Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4624d2-484b-4bb2-aad2-02ddcd6bda92/1/SbwwM1J0cW50ffjT8dS57JOEZaY.roa
File: SbwwM1J0cW50ffjT8dS57JOEZaY.roa (raw, json)
Hash identifier: KDW7Xd6V5dGu/swRg1Y5NG1n0fbHWB4uQ3FumDxnAtc=
Subject key identifier: 49:BC:30:33:52:74:71:6E:74:7D:F8:D3:F1:D4:B9:EC:93:84:65:A6
Certificate issuer: /CN=1571f157c3a5bd5cff5d1a47d419648a27e35a9b
Certificate serial: 01942669F6DF97E0372115557A3F38C1DD94
Authority key identifier: 15:71:F1:57:C3:A5:BD:5C:FF:5D:1A:47:D4:19:64:8A:27:E3:5A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FXHxV8OlvVz_XRpH1BlkiifjWps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4624d2-484b-4bb2-aad2-02ddcd6bda92/1/SbwwM1J0cW50ffjT8dS57JOEZaY.roa
Signing time: Thu 02 Jan 2025 09:47:46 +0000
ROA not before: Thu 02 Jan 2025 09:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51576
IP address blocks: 195.95.190.0/24 maxlen: 24
2a06:de80::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:69:f6:df:97:e0:37:21:15:55:7a:3f:38:c1:dd:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1571f157c3a5bd5cff5d1a47d419648a27e35a9b
Validity
Not Before: Jan 2 09:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=49bc30335274716e747df8d3f1d4b9ec938465a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d0:50:4a:80:f2:61:e0:f0:a2:49:49:bc:31:
39:0f:d1:d8:2b:33:c7:c7:22:fb:17:1a:b4:9f:d2:
c9:19:be:1e:36:36:88:00:e4:20:f3:da:fe:63:79:
c6:7e:78:e2:7b:33:ac:04:1d:b2:42:d1:5e:d1:cc:
ac:30:b0:f9:25:e5:0a:d5:a8:18:26:47:9f:10:31:
28:1b:ed:3e:dd:72:02:0d:dd:5d:5a:20:71:4a:fc:
03:41:ae:06:88:b8:d9:57:43:a0:c3:96:1b:0d:1a:
33:01:bf:67:b9:9e:fa:93:23:38:f2:66:8d:52:97:
c4:be:bc:c2:09:3e:5e:3b:73:e5:84:7a:40:7f:9b:
39:2e:d6:50:4c:5d:0c:92:a7:17:df:cf:4e:6b:5b:
53:be:cc:b4:64:04:e2:ef:ba:7b:6e:79:16:c4:f7:
5e:d0:77:ac:34:89:b9:bb:4f:ba:0e:1c:ab:c8:6e:
e6:83:13:c5:4f:1f:ae:76:fd:c6:ec:b6:4c:52:0e:
c1:48:d9:3d:f2:6a:c6:86:6a:21:5b:cb:13:0e:c1:
92:8e:27:4d:4a:61:c4:6b:8b:21:0c:b8:43:06:a4:
55:3e:31:60:62:4c:a9:1a:6f:f6:3e:83:30:3c:15:
02:33:57:37:d1:fe:c1:27:63:ce:fa:01:46:82:38:
2b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:BC:30:33:52:74:71:6E:74:7D:F8:D3:F1:D4:B9:EC:93:84:65:A6
X509v3 Authority Key Identifier:
keyid:15:71:F1:57:C3:A5:BD:5C:FF:5D:1A:47:D4:19:64:8A:27:E3:5A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FXHxV8OlvVz_XRpH1BlkiifjWps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4624d2-484b-4bb2-aad2-02ddcd6bda92/1/SbwwM1J0cW50ffjT8dS57JOEZaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4624d2-484b-4bb2-aad2-02ddcd6bda92/1/FXHxV8OlvVz_XRpH1BlkiifjWps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.190.0/24
