Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/09da87-a2b2-429b-be96-cd009b300a6c/1/sXBtr0RmYgN7EHzS2OAuZuhPnSk.roa
File: sXBtr0RmYgN7EHzS2OAuZuhPnSk.roa (raw, json)
Hash identifier: vzTvtT3U+hF4Cf7zWB9jndQ+LVyRdJBiHZIGS8DcnuI=
Subject key identifier: B1:70:6D:AF:44:66:62:03:7B:10:7C:D2:D8:E0:2E:66:E8:4F:9D:29
Certificate issuer: /CN=4d98fe502ac16e957cc33ebc2ec1be83bbed7cc4
Certificate serial: 019422203313B576257758C9056E40C11694
Authority key identifier: 4D:98:FE:50:2A:C1:6E:95:7C:C3:3E:BC:2E:C1:BE:83:BB:ED:7C:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TZj-UCrBbpV8wz68LsG-g7vtfMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/09da87-a2b2-429b-be96-cd009b300a6c/1/sXBtr0RmYgN7EHzS2OAuZuhPnSk.roa
Signing time: Wed 01 Jan 2025 13:48:43 +0000
ROA not before: Wed 01 Jan 2025 13:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211401
IP address blocks: 185.46.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:33:13:b5:76:25:77:58:c9:05:6e:40:c1:16:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d98fe502ac16e957cc33ebc2ec1be83bbed7cc4
Validity
Not Before: Jan 1 13:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b1706daf446662037b107cd2d8e02e66e84f9d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a1:11:94:1e:54:42:c0:bf:df:62:6b:72:c9:
84:41:d2:96:b2:3b:6e:91:d2:b5:ab:6f:59:69:a1:
07:2f:3f:87:25:10:7a:0c:7f:47:74:8a:71:6d:51:
c8:f6:50:fa:9a:ff:31:a3:97:26:f1:05:65:3d:e1:
36:99:86:13:1c:f4:df:5b:82:df:a1:61:c5:ba:84:
6b:1f:6e:65:17:a2:f7:cb:05:a5:05:cc:a2:cb:a7:
e3:85:d6:1e:22:02:59:11:46:79:5b:bb:c2:56:cf:
39:11:c5:16:8a:ba:53:74:37:76:f1:14:08:6f:9e:
8d:f7:da:82:86:48:f2:e8:4d:5e:94:e9:70:64:75:
c7:53:64:af:69:bb:68:db:5a:84:61:34:1e:71:db:
7c:c2:39:19:85:bd:5a:fc:1d:8c:34:88:b4:9b:61:
5e:ba:6d:c0:4e:0a:fc:4c:96:a4:56:cb:b5:ee:73:
e9:a8:d0:35:32:81:e1:61:47:86:10:4a:c7:f5:e6:
7d:4a:cb:53:c0:e1:10:dc:6f:be:3c:f7:6a:dd:74:
f0:87:ad:28:e4:a2:c2:80:94:40:3e:55:ee:a4:30:
d7:0e:00:be:73:3a:29:3a:e8:ee:cc:f0:20:f0:95:
19:66:8a:5e:d4:82:47:8e:d6:3e:98:d6:01:9a:22:
66:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:70:6D:AF:44:66:62:03:7B:10:7C:D2:D8:E0:2E:66:E8:4F:9D:29
X509v3 Authority Key Identifier:
keyid:4D:98:FE:50:2A:C1:6E:95:7C:C3:3E:BC:2E:C1:BE:83:BB:ED:7C:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TZj-UCrBbpV8wz68LsG-g7vtfMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/09da87-a2b2-429b-be96-cd009b300a6c/1/sXBtr0RmYgN7EHzS2OAuZuhPnSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/09da87-a2b2-429b-be96-cd009b300a6c/1/TZj-UCrBbpV8wz68LsG-g7vtfMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.40.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:87:37:7d:8e:92:4f:2c:8f:cb:22:8f:dc:b4:02:10:dd:5a:
42:5a:18:7d:b8:6f:8f:e3:58:d4:d7:89:8e:f9:26:55:5a:9c:
82:90:c4:8d:a0:7d:0e:5d:57:ea:48:ce:60:72:66:80:5f:93:
6b:bd:75:54:0d:ac:7a:4f:b5:01:0e:70:4b:85:73:23:99:bb:
d8:a1:81:f8:12:d7:2b:96:5d:da:11:cf:f5:10:fe:60:3f:42:
5c:68:ee:49:b7:bb:a3:af:e6:29:ec:e7:a4:0a:76:c6:d1:41:
49:53:2f:fc:f1:08:17:05:3e:33:91:c8:e2:33:08:de:30:2b:
cb:4e:0d:d1:c4:23:b9:da:f6:ec:c8:1b:f7:6a:eb:2b:4e:a4:
16:e2:9e:39:f9:cf:e8:54:fb:80:ac:ca:4e:b7:85:c0:72:b9:
c5:61:3c:fc:25:eb:89:14:3a:9f:4b:e7:90:95:c1:b7:5d:21:
18:98:aa:f0:8a:c3:3d:dd:54:9b:f1:c7:f1:28:e2:89:56:02:
6f:f0:f5:73:2c:c8:5e:69:2c:a7:92:c0:d6:d2:ed:56:4c:55:
42:60:a3:58:07:68:bc:9e:0f:12:1a:a1:43:1f:52:cb:16:b1:
49:bb:10:38:6b:03:84:ba:a1:3d:9d:8b:c7:51:00:fe:ce:c1:
46:cd:6e:d2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiIDMTtXYld1jJBW5AwRaUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkOThmZTUwMmFjMTZlOTU3Y2MzM2ViYzJlYzFiZTgzYmJl
ZDdjYzQwHhcNMjUwMTAxMTM0ODQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTcwNmRhZjQ0NjY2MjAzN2IxMDdjZDJkOGUwMmU2NmU4NGY5ZDI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqERlB5UQsC/32JrcsmEQdKWsjtu
kdK1q29ZaaEHLz+HJRB6DH9HdIpxbVHI9lD6mv8xo5cm8QVlPeE2mYYTHPTfW4Lf
oWHFuoRrH25lF6L3ywWlBcyiy6fjhdYeIgJZEUZ5W7vCVs85EcUWirpTdDd28RQI
b56N99qChkjy6E1elOlwZHXHU2Svabto21qEYTQecdt8wjkZhb1a/B2MNIi0m2Fe
um3ATgr8TJakVsu17nPpqNA1MoHhYUeGEErH9eZ9SstTwOEQ3G++PPdq3XTwh60o
5KLCgJRAPlXupDDXDgC+czopOujuzPAg8JUZZope1IJHjtY+mNYBmiJmiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLFwba9EZmIDexB80tjgLmboT50pMB8GA1UdIwQY
MBaAFE2Y/lAqwW6VfMM+vC7BvoO77XzEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFpqLVVDckJicFY4d3o2OExzRy1nN3Z0Zk1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8wOWRhODctYTJiMi00MjliLWJlOTYt
Y2QwMDliMzAwYTZjLzEvc1hCdHIwUm1ZZ043RUh6UzJPQXVadWhQblNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy8wOWRhODctYTJiMi00MjliLWJlOTYtY2QwMDliMzAwYTZj
LzEvVFpqLVVDckJicFY4d3o2OExzRy1nN3Z0Zk1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuS4oMA0G
CSqGSIb3DQEBCwUAA4IBAQCmhzd9jpJPLI/LIo/ctAIQ3VpCWhh9uG+P41jU14mO
+SZVWpyCkMSNoH0OXVfqSM5gcmaAX5NrvXVUDax6T7UBDnBLhXMjmbvYoYH4Etcr
ll3aEc/1EP5gP0JcaO5Jt7ujr+Yp7OekCnbG0UFJUy/88QgXBT4zkcjiMwjeMCvL
Tg3RxCO52vbsyBv3ausrTqQW4p45+c/oVPuArMpOt4XAcrnFYTz8JeuJFDqfS+eQ
lcG3XSEYmKrwisM93VSb8cfxKOKJVgJv8PVzLMheaSynksDW0u1WTFVCYKNYB2i8
ng8SGqFDH1LLFrFJuxA4awOEuqE9nYvHUQD+zsFGzW7S
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:02 2025 by rpki-client on console.sobornost.net