Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/YaQeUaPm7DT5i6DIJSP2oPk6asc.roa
File: YaQeUaPm7DT5i6DIJSP2oPk6asc.roa (raw, json)
Hash identifier: Xe3hwh1S9IdquQYZSTUC+SBDReDUDM3Us/vWljHz8KQ=
Subject key identifier: 61:A4:1E:51:A3:E6:EC:34:F9:8B:A0:C8:25:23:F6:A0:F9:3A:6A:C7
Certificate issuer: /CN=fdad61d8e8c1abda8596930e21f18211a517681f
Certificate serial: 0194228DA11FFB6E49741BD856227FF05799
Authority key identifier: FD:AD:61:D8:E8:C1:AB:DA:85:96:93:0E:21:F1:82:11:A5:17:68:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_a1h2OjBq9qFlpMOIfGCEaUXaB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/YaQeUaPm7DT5i6DIJSP2oPk6asc.roa
Signing time: Wed 01 Jan 2025 15:48:14 +0000
ROA not before: Wed 01 Jan 2025 15:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49764
IP address blocks: 185.218.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:a1:1f:fb:6e:49:74:1b:d8:56:22:7f:f0:57:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdad61d8e8c1abda8596930e21f18211a517681f
Validity
Not Before: Jan 1 15:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=61a41e51a3e6ec34f98ba0c82523f6a0f93a6ac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ad:12:cc:14:99:7d:c8:6a:59:74:a2:89:0a:
db:bc:51:40:c4:8c:22:c4:aa:5d:81:bd:de:e6:38:
26:98:ab:2d:1d:cf:78:b8:6e:52:9b:1d:b0:c4:ad:
ed:ed:7a:8a:ac:be:be:b7:fb:1b:47:c7:20:f6:73:
61:84:71:47:7c:b9:87:59:b7:d5:2f:76:2e:e9:87:
f0:9a:97:af:b6:30:5b:57:13:37:46:81:29:68:bc:
84:4d:10:86:e9:23:0c:4a:66:f4:e9:ad:5f:dc:f2:
e7:45:78:03:a0:4b:08:44:9d:52:f6:bb:ff:78:56:
dd:eb:a7:eb:f6:e3:63:9f:15:17:30:93:7c:16:4e:
7c:d6:bd:4f:02:db:c2:d6:0c:d0:05:ef:9e:48:ea:
a4:a9:a8:8d:ae:2c:ee:b8:7c:c8:ec:92:66:06:78:
6c:19:c6:d1:9b:ba:e9:59:e9:2d:75:59:33:32:bd:
e0:30:b5:45:22:cf:e0:48:c1:a4:97:17:dc:17:e0:
2a:72:cd:8d:a0:3b:20:e8:2a:ab:59:94:f5:5c:01:
1b:b9:82:69:04:b0:e3:75:51:20:99:13:68:c7:9b:
0b:1c:e7:57:0d:4b:86:4a:26:15:4e:63:db:aa:77:
87:8e:7f:9d:03:a3:3b:d2:63:2a:c1:1e:9d:00:ff:
35:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A4:1E:51:A3:E6:EC:34:F9:8B:A0:C8:25:23:F6:A0:F9:3A:6A:C7
X509v3 Authority Key Identifier:
keyid:FD:AD:61:D8:E8:C1:AB:DA:85:96:93:0E:21:F1:82:11:A5:17:68:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_a1h2OjBq9qFlpMOIfGCEaUXaB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/YaQeUaPm7DT5i6DIJSP2oPk6asc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/_a1h2OjBq9qFlpMOIfGCEaUXaB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.71.0/24
