Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/ae4fb1-5c16-4ce8-9eee-447cfcb5e688/1/O2Pnp2xiRD6R4iT3wVRhdJLNeu0.roa
File: O2Pnp2xiRD6R4iT3wVRhdJLNeu0.roa (raw, json)
Hash identifier: Yn5cJiKHr0OGQWImfyXWk4ihqiwMLF8Xm0w3Bpt+rdg=
Subject key identifier: 3B:63:E7:A7:6C:62:44:3E:91:E2:24:F7:C1:54:61:74:92:CD:7A:ED
Certificate issuer: /CN=59392f91f43a67f50aa79a0116eaa4de9bd7351e
Certificate serial: 0195A984876997DE33488A4B641FE7B8701B
Authority key identifier: 59:39:2F:91:F4:3A:67:F5:0A:A7:9A:01:16:EA:A4:DE:9B:D7:35:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WTkvkfQ6Z_UKp5oBFuqk3pvXNR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/ae4fb1-5c16-4ce8-9eee-447cfcb5e688/1/O2Pnp2xiRD6R4iT3wVRhdJLNeu0.roa
Signing time: Tue 18 Mar 2025 13:49:49 +0000
ROA not before: Tue 18 Mar 2025 13:49:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52049
IP address blocks: 185.128.48.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a9:84:87:69:97:de:33:48:8a:4b:64:1f:e7:b8:70:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59392f91f43a67f50aa79a0116eaa4de9bd7351e
Validity
Not Before: Mar 18 13:49:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3b63e7a76c62443e91e224f7c154617492cd7aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:99:a6:02:48:e8:02:27:58:9d:a5:9c:95:ad:
38:b0:02:f4:4c:91:49:1e:52:1b:ed:a4:71:9d:20:
e2:9c:c3:34:78:ad:d7:30:cd:45:fb:76:7e:15:dc:
25:ba:30:b7:79:8b:20:8d:47:a6:1f:02:d6:85:19:
9a:7a:44:65:ba:9d:c6:19:66:be:61:78:2d:f9:72:
b2:63:34:18:9f:c8:72:e4:37:d5:6d:3e:83:e9:4d:
b2:73:d7:3a:5b:f2:e1:4b:ed:d7:58:f8:10:87:b1:
6a:83:f7:5b:5b:0e:d7:33:36:30:c8:44:bf:64:2d:
4a:b5:ab:8e:9e:fb:62:52:43:85:f7:7c:4e:2f:26:
71:01:01:c4:d5:ea:18:e8:df:84:58:16:d7:3d:fe:
0e:c9:47:4f:07:0c:59:e4:09:53:75:39:3b:cd:8a:
53:85:93:7d:b8:31:08:89:64:7e:03:c4:f3:56:24:
de:08:48:67:6a:2f:72:25:02:57:58:a6:bc:56:58:
6a:72:0c:63:d0:47:5a:8e:e2:b7:a7:bf:0e:b5:94:
a4:ee:36:a2:7a:5d:e8:51:c9:79:16:42:b4:e0:f0:
e6:41:53:f4:94:46:ad:ef:96:91:2b:09:c9:c4:7c:
b7:ab:b8:4a:c0:5a:29:75:0a:b8:78:4c:4c:a4:2a:
64:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:63:E7:A7:6C:62:44:3E:91:E2:24:F7:C1:54:61:74:92:CD:7A:ED
X509v3 Authority Key Identifier:
keyid:59:39:2F:91:F4:3A:67:F5:0A:A7:9A:01:16:EA:A4:DE:9B:D7:35:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WTkvkfQ6Z_UKp5oBFuqk3pvXNR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ae4fb1-5c16-4ce8-9eee-447cfcb5e688/1/O2Pnp2xiRD6R4iT3wVRhdJLNeu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ae4fb1-5c16-4ce8-9eee-447cfcb5e688/1/WTkvkfQ6Z_UKp5oBFuqk3pvXNR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.48.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:74:d9:2b:f2:b0:0f:53:58:49:fa:5c:bd:0d:03:0f:b3:2a:
6c:7e:89:1f:08:b2:a3:bb:1e:1c:2a:b9:fb:4e:6c:2b:ab:93:
69:e7:28:56:2b:59:b6:9c:17:24:a6:2b:15:d9:33:f2:89:cd:
a7:9b:aa:51:b0:e2:60:a6:fa:5d:d6:67:dd:e9:37:93:33:1b:
48:0b:c0:1d:6a:dc:34:ed:c7:fb:6a:4f:fd:34:85:72:4a:39:
af:98:d4:5f:7f:3c:2b:0a:55:77:5c:c7:d5:f2:05:63:b3:df:
bc:51:00:b9:8a:88:16:be:96:11:af:a7:3a:47:c7:d1:a0:01:
24:b6:d1:af:5c:10:3f:99:be:a9:fe:8b:d3:41:55:bb:eb:bb:
a9:12:b7:9c:df:6f:7d:fc:e7:35:fe:cc:ca:f9:64:8a:e1:b1:
88:52:9e:6f:5d:4e:74:b1:95:8d:88:5a:50:49:39:5d:4e:f0:
cf:e6:64:c9:d2:8b:1e:71:20:fe:e7:42:8e:9b:1a:0a:e7:32:
4d:97:56:b9:2e:e2:5e:c0:79:d5:87:41:2c:b3:4e:ad:26:58:
83:95:6c:d9:76:4a:6f:14:e4:75:a4:ee:3a:4a:03:79:23:d5:
a9:f0:24:80:1f:6a:30:c5:d8:82:6c:ed:39:ea:d6:7a:4a:da:
af:10:52:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZWphIdpl94zSIpLZB/nuHAbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5MzkyZjkxZjQzYTY3ZjUwYWE3OWEwMTE2ZWFhNGRlOWJk
NzM1MWUwHhcNMjUwMzE4MTM0OTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjYzZTdhNzZjNjI0NDNlOTFlMjI0ZjdjMTU0NjE3NDkyY2Q3YWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZmmAkjoAidYnaWcla04sAL0TJFJ
HlIb7aRxnSDinMM0eK3XMM1F+3Z+FdwlujC3eYsgjUemHwLWhRmaekRlup3GGWa+
YXgt+XKyYzQYn8hy5DfVbT6D6U2yc9c6W/LhS+3XWPgQh7Fqg/dbWw7XMzYwyES/
ZC1KtauOnvtiUkOF93xOLyZxAQHE1eoY6N+EWBbXPf4OyUdPBwxZ5AlTdTk7zYpT
hZN9uDEIiWR+A8TzViTeCEhnai9yJQJXWKa8Vlhqcgxj0EdajuK3p78OtZSk7jai
el3oUcl5FkK04PDmQVP0lEat75aRKwnJxHy3q7hKwFopdQq4eExMpCpkJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDtj56dsYkQ+keIk98FUYXSSzXrtMB8GA1UdIwQY
MBaAFFk5L5H0Omf1CqeaARbqpN6b1zUeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV1RrdmtmUTZaX1VLcDVvQkZ1cWszcHZYTlI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9hZTRmYjEtNWMxNi00Y2U4LTllZWUt
NDQ3Y2ZjYjVlNjg4LzEvTzJQbnAyeGlSRDZSNGlUM3dWUmhkSkxOZXUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9hZTRmYjEtNWMxNi00Y2U4LTllZWUtNDQ3Y2ZjYjVlNjg4
LzEvV1RrdmtmUTZaX1VLcDVvQkZ1cWszcHZYTlI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYAwMA0G
CSqGSIb3DQEBCwUAA4IBAQCodNkr8rAPU1hJ+ly9DQMPsypsfokfCLKjux4cKrn7
Tmwrq5Np5yhWK1m2nBckpisV2TPyic2nm6pRsOJgpvpd1mfd6TeTMxtIC8Adatw0
7cf7ak/9NIVySjmvmNRffzwrClV3XMfV8gVjs9+8UQC5iogWvpYRr6c6R8fRoAEk
ttGvXBA/mb6p/ovTQVW767upErec3299/Oc1/szK+WSK4bGIUp5vXU50sZWNiFpQ
STldTvDP5mTJ0osecSD+50KOmxoK5zJNl1a5LuJewHnVh0Ess06tJliDlWzZdkpv
FOR1pO46SgN5I9Wp8CSAH2owxdiCbO056tZ6StqvEFLf
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net