Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/sid7Fz4p9LsUb435z4rlURheO5M.roa
File: sid7Fz4p9LsUb435z4rlURheO5M.roa (raw, json)
Hash identifier: tKFwC0bd+BEOCIW21NmrzUtEhbV3IutUiWL0BmRO0A8=
Subject key identifier: B2:27:7B:17:3E:29:F4:BB:14:6F:8D:F9:CF:8A:E5:51:18:5E:3B:93
Certificate issuer: /CN=68c0f2d0776f7e1d349075881c35e9d387463405
Certificate serial: 0194236A1271818619AC4DDBA6C6B2DC8708
Authority key identifier: 68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/sid7Fz4p9LsUb435z4rlURheO5M.roa
Signing time: Wed 01 Jan 2025 19:49:01 +0000
ROA not before: Wed 01 Jan 2025 19:49:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58192
IP address blocks: 194.0.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:12:71:81:86:19:ac:4d:db:a6:c6:b2:dc:87:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c0f2d0776f7e1d349075881c35e9d387463405
Validity
Not Before: Jan 1 19:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b2277b173e29f4bb146f8df9cf8ae551185e3b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:67:e6:15:60:fa:5f:02:b4:23:02:20:64:ed:
97:27:86:76:45:0d:0a:95:94:13:8c:66:21:f0:df:
7b:ec:41:4d:f7:2d:06:70:3c:ff:35:2a:4b:8b:7b:
33:cb:95:8f:8b:87:1d:43:62:c8:86:f7:b6:39:9b:
f9:0d:3f:69:b8:fb:3a:68:1d:fe:14:39:43:4d:b4:
33:61:38:d2:37:95:96:f7:64:c4:ad:8d:83:c0:6b:
10:b4:83:7d:3a:de:81:f3:95:35:18:bc:31:6c:5c:
16:11:61:23:a2:01:c9:62:5b:07:71:9d:6b:ae:64:
5f:1e:f1:95:1d:a8:93:86:d8:c2:b2:44:7d:71:ca:
97:17:90:34:85:85:30:45:88:af:59:6c:53:20:71:
a8:6e:6a:5e:16:94:48:c4:72:2f:fc:9e:a3:fa:0a:
53:94:b8:79:8d:43:3e:4e:28:da:e1:3c:41:07:a4:
f6:22:7e:c2:98:81:df:83:68:db:92:ab:4e:05:a8:
db:cb:3d:7b:7c:a5:f0:f0:b8:dc:9a:90:af:66:ab:
41:2a:6d:e1:16:26:31:4d:c6:04:71:d5:91:b0:68:
bd:a4:63:f4:72:23:4d:af:5a:97:2d:72:23:e2:5d:
8f:29:77:b8:8b:4b:61:c9:a4:76:3b:6f:e6:08:0e:
2b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:27:7B:17:3E:29:F4:BB:14:6F:8D:F9:CF:8A:E5:51:18:5E:3B:93
X509v3 Authority Key Identifier:
keyid:68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/sid7Fz4p9LsUb435z4rlURheO5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/aMDy0Hdvfh00kHWIHDXp04dGNAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.234.0/24
Signature Algorithm: sha256WithRSAEncryption
01:42:67:e8:39:08:7a:95:c4:87:44:9f:cb:c1:70:7d:12:86:
ea:61:f0:b8:78:7f:13:f8:6a:af:19:3c:02:a6:79:00:44:c7:
ce:ec:ae:a8:6b:a1:5f:7e:1f:74:d6:bf:58:9d:78:d4:72:8b:
2a:e7:74:b5:50:ae:13:85:e4:fc:c1:b8:1a:8b:ed:99:66:da:
97:ac:b3:14:3a:42:90:23:e1:61:05:27:b6:2d:f2:ae:e8:f5:
80:c1:d0:e8:9e:12:7e:ce:7a:f0:15:f3:5c:f5:99:dc:88:e8:
26:72:3a:7a:a7:b6:5d:21:6b:2f:80:f0:ab:e9:fb:ee:25:b6:
cf:8d:6a:f9:d4:f2:06:b7:de:a4:22:8b:53:6c:4d:74:f3:1c:
7d:59:f9:5b:c8:83:d8:ee:a2:5f:1f:5e:f9:c6:a7:93:9c:f9:
cd:ba:14:63:be:e7:22:cc:4d:3d:66:41:a5:37:1f:4d:d6:08:
81:e4:c3:01:ba:3c:ce:cd:87:27:0a:1b:65:33:fb:76:46:3a:
75:4b:d3:f9:37:fd:2e:ed:52:f1:99:e1:1c:eb:c3:64:ee:83:
5d:11:a9:2d:70:c6:50:82:1e:20:af:2b:1e:67:0d:7d:5a:3b:
23:56:6a:0d:4a:c2:9c:5b:76:5d:20:df:e8:6e:22:a7:bd:f2:
8d:b6:6a:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQjahJxgYYZrE3bpsay3IcIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YzBmMmQwNzc2ZjdlMWQzNDkwNzU4ODFjMzVlOWQzODc0
NjM0MDUwHhcNMjUwMTAxMTk0OTAxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjI3N2IxNzNlMjlmNGJiMTQ2ZjhkZjljZjhhZTU1MTE4NWUzYjkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WfmFWD6XwK0IwIgZO2XJ4Z2RQ0K
lZQTjGYh8N977EFN9y0GcDz/NSpLi3szy5WPi4cdQ2LIhve2OZv5DT9puPs6aB3+
FDlDTbQzYTjSN5WW92TErY2DwGsQtIN9Ot6B85U1GLwxbFwWEWEjogHJYlsHcZ1r
rmRfHvGVHaiThtjCskR9ccqXF5A0hYUwRYivWWxTIHGobmpeFpRIxHIv/J6j+gpT
lLh5jUM+Tija4TxBB6T2In7CmIHfg2jbkqtOBajbyz17fKXw8LjcmpCvZqtBKm3h
FiYxTcYEcdWRsGi9pGP0ciNNr1qXLXIj4l2PKXe4i0thyaR2O2/mCA4rwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLInexc+KfS7FG+N+c+K5VEYXjuTMB8GA1UdIwQY
MBaAFGjA8tB3b34dNJB1iBw16dOHRjQFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU1EeTBIZHZmaDAwa0hXSUhEWHAwNGRHTkFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS84NGVlZGMtYTJmNi00YTM5LWE5MTgt
ZjlkOWMwM2Q0YjRjLzEvc2lkN0Z6NHA5THNVYjQzNXo0cmxVUmhlTzVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS84NGVlZGMtYTJmNi00YTM5LWE5MTgtZjlkOWMwM2Q0YjRj
LzEvYU1EeTBIZHZmaDAwa0hXSUhEWHAwNGRHTkFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgDqMA0G
CSqGSIb3DQEBCwUAA4IBAQABQmfoOQh6lcSHRJ/LwXB9EobqYfC4eH8T+GqvGTwC
pnkARMfO7K6oa6Fffh901r9YnXjUcosq53S1UK4TheT8wbgai+2ZZtqXrLMUOkKQ
I+FhBSe2LfKu6PWAwdDonhJ+znrwFfNc9ZnciOgmcjp6p7ZdIWsvgPCr6fvuJbbP
jWr51PIGt96kIotTbE108xx9WflbyIPY7qJfH175xqeTnPnNuhRjvucizE09ZkGl
Nx9N1giB5MMBujzOzYcnChtlM/t2Rjp1S9P5N/0u7VLxmeEc68Nk7oNdEaktcMZQ
gh4gryseZw19WjsjVmoNSsKcW3ZdIN/obiKnvfKNtmpT
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net