Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/DCQBlEbEwUGmnDibgcct5WXqQ9w.roa
File: DCQBlEbEwUGmnDibgcct5WXqQ9w.roa (raw, json)
Hash identifier: 2loNvmo8igx2IH1TUeYoiocdqVl5ys5Nj/gH2QT5uEs=
Subject key identifier: 0C:24:01:94:46:C4:C1:41:A6:9C:38:9B:81:C7:2D:E5:65:EA:43:DC
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0195F551226963516F3D85FE2E026507C1B1
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/DCQBlEbEwUGmnDibgcct5WXqQ9w.roa
Signing time: Wed 02 Apr 2025 07:04:49 +0000
ROA not before: Wed 02 Apr 2025 07:04:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 46.34.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f5:51:22:69:63:51:6f:3d:85:fe:2e:02:65:07:c1:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Apr 2 07:04:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0c24019446c4c141a69c389b81c72de565ea43dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:91:3a:c6:a1:7a:88:61:ac:c4:d8:0f:f3:bb:
54:85:7b:70:89:7d:9b:5e:4a:64:ee:62:5c:e5:fa:
17:bb:2f:f9:47:d8:42:21:af:6b:08:0a:9c:0b:93:
31:84:b0:e2:a6:91:32:7c:a9:e4:5e:45:b8:1f:7e:
ba:a1:d5:d0:af:85:3d:6f:8e:7b:c7:96:72:90:03:
9e:8b:13:8c:be:5d:25:23:64:07:fd:7a:12:45:59:
78:8c:db:ce:69:20:04:51:67:ad:19:48:8f:35:03:
4b:08:07:8b:4d:c0:a1:8a:3d:01:99:51:8e:72:d5:
74:c4:10:1a:fb:83:6c:9d:6e:c9:2a:b4:7f:f7:d8:
00:32:af:0b:81:c1:5a:ba:cf:86:62:0f:89:ab:75:
7d:ed:1c:ab:8e:7e:45:63:76:fa:9f:9c:dc:fb:e0:
4c:b8:9e:65:d5:46:be:d5:18:c6:f9:7b:6a:22:b5:
ef:cd:a3:c3:e3:7a:6f:78:ba:2a:f2:74:c7:ca:cd:
06:47:2c:f5:a5:c8:ba:d2:b5:40:28:20:d7:94:68:
bf:01:99:74:86:f0:e6:e4:f4:6d:b4:b4:d5:2c:06:
0d:86:fe:ff:6f:e7:c2:53:12:1c:ec:97:a8:96:c4:
b0:52:a3:ce:21:58:0d:13:a6:a1:37:bc:a0:47:77:
15:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:24:01:94:46:C4:C1:41:A6:9C:38:9B:81:C7:2D:E5:65:EA:43:DC
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/DCQBlEbEwUGmnDibgcct5WXqQ9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.41.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:49:f5:af:73:96:dd:cf:6c:5e:36:cf:1d:50:c3:79:6c:3b:
2b:d8:79:c5:c2:4a:78:45:11:35:a3:a1:82:75:a2:4a:70:d9:
19:8b:cc:98:58:ab:7a:e6:d2:3c:2c:0f:1a:f3:7e:2e:24:c6:
37:6b:81:d6:fc:ad:f5:dc:8e:a4:9c:43:a6:d0:a8:de:62:2f:
e6:c2:fd:a6:78:79:df:3f:39:ea:26:67:72:f6:99:b1:8b:5b:
56:88:7b:6d:17:1f:86:48:86:03:ba:b4:44:2b:d2:56:73:67:
06:f7:bc:16:f7:15:cd:34:f8:be:6e:2e:c4:9e:3d:0e:78:ae:
c0:41:6d:51:de:7d:83:e4:d8:21:8f:7d:7c:9d:0b:14:9b:2c:
05:64:7e:be:4f:9a:4f:d2:51:ba:48:1e:6a:83:ca:58:83:bb:
54:17:8f:ea:ce:81:71:15:0b:2f:af:37:9f:ff:22:23:a6:9e:
b8:31:f0:30:98:3d:a4:ac:d8:77:65:39:b1:74:2e:15:fc:a7:
b9:83:58:40:ec:38:99:42:2b:ca:62:a0:93:b1:4a:99:d7:13:
b3:2b:70:71:dd:7b:31:f9:d9:e1:16:65:59:ea:af:af:a8:65:
f7:11:2e:b9:30:83:81:0f:0a:44:54:81:1a:5b:a3:bd:96:c3:
a5:79:5f:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZX1USJpY1FvPYX+LgJlB8GxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNDcxY2Q2Y2U2MGFiZWRkNzQ3NjJiMTAxYWE1ZTZmNDIw
N2VmY2UwHhcNMjUwNDAyMDcwNDQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzI0MDE5NDQ2YzRjMTQxYTY5YzM4OWI4MWM3MmRlNTY1ZWE0M2RjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxpE6xqF6iGGsxNgP87tUhXtwiX2b
Xkpk7mJc5foXuy/5R9hCIa9rCAqcC5MxhLDippEyfKnkXkW4H366odXQr4U9b457
x5ZykAOeixOMvl0lI2QH/XoSRVl4jNvOaSAEUWetGUiPNQNLCAeLTcChij0BmVGO
ctV0xBAa+4NsnW7JKrR/99gAMq8LgcFaus+GYg+Jq3V97Ryrjn5FY3b6n5zc++BM
uJ5l1Ua+1RjG+XtqIrXvzaPD43pveLoq8nTHys0GRyz1pci60rVAKCDXlGi/AZl0
hvDm5PRttLTVLAYNhv7/b+fCUxIc7JeolsSwUqPOIVgNE6ahN7ygR3cVzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAwkAZRGxMFBppw4m4HHLeVl6kPcMB8GA1UdIwQY
MBaAFEpHHNbOYKvt10disQGqXm9CB+/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2Qt
YTZiOTkxZjRmYWY4LzEvRENRQmxFYkV3VUdtbkRpYmdjY3Q1V1hxUTl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2QtYTZiOTkxZjRmYWY4
LzEvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALiIpMA0G
CSqGSIb3DQEBCwUAA4IBAQA9SfWvc5bdz2xeNs8dUMN5bDsr2HnFwkp4RRE1o6GC
daJKcNkZi8yYWKt65tI8LA8a834uJMY3a4HW/K313I6knEOm0KjeYi/mwv2meHnf
PznqJmdy9pmxi1tWiHttFx+GSIYDurREK9JWc2cG97wW9xXNNPi+bi7Enj0OeK7A
QW1R3n2D5Nghj318nQsUmywFZH6+T5pP0lG6SB5qg8pYg7tUF4/qzoFxFQsvrzef
/yIjpp64MfAwmD2krNh3ZTmxdC4V/Ke5g1hA7DiZQivKYqCTsUqZ1xOzK3Bx3Xsx
+dnhFmVZ6q+vqGX3ES65MIOBDwpEVIEaW6O9lsOleV+x
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:29 2025 by rpki-client on console.sobornost.net