Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4ee463-f0a8-4fdb-8c86-c4376273a2df/1/FNssP3Vnl359dcbgHZkufRV_lXA.roa
File: FNssP3Vnl359dcbgHZkufRV_lXA.roa (raw, json)
Hash identifier: JifcLzI/Tl7E2mLCjrs1dQqQn1Db6poPn/8XtbADxCU=
Subject key identifier: 14:DB:2C:3F:75:67:97:7E:7D:75:C6:E0:1D:99:2E:7D:15:7F:95:70
Certificate issuer: /CN=1346e30276e0c603d0dee2f2d42fcd9a4415e256
Certificate serial: 019420685F404D6994927C8DFB695638DA43
Authority key identifier: 13:46:E3:02:76:E0:C6:03:D0:DE:E2:F2:D4:2F:CD:9A:44:15:E2:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E0bjAnbgxgPQ3uLy1C_NmkQV4lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4ee463-f0a8-4fdb-8c86-c4376273a2df/1/FNssP3Vnl359dcbgHZkufRV_lXA.roa
Signing time: Wed 01 Jan 2025 05:48:18 +0000
ROA not before: Wed 01 Jan 2025 05:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33925
IP address blocks: 195.177.224.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:5f:40:4d:69:94:92:7c:8d:fb:69:56:38:da:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1346e30276e0c603d0dee2f2d42fcd9a4415e256
Validity
Not Before: Jan 1 05:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=14db2c3f7567977e7d75c6e01d992e7d157f9570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e7:93:ac:f1:d4:e2:5d:fd:59:82:5f:7f:2a:
32:1c:9d:76:f5:28:17:1d:e0:36:89:db:46:9a:92:
da:eb:36:81:14:45:dc:fe:d1:93:92:f6:dd:6d:f7:
69:35:17:76:89:f7:57:2e:c9:1c:7a:8a:ad:4e:b7:
a0:0f:30:b7:8a:45:29:56:29:d6:f4:dd:bb:65:64:
99:4c:2d:f7:78:ae:ba:72:5a:81:2a:a1:3b:f6:e3:
74:39:15:f1:61:e7:28:a8:06:cd:5b:8b:e3:b1:56:
a6:dd:9c:59:3b:d1:19:42:9c:17:8b:cf:ca:da:c7:
29:07:02:3d:92:bd:c0:9b:90:c3:09:01:6c:af:f8:
05:bf:ce:3f:57:4e:d7:d5:0a:a4:04:69:99:ff:cd:
7c:76:12:a2:84:46:be:26:0f:61:44:a1:9b:c2:a1:
8f:71:b1:4a:db:5e:1b:0e:8e:51:97:49:1c:ff:54:
b3:b6:4c:e2:c1:ae:23:60:f1:e1:cd:97:4f:83:99:
d9:84:f6:f3:0f:d0:50:7a:02:bc:af:de:3a:d1:b3:
c1:b6:6e:f3:d4:29:b8:55:c0:2f:5c:a3:33:35:4a:
b0:0d:fc:4c:ee:19:3b:bc:c6:24:5e:fd:ed:49:84:
ae:11:78:57:cb:c6:35:4b:70:92:47:96:5c:f8:23:
23:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:DB:2C:3F:75:67:97:7E:7D:75:C6:E0:1D:99:2E:7D:15:7F:95:70
X509v3 Authority Key Identifier:
keyid:13:46:E3:02:76:E0:C6:03:D0:DE:E2:F2:D4:2F:CD:9A:44:15:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E0bjAnbgxgPQ3uLy1C_NmkQV4lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4ee463-f0a8-4fdb-8c86-c4376273a2df/1/FNssP3Vnl359dcbgHZkufRV_lXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4ee463-f0a8-4fdb-8c86-c4376273a2df/1/E0bjAnbgxgPQ3uLy1C_NmkQV4lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.224.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:ee:58:48:15:33:fb:43:65:dc:4b:1e:a4:1e:5f:bd:6f:3a:
d2:83:44:aa:7f:cd:d1:82:4b:51:da:b3:81:2e:3c:bb:98:ab:
16:3f:f8:4e:57:86:0f:9b:5c:cf:2c:31:a0:5c:87:bd:58:ec:
3a:6c:5e:68:45:a3:ab:8b:39:a9:80:22:16:88:20:33:d6:14:
b1:92:ec:a5:12:cb:e3:e4:0c:e5:ed:17:74:ac:10:16:da:d1:
cd:5b:61:3f:49:4a:ae:22:e4:34:28:09:ba:87:1a:37:3f:7b:
aa:39:65:99:09:c6:54:d8:d8:8f:c6:0b:dc:a2:0f:89:fd:be:
d3:1b:c0:69:33:94:10:c1:e5:fb:c7:b3:02:b3:cd:26:90:ba:
38:8d:f6:c4:2e:69:10:29:51:8d:ef:71:38:0b:0d:6f:18:c1:
c6:37:7d:ff:72:0d:ed:e1:96:aa:99:8c:e3:41:87:76:93:77:
08:50:8f:9f:29:14:f3:93:2b:8f:bc:15:f9:e4:eb:8c:2d:e0:
2b:e3:9f:5b:66:d0:fe:d1:4c:52:5f:3d:46:11:fe:95:11:58:
74:c5:1a:ba:8b:af:13:01:09:df:99:2d:1d:d4:a9:01:87:59:
73:60:cb:f5:70:4a:f6:ad:ea:d8:0f:39:2e:18:61:64:2c:d4:
78:79:cd:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQgaF9ATWmUknyN+2lWONpDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzNDZlMzAyNzZlMGM2MDNkMGRlZTJmMmQ0MmZjZDlhNDQx
NWUyNTYwHhcNMjUwMTAxMDU0ODE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNGRiMmMzZjc1Njc5NzdlN2Q3NWM2ZTAxZDk5MmU3ZDE1N2Y5NTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAneeTrPHU4l39WYJffyoyHJ129SgX
HeA2idtGmpLa6zaBFEXc/tGTkvbdbfdpNRd2ifdXLskceoqtTregDzC3ikUpVinW
9N27ZWSZTC33eK66clqBKqE79uN0ORXxYecoqAbNW4vjsVam3ZxZO9EZQpwXi8/K
2scpBwI9kr3Am5DDCQFsr/gFv84/V07X1QqkBGmZ/818dhKihEa+Jg9hRKGbwqGP
cbFK214bDo5Rl0kc/1Sztkziwa4jYPHhzZdPg5nZhPbzD9BQegK8r9460bPBtm7z
1Cm4VcAvXKMzNUqwDfxM7hk7vMYkXv3tSYSuEXhXy8Y1S3CSR5Zc+CMj3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBTbLD91Z5d+fXXG4B2ZLn0Vf5VwMB8GA1UdIwQY
MBaAFBNG4wJ24MYD0N7i8tQvzZpEFeJWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRTBiakFuYmd4Z1BRM3VMeTFDX05ta1FWNGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80ZWU0NjMtZjBhOC00ZmRiLThjODYt
YzQzNzYyNzNhMmRmLzEvRk5zc1AzVm5sMzU5ZGNiZ0haa3VmUlZfbFhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy80ZWU0NjMtZjBhOC00ZmRiLThjODYtYzQzNzYyNzNhMmRm
LzEvRTBiakFuYmd4Z1BRM3VMeTFDX05ta1FWNGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw7HgMA0G
CSqGSIb3DQEBCwUAA4IBAQCu7lhIFTP7Q2XcSx6kHl+9bzrSg0Sqf83RgktR2rOB
Ljy7mKsWP/hOV4YPm1zPLDGgXIe9WOw6bF5oRaOrizmpgCIWiCAz1hSxkuylEsvj
5Azl7Rd0rBAW2tHNW2E/SUquIuQ0KAm6hxo3P3uqOWWZCcZU2NiPxgvcog+J/b7T
G8BpM5QQweX7x7MCs80mkLo4jfbELmkQKVGN73E4Cw1vGMHGN33/cg3t4ZaqmYzj
QYd2k3cIUI+fKRTzkyuPvBX55OuMLeAr459bZtD+0UxSXz1GEf6VEVh0xRq6i68T
AQnfmS0d1KkBh1lzYMv1cEr2rerYDzkuGGFkLNR4ec1A
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net