Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/cceaf2-7561-42a7-8d12-8e060ca96fac/1/KUAHtfvST5K1EckHjwHYRJlPUp4.roa
File: KUAHtfvST5K1EckHjwHYRJlPUp4.roa (raw, json)
Hash identifier: xEJyISbIDbAPWfTLfoXu5sCkABLUM5AZf64I/6n92jo=
Subject key identifier: 29:40:07:B5:FB:D2:4F:92:B5:11:C9:07:8F:01:D8:44:99:4F:52:9E
Certificate issuer: /CN=1d861782973c382cc1ce670f5ad50df8fb53c82e
Certificate serial: 01942067FD22A661B483B2800DF4901C7B90
Authority key identifier: 1D:86:17:82:97:3C:38:2C:C1:CE:67:0F:5A:D5:0D:F8:FB:53:C8:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYXgpc8OCzBzmcPWtUN-PtTyC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/cceaf2-7561-42a7-8d12-8e060ca96fac/1/KUAHtfvST5K1EckHjwHYRJlPUp4.roa
Signing time: Wed 01 Jan 2025 05:47:53 +0000
ROA not before: Wed 01 Jan 2025 05:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44704
IP address blocks: 195.42.96.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:fd:22:a6:61:b4:83:b2:80:0d:f4:90:1c:7b:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d861782973c382cc1ce670f5ad50df8fb53c82e
Validity
Not Before: Jan 1 05:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=294007b5fbd24f92b511c9078f01d844994f529e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:74:b9:d5:e5:36:95:00:40:b2:71:77:23:a5:
3a:a2:28:16:b6:41:d2:88:10:49:6b:08:93:d2:cb:
dd:fe:59:e5:ec:0b:78:42:7b:e9:1f:1c:68:1d:89:
6e:06:5b:a3:28:a6:6c:32:b8:78:43:ba:17:82:28:
fb:c9:4f:71:27:70:e9:e8:3d:dd:37:b4:29:54:02:
50:ff:09:0e:2c:8e:da:42:1a:dc:99:a0:98:0e:08:
de:bd:cb:3f:35:2e:5b:ea:d8:29:ce:4c:3c:b7:fe:
40:27:4a:2b:e9:ca:22:ed:8b:2a:8d:4c:ee:0c:e1:
37:94:84:6c:64:91:1e:9c:bb:da:f2:0d:c4:67:ee:
f8:a3:1a:08:ad:2e:18:db:b3:1c:4c:13:ad:d1:44:
dc:2a:37:70:72:24:61:ee:9d:6d:c0:b0:48:cd:bf:
d0:86:83:31:07:00:bc:de:5f:19:6b:da:e9:a8:17:
05:17:9f:bd:f9:d6:6f:31:59:d1:8b:c5:ed:c0:8f:
31:c8:92:41:11:72:4d:97:09:50:0b:05:36:f9:59:
a7:1f:f7:5d:1d:13:eb:38:73:24:e3:4c:87:35:16:
e3:a2:3f:4b:07:38:10:2d:16:b3:7c:c8:3a:44:8f:
9d:96:ee:f9:d0:c5:ee:8c:a5:c0:dd:02:b0:84:0a:
d2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:40:07:B5:FB:D2:4F:92:B5:11:C9:07:8F:01:D8:44:99:4F:52:9E
X509v3 Authority Key Identifier:
keyid:1D:86:17:82:97:3C:38:2C:C1:CE:67:0F:5A:D5:0D:F8:FB:53:C8:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYXgpc8OCzBzmcPWtUN-PtTyC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cceaf2-7561-42a7-8d12-8e060ca96fac/1/KUAHtfvST5K1EckHjwHYRJlPUp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cceaf2-7561-42a7-8d12-8e060ca96fac/1/HYYXgpc8OCzBzmcPWtUN-PtTyC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.96.0/23
