Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/e13a01-c00b-4956-ab3a-309a4970bbfd/1/tdTzvtLmLzsGpDsb_-eId6PoDIw.roa
File: tdTzvtLmLzsGpDsb_-eId6PoDIw.roa (raw, json)
Hash identifier: egeKGNdydr92Gcv38VGJLrGB08MiJTSLDukje+DoTiM=
Subject key identifier: B5:D4:F3:BE:D2:E6:2F:3B:06:A4:3B:1B:FF:E7:88:77:A3:E8:0C:8C
Certificate issuer: /CN=20f5307242fe3c95327b3220a1da5bffd12524fe
Certificate serial: 01942826DB13AF8C6427D5A9180184FEB23E
Authority key identifier: 20:F5:30:72:42:FE:3C:95:32:7B:32:20:A1:DA:5B:FF:D1:25:24:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPUwckL-PJUyezIgodpb_9ElJP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/e13a01-c00b-4956-ab3a-309a4970bbfd/1/tdTzvtLmLzsGpDsb_-eId6PoDIw.roa
Signing time: Thu 02 Jan 2025 17:53:42 +0000
ROA not before: Thu 02 Jan 2025 17:53:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212030
IP address blocks: 194.33.22.0/24 maxlen: 24
194.33.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:db:13:af:8c:64:27:d5:a9:18:01:84:fe:b2:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f5307242fe3c95327b3220a1da5bffd12524fe
Validity
Not Before: Jan 2 17:53:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b5d4f3bed2e62f3b06a43b1bffe78877a3e80c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ec:f6:8f:f8:0f:e8:10:26:fa:ae:8a:14:64:
1c:df:a6:7d:f7:7b:12:2b:c7:2d:e9:52:93:ee:7d:
ec:86:9f:25:8d:4a:7d:f0:3a:14:5e:2d:6d:c3:92:
07:f7:82:53:27:21:6c:8d:8d:18:28:b0:4f:59:84:
4d:0d:94:22:14:8c:4e:37:d6:77:d4:6d:14:11:6d:
69:ef:81:54:7c:75:84:1a:9a:1f:71:33:4e:ac:3e:
dd:6c:a2:c1:6d:b9:17:b6:35:0a:1d:29:00:a5:5b:
d1:a5:92:0a:dc:29:92:39:d5:0b:79:a9:5f:64:b0:
46:ce:2a:5e:64:ed:1f:e6:07:71:f4:8b:fe:23:e4:
25:ea:90:a5:5f:3c:dd:96:07:b0:42:f2:79:68:3a:
6d:36:a7:18:23:f8:13:14:19:81:63:ed:28:c4:9c:
46:26:f6:d3:0c:56:d7:dd:e7:9b:41:ef:ab:2e:f9:
1a:44:db:a4:44:5a:3a:76:2d:cd:b0:d5:4f:46:ab:
d8:59:cc:22:b2:95:a8:5f:a3:50:da:71:24:71:f8:
4c:52:1b:9e:08:38:0f:6f:18:13:d9:7f:10:c4:48:
c5:0e:e0:ba:37:27:4f:61:a8:99:e1:f6:44:2e:f6:
13:09:67:70:41:8e:bf:85:15:52:6a:78:c7:06:d3:
d8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D4:F3:BE:D2:E6:2F:3B:06:A4:3B:1B:FF:E7:88:77:A3:E8:0C:8C
X509v3 Authority Key Identifier:
keyid:20:F5:30:72:42:FE:3C:95:32:7B:32:20:A1:DA:5B:FF:D1:25:24:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPUwckL-PJUyezIgodpb_9ElJP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/e13a01-c00b-4956-ab3a-309a4970bbfd/1/tdTzvtLmLzsGpDsb_-eId6PoDIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/e13a01-c00b-4956-ab3a-309a4970bbfd/1/IPUwckL-PJUyezIgodpb_9ElJP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.22.0/23
