Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/69322d-ad71-4877-a470-9ad9099de1d3/1/shBm13sVD-3FD9e1R6_cr96dhfU.roa
File: shBm13sVD-3FD9e1R6_cr96dhfU.roa (raw, json)
Hash identifier: n/xarPDtIVC1p+Buc2MZvYZnuxYBvdgfF2U0DRag658=
Subject key identifier: B2:10:66:D7:7B:15:0F:ED:C5:0F:D7:B5:47:AF:DC:AF:DE:9D:85:F5
Certificate issuer: /CN=4eef204d7e86ff81624a6181286e76d433876bc7
Certificate serial: 0194274878C74A8322D97AA7C213EF7B5003
Authority key identifier: 4E:EF:20:4D:7E:86:FF:81:62:4A:61:81:28:6E:76:D4:33:87:6B:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tu8gTX6G_4FiSmGBKG521DOHa8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/69322d-ad71-4877-a470-9ad9099de1d3/1/shBm13sVD-3FD9e1R6_cr96dhfU.roa
Signing time: Thu 02 Jan 2025 13:50:48 +0000
ROA not before: Thu 02 Jan 2025 13:50:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210061
IP address blocks: 176.118.168.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:78:c7:4a:83:22:d9:7a:a7:c2:13:ef:7b:50:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eef204d7e86ff81624a6181286e76d433876bc7
Validity
Not Before: Jan 2 13:50:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b21066d77b150fedc50fd7b547afdcafde9d85f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bf:e6:1d:0e:c3:0a:c0:76:81:3a:3d:92:0c:
8e:89:02:51:96:80:58:67:db:79:56:28:6d:45:dc:
47:77:38:8a:42:1d:c8:c3:85:ab:4d:89:62:66:79:
ec:d9:9d:3f:d3:cd:d8:ea:21:b5:45:18:d7:a3:46:
89:36:96:c8:c9:d6:04:b2:85:d8:86:cd:9a:48:53:
f4:05:16:13:12:22:79:f5:94:b4:4f:f3:77:a1:76:
62:ac:56:d3:14:af:43:7c:9a:47:49:d2:28:c6:9b:
76:7a:db:10:24:0b:a9:21:e6:b8:18:00:02:83:29:
f0:d4:87:76:bd:b0:04:50:eb:05:80:12:46:54:fe:
a1:19:f4:c0:e6:08:be:b3:21:34:77:3f:dc:8b:3e:
b8:12:4d:7e:32:7b:c0:59:35:0d:bf:67:2f:a1:04:
d3:c0:07:86:ca:ac:ed:82:9b:93:dd:bb:b5:0a:54:
a3:b9:0f:24:a8:4b:62:6b:4e:84:8c:72:3e:83:59:
05:68:5a:a3:47:cd:1d:60:fd:43:39:75:c7:9c:28:
c0:c2:32:77:6d:84:1b:5d:f6:e8:80:0b:4f:13:55:
27:ef:44:eb:47:1e:c4:ec:ad:46:dc:07:64:37:30:
b9:ea:b8:07:e4:e7:56:89:5e:f8:3e:3b:d4:02:cb:
16:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:10:66:D7:7B:15:0F:ED:C5:0F:D7:B5:47:AF:DC:AF:DE:9D:85:F5
X509v3 Authority Key Identifier:
keyid:4E:EF:20:4D:7E:86:FF:81:62:4A:61:81:28:6E:76:D4:33:87:6B:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tu8gTX6G_4FiSmGBKG521DOHa8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/69322d-ad71-4877-a470-9ad9099de1d3/1/shBm13sVD-3FD9e1R6_cr96dhfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/69322d-ad71-4877-a470-9ad9099de1d3/1/Tu8gTX6G_4FiSmGBKG521DOHa8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.168.0/23
