Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f692df-ff67-4655-8d88-fec04c495502/1/3zuNm_rolfFNztpZzjMDGM_7wOs.roa
File: 3zuNm_rolfFNztpZzjMDGM_7wOs.roa (raw, json)
Hash identifier: 6DVW+skCd5kOszHOwiH8v1Z8QoCm6yJygVbagRePo+4=
Subject key identifier: DF:3B:8D:9B:FA:E8:95:F1:4D:CE:DA:59:CE:33:03:18:CF:FB:C0:EB
Certificate issuer: /CN=a4522397ec0d1499201af0fa9ea2a04b7d5cfa6a
Certificate serial: 019427B5C6B0F9D1D4DC5338C29EA76FC512
Authority key identifier: A4:52:23:97:EC:0D:14:99:20:1A:F0:FA:9E:A2:A0:4B:7D:5C:FA:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pFIjl-wNFJkgGvD6nqKgS31c-mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f692df-ff67-4655-8d88-fec04c495502/1/3zuNm_rolfFNztpZzjMDGM_7wOs.roa
Signing time: Thu 02 Jan 2025 15:50:11 +0000
ROA not before: Thu 02 Jan 2025 15:50:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213996
IP address blocks: 178.214.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:c6:b0:f9:d1:d4:dc:53:38:c2:9e:a7:6f:c5:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4522397ec0d1499201af0fa9ea2a04b7d5cfa6a
Validity
Not Before: Jan 2 15:50:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=df3b8d9bfae895f14dceda59ce330318cffbc0eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0d:12:a2:ea:b3:bc:f9:2f:9b:95:30:15:cd:
80:d8:10:d1:50:11:0e:b0:ea:15:4a:a2:46:c3:6c:
7e:f9:af:74:0a:57:15:c1:3b:f4:f6:c9:36:9e:af:
b9:b2:71:b4:b6:a0:10:00:e0:8b:3a:e8:30:59:35:
84:35:f5:e5:fb:ce:05:0b:ec:38:3b:46:2f:8b:31:
98:af:94:c1:72:e7:a4:2d:92:cb:8d:9c:34:8d:53:
7c:3c:e1:8b:4f:14:b4:33:69:1f:fe:b2:e2:08:78:
31:aa:34:82:ef:94:2d:71:ce:4b:af:9c:a7:2f:46:
12:52:6b:49:bb:9e:b1:94:a5:cc:84:e9:3a:52:16:
c0:40:b9:60:aa:d2:5b:90:d1:fa:18:6e:64:bb:4d:
47:da:83:10:fe:27:4b:e6:c9:04:01:c3:26:13:bb:
cb:6c:5d:9f:f8:a5:5d:4c:a8:82:04:b7:18:ba:f1:
99:17:0c:9a:1a:a2:28:95:0e:8f:85:ea:5a:81:75:
0e:28:21:4e:9a:39:e3:ac:17:11:fb:a0:08:9b:56:
13:07:6d:d2:6b:5a:ce:de:a3:55:58:33:0a:90:be:
62:46:e3:68:c9:c8:0b:e2:15:37:da:be:ac:cc:c1:
9d:f8:f9:48:50:e7:ed:1c:18:71:96:82:57:a9:a0:
a7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:3B:8D:9B:FA:E8:95:F1:4D:CE:DA:59:CE:33:03:18:CF:FB:C0:EB
X509v3 Authority Key Identifier:
keyid:A4:52:23:97:EC:0D:14:99:20:1A:F0:FA:9E:A2:A0:4B:7D:5C:FA:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pFIjl-wNFJkgGvD6nqKgS31c-mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f692df-ff67-4655-8d88-fec04c495502/1/3zuNm_rolfFNztpZzjMDGM_7wOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f692df-ff67-4655-8d88-fec04c495502/1/pFIjl-wNFJkgGvD6nqKgS31c-mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.214.204.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:fc:6a:80:c0:a5:a9:92:46:d6:b2:3e:52:1c:34:ad:38:0d:
