Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/FSst80BStcOZoxcVEEn7HUNlaMg.roa
File: FSst80BStcOZoxcVEEn7HUNlaMg.roa (raw, json)
Hash identifier: MkzJ0Sac3ZN5iWdcIOjWwvYuR5zj6qypIoySO/md3YQ=
Subject key identifier: 15:2B:2D:F3:40:52:B5:C3:99:A3:17:15:10:49:FB:1D:43:65:68:C8
Certificate issuer: /CN=af002d6bb85a986bc88dbcd933209454e5b5e082
Certificate serial: 01942068303596F2387D45AC9A1FCA470419
Authority key identifier: AF:00:2D:6B:B8:5A:98:6B:C8:8D:BC:D9:33:20:94:54:E5:B5:E0:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwAta7hamGvIjbzZMyCUVOW14II.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/FSst80BStcOZoxcVEEn7HUNlaMg.roa
Signing time: Wed 01 Jan 2025 05:48:06 +0000
ROA not before: Wed 01 Jan 2025 05:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204383
IP address blocks: 185.250.172.0/22 maxlen: 22
2a0c:fc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:30:35:96:f2:38:7d:45:ac:9a:1f:ca:47:04:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af002d6bb85a986bc88dbcd933209454e5b5e082
Validity
Not Before: Jan 1 05:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=152b2df34052b5c399a317151049fb1d436568c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:29:33:96:e8:15:cf:57:09:55:d0:de:19:36:
23:ac:c6:4e:af:0a:70:b2:88:39:b2:d0:e8:5f:d6:
b8:97:ca:29:72:5c:6a:cb:3c:bc:6b:71:27:11:99:
a8:06:e8:17:4d:09:ab:64:f4:67:14:c4:bc:ae:cc:
d6:b3:9a:36:bb:f9:7e:27:bf:20:34:07:47:25:4f:
86:a2:b2:6c:2d:cf:6b:bf:9f:2a:64:4d:de:a5:77:
cc:72:52:d5:1d:d5:6e:b3:fb:db:0d:a3:f5:c9:da:
01:d9:d3:15:6e:ea:06:b3:49:d8:d9:00:a8:38:1c:
79:c1:64:81:71:d0:93:42:b4:b3:c7:a2:46:92:a7:
a4:df:43:c8:91:bf:7a:68:b2:c5:f1:00:73:4d:94:
56:74:80:19:ca:b3:49:c5:68:9b:87:e9:31:e7:15:
f0:42:b2:b2:59:39:b8:c7:b0:d2:23:04:77:6b:db:
e1:e5:9a:9a:9d:9c:82:ad:6d:cf:bd:ab:63:c1:7e:
0f:b9:5e:42:8a:ed:1d:55:03:aa:f7:da:f7:2d:b8:
4a:d1:44:de:71:c7:9e:4b:31:da:b6:8d:22:6e:63:
db:a6:60:4f:86:04:1f:3d:4f:5c:a4:a7:e5:19:c0:
c9:40:4d:cc:8d:ea:3d:76:02:bf:9d:fb:08:75:1a:
ba:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:2B:2D:F3:40:52:B5:C3:99:A3:17:15:10:49:FB:1D:43:65:68:C8
X509v3 Authority Key Identifier:
keyid:AF:00:2D:6B:B8:5A:98:6B:C8:8D:BC:D9:33:20:94:54:E5:B5:E0:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwAta7hamGvIjbzZMyCUVOW14II.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/FSst80BStcOZoxcVEEn7HUNlaMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/rwAta7hamGvIjbzZMyCUVOW14II.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.172.0/22
IPv6:
2a0c:fc0::/29
