Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a723d8-d8cc-4e60-85ab-6c9b5c9bfa75/1/0DnutWSVbHG41WufBwPWhJw87ds.roa
File: 0DnutWSVbHG41WufBwPWhJw87ds.roa (raw, json)
Hash identifier: 1YNOkkulspXYUzCbwSGNl/61H76L07o3/flJXpC+uII=
Subject key identifier: D0:39:EE:B5:64:95:6C:71:B8:D5:6B:9F:07:03:D6:84:9C:3C:ED:DB
Certificate issuer: /CN=a748fbe1d7d3a6aa474de43fa885ce2d091c529b
Certificate serial: 019421443261DCEBB71EDAB34D8EA2F4E111
Authority key identifier: A7:48:FB:E1:D7:D3:A6:AA:47:4D:E4:3F:A8:85:CE:2D:09:1C:52:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0j74dfTpqpHTeQ_qIXOLQkcUps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a723d8-d8cc-4e60-85ab-6c9b5c9bfa75/1/0DnutWSVbHG41WufBwPWhJw87ds.roa
Signing time: Wed 01 Jan 2025 09:48:25 +0000
ROA not before: Wed 01 Jan 2025 09:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203206
IP address blocks: 185.204.101.0/24 maxlen: 24
2a10:8400::/29 maxlen: 32
2a10:8403::/32 maxlen: 32
2a10:8404::/32 maxlen: 32
2a10:8405::/32 maxlen: 32
2a10:8406::/32 maxlen: 32
2a10:8407::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:32:61:dc:eb:b7:1e:da:b3:4d:8e:a2:f4:e1:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a748fbe1d7d3a6aa474de43fa885ce2d091c529b
Validity
Not Before: Jan 1 09:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d039eeb564956c71b8d56b9f0703d6849c3ceddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:4f:bb:47:50:e6:cc:83:79:70:b3:27:68:da:
13:69:57:ae:d3:45:fa:76:88:47:40:e4:09:bb:05:
fc:40:22:6e:6a:1e:4d:94:e9:22:a4:58:e8:9e:e5:
7c:b7:e8:63:00:dd:14:0b:b1:a5:69:11:1c:0a:d4:
6d:f2:02:46:15:09:ca:b5:e7:5f:28:6f:dc:36:3c:
42:50:3d:99:1a:a7:f6:c9:e9:05:8a:12:92:1b:50:
bd:7d:d4:a7:a4:2a:63:82:4b:7b:dc:2e:07:04:cf:
78:1d:57:3e:25:74:07:53:21:ce:9a:05:2f:30:d3:
85:ac:39:36:be:71:cc:c0:5f:6f:0e:f8:df:da:4f:
f1:73:cd:12:07:1f:f1:8a:e4:39:e0:4e:b9:ff:c9:
17:61:82:a5:fb:9b:90:75:dc:e9:57:49:fe:b4:3c:
9c:23:b5:4d:58:9b:d5:18:c7:9d:da:2d:14:1a:c7:
6f:03:2d:44:c8:72:e7:42:9f:5d:ee:c4:dd:99:db:
cf:5c:78:09:f9:5b:2e:1c:dc:c4:83:35:76:7f:ed:
9b:f8:2c:68:22:c6:f3:40:2f:44:d2:2d:83:fb:71:
aa:df:79:2f:10:0e:92:d5:7c:55:53:00:49:b4:05:
62:6d:25:16:6f:5d:52:e0:cd:22:f2:9b:b5:f1:6f:
b0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:39:EE:B5:64:95:6C:71:B8:D5:6B:9F:07:03:D6:84:9C:3C:ED:DB
X509v3 Authority Key Identifier:
keyid:A7:48:FB:E1:D7:D3:A6:AA:47:4D:E4:3F:A8:85:CE:2D:09:1C:52:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0j74dfTpqpHTeQ_qIXOLQkcUps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a723d8-d8cc-4e60-85ab-6c9b5c9bfa75/1/0DnutWSVbHG41WufBwPWhJw87ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a723d8-d8cc-4e60-85ab-6c9b5c9bfa75/1/p0j74dfTpqpHTeQ_qIXOLQkcUps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.101.0/24
