Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/yL32EH6JFTrCOhK8RiGGmgov4oE.roa
File: yL32EH6JFTrCOhK8RiGGmgov4oE.roa (raw, json)
Hash identifier: cEac+CHXj7CTP1r+Y4KLas1tMJqLekECb13nf0gmkms=
Subject key identifier: C8:BD:F6:10:7E:89:15:3A:C2:3A:12:BC:46:21:86:9A:0A:2F:E2:81
Certificate issuer: /CN=31e6591d1a04d6afe1ed5f4ed01d394ae5148589
Certificate serial: 0194274807608A1974F5CF3E1D702BD93637
Authority key identifier: 31:E6:59:1D:1A:04:D6:AF:E1:ED:5F:4E:D0:1D:39:4A:E5:14:85:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/yL32EH6JFTrCOhK8RiGGmgov4oE.roa
Signing time: Thu 02 Jan 2025 13:50:19 +0000
ROA not before: Thu 02 Jan 2025 13:50:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204978
IP address blocks: 185.233.96.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:07:60:8a:19:74:f5:cf:3e:1d:70:2b:d9:36:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31e6591d1a04d6afe1ed5f4ed01d394ae5148589
Validity
Not Before: Jan 2 13:50:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c8bdf6107e89153ac23a12bc4621869a0a2fe281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:47:4e:6a:c4:5c:88:53:93:42:be:39:18:4e:
01:7b:bb:79:06:f8:18:ff:49:3f:f7:5b:09:31:74:
da:07:e2:48:f3:77:7c:b1:f7:49:06:7f:d5:82:5f:
ee:a6:3f:6e:04:10:41:15:c9:60:68:58:f8:02:05:
e7:b6:de:3a:42:b3:8b:b5:52:74:a7:b1:23:8f:18:
8e:26:2c:ee:1e:0c:ca:3a:74:8b:29:29:10:0c:dd:
61:df:07:c3:9f:e6:43:32:2a:3b:55:5c:2f:9d:39:
60:de:ec:c9:3b:bd:24:81:de:e1:e9:6a:d3:c0:a8:
d5:25:a5:df:b3:cc:0d:61:5d:9e:de:e1:71:98:7a:
ea:53:6b:69:a6:03:b6:fd:a9:70:3d:ae:e2:e1:62:
d0:ef:f8:cc:8a:9a:32:93:87:19:b8:51:c7:46:8c:
ec:4b:19:94:a8:cb:5f:f5:6f:df:0e:2a:39:da:68:
b8:eb:26:89:ee:d0:21:38:fe:21:2e:c9:f0:84:d7:
b3:9f:a9:6c:1a:b6:e0:e3:e6:a0:f4:bf:c3:f1:66:
79:09:f8:60:34:78:4a:d7:1b:e6:9c:c4:f6:df:f1:
b6:0c:0b:f2:c4:95:d7:6b:33:be:7b:c2:58:30:7f:
82:41:6b:56:4f:43:52:22:1a:2a:41:74:58:ff:51:
03:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:BD:F6:10:7E:89:15:3A:C2:3A:12:BC:46:21:86:9A:0A:2F:E2:81
X509v3 Authority Key Identifier:
keyid:31:E6:59:1D:1A:04:D6:AF:E1:ED:5F:4E:D0:1D:39:4A:E5:14:85:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/yL32EH6JFTrCOhK8RiGGmgov4oE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/MeZZHRoE1q_h7V9O0B05SuUUhYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.96.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:9b:79:5a:45:64:85:07:67:03:ff:e4:b2:47:c7:70:c4:91:
