Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/1cfeb7-d0aa-4c1d-bb9b-763abab97101/1/Dj-Uv0t3dvfxWtykcGKcEfSOyys.roa
File: Dj-Uv0t3dvfxWtykcGKcEfSOyys.roa (raw, json)
Hash identifier: Cq81bMV4HRofyA9CM4mQwXF2q1ipT3j7p1KwK0T9L7g=
Subject key identifier: 0E:3F:94:BF:4B:77:76:F7:F1:5A:DC:A4:70:62:9C:11:F4:8E:CB:2B
Certificate issuer: /CN=185f3c33fb0113b45d45929a4c06f28c714dca4b
Certificate serial: 019423D7FE0DBAE9A40011DEC43D91917ED8
Authority key identifier: 18:5F:3C:33:FB:01:13:B4:5D:45:92:9A:4C:06:F2:8C:71:4D:CA:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GF88M_sBE7RdRZKaTAbyjHFNyks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/1cfeb7-d0aa-4c1d-bb9b-763abab97101/1/Dj-Uv0t3dvfxWtykcGKcEfSOyys.roa
Signing time: Wed 01 Jan 2025 21:49:05 +0000
ROA not before: Wed 01 Jan 2025 21:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58183
IP address blocks: 195.62.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:fe:0d:ba:e9:a4:00:11:de:c4:3d:91:91:7e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=185f3c33fb0113b45d45929a4c06f28c714dca4b
Validity
Not Before: Jan 1 21:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e3f94bf4b7776f7f15adca470629c11f48ecb2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:85:70:27:7e:97:a5:dd:dc:75:25:2e:fe:26:
da:85:bf:e6:e4:32:05:4f:46:1f:d9:b6:66:16:16:
2a:25:6e:ca:2f:11:bd:9c:6d:ae:c7:05:a6:39:c8:
98:15:9a:e7:30:56:1d:bd:22:08:69:f0:3f:a7:2e:
b4:17:fc:1e:ca:13:e4:70:36:cb:cd:28:8f:64:49:
c1:4b:1a:94:cb:fc:c0:92:3d:36:a0:8f:0b:c8:ac:
fd:42:ee:2e:a8:22:8d:65:0d:3c:c5:04:21:e3:cc:
49:57:b3:ce:01:64:13:99:42:e9:9c:c1:c8:df:ed:
9b:b9:46:c0:79:a4:c8:6d:8e:19:5f:00:f9:a0:e4:
94:68:b9:db:dd:1b:85:30:7f:de:6c:54:82:a5:a8:
73:c2:76:6d:18:a0:33:1d:dd:6b:e1:cf:d6:54:07:
3e:cd:f7:bf:56:5b:b0:57:db:2b:c3:20:cc:17:41:
00:d9:3f:85:52:80:68:27:e2:d0:bd:04:23:3e:fe:
d5:72:29:e4:35:d1:0e:57:49:cd:99:d0:ca:2e:a9:
f5:9d:49:b0:ea:6b:c3:12:00:e8:3e:95:02:f3:0c:
1a:69:f5:eb:96:b6:50:68:e9:21:3d:58:67:52:eb:
70:59:20:27:7f:df:b0:bd:4c:ad:f2:8a:ef:40:04:
82:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:3F:94:BF:4B:77:76:F7:F1:5A:DC:A4:70:62:9C:11:F4:8E:CB:2B
X509v3 Authority Key Identifier:
keyid:18:5F:3C:33:FB:01:13:B4:5D:45:92:9A:4C:06:F2:8C:71:4D:CA:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GF88M_sBE7RdRZKaTAbyjHFNyks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/1cfeb7-d0aa-4c1d-bb9b-763abab97101/1/Dj-Uv0t3dvfxWtykcGKcEfSOyys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/1cfeb7-d0aa-4c1d-bb9b-763abab97101/1/GF88M_sBE7RdRZKaTAbyjHFNyks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.62.35.0/24
