Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/A47fccTo8R6H5H4SA6IjK8B0oyw.roa
File: A47fccTo8R6H5H4SA6IjK8B0oyw.roa (raw, json)
Hash identifier: u22QQd6Zy22uxWoYGFgOyxTpdIgz83a8msCQfB/L8Cc=
Subject key identifier: 03:8E:DF:71:C4:E8:F1:1E:87:E4:7E:12:03:A2:23:2B:C0:74:A3:2C
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 0194221FD15309B1CAC0AA96ECB40BF209E4
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/A47fccTo8R6H5H4SA6IjK8B0oyw.roa
Signing time: Wed 01 Jan 2025 13:48:18 +0000
ROA not before: Wed 01 Jan 2025 13:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206937
IP address blocks: 157.25.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:d1:53:09:b1:ca:c0:aa:96:ec:b4:0b:f2:09:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 13:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=038edf71c4e8f11e87e47e1203a2232bc074a32c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:04:9b:10:96:e0:3d:9d:24:c3:9f:c5:af:3d:
3e:2a:9e:27:59:26:ed:d7:ce:87:11:ff:96:57:d2:
60:94:f0:73:2d:4d:fc:e4:25:70:24:f5:6d:ec:fb:
9d:27:27:bf:b0:79:28:56:fb:e7:23:6f:99:fc:ed:
f9:41:7a:71:9e:51:1f:b9:d2:14:5c:0e:ab:60:42:
11:31:1c:b0:c6:54:e5:fb:cd:38:40:d9:20:95:88:
34:6b:ac:0d:24:8b:b6:0d:31:b1:b4:92:a5:05:06:
be:af:71:94:ce:5b:9d:06:8a:3f:49:65:1b:93:fb:
57:d6:0b:b7:b4:e1:3c:00:e3:3b:f2:b3:cc:11:1f:
93:a3:6b:11:24:79:77:44:4b:28:bd:74:5c:ff:9e:
a1:4f:1e:a6:85:ba:3c:c2:1e:bd:8b:bd:53:df:cf:
3f:37:7f:e6:80:dc:76:82:3e:8c:72:db:b8:c0:4e:
5c:1a:9e:2e:ed:cf:b5:08:e6:87:e7:fe:1b:d5:f1:
70:b0:f2:d1:98:1b:c8:55:de:37:d9:87:a2:2a:7d:
f2:6e:e2:05:3f:9e:76:e0:bd:0f:79:a0:4b:95:46:
02:49:05:b4:92:c7:8a:80:8f:e0:7f:1c:b9:ba:19:
ce:a6:4c:e0:98:e7:29:aa:92:e6:f6:77:e7:cf:b4:
5b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8E:DF:71:C4:E8:F1:1E:87:E4:7E:12:03:A2:23:2B:C0:74:A3:2C
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/A47fccTo8R6H5H4SA6IjK8B0oyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.25.150.0/24
Signature Algorithm: sha256WithRSAEncryption
25:b8:a3:2e:6e:ce:68:01:bc:67:5e:d6:bc:2f:96:57:bd:d0:
a4:c7:59:d1:0e:f1:b5:13:f2:27:8f:07:63:98:8a:73:4b:42:
47:ea:2f:58:05:b9:08:cf:8e:9e:d8:f8:e2:25:9e:17:26:18:
84:a8:ff:3a:a0:8c:06:55:4d:cf:14:71:b9:ae:4a:f3:c8:81:
77:ff:88:c7:73:85:ca:82:da:54:72:39:8e:55:b3:58:a0:36:
be:88:5d:06:94:83:6e:9f:6b:fd:38:11:a2:d2:a6:17:d8:c4:
da:52:59:e6:d6:11:94:98:b6:e9:d4:67:25:ad:42:d5:ad:3d:
95:83:6f:eb:c9:c6:e9:32:09:f3:33:a4:4a:ec:31:23:6d:7c:
a7:ff:1c:4c:91:ec:15:17:87:c9:53:09:0a:52:8b:ac:cf:1c:
fd:d9:27:2a:9c:1f:9c:61:b5:21:f9:c9:df:0d:50:92:1e:11:
9b:1b:8b:b5:97:cf:71:1a:50:4c:32:d2:5d:ea:f1:b7:d4:c7:
26:aa:37:0e:95:e8:73:d8:ed:77:4e:cc:34:fa:b6:1a:19:96:
fe:bc:49:03:90:45:47:55:05:49:48:dd:02:fc:b2:23:a6:da:
cf:8d:3e:fc:2f:28:01:39:90:65:7d:e6:96:66:38:8e:6d:b4:
32:49:9d:69
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH9FTCbHKwKqW7LQL8gnkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhY2E2M2RmMjQ4YjdhZGYzZGRkMDdlOGMyZDNlZWRkMDJj
ZWY5MzMwHhcNMjUwMTAxMTM0ODE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzhlZGY3MWM0ZThmMTFlODdlNDdlMTIwM2EyMjMyYmMwNzRhMzJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvASbEJbgPZ0kw5/Frz0+Kp4nWSbt
186HEf+WV9JglPBzLU385CVwJPVt7PudJye/sHkoVvvnI2+Z/O35QXpxnlEfudIU
XA6rYEIRMRywxlTl+804QNkglYg0a6wNJIu2DTGxtJKlBQa+r3GUzludBoo/SWUb
k/tX1gu3tOE8AOM78rPMER+To2sRJHl3REsovXRc/56hTx6mhbo8wh69i71T388/
N3/mgNx2gj6Mctu4wE5cGp4u7c+1COaH5/4b1fFwsPLRmBvIVd432YeiKn3ybuIF
P5524L0PeaBLlUYCSQW0kseKgI/gfxy5uhnOpkzgmOcpqpLm9nfnz7RbWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAOO33HE6PEeh+R+EgOiIyvAdKMsMB8GA1UdIwQY
MBaAFBrKY98ki3rfPd0H6MLT7t0CzvkzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzIt
OTFlMzE4NGJiMGFiLzEvQTQ3ZmNjVG84UjZINUg0U0E2SWpLOEIwb3l3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzItOTFlMzE4NGJiMGFi
LzEvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRmWMA0G
CSqGSIb3DQEBCwUAA4IBAQAluKMubs5oAbxnXta8L5ZXvdCkx1nRDvG1E/Injwdj
mIpzS0JH6i9YBbkIz46e2PjiJZ4XJhiEqP86oIwGVU3PFHG5rkrzyIF3/4jHc4XK
gtpUcjmOVbNYoDa+iF0GlINun2v9OBGi0qYX2MTaUlnm1hGUmLbp1GclrULVrT2V
g2/rycbpMgnzM6RK7DEjbXyn/xxMkewVF4fJUwkKUouszxz92ScqnB+cYbUh+cnf
DVCSHhGbG4u1l89xGlBMMtJd6vG31McmqjcOlehz2O13Tsw0+rYaGZb+vEkDkEVH
VQVJSN0C/LIjptrPjT78LygBOZBlfeaWZjiObbQySZ1p
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:49 2025 by rpki-client on console.sobornost.net