Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/LkE6OmvUvLDEPLVXvhD8kSWchgI.roa
File: LkE6OmvUvLDEPLVXvhD8kSWchgI.roa (raw, json)
Hash identifier: TIEViqlGaXbwRIzS3a8WhThpumMDQCKC4sJFBNgCRkg=
Subject key identifier: 2E:41:3A:3A:6B:D4:BC:B0:C4:3C:B5:57:BE:10:FC:91:25:9C:86:02
Certificate issuer: /CN=1795ac843cd8ba90188f7313652bb561299b296f
Certificate serial: 019420D5D48AD0D8394559068319DA562DE3
Authority key identifier: 17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/LkE6OmvUvLDEPLVXvhD8kSWchgI.roa
Signing time: Wed 01 Jan 2025 07:47:52 +0000
ROA not before: Wed 01 Jan 2025 07:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28727
IP address blocks: 185.59.240.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:d4:8a:d0:d8:39:45:59:06:83:19:da:56:2d:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1795ac843cd8ba90188f7313652bb561299b296f
Validity
Not Before: Jan 1 07:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e413a3a6bd4bcb0c43cb557be10fc91259c8602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d5:a8:de:0d:53:a6:7e:7a:08:fd:45:b8:c5:
9e:c2:6e:74:ee:3c:49:d4:10:e1:3a:86:31:14:f8:
94:89:14:45:66:3a:55:85:75:63:56:4d:9a:09:dd:
f9:0a:cb:b2:33:27:56:10:5f:1c:45:f2:50:c1:f0:
39:d5:68:6f:ef:e9:37:90:2e:83:3a:7f:f1:40:98:
e9:08:e1:c9:80:a6:dc:7f:8c:2c:a1:b6:1a:c3:93:
68:79:9e:10:88:00:27:07:8d:05:a8:9e:55:c1:21:
e7:1a:7b:bf:ad:62:0f:b5:b7:91:f8:c9:fa:87:0a:
5c:fd:27:7d:ce:2f:a5:0b:eb:f4:7b:e3:3a:ef:d3:
75:5d:40:96:c9:c3:59:80:9d:50:f7:e2:85:1f:e8:
85:32:04:8d:93:f5:a8:19:17:8a:ab:0b:c3:85:c8:
a6:43:1d:de:c4:80:39:b9:ec:3d:62:cd:37:e6:37:
5e:12:3a:db:ae:f2:9a:af:64:0f:b9:1a:99:76:a7:
a3:29:7e:6d:69:ac:48:16:13:87:d5:86:0b:f2:c5:
81:b8:49:24:e1:b7:c5:58:d4:d1:87:58:f5:f5:b7:
51:ee:95:c7:c2:78:d5:b2:9b:91:84:d6:dd:1d:cc:
64:77:8e:3f:4c:4f:3e:b6:a6:71:f3:c7:6d:1f:58:
65:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:41:3A:3A:6B:D4:BC:B0:C4:3C:B5:57:BE:10:FC:91:25:9C:86:02
X509v3 Authority Key Identifier:
keyid:17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/LkE6OmvUvLDEPLVXvhD8kSWchgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/F5WshDzYupAYj3MTZSu1YSmbKW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.240.0/24
Signature Algorithm: sha256WithRSAEncryption
62:39:83:da:97:6f:41:5d:61:80:ca:2f:1b:18:67:68:c9:92:
30:a7:59:42:b5:a9:43:7f:b0:76:c2:09:a7:60:22:2f:e6:53:
5d:c2:55:71:73:5d:0f:fa:b5:e5:64:8c:28:ce:db:df:5c:d6:
c7:d7:c7:10:1c:66:d1:4a:f6:f1:e6:01:21:81:d3:33:d4:6c:
7c:7e:64:2b:bb:9c:99:50:f1:bc:a4:0d:a4:c4:42:8f:38:27:
4d:7e:79:58:b2:7d:96:1f:f5:9e:9c:f0:52:44:91:1a:e4:76:
a7:77:e1:c5:4b:74:d2:1c:a4:17:ff:b9:b1:11:aa:cb:6a:ec:
01:95:04:3f:73:5b:7b:a1:20:73:b3:ee:09:20:64:70:9e:39:
34:84:7a:1d:6f:6f:37:8a:65:d1:6c:e8:ea:af:5f:2a:10:3d:
9e:33:c0:2b:45:09:7c:69:2a:be:ed:b4:62:2e:6a:e6:b2:be:
dd:36:20:55:e8:d0:1d:6e:2a:17:51:35:78:d7:15:0f:46:19:
ef:86:bf:7e:de:ec:d8:74:6a:73:01:35:70:5f:13:e0:4d:45:
74:35:71:a7:4f:d8:53:68:ea:33:2f:66:06:46:51:29:b6:c0:
5c:6b:f1:65:00:e4:cd:aa:c0:18:ee:8c:39:44:9d:c1:08:5d:
09:55:59:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1dSK0Ng5RVkGgxnaVi3jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3OTVhYzg0M2NkOGJhOTAxODhmNzMxMzY1MmJiNTYxMjk5
YjI5NmYwHhcNMjUwMTAxMDc0NzUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTQxM2EzYTZiZDRiY2IwYzQzY2I1NTdiZTEwZmM5MTI1OWM4NjAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjtWo3g1Tpn56CP1FuMWewm507jxJ
1BDhOoYxFPiUiRRFZjpVhXVjVk2aCd35CsuyMydWEF8cRfJQwfA51Whv7+k3kC6D
On/xQJjpCOHJgKbcf4wsobYaw5NoeZ4QiAAnB40FqJ5VwSHnGnu/rWIPtbeR+Mn6
hwpc/Sd9zi+lC+v0e+M679N1XUCWycNZgJ1Q9+KFH+iFMgSNk/WoGReKqwvDhcim
Qx3exIA5uew9Ys035jdeEjrbrvKar2QPuRqZdqejKX5taaxIFhOH1YYL8sWBuEkk
4bfFWNTRh1j19bdR7pXHwnjVspuRhNbdHcxkd44/TE8+tqZx88dtH1hlmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC5BOjpr1LywxDy1V74Q/JElnIYCMB8GA1UdIwQY
MBaAFBeVrIQ82LqQGI9zE2UrtWEpmylvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjVXc2hEell1cEFZajNNVFpTdTFZU21iS1c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS82NjgzZjQtM2VlYy00ZGNiLTg3ODct
NzMxYWJjNmY3NWNhLzEvTGtFNk9tdlV2TERFUExWWHZoRDhrU1djaGdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS82NjgzZjQtM2VlYy00ZGNiLTg3ODctNzMxYWJjNmY3NWNh
LzEvRjVXc2hEell1cEFZajNNVFpTdTFZU21iS1c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTvwMA0G
CSqGSIb3DQEBCwUAA4IBAQBiOYPal29BXWGAyi8bGGdoyZIwp1lCtalDf7B2wgmn
YCIv5lNdwlVxc10P+rXlZIwoztvfXNbH18cQHGbRSvbx5gEhgdMz1Gx8fmQru5yZ
UPG8pA2kxEKPOCdNfnlYsn2WH/WenPBSRJEa5Hand+HFS3TSHKQX/7mxEarLauwB
lQQ/c1t7oSBzs+4JIGRwnjk0hHodb283imXRbOjqr18qED2eM8ArRQl8aSq+7bRi
Lmrmsr7dNiBV6NAdbioXUTV41xUPRhnvhr9+3uzYdGpzATVwXxPgTUV0NXGnT9hT
aOozL2YGRlEptsBca/FlAOTNqsAY7ow5RJ3BCF0JVVmN
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net