Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/838a78-7a70-448e-8e43-3c3be2c29f79/1/h7PFRK9JVEjEeYKLwrOpI4thEoU.roa
File: h7PFRK9JVEjEeYKLwrOpI4thEoU.roa (raw, json)
Hash identifier: I2CraLnGlKelMJHEzdxSGPPTjEK/b4QFtKA7mGsY/DE=
Subject key identifier: 87:B3:C5:44:AF:49:54:48:C4:79:82:8B:C2:B3:A9:23:8B:61:12:85
Certificate issuer: /CN=e929c3da5af4159c9363776ec33dc5bac70a324d
Certificate serial: 0194258F480A3BF2763BA8750120CD6F5F50
Authority key identifier: E9:29:C3:DA:5A:F4:15:9C:93:63:77:6E:C3:3D:C5:BA:C7:0A:32:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6SnD2lr0FZyTY3duwz3FuscKMk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/838a78-7a70-448e-8e43-3c3be2c29f79/1/h7PFRK9JVEjEeYKLwrOpI4thEoU.roa
Signing time: Thu 02 Jan 2025 05:48:54 +0000
ROA not before: Thu 02 Jan 2025 05:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198766
IP address blocks: 176.115.240.0/20 maxlen: 20
193.8.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:48:0a:3b:f2:76:3b:a8:75:01:20:cd:6f:5f:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e929c3da5af4159c9363776ec33dc5bac70a324d
Validity
Not Before: Jan 2 05:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=87b3c544af495448c479828bc2b3a9238b611285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:87:ec:ba:d9:f4:40:a5:37:49:57:26:05:8e:
2a:35:9d:bb:d2:54:1b:bc:22:f9:10:bb:ed:f6:91:
4f:0e:11:78:f2:33:d3:45:91:d1:f2:8e:e1:13:3c:
1e:af:e6:c6:80:7f:a6:1b:a1:38:9e:91:21:2e:ba:
e2:b4:d7:98:15:22:c4:70:5c:0e:f3:cc:b2:06:8e:
d3:2e:1d:7f:83:f7:b4:3d:81:c7:6d:08:75:c3:28:
17:cd:ae:7f:4b:7b:0a:77:83:64:a7:8a:65:0d:5d:
33:12:dc:bd:a7:f0:67:c0:f9:72:3c:96:16:c3:96:
3a:c9:e5:92:cf:7f:65:30:48:df:07:e2:01:63:85:
b7:ce:58:47:49:02:ef:db:e7:c1:9a:bf:ae:c0:75:
13:c2:cd:7b:e7:bb:99:6a:48:45:be:c8:03:dd:f1:
7e:c1:7f:9e:84:5f:b6:e1:6c:81:02:f9:ce:15:c2:
86:dd:aa:4e:c1:9e:9b:87:ad:04:29:a3:0e:69:26:
ca:51:ac:ac:5d:ae:f9:0a:50:7b:21:c3:8d:fc:75:
4e:db:02:1b:d8:9e:62:68:b3:57:61:76:ba:37:92:
b1:31:36:0d:d1:de:6d:8e:5e:34:af:f4:12:f2:03:
2e:09:81:ee:e3:6a:44:cf:e1:04:00:78:8f:ed:76:
ef:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B3:C5:44:AF:49:54:48:C4:79:82:8B:C2:B3:A9:23:8B:61:12:85
X509v3 Authority Key Identifier:
keyid:E9:29:C3:DA:5A:F4:15:9C:93:63:77:6E:C3:3D:C5:BA:C7:0A:32:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6SnD2lr0FZyTY3duwz3FuscKMk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/838a78-7a70-448e-8e43-3c3be2c29f79/1/h7PFRK9JVEjEeYKLwrOpI4thEoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/838a78-7a70-448e-8e43-3c3be2c29f79/1/6SnD2lr0FZyTY3duwz3FuscKMk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.115.240.0/20