Signature Algorithm: sha256WithRSAEncryption
61:c7:30:7a:f3:8f:65:71:81:fd:84:6c:c2:ed:28:3c:af:87:
4d:26:fe:bc:09:24:50:30:4d:a4:b9:fe:87:4d:c0:37:7a:92:
36:d5:f3:75:f3:2d:81:6e:75:f4:5d:64:6a:83:bc:1d:71:86:
c7:a2:47:61:96:38:7c:be:ea:1d:d5:21:eb:40:f0:07:92:f3:
30:bf:f4:b5:74:b9:2d:f4:b8:67:82:2c:14:4a:c9:31:d3:83:
04:02:75:54:6f:84:5d:f8:5b:42:06:69:ff:bb:4d:bb:75:67:
51:a7:dd:a2:d9:a5:74:51:5d:a8:68:d1:bc:2a:74:5c:67:c0:
92:90:86:e8:bc:83:ef:1f:4b:a5:40:29:52:56:9d:5e:44:32:
fa:1b:00:60:b3:9f:a7:27:b8:42:ce:05:b9:07:13:0c:d2:be:
3e:e7:6d:c6:27:2a:77:38:ec:a0:c2:7c:37:53:e6:26:84:e6:
d8:5f:2f:5c:84:a7:81:dc:2a:f7:ef:be:44:be:34:e6:ac:1e:
e4:80:cf:3d:c3:e8:43:5f:65:28:73:5c:ef:18:08:4e:11:49:
bc:db:98:8e:f1:65:52:43:3b:92:42:14:4c:cd:5a:10:41:95:
90:4b:21:88:d4:98:be:8f:35:1c:0a:52:af:9b:38:d3:ae:14:
8b:46:91:ad
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQj1/4NuumkABHexD2RkX7YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4NWYzYzMzZmIwMTEzYjQ1ZDQ1OTI5YTRjMDZmMjhjNzE0
ZGNhNGIwHhcNMjUwMTAxMjE0OTA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTNmOTRiZjRiNzc3NmY3ZjE1YWRjYTQ3MDYyOWMxMWY0OGVjYjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YVwJ36Xpd3cdSUu/ibahb/m5DIF
T0Yf2bZmFhYqJW7KLxG9nG2uxwWmOciYFZrnMFYdvSIIafA/py60F/weyhPkcDbL
zSiPZEnBSxqUy/zAkj02oI8LyKz9Qu4uqCKNZQ08xQQh48xJV7POAWQTmULpnMHI
3+2buUbAeaTIbY4ZXwD5oOSUaLnb3RuFMH/ebFSCpahzwnZtGKAzHd1r4c/WVAc+
zfe/VluwV9srwyDMF0EA2T+FUoBoJ+LQvQQjPv7VcinkNdEOV0nNmdDKLqn1nUmw
6mvDEgDoPpUC8wwaafXrlrZQaOkhPVhnUutwWSAnf9+wvUyt8orvQASCuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA4/lL9Ld3b38VrcpHBinBH0jssrMB8GA1UdIwQY
MBaAFBhfPDP7ARO0XUWSmkwG8oxxTcpLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0Y4OE1fc0JFN1JkUlpLYVRBYnlqSEZOeWtzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8xY2ZlYjctZDBhYS00YzFkLWJiOWIt
NzYzYWJhYjk3MTAxLzEvRGotVXYwdDNkdmZ4V3R5a2NHS2NFZlNPeXlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC8xY2ZlYjctZDBhYS00YzFkLWJiOWItNzYzYWJhYjk3MTAx
LzEvR0Y4OE1fc0JFN1JkUlpLYVRBYnlqSEZOeWtzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwz4jMA0G
CSqGSIb3DQEBCwUAA4IBAQBhxzB6849lcYH9hGzC7Sg8r4dNJv68CSRQME2kuf6H
TcA3epI21fN18y2BbnX0XWRqg7wdcYbHokdhljh8vuod1SHrQPAHkvMwv/S1dLkt
9LhngiwUSskx04MEAnVUb4Rd+FtCBmn/u027dWdRp92i2aV0UV2oaNG8KnRcZ8CS
kIbovIPvH0ulQClSVp1eRDL6GwBgs5+nJ7hCzgW5BxMM0r4+523GJyp3OOygwnw3
U+YmhObYXy9chKeB3Cr3775EvjTmrB7kgM89w+hDX2Uoc1zvGAhOEUm825iO8WVS
QzuSQhRMzVoQQZWQSyGI1Ji+jzUcClKvmzjTrhSLRpGt
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:33 2025 by rpki-client on console.sobornost.net