Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/fhtC19QCvGdf0Oc_EeWcXSC0cgs.roa
File: fhtC19QCvGdf0Oc_EeWcXSC0cgs.roa (raw, json)
Hash identifier: W3l2bfxo/nDFx3boBX/Qrxp8uh2idkRpvnrRaDUWAME=
Subject key identifier: 7E:1B:42:D7:D4:02:BC:67:5F:D0:E7:3F:11:E5:9C:5D:20:B4:72:0B
Certificate issuer: /CN=31e6591d1a04d6afe1ed5f4ed01d394ae5148589
Certificate serial: 0195421FEA9C460E1C89F942D98F70AFE582
Authority key identifier: 31:E6:59:1D:1A:04:D6:AF:E1:ED:5F:4E:D0:1D:39:4A:E5:14:85:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/fhtC19QCvGdf0Oc_EeWcXSC0cgs.roa
Signing time: Wed 26 Feb 2025 11:59:02 +0000
ROA not before: Wed 26 Feb 2025 11:59:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211032
IP address blocks: 185.222.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:42:1f:ea:9c:46:0e:1c:89:f9:42:d9:8f:70:af:e5:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31e6591d1a04d6afe1ed5f4ed01d394ae5148589
Validity
Not Before: Feb 26 11:59:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e1b42d7d402bc675fd0e73f11e59c5d20b4720b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d1:81:76:6a:53:cb:43:3b:a2:6b:4f:a0:17:
26:de:3c:25:bd:2c:1b:87:39:54:5e:70:fc:7e:2a:
05:3d:e1:26:de:78:02:8d:d1:67:af:cc:12:57:06:
9b:6f:2f:a3:09:7f:9c:cc:75:01:13:5c:7f:42:37:
4a:b7:b4:01:ba:d0:89:d0:36:c8:ff:bd:33:75:23:
ff:f5:5e:9e:a4:3f:44:0d:c6:ad:39:27:9b:1b:5e:
b2:65:a3:75:8b:b9:d8:41:93:ed:4f:c7:74:61:01:
93:56:2a:c5:4c:60:cd:e9:c6:a7:33:8e:32:01:04:
af:8f:16:3b:a6:37:5b:90:a6:cd:2f:b4:07:ce:29:
6b:88:eb:a9:9b:63:05:c2:e8:17:d1:92:31:0b:57:
90:76:a1:51:d7:3d:25:3a:70:3d:04:4c:91:ba:66:
de:55:3b:af:50:30:3a:22:05:b3:1e:e5:d9:ec:f2:
1f:a6:be:db:b4:fb:4c:21:7e:d0:e7:e1:48:e7:67:
99:8a:44:fc:46:a8:e9:ed:ea:cc:f5:bc:e2:b6:44:
69:2d:41:78:a5:9b:ba:df:dc:b8:21:2e:dd:f4:ef:
6c:11:57:01:9b:45:b5:db:75:a3:a1:85:24:75:9a:
e3:67:03:1d:74:43:d6:60:05:09:87:f1:cc:17:f3:
2e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:1B:42:D7:D4:02:BC:67:5F:D0:E7:3F:11:E5:9C:5D:20:B4:72:0B
X509v3 Authority Key Identifier:
keyid:31:E6:59:1D:1A:04:D6:AF:E1:ED:5F:4E:D0:1D:39:4A:E5:14:85:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/fhtC19QCvGdf0Oc_EeWcXSC0cgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/MeZZHRoE1q_h7V9O0B05SuUUhYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.42.0/24
Signature Algorithm: sha256WithRSAEncryption
90:a2:18:b0:5e:9c:c7:ef:05:08:07:e5:30:1c:c3:b3:60:d0:
6d:d3:af:36:be:52:8e:77:47:f6:0c:63:10:6c:4f:1e:5d:34:
7c:47:10:79:eb:fe:10:f4:eb:ae:f9:b4:21:9c:6f:33:ec:be:
23:6f:d0:fb:2d:1e:cd:34:c3:0c:fa:a4:9b:f0:7a:76:f9:f4:
8e:9e:fc:37:dc:fe:e2:0d:bc:42:db:3e:35:db:3f:70:74:6d:
35:1b:40:9f:d5:7b:be:64:82:0b:71:8d:cf:63:37:d1:1e:c8:
10:ac:4c:7f:86:dd:cf:67:a8:01:98:5c:67:4b:55:96:0a:45:
0c:3b:85:00:4f:b5:08:d0:17:82:be:4e:0d:77:ab:bd:ba:12:
9d:de:29:5d:ff:d7:69:eb:a4:a2:2f:f4:f2:8a:ed:52:5f:d1:
64:8e:47:94:00:19:31:85:11:14:fe:f7:dd:d5:60:5b:96:f5:
e2:ca:02:47:89:7f:1d:69:1f:e4:c4:65:14:4b:1d:c0:81:d4:
8a:0d:ec:86:52:df:f2:01:31:c5:aa:b0:c3:51:1e:c9:99:ba:
e9:94:ac:79:73:f5:0a:ea:04:a1:86:5f:9d:e7:48:ba:79:86:
8a:ee:aa:4d:d9:52:ee:bb:5c:89:7c:29:12:59:6e:7d:48:b5:
03:23:9b:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZVCH+qcRg4ciflC2Y9wr+WCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxZTY1OTFkMWEwNGQ2YWZlMWVkNWY0ZWQwMWQzOTRhZTUx
NDg1ODkwHhcNMjUwMjI2MTE1OTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTFiNDJkN2Q0MDJiYzY3NWZkMGU3M2YxMWU1OWM1ZDIwYjQ3MjBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9GBdmpTy0M7omtPoBcm3jwlvSwb
hzlUXnD8fioFPeEm3ngCjdFnr8wSVwabby+jCX+czHUBE1x/QjdKt7QButCJ0DbI
/70zdSP/9V6epD9EDcatOSebG16yZaN1i7nYQZPtT8d0YQGTVirFTGDN6canM44y
AQSvjxY7pjdbkKbNL7QHzilriOupm2MFwugX0ZIxC1eQdqFR1z0lOnA9BEyRumbe
VTuvUDA6IgWzHuXZ7PIfpr7btPtMIX7Q5+FI52eZikT8Rqjp7erM9bzitkRpLUF4
pZu639y4IS7d9O9sEVcBm0W123WjoYUkdZrjZwMddEPWYAUJh/HMF/MurwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH4bQtfUArxnX9DnPxHlnF0gtHILMB8GA1UdIwQY
MBaAFDHmWR0aBNav4e1fTtAdOUrlFIWJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWVaWkhSb0UxcV9oN1Y5TzBCMDVTdVVVaFlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NGE4NWUtYWQ0OS00YzYzLWFiNTkt
YWI3YjBhYTFjM2Q0LzEvZmh0QzE5UUN2R2RmME9jX0VlV2NYU0MwY2dzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi84NGE4NWUtYWQ0OS00YzYzLWFiNTktYWI3YjBhYTFjM2Q0
LzEvTWVaWkhSb0UxcV9oN1Y5TzBCMDVTdVVVaFlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud4qMA0G
CSqGSIb3DQEBCwUAA4IBAQCQohiwXpzH7wUIB+UwHMOzYNBt0682vlKOd0f2DGMQ
bE8eXTR8RxB56/4Q9Ouu+bQhnG8z7L4jb9D7LR7NNMMM+qSb8Hp2+fSOnvw33P7i
DbxC2z412z9wdG01G0Cf1Xu+ZIILcY3PYzfRHsgQrEx/ht3PZ6gBmFxnS1WWCkUM
O4UAT7UI0BeCvk4Nd6u9uhKd3ild/9dp66SiL/Tyiu1SX9FkjkeUABkxhREU/vfd
1WBblvXiygJHiX8daR/kxGUUSx3AgdSKDeyGUt/yATHFqrDDUR7JmbrplKx5c/UK
6gShhl+d50i6eYaK7qpN2VLuu1yJfCkSWW59SLUDI5um
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:26 2025 by rpki-client on console.sobornost.net