Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/fAbOIbHK5-PVtXMOGIO2S4Xc80s.roa
File: fAbOIbHK5-PVtXMOGIO2S4Xc80s.roa (raw, json)
Hash identifier: A/R1dGee9i9ll3uzH2uvDgQFeaI46CgRuWCcx8V04Lc=
Subject key identifier: 7C:06:CE:21:B1:CA:E7:E3:D5:B5:73:0E:18:83:B6:4B:85:DC:F3:4B
Certificate issuer: /CN=f416539e74934d23a0572f6625dbfdb54e820873
Certificate serial: 0194266B1727AC923B417A75CB2BF93C190C
Authority key identifier: F4:16:53:9E:74:93:4D:23:A0:57:2F:66:25:DB:FD:B5:4E:82:08:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9BZTnnSTTSOgVy9mJdv9tU6CCHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/fAbOIbHK5-PVtXMOGIO2S4Xc80s.roa
Signing time: Thu 02 Jan 2025 09:49:00 +0000
ROA not before: Thu 02 Jan 2025 09:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56782
IP address blocks: 95.107.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:17:27:ac:92:3b:41:7a:75:cb:2b:f9:3c:19:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f416539e74934d23a0572f6625dbfdb54e820873
Validity
Not Before: Jan 2 09:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c06ce21b1cae7e3d5b5730e1883b64b85dcf34b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c2:8d:01:da:bf:4e:39:17:5b:56:d2:52:c5:
af:c6:e1:98:9f:27:15:eb:bc:45:8b:e4:7a:22:55:
ce:3a:4c:93:da:86:9d:ae:d8:57:2a:56:cf:0b:10:
dd:2e:97:c7:64:12:f3:05:b1:af:a6:c0:d9:f0:36:
d4:c5:d2:4b:30:9c:f3:cc:f3:73:ab:14:7b:12:c1:
79:41:bf:a8:0c:ae:fc:85:13:ae:cb:55:02:e1:e9:
01:6d:e7:cd:b7:d6:9d:7f:a5:80:f1:5d:50:11:06:
32:0e:25:96:56:e6:5e:ca:17:32:b0:da:76:bb:f7:
7e:40:ca:1e:57:c4:35:ea:7c:38:5d:78:c5:13:7a:
e2:27:8b:2f:01:f4:e0:0a:2c:96:34:f2:24:17:29:
55:95:f8:2f:78:ed:69:cf:08:1e:b9:4b:21:16:88:
b2:23:02:da:a8:81:8f:11:35:95:eb:c4:33:8e:5f:
8e:93:23:3b:2f:51:fb:c7:98:69:41:51:44:dd:75:
96:ba:27:59:ac:16:55:64:8a:db:9f:12:25:d8:f6:
d4:70:7f:35:f0:43:9c:36:74:68:2c:58:2c:c5:d1:
f3:1f:06:47:ec:e1:5b:bc:07:85:b8:e8:78:94:03:
33:a2:db:99:26:7e:e5:c8:a4:cb:cc:78:ba:cb:77:
54:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:06:CE:21:B1:CA:E7:E3:D5:B5:73:0E:18:83:B6:4B:85:DC:F3:4B
X509v3 Authority Key Identifier:
keyid:F4:16:53:9E:74:93:4D:23:A0:57:2F:66:25:DB:FD:B5:4E:82:08:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9BZTnnSTTSOgVy9mJdv9tU6CCHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/fAbOIbHK5-PVtXMOGIO2S4Xc80s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/9BZTnnSTTSOgVy9mJdv9tU6CCHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.107.175.0/24
Signature Algorithm: sha256WithRSAEncryption