193.8.45.0/24
Signature Algorithm: sha256WithRSAEncryption
19:b1:92:f8:95:43:9e:c1:62:14:d4:d1:af:e0:30:c9:07:e8:
60:8e:04:b1:12:c5:fb:e9:06:1f:c0:6a:34:55:53:18:8c:eb:
5f:3f:ee:8f:82:c0:9a:eb:d8:8d:a0:c9:2f:11:5c:f0:91:6c:
77:c1:8a:4d:9f:0b:1e:61:a2:b1:1b:b5:4f:24:e3:ff:89:bc:
11:bc:6a:c7:47:b6:31:e7:c0:d5:56:08:19:73:08:42:2d:cb:
01:2d:d1:be:8d:10:b1:60:c6:43:e7:35:7b:3e:55:19:68:e9:
23:cf:d2:77:62:99:c5:5c:a8:0d:66:4a:b0:a5:6c:c3:f8:65:
70:5f:90:21:36:12:9a:9e:3a:92:60:24:c3:ef:34:80:3d:b6:
33:e9:82:66:97:69:7c:08:c1:4c:60:63:ad:48:da:11:85:ab:
ab:53:ab:ca:1b:1d:af:08:3a:0f:5c:e5:09:ae:83:0b:12:71:
9f:9f:18:c0:7f:f9:e9:4d:88:ce:b6:16:d7:70:64:1a:0d:84:
dd:d8:b2:fe:c4:f3:9f:b7:b0:6c:32:67:f6:05:0b:52:e1:a0:
d9:92:aa:ae:45:c3:b6:e4:f7:8b:56:ed:95:71:33:62:9e:38:
34:44:3c:07:68:31:92:e4:23:fb:e9:95:4f:4c:55:fe:9b:46:
71:b7:c4:06
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQlj0gKO/J2O6h1ASDNb19QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5MjljM2RhNWFmNDE1OWM5MzYzNzc2ZWMzM2RjNWJhYzcw
YTMyNGQwHhcNMjUwMTAyMDU0ODU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2IzYzU0NGFmNDk1NDQ4YzQ3OTgyOGJjMmIzYTkyMzhiNjExMjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIfsutn0QKU3SVcmBY4qNZ270lQb
vCL5ELvt9pFPDhF48jPTRZHR8o7hEzwer+bGgH+mG6E4npEhLrritNeYFSLEcFwO
88yyBo7TLh1/g/e0PYHHbQh1wygXza5/S3sKd4Nkp4plDV0zEty9p/BnwPlyPJYW
w5Y6yeWSz39lMEjfB+IBY4W3zlhHSQLv2+fBmr+uwHUTws1757uZakhFvsgD3fF+
wX+ehF+24WyBAvnOFcKG3apOwZ6bh60EKaMOaSbKUaysXa75ClB7IcON/HVO2wIb
2J5iaLNXYXa6N5KxMTYN0d5tjl40r/QS8gMuCYHu42pEz+EEAHiP7XbvSwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIezxUSvSVRIxHmCi8KzqSOLYRKFMB8GA1UdIwQY
MBaAFOkpw9pa9BWck2N3bsM9xbrHCjJNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlNuRDJscjBGWnlUWTNkdXd6M0Z1c2NLTWswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC84MzhhNzgtN2E3MC00NDhlLThlNDMt
M2MzYmUyYzI5Zjc5LzEvaDdQRlJLOUpWRWpFZVlLTHdyT3BJNHRoRW9VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC84MzhhNzgtN2E3MC00NDhlLThlNDMtM2MzYmUyYzI5Zjc5
LzEvNlNuRDJscjBGWnlUWTNkdXd6M0Z1c2NLTWswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEsHPwAwQA
wQgtMA0GCSqGSIb3DQEBCwUAA4IBAQAZsZL4lUOewWIU1NGv4DDJB+hgjgSxEsX7
6QYfwGo0VVMYjOtfP+6PgsCa69iNoMkvEVzwkWx3wYpNnwseYaKxG7VPJOP/ibwR
vGrHR7Yx58DVVggZcwhCLcsBLdG+jRCxYMZD5zV7PlUZaOkjz9J3YpnFXKgNZkqw
pWzD+GVwX5AhNhKanjqSYCTD7zSAPbYz6YJml2l8CMFMYGOtSNoRhaurU6vKGx2v
CDoPXOUJroMLEnGfnxjAf/npTYjOthbXcGQaDYTd2LL+xPOft7BsMmf2BQtS4aDZ
kqquRcO25PeLVu2VcTNinjg0RDwHaDGS5CP76ZVPTFX+m0Zxt8QG
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net