Signature Algorithm: sha256WithRSAEncryption
11:ce:99:c0:a3:96:e0:a4:90:3c:cf:26:3e:e0:ea:75:8b:5c:
af:59:e8:15:f9:38:10:38:18:65:c9:3d:4f:3e:93:e8:aa:5d:
d5:39:de:9e:a3:9e:85:df:52:d5:41:f4:fc:c7:09:d9:f8:08:
a0:da:2d:f5:23:d7:e4:c6:39:d5:08:c6:28:63:87:93:69:d2:
9f:09:0d:f9:54:ae:e7:d9:6f:76:93:35:2e:c3:7a:ca:78:50:
1c:bf:25:ce:bb:dc:9a:d5:b8:6f:39:7d:bf:4e:5f:c3:7b:12:
53:71:1b:65:27:f4:7b:6f:af:61:95:c1:14:b2:a4:fe:1c:c3:
f6:ca:36:6a:10:11:34:54:93:b6:4c:79:d6:3b:c8:7d:de:ca:
ea:32:60:9f:83:62:29:da:ee:96:4b:4a:bc:ae:17:6e:68:be:
42:84:c0:13:f7:2e:63:bf:ec:67:18:28:3e:cc:56:c4:41:8a:
1b:91:b1:34:7b:3b:fa:17:55:c4:1f:4f:41:93:cb:3a:6f:1d:
7f:cc:2b:46:89:52:0d:1c:b5:e5:32:ec:c6:0e:a9:68:9b:46:
d5:80:44:ea:1d:00:0f:5f:42:68:5d:d5:38:16:17:96:9c:72:
95:b0:af:a8:ef:61:b3:87:88:2a:9d:eb:ad:b2:54:2b:ab:2c:
bf:1c:da:97
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnSHjHSoMi2XqnwhPve1ADMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZWYyMDRkN2U4NmZmODE2MjRhNjE4MTI4NmU3NmQ0MzM4
NzZiYzcwHhcNMjUwMTAyMTM1MDQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjEwNjZkNzdiMTUwZmVkYzUwZmQ3YjU0N2FmZGNhZmRlOWQ4NWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvb/mHQ7DCsB2gTo9kgyOiQJRloBY
Z9t5VihtRdxHdziKQh3Iw4WrTYliZnns2Z0/083Y6iG1RRjXo0aJNpbIydYEsoXY
hs2aSFP0BRYTEiJ59ZS0T/N3oXZirFbTFK9DfJpHSdIoxpt2etsQJAupIea4GAAC
gynw1Id2vbAEUOsFgBJGVP6hGfTA5gi+syE0dz/ciz64Ek1+MnvAWTUNv2cvoQTT
wAeGyqztgpuT3bu1ClSjuQ8kqEtia06EjHI+g1kFaFqjR80dYP1DOXXHnCjAwjJ3
bYQbXfbogAtPE1Un70TrRx7E7K1G3AdkNzC56rgH5OdWiV74PjvUAssW2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLIQZtd7FQ/txQ/XtUev3K/enYX1MB8GA1UdIwQY
MBaAFE7vIE1+hv+BYkphgShudtQzh2vHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHU4Z1RYNkdfNEZpU21HQktHNTIxRE9IYThjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82OTMyMmQtYWQ3MS00ODc3LWE0NzAt
OWFkOTA5OWRlMWQzLzEvc2hCbTEzc1ZELTNGRDllMVI2X2NyOTZkaGZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS82OTMyMmQtYWQ3MS00ODc3LWE0NzAtOWFkOTA5OWRlMWQz
LzEvVHU4Z1RYNkdfNEZpU21HQktHNTIxRE9IYThjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBsHaoMA0G
CSqGSIb3DQEBCwUAA4IBAQARzpnAo5bgpJA8zyY+4Op1i1yvWegV+TgQOBhlyT1P
PpPoql3VOd6eo56F31LVQfT8xwnZ+Aig2i31I9fkxjnVCMYoY4eTadKfCQ35VK7n
2W92kzUuw3rKeFAcvyXOu9ya1bhvOX2/Tl/DexJTcRtlJ/R7b69hlcEUsqT+HMP2
yjZqEBE0VJO2THnWO8h93srqMmCfg2Ip2u6WS0q8rhduaL5ChMAT9y5jv+xnGCg+
zFbEQYobkbE0ezv6F1XEH09Bk8s6bx1/zCtGiVINHLXlMuzGDqlom0bVgETqHQAP
X0JoXdU4FheWnHKVsK+o72Gzh4gqneutslQrqyy/HNqX
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:42 2025 by rpki-client on console.sobornost.net