Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/478977-05bb-43fe-9ead-9cef792a5f6b/1/kYRQVprXEsoXLSMtF-Y7dK__rpI.roa
File: kYRQVprXEsoXLSMtF-Y7dK__rpI.roa (raw, json)
Hash identifier: tudpZ49OqGTaEDbqr8e2mMtm0qB61WvBk/ELfZYyum4=
Subject key identifier: 91:84:50:56:9A:D7:12:CA:17:2D:23:2D:17:E6:3B:74:AF:FF:AE:92
Certificate issuer: /CN=c8294a2c0c49dc936cb988b685b3a7d95c8fe0b7
Certificate serial: 0195A95EFE04E1ED7A6064854827B08710C9
Authority key identifier: C8:29:4A:2C:0C:49:DC:93:6C:B9:88:B6:85:B3:A7:D9:5C:8F:E0:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yClKLAxJ3JNsuYi2hbOn2VyP4Lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/478977-05bb-43fe-9ead-9cef792a5f6b/1/kYRQVprXEsoXLSMtF-Y7dK__rpI.roa
Signing time: Tue 18 Mar 2025 13:08:49 +0000
ROA not before: Tue 18 Mar 2025 13:08:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34183
IP address blocks: 185.117.40.0/22 maxlen: 22
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a9:5e:fe:04:e1:ed:7a:60:64:85:48:27:b0:87:10:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8294a2c0c49dc936cb988b685b3a7d95c8fe0b7
Validity
Not Before: Mar 18 13:08:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=918450569ad712ca172d232d17e63b74afffae92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8b:69:65:7f:92:aa:90:1d:9f:c8:18:62:b8:
b9:f6:69:63:d6:d2:f7:f4:24:14:c5:79:2e:13:e9:
1a:ae:80:2d:54:0a:a9:89:18:78:85:dc:8b:72:59:
e4:aa:ec:d7:cb:cc:59:b4:e4:af:f4:ca:91:97:bc:
7c:c3:cd:c4:ad:2c:29:38:1c:56:93:68:22:54:fe:
a7:6f:6a:89:a6:79:95:dd:2f:93:43:21:93:aa:6b:
71:3f:39:48:e5:9d:25:24:70:52:23:08:23:cd:93:
48:fb:b4:73:d7:ab:24:43:49:b9:8f:5b:98:5a:c9:
8c:6e:e2:00:eb:b4:16:33:08:b6:13:ce:b4:ef:90:
2a:13:84:1e:fc:94:80:8b:ec:06:38:08:35:8c:6a:
bb:04:e9:e7:90:5d:d8:b5:9e:f0:32:bc:dd:0e:ab:
46:97:fd:b5:85:f9:1b:c7:ba:88:1e:ba:3f:99:3c:
16:12:1f:7b:65:5e:a3:86:cd:ba:93:4b:c4:f4:0e:
eb:df:ac:66:3c:c8:1d:74:cf:7c:c5:ee:74:b3:db:
9e:d0:c2:e5:d3:d7:4e:29:3e:85:88:db:1b:5f:3c:
f0:10:73:b0:6a:ce:1b:8d:c6:51:42:1b:9c:35:ef:
d2:84:38:27:18:5f:27:f3:6e:ab:84:8f:af:13:3a:
7d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:84:50:56:9A:D7:12:CA:17:2D:23:2D:17:E6:3B:74:AF:FF:AE:92
X509v3 Authority Key Identifier:
keyid:C8:29:4A:2C:0C:49:DC:93:6C:B9:88:B6:85:B3:A7:D9:5C:8F:E0:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yClKLAxJ3JNsuYi2hbOn2VyP4Lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/478977-05bb-43fe-9ead-9cef792a5f6b/1/kYRQVprXEsoXLSMtF-Y7dK__rpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/478977-05bb-43fe-9ead-9cef792a5f6b/1/yClKLAxJ3JNsuYi2hbOn2VyP4Lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.40.0/22