22:a3:f9:80:98:cf:fa:c6:e4:46:b1:d2:dd:02:f7:f9:c1:13:
11:0d:79:f1:d4:ef:e3:89:7b:40:f7:4f:75:c3:62:c1:2b:36:
ef:11:ba:08:93:af:b4:3b:14:3a:20:c8:29:81:67:73:7a:ff:
3b:d1:d6:30:f8:0a:9a:04:02:6b:13:b7:7b:47:15:04:69:bb:
04:74:09:14:6d:7f:62:88:30:53:38:dc:50:b9:3d:24:89:14:
02:05:59:22:a1:73:c4:86:fc:b6:fe:05:2a:35:48:ee:75:a2:
7e:f6:34:49:32:c4:e1:77:6c:ab:f5:f0:73:38:50:2e:8a:e8:
10:09:04:80:f9:29:a4:d4:97:2b:1a:00:c3:04:44:a9:98:28:
70:61:cc:04:c5:50:fb:9d:2c:cc:52:c0:92:d4:74:2f:30:1a:
75:ed:e4:c0:e5:59:e3:03:56:5b:ca:13:90:61:48:c3:d3:da:
bc:ba:e2:41:d9:1b:8b:47:e5:d1:ed:8b:8c:2f:4b:c0:bd:82:
a7:e2:ed:43:3c:b9:b1:b1:b2:b7:b3:cb:02:e2:5f:93:86:8a:
ca:5b:7d:b8:28:80:b6:b2:91:8a:cf:c4:cf:7e:2b:05:c5:c9:
3b:62:e0:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnSAdgihl09c8+HXAr2TY3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxZTY1OTFkMWEwNGQ2YWZlMWVkNWY0ZWQwMWQzOTRhZTUx
NDg1ODkwHhcNMjUwMTAyMTM1MDE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOGJkZjYxMDdlODkxNTNhYzIzYTEyYmM0NjIxODY5YTBhMmZlMjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA40dOasRciFOTQr45GE4Be7t5BvgY
/0k/91sJMXTaB+JI83d8sfdJBn/Vgl/upj9uBBBBFclgaFj4AgXntt46QrOLtVJ0
p7EjjxiOJizuHgzKOnSLKSkQDN1h3wfDn+ZDMio7VVwvnTlg3uzJO70kgd7h6WrT
wKjVJaXfs8wNYV2e3uFxmHrqU2tppgO2/alwPa7i4WLQ7/jMipoyk4cZuFHHRozs
SxmUqMtf9W/fDio52mi46yaJ7tAhOP4hLsnwhNezn6lsGrbg4+ag9L/D8WZ5Cfhg
NHhK1xvmnMT23/G2DAvyxJXXazO+e8JYMH+CQWtWT0NSIhoqQXRY/1EDzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMi99hB+iRU6wjoSvEYhhpoKL+KBMB8GA1UdIwQY
MBaAFDHmWR0aBNav4e1fTtAdOUrlFIWJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWVaWkhSb0UxcV9oN1Y5TzBCMDVTdVVVaFlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NGE4NWUtYWQ0OS00YzYzLWFiNTkt
YWI3YjBhYTFjM2Q0LzEveUwzMkVINkpGVHJDT2hLOFJpR0dtZ292NG9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi84NGE4NWUtYWQ0OS00YzYzLWFiNTktYWI3YjBhYTFjM2Q0
LzEvTWVaWkhSb0UxcV9oN1Y5TzBCMDVTdVVVaFlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuelgMA0G
CSqGSIb3DQEBCwUAA4IBAQCMm3laRWSFB2cD/+SyR8dwxJEio/mAmM/6xuRGsdLd
Avf5wRMRDXnx1O/jiXtA9091w2LBKzbvEboIk6+0OxQ6IMgpgWdzev870dYw+Aqa
BAJrE7d7RxUEabsEdAkUbX9iiDBTONxQuT0kiRQCBVkioXPEhvy2/gUqNUjudaJ+
9jRJMsThd2yr9fBzOFAuiugQCQSA+Smk1JcrGgDDBESpmChwYcwExVD7nSzMUsCS
1HQvMBp17eTA5VnjA1ZbyhOQYUjD09q8uuJB2RuLR+XR7YuML0vAvYKn4u1DPLmx
sbK3s8sC4l+ThorKW324KIC2spGKz8TPfisFxck7YuA4
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:26 2025 by rpki-client on console.sobornost.net