IPv6:
2a10:8400::/29
Signature Algorithm: sha256WithRSAEncryption
b5:78:af:72:ed:6b:a4:10:71:62:d2:9d:17:f2:e7:f5:4f:50:
49:2d:b9:4d:bb:ed:ab:73:a2:c9:32:0a:d5:25:6a:9f:87:7e:
8e:46:7b:16:52:70:11:01:fa:19:75:b8:3f:a8:a2:7b:05:b9:
83:56:0f:09:d5:bb:09:9c:21:61:66:9c:d5:75:76:4c:28:f4:
fc:66:fc:8a:ca:12:09:39:84:ce:9e:1a:85:87:27:7d:6e:1a:
b5:9e:77:16:53:7e:59:ee:da:8c:51:0f:24:23:dd:5b:50:58:
c6:7b:45:9d:7f:d5:0b:5b:69:43:e8:31:51:0b:a3:ce:41:19:
32:6f:bf:f2:78:af:1f:b7:c3:21:17:56:7c:b5:73:47:f3:a5:
60:76:93:23:50:fb:d6:4d:c6:61:24:82:c8:0a:f2:d4:a9:67:
fe:5d:e0:fa:07:0b:82:9b:a6:b0:6b:ed:dd:ba:05:f8:7a:96:
90:22:28:0e:77:12:11:d9:79:50:a3:0b:ea:a6:ef:8a:52:5d:
92:fb:ef:ed:90:c9:01:7b:51:15:8b:cc:e1:d6:cd:ce:14:cb:
45:f9:c0:13:1a:3d:ef:bc:6c:de:54:9f:35:3b:da:5e:a0:14:
4b:33:aa:63:17:36:31:9b:a6:e3:ea:5d:ff:01:47:58:d1:2d:
ab:af:d3:7b
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQhRDJh3Ou3HtqzTY6i9OERMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3NDhmYmUxZDdkM2E2YWE0NzRkZTQzZmE4ODVjZTJkMDkx
YzUyOWIwHhcNMjUwMTAxMDk0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDM5ZWViNTY0OTU2YzcxYjhkNTZiOWYwNzAzZDY4NDljM2NlZGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7U+7R1DmzIN5cLMnaNoTaVeu00X6
dohHQOQJuwX8QCJuah5NlOkipFjonuV8t+hjAN0UC7GlaREcCtRt8gJGFQnKtedf
KG/cNjxCUD2ZGqf2yekFihKSG1C9fdSnpCpjgkt73C4HBM94HVc+JXQHUyHOmgUv
MNOFrDk2vnHMwF9vDvjf2k/xc80SBx/xiuQ54E65/8kXYYKl+5uQddzpV0n+tDyc
I7VNWJvVGMed2i0UGsdvAy1EyHLnQp9d7sTdmdvPXHgJ+VsuHNzEgzV2f+2b+Cxo
IsbzQC9E0i2D+3Gq33kvEA6S1XxVUwBJtAVibSUWb11S4M0i8pu18W+wAQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFNA57rVklWxxuNVrnwcD1oScPO3bMB8GA1UdIwQY
MBaAFKdI++HX06aqR03kP6iFzi0JHFKbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDBqNzRkZlRwcXBIVGVRX3FJWE9MUWtjVXBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hNzIzZDgtZDhjYy00ZTYwLTg1YWIt
NmM5YjVjOWJmYTc1LzEvMERudXRXU1ZiSEc0MVd1ZkJ3UFdoSnc4N2RzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9hNzIzZDgtZDhjYy00ZTYwLTg1YWItNmM5YjVjOWJmYTc1
LzEvcDBqNzRkZlRwcXBIVGVRX3FJWE9MUWtjVXBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAucxlMA0E
AgACMAcDBQMqEIQAMA0GCSqGSIb3DQEBCwUAA4IBAQC1eK9y7WukEHFi0p0X8uf1
T1BJLblNu+2rc6LJMgrVJWqfh36ORnsWUnARAfoZdbg/qKJ7BbmDVg8J1bsJnCFh
ZpzVdXZMKPT8ZvyKyhIJOYTOnhqFhyd9bhq1nncWU35Z7tqMUQ8kI91bUFjGe0Wd
f9ULW2lD6DFRC6POQRkyb7/yeK8ft8MhF1Z8tXNH86VgdpMjUPvWTcZhJILICvLU
qWf+XeD6BwuCm6awa+3dugX4epaQIigOdxIR2XlQowvqpu+KUl2S++/tkMkBe1EV
i8zh1s3OFMtF+cATGj3vvGzeVJ81O9peoBRLM6pjFzYxm6bj6l3/AUdY0S2rr9N7
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net