IPv6:
2a06:de80::/29
Signature Algorithm: sha256WithRSAEncryption
22:3c:02:b2:17:40:16:dd:f7:ff:3a:2e:8a:85:6e:ad:d3:ca:
6b:20:cb:65:ef:20:8a:e5:28:f4:2e:e5:e5:a6:84:1e:c5:1c:
ed:91:b6:d8:b0:dd:9b:2c:52:72:01:b5:da:21:6d:88:96:f4:
8e:87:10:3f:4a:34:b7:cb:a1:cf:de:e7:28:ef:7f:5c:9d:db:
79:02:ec:c4:9e:f8:ca:85:25:8e:a7:18:5c:28:54:6d:6f:5a:
f3:a2:eb:f3:56:fc:14:b1:54:e3:e2:9e:22:d5:5f:4b:c5:95:
57:a9:1b:ed:8e:0b:9e:7f:c4:bd:c2:52:c6:0c:c0:c4:97:50:
f1:ea:36:7a:c9:27:3a:ac:8e:1f:97:01:f3:38:90:d8:70:e0:
5f:af:30:9a:1e:a3:63:c8:dc:85:7d:e8:0b:24:5a:51:ee:de:
49:97:0b:30:75:67:62:4e:42:5f:15:aa:c7:70:35:0d:6d:6e:
b0:a1:ff:3c:34:6f:47:d2:16:1e:11:88:95:f1:cf:c7:cb:b5:
4a:4e:74:3e:82:33:5a:8c:10:3f:13:32:88:7b:fe:47:cd:e2:
d6:d3:ef:2d:46:99:e4:a6:41:bb:0f:9f:cc:b2:c6:90:01:c9:
a5:82:e5:87:61:80:4e:0e:d1:1a:e8:e2:03:d5:c0:f9:95:79:
74:f6:06:30
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQmafbfl+A3IRVVej84wd2UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1NzFmMTU3YzNhNWJkNWNmZjVkMWE0N2Q0MTk2NDhhMjdl
MzVhOWIwHhcNMjUwMTAyMDk0NzQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWJjMzAzMzUyNzQ3MTZlNzQ3ZGY4ZDNmMWQ0YjllYzkzODQ2NWE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NBQSoDyYeDwoklJvDE5D9HYKzPH
xyL7Fxq0n9LJGb4eNjaIAOQg89r+Y3nGfnjiezOsBB2yQtFe0cysMLD5JeUK1agY
JkefEDEoG+0+3XICDd1dWiBxSvwDQa4GiLjZV0Ogw5YbDRozAb9nuZ76kyM48maN
UpfEvrzCCT5eO3PlhHpAf5s5LtZQTF0MkqcX389Oa1tTvsy0ZATi77p7bnkWxPde
0HesNIm5u0+6DhyryG7mgxPFTx+udv3G7LZMUg7BSNk98mrGhmohW8sTDsGSjidN
SmHEa4shDLhDBqRVPjFgYkypGm/2PoMwPBUCM1c30f7BJ2PO+gFGgjgr6wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEm8MDNSdHFudH340/HUueyThGWmMB8GA1UdIwQY
MBaAFBVx8VfDpb1c/10aR9QZZIon41qbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRlhIeFY4T2x2VnpfWFJwSDFCbGtpaWZqV3BzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80NjI0ZDItNDg0Yi00YmIyLWFhZDIt
MDJkZGNkNmJkYTkyLzEvU2J3d00xSjBjVzUwZmZqVDhkUzU3Sk9FWmFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi80NjI0ZDItNDg0Yi00YmIyLWFhZDItMDJkZGNkNmJkYTky
LzEvRlhIeFY4T2x2VnpfWFJwSDFCbGtpaWZqV3BzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw1++MA0E
AgACMAcDBQMqBt6AMA0GCSqGSIb3DQEBCwUAA4IBAQAiPAKyF0AW3ff/Oi6KhW6t
08prIMtl7yCK5Sj0LuXlpoQexRztkbbYsN2bLFJyAbXaIW2IlvSOhxA/SjS3y6HP
3uco739cndt5AuzEnvjKhSWOpxhcKFRtb1rzouvzVvwUsVTj4p4i1V9LxZVXqRvt
jguef8S9wlLGDMDEl1Dx6jZ6ySc6rI4flwHzOJDYcOBfrzCaHqNjyNyFfegLJFpR
7t5JlwswdWdiTkJfFarHcDUNbW6wof88NG9H0hYeEYiV8c/Hy7VKTnQ+gjNajBA/
EzKIe/5HzeLW0+8tRpnkpkG7D5/MssaQAcmlguWHYYBODtEa6OID1cD5lXl09gYw
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:55 2025 by rpki-client on console.sobornost.net