Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eeb1b2-e3c3-413d-a164-80d4782437ff/1/7XTv9hOTaLviFUQwCXilEpYpbHU.roa
File: 7XTv9hOTaLviFUQwCXilEpYpbHU.roa (raw, json)
Hash identifier: 4LkrU5FXjLzeM7TTaFB6Rd3GTMio8T94peCl7zXgOHM=
Subject key identifier: ED:74:EF:F6:13:93:68:BB:E2:15:44:30:09:78:A5:12:96:29:6C:75
Certificate issuer: /CN=b6fa40adbe936b184f844586a0f90d1230b68537
Certificate serial: 019421B21C9205F56608689FDAD0D465D849
Authority key identifier: B6:FA:40:AD:BE:93:6B:18:4F:84:45:86:A0:F9:0D:12:30:B6:85:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tvpArb6TaxhPhEWGoPkNEjC2hTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eeb1b2-e3c3-413d-a164-80d4782437ff/1/7XTv9hOTaLviFUQwCXilEpYpbHU.roa
Signing time: Wed 01 Jan 2025 11:48:28 +0000
ROA not before: Wed 01 Jan 2025 11:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51778
IP address blocks: 194.5.228.0/22 maxlen: 22
194.5.228.0/23 maxlen: 23
2a0c:e740::/32 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:1c:92:05:f5:66:08:68:9f:da:d0:d4:65:d8:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6fa40adbe936b184f844586a0f90d1230b68537
Validity
Not Before: Jan 1 11:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed74eff6139368bbe21544300978a51296296c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:67:76:7f:fa:fd:b9:69:99:42:e2:0d:ee:87:
51:d5:4e:51:a6:06:75:f6:86:27:25:bd:fe:bb:b0:
c9:54:c4:aa:c6:1c:c4:98:88:19:09:ec:2d:fd:c2:
56:92:c5:a2:2a:da:b3:06:f9:b0:f4:24:ca:5c:01:
d6:bd:ec:58:84:64:42:23:a4:ce:9b:d8:18:e2:10:
e5:1b:72:92:af:1f:05:8e:99:c0:78:5c:17:6f:59:
31:0d:b6:f4:08:d9:0f:09:af:b2:f7:b8:9a:bf:82:
83:f4:41:15:de:95:59:df:cf:37:ff:20:8f:47:23:
7f:0d:20:57:30:77:bc:e2:ec:ca:af:b0:14:af:14:
4a:a8:26:c7:cf:fa:3c:61:31:cd:72:84:40:7f:dd:
b3:dd:f0:c2:e8:0e:1c:1b:64:a1:65:b0:57:cd:d0:
bf:c1:ae:af:4a:6b:cd:76:6f:13:33:35:26:4a:a3:
90:6c:80:33:c7:43:ca:24:55:73:68:75:9e:db:05:
43:13:51:83:32:bc:bb:c0:b6:c7:49:d1:a3:15:ac:
0a:9a:75:bb:54:ef:38:d1:e3:e0:4e:3e:cd:a4:a9:
f1:0f:fb:50:d5:3a:e2:d0:bb:05:79:64:30:56:b2:
f4:11:4c:fc:e8:47:9a:67:d7:4a:e8:57:48:a7:ea:
ae:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:74:EF:F6:13:93:68:BB:E2:15:44:30:09:78:A5:12:96:29:6C:75
X509v3 Authority Key Identifier:
keyid:B6:FA:40:AD:BE:93:6B:18:4F:84:45:86:A0:F9:0D:12:30:B6:85:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tvpArb6TaxhPhEWGoPkNEjC2hTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eeb1b2-e3c3-413d-a164-80d4782437ff/1/7XTv9hOTaLviFUQwCXilEpYpbHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eeb1b2-e3c3-413d-a164-80d4782437ff/1/tvpArb6TaxhPhEWGoPkNEjC2hTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.228.0/22
