Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/u1VhcVTy354RLIy1HL3zp9mHr4s.roa
File: u1VhcVTy354RLIy1HL3zp9mHr4s.roa (raw, json)
Hash identifier: bTXjEk3aPbxZmee9JV98PLXefqyqj+KHu6+Sm9Lnq+0=
Subject key identifier: BB:55:61:71:54:F2:DF:9E:11:2C:8C:B5:1C:BD:F3:A7:D9:87:AF:8B
Certificate issuer: /CN=d3a7c3be06bc45c3f12b90b185278ad4ec919756
Certificate serial: 01942143C0B3EEBFCE62D1DF5188DACE0CD2
Authority key identifier: D3:A7:C3:BE:06:BC:45:C3:F1:2B:90:B1:85:27:8A:D4:EC:91:97:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/06fDvga8RcPxK5CxhSeK1OyRl1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/u1VhcVTy354RLIy1HL3zp9mHr4s.roa
Signing time: Wed 01 Jan 2025 09:47:55 +0000
ROA not before: Wed 01 Jan 2025 09:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199496
IP address blocks: 45.148.88.0/22 maxlen: 27
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:c0:b3:ee:bf:ce:62:d1:df:51:88:da:ce:0c:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3a7c3be06bc45c3f12b90b185278ad4ec919756
Validity
Not Before: Jan 1 09:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bb55617154f2df9e112c8cb51cbdf3a7d987af8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ee:01:23:5c:9e:b1:09:8d:1b:21:4f:86:6a:
49:cd:cb:c3:df:79:e2:b7:fa:c0:55:49:a2:9e:b0:
de:c4:d0:f0:e3:e5:e2:13:6b:b2:f4:ae:e0:be:c3:
a6:0f:81:9e:8c:f5:c1:3c:ab:4c:f7:db:0a:b2:32:
b0:f3:5a:2b:97:cd:60:cf:77:df:d0:45:d5:03:65:
4d:64:79:a0:89:72:37:2f:a1:af:1c:2e:28:1f:0c:
31:b9:8a:b0:6c:f1:c6:96:17:76:ec:e5:81:de:69:
69:4b:66:57:b7:df:7b:67:9b:11:7a:ee:e1:9e:56:
c0:db:ad:e9:21:df:0e:bb:b1:0d:e2:2d:90:75:33:
6e:0b:a9:b8:9b:68:ba:37:8a:bb:65:30:55:3b:00:
0c:66:75:33:51:f4:15:ac:f5:ff:2c:9c:e5:20:cf:
bb:d3:ff:a6:5f:bd:7d:65:17:31:c4:b8:d5:ef:75:
69:e7:6c:b9:54:90:a8:ca:75:25:76:56:bd:15:09:
29:72:bf:58:c8:61:b2:e8:07:08:0b:c3:32:38:96:
0e:10:d2:b0:25:a2:a2:fc:e8:6d:9e:43:6e:79:87:
c4:de:4b:4e:07:23:b7:ec:74:93:07:39:3a:bb:6a:
c5:07:45:20:10:9e:03:81:6e:50:9d:f6:fb:ca:60:
51:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:55:61:71:54:F2:DF:9E:11:2C:8C:B5:1C:BD:F3:A7:D9:87:AF:8B
X509v3 Authority Key Identifier:
keyid:D3:A7:C3:BE:06:BC:45:C3:F1:2B:90:B1:85:27:8A:D4:EC:91:97:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/06fDvga8RcPxK5CxhSeK1OyRl1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/u1VhcVTy354RLIy1HL3zp9mHr4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/06fDvga8RcPxK5CxhSeK1OyRl1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.88.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:8c:7a:5b:75:18:26:1a:e1:b5:8b:64:04:f0:c5:8e:26:3c:
fd:6a:eb:f8:78:2f:f2:17:ff:2c:ed:da:5d:f2:23:eb:75:d6:
5b:b7:79:16:62:44:99:bb:3b:c6:02:43:5c:b7:c1:63:0b:8b:
f5:a1:8d:15:32:f7:e3:e8:e9:ab:56:0e:19:88:42:34:da:85:
f9:b7:55:53:2c:05:a3:38:e5:9b:c5:cb:57:f0:3f:a4:13:6e:
07:a2:7d:16:9f:96:ae:f5:0c:8a:f3:8f:8e:9a:4b:74:0a:26:
08:1c:6f:9d:57:99:9c:64:76:11:f9:d6:9f:0b:c7:ff:02:23:
16:b6:d4:b8:fc:c1:e0:e5:ce:40:c5:08:c5:96:13:b5:bd:ce:
2d:e2:4e:9e:ee:99:63:b9:67:29:bf:c9:7f:31:7c:39:8a:46:
af:55:b9:b4:5b:4e:4e:d5:8a:93:66:62:bb:27:25:e4:30:2c:
08:62:24:ba:3c:3b:42:73:10:9c:85:43:ed:a0:16:17:79:8e:
b5:12:8f:62:83:0c:7d:0a:9b:6b:44:5f:47:4e:55:37:a8:94:
c5:06:4b:d9:5d:22:bd:37:a3:40:b4:72:47:db:60:49:ab:eb:
3c:da:37:89:7d:ad:64:3d:5c:9f:97:2a:c8:e3:e3:ce:6a:88:
9a:aa:1c:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhQ8Cz7r/OYtHfUYjazgzSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYTdjM2JlMDZiYzQ1YzNmMTJiOTBiMTg1Mjc4YWQ0ZWM5
MTk3NTYwHhcNMjUwMTAxMDk0NzU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjU1NjE3MTU0ZjJkZjllMTEyYzhjYjUxY2JkZjNhN2Q5ODdhZjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+4BI1yesQmNGyFPhmpJzcvD33ni
t/rAVUminrDexNDw4+XiE2uy9K7gvsOmD4GejPXBPKtM99sKsjKw81orl81gz3ff
0EXVA2VNZHmgiXI3L6GvHC4oHwwxuYqwbPHGlhd27OWB3mlpS2ZXt997Z5sReu7h
nlbA263pId8Ou7EN4i2QdTNuC6m4m2i6N4q7ZTBVOwAMZnUzUfQVrPX/LJzlIM+7
0/+mX719ZRcxxLjV73Vp52y5VJCoynUldla9FQkpcr9YyGGy6AcIC8MyOJYOENKw
JaKi/OhtnkNueYfE3ktOByO37HSTBzk6u2rFB0UgEJ4DgW5Qnfb7ymBRSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLtVYXFU8t+eESyMtRy986fZh6+LMB8GA1UdIwQY
MBaAFNOnw74GvEXD8SuQsYUnitTskZdWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDZmRHZnYThSY1B4SzVDeGhTZUsxT3lSbDFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9jZWNmYjYtMDdmYi00Mjc1LWIwNmEt
OGFhNTBkNjcwMzdjLzEvdTFWaGNWVHkzNTRSTEl5MUhMM3pwOW1IcjRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni9jZWNmYjYtMDdmYi00Mjc1LWIwNmEtOGFhNTBkNjcwMzdj
LzEvMDZmRHZnYThSY1B4SzVDeGhTZUsxT3lSbDFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZRYMA0G
CSqGSIb3DQEBCwUAA4IBAQCljHpbdRgmGuG1i2QE8MWOJjz9auv4eC/yF/8s7dpd
8iPrddZbt3kWYkSZuzvGAkNct8FjC4v1oY0VMvfj6OmrVg4ZiEI02oX5t1VTLAWj
OOWbxctX8D+kE24Hon0Wn5au9QyK84+Omkt0CiYIHG+dV5mcZHYR+dafC8f/AiMW
ttS4/MHg5c5AxQjFlhO1vc4t4k6e7pljuWcpv8l/MXw5ikavVbm0W05O1YqTZmK7
JyXkMCwIYiS6PDtCcxCchUPtoBYXeY61Eo9igwx9CptrRF9HTlU3qJTFBkvZXSK9
N6NAtHJH22BJq+s82jeJfa1kPVyflyrI4+POaoiaqhyK
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:13 2025 by rpki-client on console.sobornost.net