7a:6d:65:9e:e6:6b:64:6e:a9:5b:26:61:c4:35:b5:bf:28:71:
58:bd:c9:a9:e2:2c:a3:f1:d2:2d:97:ac:65:e7:89:bf:ad:cd:
9b:42:bf:cf:8b:d9:b2:ac:2e:b4:ce:83:d4:92:d1:de:4b:48:
17:6e:2d:67:12:e0:e1:c3:76:0d:1d:94:e1:42:53:b9:57:db:
d0:59:2f:b7:d4:92:30:df:e2:96:ab:39:dc:af:92:db:05:48:
d0:19:4f:9f:9f:73:fb:dd:fd:4a:6f:5b:ba:c1:3d:f0:d1:11:
3a:c5:1c:87:63:8a:51:f1:bd:45:78:14:f4:8b:90:d2:15:7c:
08:64:c9:9a:43:f0:b3:9c:1c:77:7c:7b:c1:11:d7:c2:b9:a0:
b6:06:82:b4:e7:57:86:ed:75:0e:2a:9a:b7:fe:4d:41:f1:ad:
ad:89:75:05:c9:16:56:ba:11:ae:3d:6a:29:9d:f7:8e:70:55:
3d:96:b0:f9:26:d5:4a:0e:84:74:db:fc:40:0e:a3:cc:8d:6b:
9b:82:1c:18:75:4a:ab:2f:07:05:3a:cb:8b:03:db:27:c9:ec:
02:84:1f:60:34:4d:5c:c7:08:e9:4f:11:77:ad:2b:ca:fd:c3:
5a:4c:1f:ba
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQntcaw+dHU3FM4wp6nb8USMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0NTIyMzk3ZWMwZDE0OTkyMDFhZjBmYTllYTJhMDRiN2Q1
Y2ZhNmEwHhcNMjUwMTAyMTU1MDExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjNiOGQ5YmZhZTg5NWYxNGRjZWRhNTljZTMzMDMxOGNmZmJjMGViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxw0SouqzvPkvm5UwFc2A2BDRUBEO
sOoVSqJGw2x++a90ClcVwTv09sk2nq+5snG0tqAQAOCLOugwWTWENfXl+84FC+w4
O0YvizGYr5TBcuekLZLLjZw0jVN8POGLTxS0M2kf/rLiCHgxqjSC75Qtcc5Lr5yn
L0YSUmtJu56xlKXMhOk6UhbAQLlgqtJbkNH6GG5ku01H2oMQ/idL5skEAcMmE7vL
bF2f+KVdTKiCBLcYuvGZFwyaGqIolQ6PhepagXUOKCFOmjnjrBcR+6AIm1YTB23S
a1rO3qNVWDMKkL5iRuNoycgL4hU32r6szMGd+PlIUOftHBhxloJXqaCnLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN87jZv66JXxTc7aWc4zAxjP+8DrMB8GA1UdIwQY
MBaAFKRSI5fsDRSZIBrw+p6ioEt9XPpqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcEZJamwtd05GSmtnR3ZENm5xS2dTMzFjLW1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9mNjkyZGYtZmY2Ny00NjU1LThkODgt
ZmVjMDRjNDk1NTAyLzEvM3p1Tm1fcm9sZkZOenRwWnpqTURHTV83d09zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9mNjkyZGYtZmY2Ny00NjU1LThkODgtZmVjMDRjNDk1NTAy
LzEvcEZJamwtd05GSmtnR3ZENm5xS2dTMzFjLW1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCstbMMA0G
CSqGSIb3DQEBCwUAA4IBAQBa/GqAwKWpkkbWsj5SHDStOA16bWWe5mtkbqlbJmHE
NbW/KHFYvcmp4iyj8dItl6xl54m/rc2bQr/Pi9myrC60zoPUktHeS0gXbi1nEuDh
w3YNHZThQlO5V9vQWS+31JIw3+KWqzncr5LbBUjQGU+fn3P73f1Kb1u6wT3w0RE6
xRyHY4pR8b1FeBT0i5DSFXwIZMmaQ/CznBx3fHvBEdfCuaC2BoK051eG7XUOKpq3
/k1B8a2tiXUFyRZWuhGuPWopnfeOcFU9lrD5JtVKDoR02/xADqPMjWubghwYdUqr
LwcFOsuLA9snyewChB9gNE1cxwjpTxF3rSvK/cNaTB+6
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net