IPv6:
2a0c:e740::/32
Signature Algorithm: sha256WithRSAEncryption
3b:a3:de:9d:92:a7:44:db:0a:be:74:3b:c2:35:70:15:be:f4:
15:c0:c5:e3:76:c2:d5:8d:cf:83:2d:33:18:b5:67:a9:13:22:
d3:e4:78:57:53:53:fc:a7:3a:64:50:80:83:9d:79:78:ae:1f:
a4:60:fe:1b:4c:2f:19:88:a2:4c:0e:d4:10:17:bf:78:37:06:
07:b6:e1:21:0e:bd:7a:cd:d7:4e:35:1b:7e:5f:c8:50:cc:78:
6d:b1:3b:c6:68:e4:7d:cc:ba:f8:b6:c7:af:cc:97:4d:19:52:
bf:dd:fb:d8:42:b7:bb:66:98:ac:a4:22:61:3f:ce:29:51:16:
e8:f2:51:72:89:f5:9f:26:0a:79:27:ad:71:0d:42:6d:77:25:
7e:f1:40:51:8f:b7:f2:27:d8:4f:69:cf:17:45:25:9f:39:f2:
a1:c2:2c:1f:ad:d1:7d:12:92:64:f0:4e:cb:dc:f3:84:64:fc:
74:ff:5c:e6:16:23:de:af:55:05:bd:ab:54:84:32:57:cc:5a:
63:ae:4b:27:3f:d4:93:79:b0:af:22:98:e1:75:97:24:23:61:
92:8e:7a:f1:e4:71:90:75:ab:ec:00:62:74:a9:0b:93:e2:ca:
5a:4c:32:34:25:74:b0:d8:ab:4a:0d:b0:24:d8:43:ca:1d:d5:
66:f4:70:e9
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQhshySBfVmCGif2tDUZdhJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2ZmE0MGFkYmU5MzZiMTg0Zjg0NDU4NmEwZjkwZDEyMzBi
Njg1MzcwHhcNMjUwMTAxMTE0ODI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDc0ZWZmNjEzOTM2OGJiZTIxNTQ0MzAwOTc4YTUxMjk2Mjk2Yzc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA22d2f/r9uWmZQuIN7odR1U5RpgZ1
9oYnJb3+u7DJVMSqxhzEmIgZCewt/cJWksWiKtqzBvmw9CTKXAHWvexYhGRCI6TO
m9gY4hDlG3KSrx8FjpnAeFwXb1kxDbb0CNkPCa+y97iav4KD9EEV3pVZ3883/yCP
RyN/DSBXMHe84uzKr7AUrxRKqCbHz/o8YTHNcoRAf92z3fDC6A4cG2ShZbBXzdC/
wa6vSmvNdm8TMzUmSqOQbIAzx0PKJFVzaHWe2wVDE1GDMry7wLbHSdGjFawKmnW7
VO840ePgTj7NpKnxD/tQ1Tri0LsFeWQwVrL0EUz86EeaZ9dK6FdIp+quLQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFO107/YTk2i74hVEMAl4pRKWKWx1MB8GA1UdIwQY
MBaAFLb6QK2+k2sYT4RFhqD5DRIwtoU3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHZwQXJiNlRheGhQaEVXR29Qa05FakMyaFRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9lZWIxYjItZTNjMy00MTNkLWExNjQt
ODBkNDc4MjQzN2ZmLzEvN1hUdjloT1RhTHZpRlVRd0NYaWxFcFlwYkhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9lZWIxYjItZTNjMy00MTNkLWExNjQtODBkNDc4MjQzN2Zm
LzEvdHZwQXJiNlRheGhQaEVXR29Qa05FakMyaFRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwgXkMA0E
AgACMAcDBQAqDOdAMA0GCSqGSIb3DQEBCwUAA4IBAQA7o96dkqdE2wq+dDvCNXAV
vvQVwMXjdsLVjc+DLTMYtWepEyLT5HhXU1P8pzpkUICDnXl4rh+kYP4bTC8ZiKJM
DtQQF794NwYHtuEhDr16zddONRt+X8hQzHhtsTvGaOR9zLr4tsevzJdNGVK/3fvY
Qre7ZpispCJhP84pURbo8lFyifWfJgp5J61xDUJtdyV+8UBRj7fyJ9hPac8XRSWf
OfKhwiwfrdF9EpJk8E7L3POEZPx0/1zmFiPer1UFvatUhDJXzFpjrksnP9STebCv
IpjhdZckI2GSjnrx5HGQdavsAGJ0qQuT4spaTDI0JXSw2KtKDbAk2EPKHdVm9HDp
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:48 2025 by rpki-client on console.sobornost.net