Signature Algorithm: sha256WithRSAEncryption
53:f5:a6:d5:7a:a2:68:04:67:51:9c:c2:f2:73:ae:bd:02:ca:
8c:35:7e:66:f1:f4:bf:9d:6e:24:41:4a:26:1b:7d:7e:5c:8b:
c1:d7:28:e7:29:17:e5:3d:c8:37:45:18:94:43:e0:90:16:96:
5d:56:f0:24:93:b4:19:30:6f:02:e4:37:b5:01:28:87:7a:d6:
69:b8:17:7a:01:ee:86:7d:90:3d:f0:0f:18:cb:0c:55:12:77:
51:cc:75:97:ac:65:da:38:29:42:5e:d2:d6:65:ad:05:b9:b3:
75:d3:d9:9b:c2:b1:61:29:fd:7c:d2:80:6a:bc:b2:4f:66:28:
45:cc:7f:99:28:28:49:8e:fb:35:58:6c:7b:2a:19:ca:62:2b:
85:0d:31:3d:ea:16:98:2b:6e:63:85:d7:0a:8b:14:2b:89:98:
c8:bd:fe:88:18:a0:d0:2b:7e:ed:6d:39:50:2f:82:a1:bc:47:
ed:09:72:7b:54:eb:eb:90:29:19:33:94:4d:e4:7b:42:f3:98:
5f:a7:c3:00:17:f2:23:e8:5a:a2:98:53:ad:88:46:c8:e9:6a:
88:d9:64:53:9c:8d:50:b3:06:7d:75:f0:75:2d:9f:27:8a:19:
46:9c:96:df:b5:53:9e:50:3e:91:8e:8b:2c:3a:67:8d:42:21:
75:75:ea:ac
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijaEf+25JdBvYViJ/8FeZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkYWQ2MWQ4ZThjMWFiZGE4NTk2OTMwZTIxZjE4MjExYTUx
NzY4MWYwHhcNMjUwMTAxMTU0ODE0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWE0MWU1MWEzZTZlYzM0Zjk4YmEwYzgyNTIzZjZhMGY5M2E2YWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuK0SzBSZfchqWXSiiQrbvFFAxIwi
xKpdgb3e5jgmmKstHc94uG5Smx2wxK3t7XqKrL6+t/sbR8cg9nNhhHFHfLmHWbfV
L3Yu6YfwmpevtjBbVxM3RoEpaLyETRCG6SMMSmb06a1f3PLnRXgDoEsIRJ1S9rv/
eFbd66fr9uNjnxUXMJN8Fk581r1PAtvC1gzQBe+eSOqkqaiNrizuuHzI7JJmBnhs
GcbRm7rpWektdVkzMr3gMLVFIs/gSMGklxfcF+Aqcs2NoDsg6CqrWZT1XAEbuYJp
BLDjdVEgmRNox5sLHOdXDUuGSiYVTmPbqneHjn+dA6M70mMqwR6dAP81nQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGGkHlGj5uw0+YugyCUj9qD5OmrHMB8GA1UdIwQY
MBaAFP2tYdjowavahZaTDiHxghGlF2gfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2ExaDJPakJxOXFGbHBNT0lmR0NFYVVYYUI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9hNDZjODYtNGIwOC00ODJiLTkyY2Et
ODRlZTIyYTNlZTViLzEvWWFRZVVhUG03RFQ1aTZESUpTUDJvUGs2YXNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy9hNDZjODYtNGIwOC00ODJiLTkyY2EtODRlZTIyYTNlZTVi
LzEvX2ExaDJPakJxOXFGbHBNT0lmR0NFYVVYYUI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudpHMA0G
CSqGSIb3DQEBCwUAA4IBAQBT9abVeqJoBGdRnMLyc669AsqMNX5m8fS/nW4kQUom
G31+XIvB1yjnKRflPcg3RRiUQ+CQFpZdVvAkk7QZMG8C5De1ASiHetZpuBd6Ae6G
fZA98A8YywxVEndRzHWXrGXaOClCXtLWZa0FubN109mbwrFhKf180oBqvLJPZihF
zH+ZKChJjvs1WGx7KhnKYiuFDTE96haYK25jhdcKixQriZjIvf6IGKDQK37tbTlQ
L4KhvEftCXJ7VOvrkCkZM5RN5HtC85hfp8MAF/Ij6FqimFOtiEbI6WqI2WRTnI1Q
swZ9dfB1LZ8nihlGnJbftVOeUD6RjossOmeNQiF1deqs
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net