Signature Algorithm: sha256WithRSAEncryption
62:0d:d9:36:de:22:eb:94:77:75:8f:5f:01:1e:62:c0:59:09:
8c:9b:39:48:b4:d9:d1:0b:8a:57:47:ba:55:95:49:4d:24:f8:
4f:7b:f2:a1:74:75:82:81:83:96:5d:b7:c7:7f:06:b7:ca:e4:
08:c3:8b:80:b7:1e:41:2b:ab:f0:50:7b:24:2e:bc:dc:9b:93:
dd:8a:47:e5:14:a0:cf:a6:f6:5a:7f:0b:af:dd:41:57:7d:ac:
e1:23:5a:96:f8:a2:94:11:e3:1c:9a:3e:3a:5b:9d:18:77:39:
b9:bc:51:e2:b2:ec:67:bc:93:50:31:6c:53:23:b4:44:62:78:
93:15:84:ef:22:c1:47:b9:74:b1:93:77:fb:6a:bc:4f:d5:54:
f2:cf:1e:37:f9:19:31:d9:49:0e:c4:2f:dc:d4:db:d8:ef:e0:
e4:2b:de:6b:d3:46:4d:bf:a7:29:e5:59:cf:5d:cc:9f:36:29:
c6:6d:65:26:46:7e:43:b6:dd:10:21:c3:b2:0a:42:92:e2:f4:
0e:b0:1f:32:06:3f:e3:5a:25:ca:c3:9b:ba:be:cf:0d:02:62:
9f:bd:c6:99:e6:cf:0c:7b:aa:6d:91:5c:5c:be:ba:a9:e1:04:
c5:fc:51:06:2e:75:ba:af:5e:0c:00:82:ee:e5:59:51:88:33:
bb:62:c2:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZWpXv4E4e16YGSFSCewhxDJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4Mjk0YTJjMGM0OWRjOTM2Y2I5ODhiNjg1YjNhN2Q5NWM4
ZmUwYjcwHhcNMjUwMzE4MTMwODQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTg0NTA1NjlhZDcxMmNhMTcyZDIzMmQxN2U2M2I3NGFmZmZhZTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA44tpZX+SqpAdn8gYYri59mlj1tL3
9CQUxXkuE+karoAtVAqpiRh4hdyLclnkquzXy8xZtOSv9MqRl7x8w83ErSwpOBxW
k2giVP6nb2qJpnmV3S+TQyGTqmtxPzlI5Z0lJHBSIwgjzZNI+7Rz16skQ0m5j1uY
WsmMbuIA67QWMwi2E86075AqE4Qe/JSAi+wGOAg1jGq7BOnnkF3YtZ7wMrzdDqtG
l/21hfkbx7qIHro/mTwWEh97ZV6jhs26k0vE9A7r36xmPMgddM98xe50s9ue0MLl
09dOKT6FiNsbXzzwEHOwas4bjcZRQhucNe/ShDgnGF8n826rhI+vEzp9FwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJGEUFaa1xLKFy0jLRfmO3Sv/66SMB8GA1UdIwQY
MBaAFMgpSiwMSdyTbLmItoWzp9lcj+C3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUNsS0xBeEozSk5zdVlpMmhiT24yVnlQNExjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC80Nzg5NzctMDViYi00M2ZlLTllYWQt
OWNlZjc5MmE1ZjZiLzEva1lSUVZwclhFc29YTFNNdEYtWTdkS19fcnBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC80Nzg5NzctMDViYi00M2ZlLTllYWQtOWNlZjc5MmE1ZjZi
LzEveUNsS0xBeEozSk5zdVlpMmhiT24yVnlQNExjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXUoMA0G
CSqGSIb3DQEBCwUAA4IBAQBiDdk23iLrlHd1j18BHmLAWQmMmzlItNnRC4pXR7pV
lUlNJPhPe/KhdHWCgYOWXbfHfwa3yuQIw4uAtx5BK6vwUHskLrzcm5PdikflFKDP
pvZafwuv3UFXfazhI1qW+KKUEeMcmj46W50Ydzm5vFHisuxnvJNQMWxTI7REYniT
FYTvIsFHuXSxk3f7arxP1VTyzx43+Rkx2UkOxC/c1NvY7+DkK95r00ZNv6cp5VnP
XcyfNinGbWUmRn5Dtt0QIcOyCkKS4vQOsB8yBj/jWiXKw5u6vs8NAmKfvcaZ5s8M
e6ptkVxcvrqp4QTF/FEGLnW6r14MAILu5VlRiDO7YsJ5
-----END CERTIFICATE-----
Generated at Tue Mar 25 14:43:02 2025 by rpki-client on console.sobornost.net