Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/3RzB5tJS0oiPrnFU1JD80KRBdSM.roa
File: 3RzB5tJS0oiPrnFU1JD80KRBdSM.roa (raw, json)
Hash identifier: 7NiLIwQ9kymps4BJ4j5KwlhzIcoENtYuGIE5yKcMeqM=
Subject key identifier: DD:1C:C1:E6:D2:52:D2:88:8F:AE:71:54:D4:90:FC:D0:A4:41:75:23
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0194221F6AE7252F39058D2F086B5FF95067
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/3RzB5tJS0oiPrnFU1JD80KRBdSM.roa
Signing time: Wed 01 Jan 2025 13:47:51 +0000
ROA not before: Wed 01 Jan 2025 13:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19437
IP address blocks: 148.222.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:6a:e7:25:2f:39:05:8d:2f:08:6b:5f:f9:50:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 13:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dd1cc1e6d252d2888fae7154d490fcd0a4417523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:80:85:0e:7f:ee:82:48:60:cc:78:7e:9f:ed:
e5:70:98:01:f9:81:4b:28:53:e0:78:26:73:dc:fa:
a6:05:f0:d5:5f:a9:df:ec:fa:1b:b7:7f:02:3d:ba:
a2:0b:b1:5e:ba:c8:1d:c9:07:cc:c8:49:c3:30:6e:
ab:0b:d0:8e:45:07:de:e0:77:be:3d:b6:d7:3b:fa:
1f:5e:67:59:a9:a9:cb:29:24:21:45:de:cb:eb:ef:
00:71:77:46:dc:21:9a:42:be:d6:e1:ba:20:9b:e9:
2f:d6:70:da:99:80:02:fa:82:09:a2:fa:05:54:d0:
71:f0:d4:45:a8:40:9a:78:ea:61:43:c4:18:dc:7f:
34:9d:c3:b9:25:6c:62:fc:38:59:d2:b3:33:96:bd:
44:78:7c:61:c4:41:5e:20:6b:d6:e3:2a:c2:03:d5:
d4:cf:c2:ae:6d:24:fa:b1:9c:49:71:f9:31:f2:ff:
db:d8:bb:c0:5e:c1:37:a5:64:52:61:d9:1d:6a:ea:
34:fb:50:40:cd:28:a4:9a:a1:13:95:b9:07:2f:85:
20:a1:81:81:7c:c1:7b:11:d9:df:e9:0f:e7:6d:d5:
ff:f5:4e:d0:05:d5:e0:7c:11:17:e7:a3:3c:1d:b5:
30:64:2a:ce:ae:98:41:44:bd:e4:8d:c2:44:25:99:
b9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:1C:C1:E6:D2:52:D2:88:8F:AE:71:54:D4:90:FC:D0:A4:41:75:23
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/3RzB5tJS0oiPrnFU1JD80KRBdSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.222.240.0/22
Signature Algorithm: sha256WithRSAEncryption
80:b7:49:84:bd:8d:10:cc:df:a2:b9:91:67:bb:1d:71:01:e6:
3b:77:7e:06:e0:38:74:88:8c:27:ae:a3:db:dc:3a:f1:f9:84:
4e:24:91:2e:fc:20:16:4d:0a:f4:11:ae:70:89:2f:4d:e9:1f:
1b:31:50:7e:35:e1:81:73:b1:9e:7b:14:07:b7:2f:a4:37:14:
3a:83:b2:e6:b0:bc:b9:0c:90:2f:c4:19:64:b6:88:b7:66:ad:
ac:09:40:98:7e:64:57:4e:82:43:49:11:37:2f:39:db:da:c3:
66:8c:ad:53:de:c3:d8:38:6b:b6:25:e8:90:a6:13:e6:5f:59:
c7:06:6f:cb:6b:dd:f6:87:ae:1b:d5:1c:29:9d:28:68:a7:c4:
43:93:1a:de:79:34:6e:02:23:b6:7e:c7:ed:7a:ea:b9:dd:5b:
80:4d:43:de:23:1a:5d:ce:04:8e:f1:81:49:36:5a:74:5f:43:
58:38:63:05:dc:c7:5c:1a:72:ff:45:1a:46:9c:ba:ae:a1:01:
27:83:3a:76:06:e0:87:e7:09:f8:5e:7f:52:b8:37:23:98:57:
e9:39:47:64:23:ae:61:e0:f2:10:a4:be:c3:f1:3c:39:de:d9:
a5:d7:60:18:c9:4e:27:52:f1:f9:b0:bf:8b:2a:f1:1c:4b:d4:
6b:b2:9b:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH2rnJS85BY0vCGtf+VBnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjUwMTAxMTM0NzUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDFjYzFlNmQyNTJkMjg4OGZhZTcxNTRkNDkwZmNkMGE0NDE3NTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04CFDn/ugkhgzHh+n+3lcJgB+YFL
KFPgeCZz3PqmBfDVX6nf7Pobt38CPbqiC7FeusgdyQfMyEnDMG6rC9CORQfe4He+
PbbXO/ofXmdZqanLKSQhRd7L6+8AcXdG3CGaQr7W4bogm+kv1nDamYAC+oIJovoF
VNBx8NRFqECaeOphQ8QY3H80ncO5JWxi/DhZ0rMzlr1EeHxhxEFeIGvW4yrCA9XU
z8KubST6sZxJcfkx8v/b2LvAXsE3pWRSYdkdauo0+1BAzSikmqETlbkHL4UgoYGB
fMF7Ednf6Q/nbdX/9U7QBdXgfBEX56M8HbUwZCrOrphBRL3kjcJEJZm5YQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN0cwebSUtKIj65xVNSQ/NCkQXUjMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvM1J6QjV0SlMwb2lQcm5GVTFKRDgwS1JCZFNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClN7wMA0G
CSqGSIb3DQEBCwUAA4IBAQCAt0mEvY0QzN+iuZFnux1xAeY7d34G4Dh0iIwnrqPb
3Drx+YROJJEu/CAWTQr0Ea5wiS9N6R8bMVB+NeGBc7GeexQHty+kNxQ6g7LmsLy5
DJAvxBlktoi3Zq2sCUCYfmRXToJDSRE3Lznb2sNmjK1T3sPYOGu2JeiQphPmX1nH
Bm/La932h64b1RwpnShop8RDkxreeTRuAiO2fsfteuq53VuATUPeIxpdzgSO8YFJ
Nlp0X0NYOGMF3MdcGnL/RRpGnLquoQEngzp2BuCH5wn4Xn9SuDcjmFfpOUdkI65h
4PIQpL7D8Tw53tml12AYyU4nUvH5sL+LKvEcS9RrsptT
-----END CERTIFICATE-----
Generated at Sat Mar 8 04:50:49 2025 by rpki-client on console.sobornost.net