Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Sp3s8d24W50omihdFF09egH95m0.roa
File: Sp3s8d24W50omihdFF09egH95m0.roa (raw, json)
Hash identifier: bOk7F1GV8W9JmfHbpRrqLsR3FgAZZneJVIO0mHmpH+8=
Subject key identifier: 4A:9D:EC:F1:DD:B8:5B:9D:28:9A:28:5D:14:5D:3D:7A:01:FD:E6:6D
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 019421B210D1E23BE4D3791BBF075106EEA6
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Sp3s8d24W50omihdFF09egH95m0.roa
Signing time: Wed 01 Jan 2025 11:48:25 +0000
ROA not before: Wed 01 Jan 2025 11:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25552
IP address blocks: 82.177.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:10:d1:e2:3b:e4:d3:79:1b:bf:07:51:06:ee:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 11:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a9decf1ddb85b9d289a285d145d3d7a01fde66d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:25:81:d0:c8:44:fd:56:50:a0:c2:ca:89:3f:
76:2d:f3:42:eb:e7:62:b1:59:84:3d:90:20:11:b4:
27:81:d2:be:d6:3a:24:96:06:4a:aa:00:36:32:d4:
ae:09:1a:cb:bb:a3:ce:a5:10:48:ae:22:20:50:e0:
85:4b:0e:5b:b8:d6:43:f7:aa:44:c3:dc:9a:27:b0:
9f:b2:ba:ab:d2:fb:d3:ee:d3:90:7c:e9:4b:fa:0b:
4d:9d:6e:00:e5:ac:72:42:d8:91:45:42:38:1a:8a:
b7:f9:4c:e2:d4:51:f4:bf:57:2d:b3:24:0d:ed:15:
32:0a:ed:e0:64:01:64:9d:ae:b6:3d:83:eb:85:b1:
ec:76:5b:3e:37:30:73:0c:ff:63:c6:a3:7e:67:59:
39:b7:64:4a:8f:5a:7b:80:54:48:5c:ec:b3:23:28:
6f:f1:df:0c:0c:d7:49:fb:c1:c9:2e:d3:5e:3d:c1:
46:97:c2:28:cd:c6:1b:61:d2:bc:aa:5f:72:11:b2:
ff:69:3c:cb:da:aa:cf:c1:6a:da:cd:93:4a:ea:f6:
cc:09:12:a7:e7:82:d2:0e:95:a3:32:41:ff:cf:51:
9f:4f:4d:26:72:a7:a9:b2:8f:86:ff:18:49:64:dd:
fb:46:ae:c6:d9:d6:11:f9:90:35:1e:8d:86:09:3e:
36:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:9D:EC:F1:DD:B8:5B:9D:28:9A:28:5D:14:5D:3D:7A:01:FD:E6:6D
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Sp3s8d24W50omihdFF09egH95m0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.246.0/24
Signature Algorithm: sha256WithRSAEncryption
19:57:17:d2:7b:07:5c:e9:94:8f:42:2e:f8:1f:a6:fc:a1:3b:
c3:4b:19:06:9a:04:fd:b1:b5:ef:d7:aa:12:e4:62:76:78:e9:
b3:e9:67:e2:a4:94:b7:7c:21:a2:59:0f:20:b4:6b:14:6d:10:
56:fa:c3:2d:eb:6b:b9:41:e6:61:ce:5e:a7:73:fe:e8:e6:df:
fe:63:c0:7a:f2:ec:66:43:84:52:dd:9e:39:81:1b:5c:b1:2a:
cb:77:0a:bb:84:32:f5:05:16:c5:42:21:58:6e:af:9f:0f:32:
a2:27:87:a7:e9:82:0f:93:05:39:23:60:71:13:79:34:dc:7d:
4d:b3:00:c7:3a:ec:8e:ee:ea:6c:ea:61:1f:9a:b7:cf:0b:a4:
a5:53:71:e0:db:bb:d3:5d:be:64:9b:70:71:00:af:e6:a9:47:
d3:29:aa:28:fd:82:7c:01:0d:6d:97:07:14:b0:5a:a0:c6:f5:
75:14:e6:da:50:23:db:9b:a3:5f:c9:d4:54:ba:37:41:88:a9:
99:08:29:44:fd:7c:91:4c:54:8f:78:35:7b:d0:2e:03:b1:1a:
e5:46:9f:9a:84:0a:62:99:bc:ed:11:90:14:dc:00:83:e4:84:
6e:6b:0c:fb:d7:07:3a:ed:03:c3:69:d1:72:0c:a7:56:a9:25:
c9:e1:fb:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhshDR4jvk03kbvwdRBu6mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NjgzNGU2ODg5MGYzOTg2YTFiMDQ1N2NlMGY1NGFlMDNj
MmQ3NmIwHhcNMjUwMTAxMTE0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTlkZWNmMWRkYjg1YjlkMjg5YTI4NWQxNDVkM2Q3YTAxZmRlNjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAriWB0MhE/VZQoMLKiT92LfNC6+di
sVmEPZAgEbQngdK+1joklgZKqgA2MtSuCRrLu6POpRBIriIgUOCFSw5buNZD96pE
w9yaJ7Cfsrqr0vvT7tOQfOlL+gtNnW4A5axyQtiRRUI4Goq3+Uzi1FH0v1ctsyQN
7RUyCu3gZAFkna62PYPrhbHsdls+NzBzDP9jxqN+Z1k5t2RKj1p7gFRIXOyzIyhv
8d8MDNdJ+8HJLtNePcFGl8IozcYbYdK8ql9yEbL/aTzL2qrPwWrazZNK6vbMCRKn
54LSDpWjMkH/z1GfT00mcqepso+G/xhJZN37Rq7G2dYR+ZA1Ho2GCT42iQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEqd7PHduFudKJooXRRdPXoB/eZtMB8GA1UdIwQY
MBaAFFRoNOaIkPOYahsEV84PVK4DwtdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQt
NTI3NjZiMjRiYWE0LzEvU3AzczhkMjRXNTBvbWloZEZGMDllZ0g5NW0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQtNTI3NjZiMjRiYWE0
LzEvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUrH2MA0G
CSqGSIb3DQEBCwUAA4IBAQAZVxfSewdc6ZSPQi74H6b8oTvDSxkGmgT9sbXv16oS
5GJ2eOmz6WfipJS3fCGiWQ8gtGsUbRBW+sMt62u5QeZhzl6nc/7o5t/+Y8B68uxm
Q4RS3Z45gRtcsSrLdwq7hDL1BRbFQiFYbq+fDzKiJ4en6YIPkwU5I2BxE3k03H1N
swDHOuyO7ups6mEfmrfPC6SlU3Hg27vTXb5km3BxAK/mqUfTKaoo/YJ8AQ1tlwcU
sFqgxvV1FObaUCPbm6NfydRUujdBiKmZCClE/XyRTFSPeDV70C4DsRrlRp+ahApi
mbztEZAU3ACD5IRuawz71wc67QPDadFyDKdWqSXJ4ftL
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:43 2025 by rpki-client on console.sobornost.net