19:c7:dc:ea:ab:77:2f:ab:d5:72:43:30:f7:cc:f7:4d:9f:86:
1b:37:56:af:f8:6b:36:02:8e:4b:99:17:b1:aa:99:a3:85:43:
df:9e:38:5a:6f:01:01:d2:c3:1b:e7:43:bc:71:7f:a0:d3:65:
32:c6:72:95:a5:6f:04:38:0e:e6:a5:d9:f4:76:19:70:2f:aa:
36:c8:cb:32:97:74:85:2d:b1:47:ae:0e:33:a1:aa:af:09:35:
9a:71:7e:d0:fc:86:40:f0:02:e5:75:8f:0d:cd:fc:3e:aa:b0:
2c:15:05:bc:17:a7:f1:2c:2d:d5:ab:d5:43:56:d1:59:f9:06:
8e:64:c3:c1:f1:43:d2:ea:f8:a9:76:93:35:49:ff:9c:09:dd:
fa:db:0f:a5:bd:54:a9:ea:f3:f4:9b:65:23:fc:a8:2e:d6:0e:
d3:ef:72:5a:c4:49:e8:ab:c3:13:61:7b:29:17:29:c0:a0:b0:
ab:93:f2:93:93:7e:79:75:15:7f:25:35:74:0d:a9:1a:af:1c:
d1:29:d8:3e:8c:c7:78:0b:aa:0d:33:13:b5:2d:f3:b6:1f:84:
8e:f8:b9:c8:52:da:7b:41:25:58:0c:63:68:73:df:30:bd:3d:
97:0c:0e:12:d9:93:7d:33:c8:a7:a2:08:ad:00:c7:04:2f:5d:
83:bd:1b:12
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQmaxcnrJI7QXp1yyv5PBkMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0MTY1MzllNzQ5MzRkMjNhMDU3MmY2NjI1ZGJmZGI1NGU4
MjA4NzMwHhcNMjUwMTAyMDk0OTAwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YzA2Y2UyMWIxY2FlN2UzZDViNTczMGUxODgzYjY0Yjg1ZGNmMzRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcKNAdq/TjkXW1bSUsWvxuGYnycV
67xFi+R6IlXOOkyT2oadrthXKlbPCxDdLpfHZBLzBbGvpsDZ8DbUxdJLMJzzzPNz
qxR7EsF5Qb+oDK78hROuy1UC4ekBbefNt9adf6WA8V1QEQYyDiWWVuZeyhcysNp2
u/d+QMoeV8Q16nw4XXjFE3riJ4svAfTgCiyWNPIkFylVlfgveO1pzwgeuUshFoiy
IwLaqIGPETWV68Qzjl+OkyM7L1H7x5hpQVFE3XWWuidZrBZVZIrbnxIl2PbUcH81
8EOcNnRoLFgsxdHzHwZH7OFbvAeFuOh4lAMzotuZJn7lyKTLzHi6y3dU8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHwGziGxyufj1bVzDhiDtkuF3PNLMB8GA1UdIwQY
MBaAFPQWU550k00joFcvZiXb/bVOgghzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUJaVG5uU1RUU09nVnk5bUpkdjl0VTZDQ0hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy81M2U0OTYtMDA5Ny00NjJhLWE5ODkt
ZDY3YTYxZDU0MTZkLzEvZkFiT0liSEs1LVBWdFhNT0dJTzJTNFhjODBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy81M2U0OTYtMDA5Ny00NjJhLWE5ODktZDY3YTYxZDU0MTZk
LzEvOUJaVG5uU1RUU09nVnk5bUpkdjl0VTZDQ0hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX2uvMA0G
CSqGSIb3DQEBCwUAA4IBAQAZx9zqq3cvq9VyQzD3zPdNn4YbN1av+Gs2Ao5LmRex
qpmjhUPfnjhabwEB0sMb50O8cX+g02UyxnKVpW8EOA7mpdn0dhlwL6o2yMsyl3SF
LbFHrg4zoaqvCTWacX7Q/IZA8ALldY8Nzfw+qrAsFQW8F6fxLC3Vq9VDVtFZ+QaO
ZMPB8UPS6vipdpM1Sf+cCd362w+lvVSp6vP0m2Uj/Kgu1g7T73JaxEnoq8MTYXsp
FynAoLCrk/KTk355dRV/JTV0DakarxzRKdg+jMd4C6oNMxO1LfO2H4SO+LnIUtp7
QSVYDGNoc98wvT2XDA4S2ZN9M8inogitAMcEL12DvRsS
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:58 2025 by rpki-client on console.sobornost.net