Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/8cb34d-94e7-4e57-98b1-7369a4257014/1/oz4j6XAA3JSDTaFAUqvMD6Q_gKU.roa
File: oz4j6XAA3JSDTaFAUqvMD6Q_gKU.roa (raw, json)
Hash identifier: alaiQ7nYgvlQJD63x0493TKwZeIQqdX8mBDJEuCO9ek=
Subject key identifier: A3:3E:23:E9:70:00:DC:94:83:4D:A1:40:52:AB:CC:0F:A4:3F:80:A5
Certificate issuer: /CN=580ad42c64c4f55fece78b2427071fe6684c20c9
Certificate serial: 0195F098A37E125E018665519D423FE379F4
Authority key identifier: 58:0A:D4:2C:64:C4:F5:5F:EC:E7:8B:24:27:07:1F:E6:68:4C:20:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WArULGTE9V_s54skJwcf5mhMIMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/8cb34d-94e7-4e57-98b1-7369a4257014/1/oz4j6XAA3JSDTaFAUqvMD6Q_gKU.roa
Signing time: Tue 01 Apr 2025 09:04:49 +0000
ROA not before: Tue 01 Apr 2025 09:04:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31239
IP address blocks: 195.225.236.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f0:98:a3:7e:12:5e:01:86:65:51:9d:42:3f:e3:79:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=580ad42c64c4f55fece78b2427071fe6684c20c9
Validity
Not Before: Apr 1 09:04:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a33e23e97000dc94834da14052abcc0fa43f80a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c0:41:44:1a:91:5a:ae:e1:af:f6:91:83:38:
2f:e0:06:c7:4b:55:93:21:dc:7d:f3:b2:85:86:63:
2e:c1:67:1c:d7:50:aa:39:2a:5a:6e:77:e6:67:c9:
33:27:b2:03:4e:73:31:40:84:5e:35:86:40:9a:67:
73:f7:23:b6:57:e4:fd:87:af:0f:d7:3b:12:9f:10:
47:7e:0f:c4:c2:bc:c8:03:77:6c:66:0d:66:44:93:
f0:b0:d4:84:5c:3a:49:fc:a4:18:ea:af:c8:5a:e5:
ed:75:b2:5b:48:fe:3b:ec:49:ac:b2:d5:19:08:34:
01:f4:fb:50:30:c1:52:6f:4b:00:47:cc:2a:71:28:
f5:ef:62:ff:67:89:bf:64:14:bd:67:2a:26:7b:60:
20:11:41:eb:0d:ec:81:62:b4:30:b9:7b:73:41:fe:
8b:67:12:c8:34:00:de:bf:01:79:cf:b1:8c:08:f6:
cd:40:be:f4:5e:d2:c1:d8:2a:bb:e0:6f:ee:05:72:
78:65:b4:eb:9d:08:71:2c:1d:d3:fd:15:2b:53:40:
2a:c6:23:40:2d:94:d0:03:49:30:1a:b0:99:d5:86:
a4:20:ce:d8:69:e1:d3:9b:60:a9:13:37:8f:c4:38:
e7:fb:8b:23:f8:2b:4a:6d:1d:41:a6:e0:96:59:64:
f8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3E:23:E9:70:00:DC:94:83:4D:A1:40:52:AB:CC:0F:A4:3F:80:A5
X509v3 Authority Key Identifier:
keyid:58:0A:D4:2C:64:C4:F5:5F:EC:E7:8B:24:27:07:1F:E6:68:4C:20:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WArULGTE9V_s54skJwcf5mhMIMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/8cb34d-94e7-4e57-98b1-7369a4257014/1/oz4j6XAA3JSDTaFAUqvMD6Q_gKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/8cb34d-94e7-4e57-98b1-7369a4257014/1/WArULGTE9V_s54skJwcf5mhMIMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.236.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:2c:40:d1:6c:95:c2:54:60:31:0a:65:91:05:3e:cb:fc:d7:
00:e1:97:2e:c2:f1:c5:15:1d:41:42:20:98:c4:49:25:25:5b:
a3:07:4d:6f:f0:ba:51:b6:6d:4a:98:4d:f7:49:5b:e9:5c:73:
9f:2c:92:03:97:d2:b4:e5:f2:9a:9f:e8:3d:6c:03:e3:cd:c6:
88:8e:3f:cc:c2:97:7c:52:e0:9b:e5:48:77:33:f7:d3:8f:81:
c2:2c:ca:3f:68:6a:ab:a3:37:57:b4:0b:2b:da:aa:8d:65:bf:
ba:fc:34:a2:82:68:0a:5e:0d:4c:16:3c:54:60:1f:3f:65:46:
f9:53:ae:fe:a1:00:38:38:0c:bd:c5:f4:b0:23:e5:73:80:f5:
b0:17:90:42:ae:52:ea:a7:ed:b4:c1:ed:1c:18:49:42:36:80:
59:cc:e1:8d:d1:67:ca:ab:95:c3:84:29:df:8e:96:f7:53:64:
c5:81:0f:ae:da:25:d7:36:e2:4d:a6:7d:b2:77:d5:49:87:d2:
79:0e:85:75:49:e9:37:f5:bf:96:20:e8:ec:bd:98:f8:e3:da:
d2:85:ff:69:2e:a3:16:5d:e7:d0:dc:17:3b:6f:00:d2:7e:33:
ce:86:c8:40:44:aa:d4:46:dd:18:04:90:a2:a5:a4:cc:e8:3b:
ec:d8:7f:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZXwmKN+El4BhmVRnUI/43n0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4MGFkNDJjNjRjNGY1NWZlY2U3OGIyNDI3MDcxZmU2Njg0
YzIwYzkwHhcNMjUwNDAxMDkwNDQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzNlMjNlOTcwMDBkYzk0ODM0ZGExNDA1MmFiY2MwZmE0M2Y4MGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1sBBRBqRWq7hr/aRgzgv4AbHS1WT
Idx987KFhmMuwWcc11CqOSpabnfmZ8kzJ7IDTnMxQIReNYZAmmdz9yO2V+T9h68P
1zsSnxBHfg/EwrzIA3dsZg1mRJPwsNSEXDpJ/KQY6q/IWuXtdbJbSP477EmsstUZ
CDQB9PtQMMFSb0sAR8wqcSj172L/Z4m/ZBS9Zyome2AgEUHrDeyBYrQwuXtzQf6L
ZxLINADevwF5z7GMCPbNQL70XtLB2Cq74G/uBXJ4ZbTrnQhxLB3T/RUrU0AqxiNA
LZTQA0kwGrCZ1YakIM7YaeHTm2CpEzePxDjn+4sj+CtKbR1BpuCWWWT41QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKM+I+lwANyUg02hQFKrzA+kP4ClMB8GA1UdIwQY
MBaAFFgK1CxkxPVf7OeLJCcHH+ZoTCDJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0FyVUxHVEU5Vl9zNTRza0p3Y2Y1bWhNSU1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS84Y2IzNGQtOTRlNy00ZTU3LTk4YjEt
NzM2OWE0MjU3MDE0LzEvb3o0ajZYQUEzSlNEVGFGQVVxdk1ENlFfZ0tVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS84Y2IzNGQtOTRlNy00ZTU3LTk4YjEtNzM2OWE0MjU3MDE0
LzEvV0FyVUxHVEU5Vl9zNTRza0p3Y2Y1bWhNSU1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw+HsMA0G
CSqGSIb3DQEBCwUAA4IBAQC3LEDRbJXCVGAxCmWRBT7L/NcA4ZcuwvHFFR1BQiCY
xEklJVujB01v8LpRtm1KmE33SVvpXHOfLJIDl9K05fKan+g9bAPjzcaIjj/Mwpd8
UuCb5Uh3M/fTj4HCLMo/aGqrozdXtAsr2qqNZb+6/DSigmgKXg1MFjxUYB8/ZUb5
U67+oQA4OAy9xfSwI+VzgPWwF5BCrlLqp+20we0cGElCNoBZzOGN0WfKq5XDhCnf
jpb3U2TFgQ+u2iXXNuJNpn2yd9VJh9J5DoV1Sek39b+WIOjsvZj449rShf9pLqMW
XefQ3Bc7bwDSfjPOhshARKrURt0YBJCipaTM6Dvs2H+E
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net