55:b0:40:82:38:3f:63:a3:ed:5a:
8b:10:57:c9:42:4c:11:f2:d0:75:26:80:60:b9:ad:
23:9a:04:e1:f9:e9:e2:21:4c:3f:3b:5a:f6:c2:ed:
4d:3a:54:03:ff:62:2b:0c:f2:e9:1d:a1:4e:43:0d:
8e:5f:86:37:9f:8b:90:1e:ca:33:dd:0c:f4:d0:46:
db:71:65:10:00:84:35:f4:e7:6f:e9:7c:cd:99:0a:
7c:0d:3d:a4:ee:87:f0:c0:d5:bf:ba:43:7f:29:35:
71:8d:b1:7d:51:7a:21:e8:91:a9:40:29:d0:79:77:
10:89:61:34:51:73:4f:17:63:05:15:68:67:16:0e:
1e:ca:9a:05:8b:55:94:4c:89:73:f1:0a:73:f4:dc:
53:10:2a:bc:66:85:2e:7f:fe:b6:38:8f:7c:3e:47:
1d:b0:31:02:7f:c9:6f:cb:eb:7d:41:dd:3b:f3:3d:
7e:dc:8a:fb:fd:0b:6f:ff:84:1e:12:2d:a0:c9:ad:
5e:db:94:8a:3f:35:9c:56:e0:22:1d:19:22:8d:15:
90:fc:55:c2:da:22:46:5f:9d:d4:04:3a:f7:73:fc:
4d:fb:90:79:23:c6:b1:dd:0f:91:fc:6f:8b:11:5f:
03:80:b9:e0:c2:dc:83:72:38:d9:4b:9e:26:81:46:
67:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EC:87:D6:85:FC:11:75:B2:A5:56:7B:88:06:83:A6:F4:58:55:57
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/LuyH1oX8EXWypVZ7iAaDpvRYVVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.70.186.0/24
Signature Algorithm: sha256WithRSAEncryption
01:66:d1:a1:e9:b9:58:6a:bc:69:10:fc:59:85:9f:e0:c7:c8:
b1:03:f0:82:43:30:ac:78:49:d4:1d:5b:0b:8f:47:c6:0f:19:
3e:b8:51:6e:e5:ee:f0:dd:e5:e8:cf:bb:f2:b6:8b:31:e2:3f:
41:ca:1b:4f:03:32:be:13:44:f2:2d:f5:34:91:fc:14:4c:d2:
2f:0b:83:c1:bd:ab:b3:92:dd:e4:a0:b5:0f:e4:3c:bf:0f:ef:
67:71:d6:f3:8b:26:d7:e2:b4:c8:75:f0:5f:4f:72:87:db:df:
27:4f:bb:83:fb:5a:ec:a2:ae:ce:65:62:73:9b:46:bb:6f:89:
1c:ad:bd:ea:03:fd:57:02:37:8b:d7:5d:5a:76:f4:b6:bf:2e:
cd:4d:1a:75:a1:8a:22:ac:15:21:27:3a:da:5b:05:31:8b:06:
26:d6:e6:93:41:b4:81:2c:cd:19:65:16:18:96:f7:cd:9d:51:
ee:05:b2:63:85:7c:a8:6e:99:f2:fb:7f:60:61:fc:03:b6:78:
09:2a:0d:ef:f0:7b:f4:dc:40:67:02:f3:cd:7d:3a:09:f7:20:
8c:14:58:1a:55:46:1e:09:b4:aa:74:87:03:a6:95:fd:f3:54:
6f:94:61:3e:ac:85:4e:4c:c9:77:19:ee:16:d0:fd:0a:5d:9e:
92:58:dd:80
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1ZlHuPM6ZWWlYq9A4uQbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmNjk4ZWViMmU0OWZjYjVmOWM2NWE5OTg1N2FmMjljZTA2
NjQxZDkwHhcNMjUwMTAxMDc0NzM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZWVjODdkNjg1ZmMxMTc1YjJhNTU2N2I4ODA2ODNhNmY0NTg1NTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0+eDlWwQII4P2Oj7VqLEFfJQkwR
8tB1JoBgua0jmgTh+eniIUw/O1r2wu1NOlQD/2IrDPLpHaFOQw2OX4Y3n4uQHsoz
3Qz00EbbcWUQAIQ19Odv6XzNmQp8DT2k7ofwwNW/ukN/KTVxjbF9UXoh6JGpQCnQ
eXcQiWE0UXNPF2MFFWhnFg4eypoFi1WUTIlz8Qpz9NxTECq8ZoUuf/62OI98Pkcd
sDECf8lvy+t9Qd078z1+3Ir7/Qtv/4QeEi2gya1e25SKPzWcVuAiHRkijRWQ/FXC
2iJGX53UBDr3c/xN+5B5I8ax3Q+R/G+LEV8DgLngwtyDcjjZS54mgUZnzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC7sh9aF/BF1sqVWe4gGg6b0WFVXMB8GA1UdIwQY
MBaAFP9pjusuSfy1+cZamYV68pzgZkHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzJtTzZ5NUpfTFg1eGxxWmhYcnluT0JtUWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNGQ3NWQtOTUzYS00MDM2LTk4Mzkt
NTdjZDY4ZDljYjRlLzEvTHV5SDFvWDhFWFd5cFZaN2lBYURwdlJZVlZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9iNGQ3NWQtOTUzYS00MDM2LTk4MzktNTdjZDY4ZDljYjRl
LzEvXzJtTzZ5NUpfTFg1eGxxWmhYcnluT0JtUWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1Ea6MA0G
CSqGSIb3DQEBCwUAA4IBAQABZtGh6blYarxpEPxZhZ/gx8ixA/CCQzCseEnUHVsL
j0fGDxk+uFFu5e7w3eXoz7vytosx4j9ByhtPAzK+E0TyLfU0kfwUTNIvC4PBvauz
kt3koLUP5Dy/D+9ncdbziybX4rTIdfBfT3KH298nT7uD+1rsoq7OZWJzm0a7b4kc
rb3qA/1XAjeL111advS2vy7NTRp1oYoirBUhJzraWwUxiwYm1uaTQbSBLM0ZZRYY
lvfNnVHuBbJjhXyobpny+39gYfwDtngJKg3v8Hv03EBnAvPNfToJ9yCMFFgaVUYe
CbSqdIcDppX981RvlGE+rIVOTMl3Ge4W0P0KXZ6SWN2A
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:32 2025 by rpki-client on console.sobornost.net