Signature Algorithm: sha256WithRSAEncryption
71:66:9d:63:85:6d:d9:4d:1b:4b:46:94:9c:d1:a3:21:a8:f4:
49:a8:19:76:50:b1:a1:99:82:3a:7c:26:6f:5d:11:7b:a4:fe:
84:29:35:60:c1:6c:97:cb:9f:78:21:85:f0:74:76:24:67:57:
fc:8d:e3:ed:d8:81:c6:a7:44:c5:ee:5a:a4:5c:2d:9b:a8:94:
aa:3d:01:5f:f1:98:e1:da:e8:b0:f6:78:3a:f2:ea:f2:0e:3e:
16:a2:0a:5c:a9:82:38:22:8a:82:8a:06:3f:52:32:97:63:14:
dd:e8:ff:2a:ab:57:09:96:14:05:b6:ad:73:72:cd:a1:6c:8f:
74:03:cb:b7:85:a5:06:81:06:49:17:1d:02:c4:15:54:26:56:
a4:6e:52:cf:44:aa:63:37:c8:a2:0e:51:30:ee:09:8c:f9:88:
31:58:59:f9:40:24:88:86:7c:16:f3:98:90:3e:b5:f7:03:78:
35:b1:72:59:91:16:9d:d7:06:e9:57:db:15:ab:ba:e5:12:a1:
6e:65:61:e1:44:3b:80:ab:62:23:ac:33:bc:ed:24:9a:03:0e:
73:0b:f8:d3:f1:71:1e:f9:d5:89:f7:a8:a4:b7:c0:27:c2:98:
d2:89:44:68:b2:f9:84:2c:0d:97:ed:ea:bb:b1:5d:cf:33:aa:
45:eb:e7:14
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoJtsTr4xkJ9WpGAGE/rI+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZjUzMDcyNDJmZTNjOTUzMjdiMzIyMGExZGE1YmZmZDEy
NTI0ZmUwHhcNMjUwMTAyMTc1MzQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNWQ0ZjNiZWQyZTYyZjNiMDZhNDNiMWJmZmU3ODg3N2EzZTgwYzhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiez2j/gP6BAm+q6KFGQc36Z993sS
K8ct6VKT7n3shp8ljUp98DoUXi1tw5IH94JTJyFsjY0YKLBPWYRNDZQiFIxON9Z3
1G0UEW1p74FUfHWEGpofcTNOrD7dbKLBbbkXtjUKHSkApVvRpZIK3CmSOdULealf
ZLBGzipeZO0f5gdx9Iv+I+Ql6pClXzzdlgewQvJ5aDptNqcYI/gTFBmBY+0oxJxG
JvbTDFbX3eebQe+rLvkaRNukRFo6di3NsNVPRqvYWcwispWoX6NQ2nEkcfhMUhue
CDgPbxgT2X8QxEjFDuC6NydPYaiZ4fZELvYTCWdwQY6/hRVSanjHBtPYOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLXU877S5i87BqQ7G//niHej6AyMMB8GA1UdIwQY
MBaAFCD1MHJC/jyVMnsyIKHaW//RJST+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVBVd2NrTC1QSlV5ZXpJZ29kcGJfOUVsSlA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9lMTNhMDEtYzAwYi00OTU2LWFiM2Et
MzA5YTQ5NzBiYmZkLzEvdGRUenZ0TG1MenNHcERzYl8tZUlkNlBvREl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9lMTNhMDEtYzAwYi00OTU2LWFiM2EtMzA5YTQ5NzBiYmZk
LzEvSVBVd2NrTC1QSlV5ZXpJZ29kcGJfOUVsSlA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwiEWMA0G
CSqGSIb3DQEBCwUAA4IBAQBxZp1jhW3ZTRtLRpSc0aMhqPRJqBl2ULGhmYI6fCZv
XRF7pP6EKTVgwWyXy594IYXwdHYkZ1f8jePt2IHGp0TF7lqkXC2bqJSqPQFf8Zjh
2uiw9ng68uryDj4WogpcqYI4IoqCigY/UjKXYxTd6P8qq1cJlhQFtq1zcs2hbI90
A8u3haUGgQZJFx0CxBVUJlakblLPRKpjN8iiDlEw7gmM+YgxWFn5QCSIhnwW85iQ
PrX3A3g1sXJZkRad1wbpV9sVq7rlEqFuZWHhRDuAq2IjrDO87SSaAw5zC/jT8XEe
+dWJ96ikt8AnwpjSiURosvmELA2X7eq7sV3PM6pF6+cU
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:25 2025 by rpki-client on console.sobornost.net