Signature Algorithm: sha256WithRSAEncryption
db:10:2c:45:04:0b:6d:0d:6f:b6:fd:f6:d3:02:cf:89:c6:01:
c5:72:84:89:0b:f5:cc:40:90:61:85:00:5c:1f:84:96:9d:63:
2d:a4:a9:d5:9d:89:d1:4c:76:98:e3:fb:a2:00:dc:11:c6:fe:
60:2c:45:14:6f:64:e7:4f:d0:99:be:ab:8d:a1:82:fa:c2:d7:
ad:a4:69:44:03:15:1e:11:0f:11:59:d8:68:8e:7e:ab:e4:aa:
52:d5:e1:05:e1:82:ca:9e:5e:fc:4e:cb:63:17:5d:bc:48:79:
8e:45:61:4f:10:75:e5:6c:ad:02:f1:27:9d:b7:12:ea:21:04:
03:1f:51:89:b3:e7:37:55:66:f3:45:1e:e1:5b:b2:e1:62:f3:
54:7b:c1:47:6f:24:8a:77:9a:ee:16:24:30:de:3c:05:51:a5:
54:ea:26:78:12:57:66:c9:58:4c:6d:0a:7c:80:b3:4d:f4:32:
5e:47:75:cd:6e:6e:d7:9e:11:72:05:4f:36:26:ee:29:d0:ad:
0e:c4:9f:34:a5:d5:b6:83:52:1b:8f:74:4c:03:2b:cf:47:a4:
1b:2b:8d:58:26:7a:82:d1:c9:05:d0:36:45:7b:23:0b:eb:09:
d2:78:c0:4c:60:43:71:e4:ff:3a:db:70:12:92:81:4f:18:f5:
9e:9c:fb:e6
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQgaDA1lvI4fUWsmh/KRwQZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMDAyZDZiYjg1YTk4NmJjODhkYmNkOTMzMjA5NDU0ZTVi
NWUwODIwHhcNMjUwMTAxMDU0ODA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTJiMmRmMzQwNTJiNWMzOTlhMzE3MTUxMDQ5ZmIxZDQzNjU2OGM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5CkzlugVz1cJVdDeGTYjrMZOrwpw
sog5stDoX9a4l8opclxqyzy8a3EnEZmoBugXTQmrZPRnFMS8rszWs5o2u/l+J78g
NAdHJU+GorJsLc9rv58qZE3epXfMclLVHdVus/vbDaP1ydoB2dMVbuoGs0nY2QCo
OBx5wWSBcdCTQrSzx6JGkqek30PIkb96aLLF8QBzTZRWdIAZyrNJxWibh+kx5xXw
QrKyWTm4x7DSIwR3a9vh5ZqanZyCrW3PvatjwX4PuV5Ciu0dVQOq99r3LbhK0UTe
cceeSzHato0ibmPbpmBPhgQfPU9cpKflGcDJQE3Mjeo9dgK/nfsIdRq68wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBUrLfNAUrXDmaMXFRBJ+x1DZWjIMB8GA1UdIwQY
MBaAFK8ALWu4WphryI282TMglFTlteCCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcndBdGE3aGFtR3ZJamJ6Wk15Q1VWT1cxNElJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9hMmVkYTItZTg4NS00NjQwLTljODQt
ZDZlZjhlOTE0MzA3LzEvRlNzdDgwQlN0Y09ab3hjVkVFbjdIVU5sYU1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9hMmVkYTItZTg4NS00NjQwLTljODQtZDZlZjhlOTE0MzA3
LzEvcndBdGE3aGFtR3ZJamJ6Wk15Q1VWT1cxNElJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCufqsMA0E
AgACMAcDBQMqDA/AMA0GCSqGSIb3DQEBCwUAA4IBAQDbECxFBAttDW+2/fbTAs+J
xgHFcoSJC/XMQJBhhQBcH4SWnWMtpKnVnYnRTHaY4/uiANwRxv5gLEUUb2TnT9CZ
vquNoYL6wtetpGlEAxUeEQ8RWdhojn6r5KpS1eEF4YLKnl78TstjF128SHmORWFP
EHXlbK0C8SedtxLqIQQDH1GJs+c3VWbzRR7hW7LhYvNUe8FHbySKd5ruFiQw3jwF
UaVU6iZ4EldmyVhMbQp8gLNN9DJeR3XNbm7XnhFyBU82Ju4p0K0OxJ80pdW2g1Ib
j3RMAyvPR6QbK41YJnqC0ckF0DZFeyML6wnSeMBMYENx5P8623ASkoFPGPWenPvm
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net