Signature Algorithm: sha256WithRSAEncryption
50:00:44:f8:00:ae:d2:7d:01:f3:25:0d:16:a8:d1:c2:31:e0:
a0:ac:9d:88:ad:43:b8:21:c4:6a:6d:93:5a:9d:e6:62:9d:2f:
a8:5e:9c:af:d8:ca:f0:5d:62:f6:e8:3f:25:90:08:82:5a:ca:
af:c8:0e:21:ce:02:93:29:4c:96:cb:cc:e0:95:76:59:c1:19:
dc:df:a4:cc:bd:ab:a5:ce:fb:04:af:10:c8:7b:9a:cb:a3:90:
27:dc:ff:31:a5:8c:83:f0:05:29:2c:dd:2f:d1:b9:cb:4f:21:
b4:c4:d7:6c:79:b3:76:1e:50:22:f8:d2:03:81:ae:5f:b7:52:
24:cc:36:b8:88:f1:d7:93:49:bb:05:80:99:5a:85:b7:66:36:
86:c6:47:90:e2:d1:49:15:4b:e7:f1:74:cd:9d:fc:b7:eb:02:
2f:4f:72:84:4d:31:1a:82:6c:ba:51:d7:16:4b:9c:1a:97:89:
91:e4:48:9e:73:62:a4:97:68:91:5f:e4:eb:68:48:26:a0:a7:
ba:26:03:f6:6d:ba:2f:5f:03:cf:9f:2b:12:38:56:95:2c:12:
d4:bf:b0:97:7d:a0:ce:ea:04:3b:7c:3f:a6:42:37:1c:31:ac:
cb:d8:06:96:70:57:4b:d9:db:11:b0:fc:b5:36:f7:0e:b6:dd:
f9:63:84:46
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQgZ/0ipmG0g7KADfSQHHuQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkODYxNzgyOTczYzM4MmNjMWNlNjcwZjVhZDUwZGY4ZmI1
M2M4MmUwHhcNMjUwMTAxMDU0NzUzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTQwMDdiNWZiZDI0ZjkyYjUxMWM5MDc4ZjAxZDg0NDk5NGY1MjllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23S51eU2lQBAsnF3I6U6oigWtkHS
iBBJawiT0svd/lnl7At4QnvpHxxoHYluBlujKKZsMrh4Q7oXgij7yU9xJ3Dp6D3d
N7QpVAJQ/wkOLI7aQhrcmaCYDgjevcs/NS5b6tgpzkw8t/5AJ0or6coi7YsqjUzu
DOE3lIRsZJEenLva8g3EZ+74oxoIrS4Y27McTBOt0UTcKjdwciRh7p1twLBIzb/Q
hoMxBwC83l8Za9rpqBcFF5+9+dZvMVnRi8XtwI8xyJJBEXJNlwlQCwU2+VmnH/dd
HRPrOHMk40yHNRbjoj9LBzgQLRazfMg6RI+dlu750MXujKXA3QKwhArSgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFClAB7X70k+StRHJB48B2ESZT1KeMB8GA1UdIwQY
MBaAFB2GF4KXPDgswc5nD1rVDfj7U8guMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFlZWGdwYzhPQ3pCem1jUFd0VU4tUHRUeUM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9jY2VhZjItNzU2MS00MmE3LThkMTIt
OGUwNjBjYTk2ZmFjLzEvS1VBSHRmdlNUNUsxRWNrSGp3SFlSSmxQVXA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9jY2VhZjItNzU2MS00MmE3LThkMTItOGUwNjBjYTk2ZmFj
LzEvSFlZWGdwYzhPQ3pCem1jUFd0VU4tUHRUeUM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwypgMA0G
CSqGSIb3DQEBCwUAA4IBAQBQAET4AK7SfQHzJQ0WqNHCMeCgrJ2IrUO4IcRqbZNa
neZinS+oXpyv2MrwXWL26D8lkAiCWsqvyA4hzgKTKUyWy8zglXZZwRnc36TMvaul
zvsErxDIe5rLo5An3P8xpYyD8AUpLN0v0bnLTyG0xNdsebN2HlAi+NIDga5ft1Ik
zDa4iPHXk0m7BYCZWoW3ZjaGxkeQ4tFJFUvn8XTNnfy36wIvT3KETTEagmy6UdcW
S5wal4mR5Eiec2Kkl2iRX+TraEgmoKe6JgP2bbovXwPPnysSOFaVLBLUv7CXfaDO
6gQ7fD+mQjccMazL2AaWcFdL2dsRsPy1NvcOtt35Y4RG
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:55 2025 by rpki-client on console.sobornost.net