Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/oFUtP_j2ZCyu_J50UrRGpbjSFjU.roa
File: oFUtP_j2ZCyu_J50UrRGpbjSFjU.roa (raw, json)
Hash identifier: m1FCny0/BBWMYnK91IkO928LzuL62Jv5wA1oYppbGd4=
Subject key identifier: A0:55:2D:3F:F8:F6:64:2C:AE:FC:9E:74:52:B4:46:A5:B8:D2:16:35
Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Certificate serial: 01961BBF1DEEB805306C43F4310E56BB98AE
Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/oFUtP_j2ZCyu_J50UrRGpbjSFjU.roa
Signing time: Wed 09 Apr 2025 18:10:31 +0000
ROA not before: Wed 09 Apr 2025 18:10:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210976
IP address blocks: 185.196.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1b:bf:1d:ee:b8:05:30:6c:43:f4:31:0e:56:bb:98:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Validity
Not Before: Apr 9 18:10:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a0552d3ff8f6642caefc9e7452b446a5b8d21635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:de:94:4a:33:84:2f:ea:44:20:9b:1c:6a:8d:
ca:05:43:f1:33:fa:e2:4a:23:a1:50:f9:9d:8a:1a:
08:8c:ee:d1:2d:89:f6:91:41:72:9c:21:3d:9c:20:
a4:57:60:12:12:7b:f1:10:f1:a8:9b:0b:04:59:f4:
ef:15:e0:05:5c:33:4e:f7:1e:96:44:f4:af:df:1f:
f5:a2:fa:d4:9b:e1:dd:27:ae:62:b0:36:4c:02:c6:
c4:8b:96:4d:41:30:aa:d3:a2:22:15:11:fd:47:cc:
97:7a:d7:02:d9:cd:f1:af:27:33:d7:59:a3:cb:4d:
c4:ec:fb:d5:2d:ed:43:ce:e7:0b:da:68:8a:6f:27:
9a:bf:7f:1e:6a:5d:5e:8f:1a:db:bf:3b:c9:fc:02:
53:13:6a:c2:73:58:44:11:fe:de:2e:a4:e1:25:74:
23:cb:f1:af:d8:60:4c:98:60:98:0a:40:c2:39:1d:
2f:f8:5c:06:21:65:36:6d:46:62:d2:dd:eb:53:d9:
bc:ac:e6:cf:5b:33:ad:4c:6a:d5:a9:e5:05:dc:44:
f7:8a:78:e9:66:a5:06:f4:ba:f1:4c:3c:74:7b:97:
b9:2a:0b:cf:a2:84:5a:ff:70:ed:3f:00:55:9c:fb:
e6:d3:95:28:6a:c2:a9:52:d6:64:60:1e:e6:68:2f:
54:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:55:2D:3F:F8:F6:64:2C:AE:FC:9E:74:52:B4:46:A5:B8:D2:16:35
X509v3 Authority Key Identifier:
keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/oFUtP_j2ZCyu_J50UrRGpbjSFjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.117.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ab:8a:fe:e5:ea:79:c2:3f:5e:b7:21:1c:9f:5c:2c:5d:69:
d5:85:60:20:8a:c6:cf:38:19:60:6e:c8:70:6c:5f:19:14:4d:
f8:d9:48:66:9f:79:67:08:f0:5f:81:17:fb:77:cf:78:fb:25:
79:5d:6a:9b:f8:4c:35:5e:07:02:38:49:c5:35:e4:12:79:17:
a0:05:08:cb:f7:da:82:60:51:c7:94:b7:74:b3:07:f7:bb:75:
76:3a:1b:07:87:aa:7e:64:da:92:0e:14:16:2a:50:69:cd:e9:
a9:c7:52:32:ff:b5:4c:23:25:33:fb:f2:e5:08:c1:46:85:5b:
80:a4:2b:d8:2b:10:bd:30:e5:ea:35:22:69:2b:e6:c2:8c:97:
d0:f0:3f:c6:8c:9e:d5:6c:9c:09:3d:17:cd:43:b3:0a:39:d5:
cf:65:64:fb:a3:1c:16:65:e1:1e:ea:2b:35:67:a9:5f:7d:f6:
d4:6c:2c:34:76:14:3d:f7:77:97:55:73:0e:27:be:10:18:ed:
3f:a5:7c:20:13:c9:bf:5b:2e:d7:fd:15:2e:e8:c9:68:31:f5:
7d:b7:ec:e6:ae:c5:06:b6:61:16:3f:df:21:5f:fd:f7:8e:db:
21:2b:de:bf:78:bf:6c:7c:7a:45:7d:24:65:81:77:4b:1e:ba:
96:d0:a4:aa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZYbvx3uuAUwbEP0MQ5Wu5iuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMjJlMWMyYTUzMTUzMzRiNjZkODBmNzhkNWI1MGI0MmU0
ODBiOWMwHhcNMjUwNDA5MTgxMDMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDU1MmQzZmY4ZjY2NDJjYWVmYzllNzQ1MmI0NDZhNWI4ZDIxNjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0N6USjOEL+pEIJscao3KBUPxM/ri
SiOhUPmdihoIjO7RLYn2kUFynCE9nCCkV2ASEnvxEPGomwsEWfTvFeAFXDNO9x6W
RPSv3x/1ovrUm+HdJ65isDZMAsbEi5ZNQTCq06IiFRH9R8yXetcC2c3xrycz11mj
y03E7PvVLe1DzucL2miKbyeav38eal1ejxrbvzvJ/AJTE2rCc1hEEf7eLqThJXQj
y/Gv2GBMmGCYCkDCOR0v+FwGIWU2bUZi0t3rU9m8rObPWzOtTGrVqeUF3ET3injp
ZqUG9LrxTDx0e5e5KgvPooRa/3DtPwBVnPvm05UoasKpUtZkYB7maC9UXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKBVLT/49mQsrvyedFK0RqW40hY1MB8GA1UdIwQY
MBaAFGIi4cKlMVM0tm2A941bULQuSAucMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWlMaHdxVXhVelMyYllEM2pWdFF0QzVJQzV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS85OTliOTctYzczMS00MTkyLTg1ZjEt
NTczNzAxYzg0ODMzLzEvb0ZVdFBfajJaQ3l1X0o1MFVyUkdwYmpTRmpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS85OTliOTctYzczMS00MTkyLTg1ZjEtNTczNzAxYzg0ODMz
LzEvWWlMaHdxVXhVelMyYllEM2pWdFF0QzVJQzV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucR1MA0G
CSqGSIb3DQEBCwUAA4IBAQAqq4r+5ep5wj9etyEcn1wsXWnVhWAgisbPOBlgbshw
bF8ZFE342Uhmn3lnCPBfgRf7d894+yV5XWqb+Ew1XgcCOEnFNeQSeRegBQjL99qC
YFHHlLd0swf3u3V2OhsHh6p+ZNqSDhQWKlBpzempx1Iy/7VMIyUz+/LlCMFGhVuA
pCvYKxC9MOXqNSJpK+bCjJfQ8D/GjJ7VbJwJPRfNQ7MKOdXPZWT7oxwWZeEe6is1
Z6lfffbUbCw0dhQ993eXVXMOJ74QGO0/pXwgE8m/Wy7X/RUu6MloMfV9t+zmrsUG
tmEWP98hX/33jtshK96/eL9sfHpFfSRlgXdLHrqW0KSq
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:41 2025 by rpki-client on console.sobornost.net