Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/7xzJYQfSecQlqzNk8l-W27jHcOI.roa
File: 7xzJYQfSecQlqzNk8l-W27jHcOI.roa (raw, json)
Hash identifier: ps+7bwhqh3PxptYGlo1NLgo3i2axXsvqt1tqey/ittM=
Subject key identifier: EF:1C:C9:61:07:D2:79:C4:25:AB:33:64:F2:5F:96:DB:B8:C7:70:E2
Certificate issuer: /CN=331ed3d7ba511ca6002d845b3c0aa8111a3559cf
Certificate serial: 0194266AFCB6F9D92BD5F424433FDD107670
Authority key identifier: 33:1E:D3:D7:BA:51:1C:A6:00:2D:84:5B:3C:0A:A8:11:1A:35:59:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mx7T17pRHKYALYRbPAqoERo1Wc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/7xzJYQfSecQlqzNk8l-W27jHcOI.roa
Signing time: Thu 02 Jan 2025 09:48:53 +0000
ROA not before: Thu 02 Jan 2025 09:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201921
IP address blocks: 194.33.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:fc:b6:f9:d9:2b:d5:f4:24:43:3f:dd:10:76:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331ed3d7ba511ca6002d845b3c0aa8111a3559cf
Validity
Not Before: Jan 2 09:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef1cc96107d279c425ab3364f25f96dbb8c770e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:28:3c:65:78:ea:ad:92:1f:af:a3:16:03:f5:
46:78:5b:d6:28:33:d9:14:9b:1c:8c:fd:65:0c:a5:
4d:66:89:78:30:b1:35:ff:8a:3c:f6:b2:bb:da:dd:
52:43:02:47:fc:db:87:03:54:d8:96:e5:40:c5:a8:
20:af:fd:ca:b0:35:f9:29:c2:fd:43:b0:ba:d3:28:
de:82:18:27:6a:6a:67:6a:91:92:bc:d5:de:5c:36:
68:2c:18:82:fe:6d:68:d6:e0:07:2e:56:f7:b3:44:
6a:4e:1f:90:8e:24:98:9f:b7:62:4d:7a:40:44:88:
04:54:5d:30:e4:e1:f8:4d:c4:60:3b:55:01:c4:7e:
3a:6b:61:71:f1:7b:c2:c6:a7:7b:da:df:d3:51:7a:
6b:7d:7e:38:c3:a1:ee:07:23:c7:04:ea:9b:19:44:
19:ec:95:6a:b2:de:09:88:19:1d:82:43:ba:8a:b8:
f9:0b:3d:84:b7:62:52:5b:9e:60:b8:1e:17:42:3b:
3c:82:8e:b1:b4:81:da:a6:ca:21:8f:aa:dd:3e:fe:
92:c1:49:fd:c2:7d:5d:34:27:d2:4c:1c:51:39:be:
fc:11:77:47:cc:43:c7:e3:ac:ae:29:65:2b:2d:88:
ea:aa:17:9d:bd:c9:71:ff:e0:4c:68:89:ff:c9:ba:
ce:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:1C:C9:61:07:D2:79:C4:25:AB:33:64:F2:5F:96:DB:B8:C7:70:E2
X509v3 Authority Key Identifier:
keyid:33:1E:D3:D7:BA:51:1C:A6:00:2D:84:5B:3C:0A:A8:11:1A:35:59:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mx7T17pRHKYALYRbPAqoERo1Wc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/7xzJYQfSecQlqzNk8l-W27jHcOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/Mx7T17pRHKYALYRbPAqoERo1Wc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.82.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:02:a7:8a:ca:f7:c7:47:c3:cb:12:33:04:07:e1:b7:98:c8:
2e:2d:b0:28:3c:c2:aa:b1:05:f9:55:30:43:ef:9d:30:5f:b6:
c4:89:20:ca:af:a7:e4:0d:15:75:90:f2:cc:74:f8:1f:11:75:
2d:7c:bb:7d:eb:aa:50:59:8d:f1:36:8d:14:e2:00:f8:da:48:
c5:48:e8:3e:bc:35:71:b7:b1:cc:5a:61:74:1e:75:af:1e:05:
64:de:fa:06:21:cb:47:fd:3c:3d:03:a0:fd:f8:73:03:5b:7c:
58:84:7f:e9:ef:0e:92:0b:74:39:9b:cc:5f:36:87:a3:a8:fb:
bc:8b:d9:31:da:67:90:cf:c3:99:25:67:fc:18:a1:1d:51:5a:
c0:b1:a4:b7:b4:fc:b9:0d:cf:dd:b3:0c:6e:76:e6:2d:d3:4f:
13:e6:9a:e9:70:aa:51:68:44:73:8e:fa:c9:92:00:ea:04:d7:
b6:2e:9e:03:99:03:99:03:73:15:9b:68:59:20:7a:6c:aa:7a:
ff:98:b2:d4:6d:c1:ac:d5:c6:37:fd:c0:e9:aa:71:7d:e4:35:
22:92:bd:f3:68:39:4a:7e:b0:14:bd:25:87:c6:f1:e7:fb:f5:
0f:34:70:6d:1a:03:11:31:f6:f6:a4:52:8c:a2:e9:f5:e2:3c:
49:c6:b7:09
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQmavy2+dkr1fQkQz/dEHZwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzMWVkM2Q3YmE1MTFjYTYwMDJkODQ1YjNjMGFhODExMWEz
NTU5Y2YwHhcNMjUwMTAyMDk0ODUzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjFjYzk2MTA3ZDI3OWM0MjVhYjMzNjRmMjVmOTZkYmI4Yzc3MGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyg8ZXjqrZIfr6MWA/VGeFvWKDPZ
FJscjP1lDKVNZol4MLE1/4o89rK72t1SQwJH/NuHA1TYluVAxaggr/3KsDX5KcL9
Q7C60yjeghgnampnapGSvNXeXDZoLBiC/m1o1uAHLlb3s0RqTh+QjiSYn7diTXpA
RIgEVF0w5OH4TcRgO1UBxH46a2Fx8XvCxqd72t/TUXprfX44w6HuByPHBOqbGUQZ
7JVqst4JiBkdgkO6irj5Cz2Et2JSW55guB4XQjs8go6xtIHapsohj6rdPv6SwUn9
wn1dNCfSTBxROb78EXdHzEPH46yuKWUrLYjqqhedvclx/+BMaIn/ybrOFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO8cyWEH0nnEJaszZPJfltu4x3DiMB8GA1UdIwQY
MBaAFDMe09e6URymAC2EWzwKqBEaNVnPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXg3VDE3cFJIS1lBTFlSYlBBcW9FUm8xV2M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9mZWFhMWItYjdjMS00YjQ4LTk1OTQt
YmFmMjRkZDU4MzlmLzEvN3h6SllRZlNlY1FscXpOazhsLVcyN2pIY09JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9mZWFhMWItYjdjMS00YjQ4LTk1OTQtYmFmMjRkZDU4Mzlm
LzEvTXg3VDE3cFJIS1lBTFlSYlBBcW9FUm8xV2M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiFSMA0G
CSqGSIb3DQEBCwUAA4IBAQDOAqeKyvfHR8PLEjMEB+G3mMguLbAoPMKqsQX5VTBD
750wX7bEiSDKr6fkDRV1kPLMdPgfEXUtfLt966pQWY3xNo0U4gD42kjFSOg+vDVx
t7HMWmF0HnWvHgVk3voGIctH/Tw9A6D9+HMDW3xYhH/p7w6SC3Q5m8xfNoejqPu8
i9kx2meQz8OZJWf8GKEdUVrAsaS3tPy5Dc/dswxuduYt008T5prpcKpRaERzjvrJ
kgDqBNe2Lp4DmQOZA3MVm2hZIHpsqnr/mLLUbcGs1cY3/cDpqnF95DUikr3zaDlK
frAUvSWHxvHn+/UPNHBtGgMRMfb2pFKMoun14jxJxrcJ
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:25 2025 by rpki-client on console.sobornost.net