Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/tgoPg8gJ1wgYlvzK_ZhaNvMswpk.roa
File: tgoPg8gJ1wgYlvzK_ZhaNvMswpk.roa (raw, json)
Hash identifier: 0Yao20qxSDFfx3jAhC+HO3FsXj9rP4F8uh+mjbY+yHc=
Subject key identifier: B6:0A:0F:83:C8:09:D7:08:18:96:FC:CA:FD:98:5A:36:F3:2C:C2:99
Certificate issuer: /CN=dc94bb69453f139a60029e22db0fb3424a906cee
Certificate serial: 01958550983FB259369C100E504F2C537F19
Authority key identifier: DC:94:BB:69:45:3F:13:9A:60:02:9E:22:DB:0F:B3:42:4A:90:6C:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JS7aUU_E5pgAp4i2w-zQkqQbO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/tgoPg8gJ1wgYlvzK_ZhaNvMswpk.roa
Signing time: Tue 11 Mar 2025 13:06:46 +0000
ROA not before: Tue 11 Mar 2025 13:06:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211698
IP address blocks: 185.5.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:85:50:98:3f:b2:59:36:9c:10:0e:50:4f:2c:53:7f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc94bb69453f139a60029e22db0fb3424a906cee
Validity
Not Before: Mar 11 13:06:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b60a0f83c809d7081896fccafd985a36f32cc299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8f:a5:93:01:0f:e1:c7:60:da:88:46:6f:5f:
40:1b:79:b2:24:2a:a2:bb:ea:0c:6b:12:64:40:d7:
e7:31:b1:cf:04:a3:86:1d:55:4f:d8:bc:a6:80:68:
f5:8f:46:02:e8:d0:b2:5a:53:65:a4:21:97:cd:99:
54:9a:f9:34:49:49:89:fb:45:90:86:2d:fc:14:50:
28:41:ec:e6:f3:bb:03:0a:60:96:97:0c:03:4e:74:
ec:64:ba:8f:29:74:b4:b1:a1:ea:b7:c4:00:c9:4b:
eb:48:ac:2a:5e:f3:5a:f6:b3:06:3f:bd:97:04:18:
e8:ef:61:fb:38:17:b4:0d:48:33:09:8b:76:88:88:
27:3f:cc:dc:4a:ff:58:6e:98:69:e9:40:ee:63:03:
2a:0c:25:18:d8:a0:7f:d3:1b:51:c6:08:8e:9e:59:
9e:35:62:55:58:b5:ad:5a:0a:38:df:4e:6a:82:86:
6f:fc:55:75:ca:7f:7d:a2:34:11:b3:dc:c9:db:0b:
41:fd:0e:5f:0b:f8:c3:12:85:44:80:3b:2b:56:df:
51:68:a9:0b:22:3b:c7:4a:f9:ff:ff:08:06:34:4b:
97:3d:f5:36:cf:ef:c3:44:3a:42:bf:ef:fe:d9:e3:
ab:b3:c3:12:70:48:ef:d8:3e:17:07:6a:87:c0:9d:
97:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0A:0F:83:C8:09:D7:08:18:96:FC:CA:FD:98:5A:36:F3:2C:C2:99
X509v3 Authority Key Identifier:
keyid:DC:94:BB:69:45:3F:13:9A:60:02:9E:22:DB:0F:B3:42:4A:90:6C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JS7aUU_E5pgAp4i2w-zQkqQbO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/tgoPg8gJ1wgYlvzK_ZhaNvMswpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/3JS7aUU_E5pgAp4i2w-zQkqQbO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.254.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:a0:c8:fd:1d:00:25:3b:ee:7e:27:ca:11:5c:c3:47:1d:74:
06:56:aa:db:2e:30:68:1d:cc:5c:06:27:8c:c5:e8:6d:f0:b6:
63:74:3b:b7:f1:97:b7:cb:3e:5d:8e:b6:2a:83:81:ae:54:9b:
df:a5:bc:f6:e1:02:98:35:a1:ff:50:ca:a3:9d:2c:3e:4d:4e:
0d:a8:c1:36:5d:9b:c9:e0:64:eb:ea:5e:f5:c0:9a:cd:a2:61:
99:b2:eb:f8:a0:5d:2b:8f:cc:82:a3:2f:3f:3b:07:ed:ad:ad:
70:72:b2:79:1b:1a:bd:c0:a4:ed:94:f0:8b:b5:08:15:01:79:
2f:f5:b8:95:9c:4a:2a:b0:6e:5f:4a:13:37:0c:8b:8d:64:a9:
b3:3a:2a:7d:82:40:ff:fd:2e:ef:d4:fe:5d:b9:bd:0e:c2:84:
1c:ef:fd:25:87:3e:6e:24:f0:ac:fb:5e:2d:e3:7f:7a:9c:6f:
7b:3c:5f:91:0e:ce:3e:29:28:04:cc:89:0c:7e:c4:36:bb:39:
95:a5:a9:3d:26:c8:20:8e:5e:db:63:ff:56:5b:47:b0:4a:72:
bb:4a:a7:7b:ee:12:5a:fc:94:84:11:4c:f4:17:6a:e3:ff:d1:
b9:28:a1:3f:13:a0:c4:5e:d0:fb:cb:cf:ac:c1:df:37:0c:37:
64:be:b1:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZWFUJg/slk2nBAOUE8sU38ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjOTRiYjY5NDUzZjEzOWE2MDAyOWUyMmRiMGZiMzQyNGE5
MDZjZWUwHhcNMjUwMzExMTMwNjQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjBhMGY4M2M4MDlkNzA4MTg5NmZjY2FmZDk4NWEzNmYzMmNjMjk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxI+lkwEP4cdg2ohGb19AG3myJCqi
u+oMaxJkQNfnMbHPBKOGHVVP2LymgGj1j0YC6NCyWlNlpCGXzZlUmvk0SUmJ+0WQ
hi38FFAoQezm87sDCmCWlwwDTnTsZLqPKXS0saHqt8QAyUvrSKwqXvNa9rMGP72X
BBjo72H7OBe0DUgzCYt2iIgnP8zcSv9Ybphp6UDuYwMqDCUY2KB/0xtRxgiOnlme
NWJVWLWtWgo4305qgoZv/FV1yn99ojQRs9zJ2wtB/Q5fC/jDEoVEgDsrVt9RaKkL
IjvHSvn//wgGNEuXPfU2z+/DRDpCv+/+2eOrs8MScEjv2D4XB2qHwJ2XowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLYKD4PICdcIGJb8yv2YWjbzLMKZMB8GA1UdIwQY
MBaAFNyUu2lFPxOaYAKeItsPs0JKkGzuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0pTN2FVVV9FNXBnQXA0aTJ3LXpRa3FRYk80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9kMDQ1Y2EtYzFmNy00ZWQ5LWFmZGIt
MDkwYzQ2ZTlmMmVkLzEvdGdvUGc4Z0oxd2dZbHZ6S19aaGFOdk1zd3BrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9kMDQ1Y2EtYzFmNy00ZWQ5LWFmZGItMDkwYzQ2ZTlmMmVk
LzEvM0pTN2FVVV9FNXBnQXA0aTJ3LXpRa3FRYk80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQX+MA0G
CSqGSIb3DQEBCwUAA4IBAQDFoMj9HQAlO+5+J8oRXMNHHXQGVqrbLjBoHcxcBieM
xeht8LZjdDu38Ze3yz5djrYqg4GuVJvfpbz24QKYNaH/UMqjnSw+TU4NqME2XZvJ
4GTr6l71wJrNomGZsuv4oF0rj8yCoy8/Owftra1wcrJ5Gxq9wKTtlPCLtQgVAXkv
9biVnEoqsG5fShM3DIuNZKmzOip9gkD//S7v1P5dub0OwoQc7/0lhz5uJPCs+14t
4396nG97PF+RDs4+KSgEzIkMfsQ2uzmVpak9Jsggjl7bY/9WW0ewSnK7Sqd77hJa
/JSEEUz0F2rj/9G5KKE/E6DEXtD7y8+swd83DDdkvrG0
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net