Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/_gM5SG_4QQqKocZtcQPCR80SAmI.roa
File: _gM5SG_4QQqKocZtcQPCR80SAmI.roa (raw, json)
Hash identifier: ee8TJS3VrEj5YXrt15hISXpN3dVXM3P5ROyjlVEMHSs=
Subject key identifier: FE:03:39:48:6F:F8:41:0A:8A:A1:C6:6D:71:03:C2:47:CD:12:02:62
Certificate issuer: /CN=f0ff2c6229af763a99f5349a32510df4a4526143
Certificate serial: 019425216ADEA37CDDFD921881BA12000BE6
Authority key identifier: F0:FF:2C:62:29:AF:76:3A:99:F5:34:9A:32:51:0D:F4:A4:52:61:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/_gM5SG_4QQqKocZtcQPCR80SAmI.roa
Signing time: Thu 02 Jan 2025 03:48:54 +0000
ROA not before: Thu 02 Jan 2025 03:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213218
IP address blocks: 194.219.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:6a:de:a3:7c:dd:fd:92:18:81:ba:12:00:0b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0ff2c6229af763a99f5349a32510df4a4526143
Validity
Not Before: Jan 2 03:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fe0339486ff8410a8aa1c66d7103c247cd120262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:92:aa:dd:9b:f8:4a:e9:76:01:27:89:e2:1a:
94:af:ab:a8:9a:d1:af:4a:52:32:23:59:36:0a:0f:
5c:26:f7:82:c3:5d:58:27:7f:fb:50:26:8a:9d:52:
0c:07:95:0b:30:4f:dc:b7:15:7b:8a:4c:12:38:7d:
87:b3:36:f9:3b:19:7e:63:3e:6a:36:77:20:f3:da:
92:f9:c7:09:67:59:72:5a:1b:5e:9f:8b:8c:cf:cd:
8a:56:0c:22:db:2b:fc:e3:ca:aa:d0:b3:23:ff:53:
70:f4:a9:d8:2e:93:3b:24:9a:ea:0d:e9:bb:93:8b:
64:bb:ec:f0:0b:a5:2b:b2:19:d4:e4:ef:69:8a:60:
f0:0a:6b:20:3b:4b:31:8b:3e:3a:42:7d:0c:76:f4:
56:1e:65:ba:57:28:16:e0:78:b5:f9:4a:a6:40:b2:
81:76:ed:81:a3:73:4d:a4:6d:27:30:46:83:cd:0e:
02:0b:6c:46:5b:1e:a3:d8:4d:53:de:2b:aa:e4:de:
94:84:d8:84:30:f2:fe:73:36:90:e1:76:cd:78:9e:
a1:0a:2e:5f:fc:e8:18:95:4e:37:b3:dc:da:2c:9e:
cd:50:b6:0c:be:ad:84:c5:76:8b:6d:3b:63:ad:0f:
7b:6a:47:bc:31:b6:04:71:f4:42:ed:a6:7c:67:80:
f3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:03:39:48:6F:F8:41:0A:8A:A1:C6:6D:71:03:C2:47:CD:12:02:62
X509v3 Authority Key Identifier:
keyid:F0:FF:2C:62:29:AF:76:3A:99:F5:34:9A:32:51:0D:F4:A4:52:61:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/_gM5SG_4QQqKocZtcQPCR80SAmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/8P8sYimvdjqZ9TSaMlEN9KRSYUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.219.1.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:08:63:e3:14:84:96:4d:9f:73:c9:cd:f2:99:83:5d:dc:62:
0e:ef:85:a1:1c:46:89:50:7e:92:f9:2d:bc:ee:ca:8f:4c:5a:
91:3e:09:90:75:8f:4f:f7:25:af:28:c8:c6:94:5e:f8:ff:0f:
da:5c:90:1c:9b:b8:17:57:77:7f:73:c8:37:a5:72:e9:0b:dc:
60:c4:2d:1f:4a:21:5b:f6:2a:76:9d:5e:06:43:c8:66:31:94:
65:e3:f1:76:66:6f:00:04:dd:2c:62:a7:99:7d:54:2a:ce:4d:
85:87:be:d5:7e:2f:f8:2d:1d:53:93:c4:1d:f9:fa:2e:a9:8c:
de:15:31:68:48:05:1f:a2:18:b5:21:d3:a3:5b:ac:44:bb:b4:
18:91:0b:55:49:78:b4:87:ec:9d:d6:9f:4d:e8:e7:fa:cd:86:
ea:e8:9c:19:d1:1f:b9:01:8c:46:90:9c:bc:ab:4a:46:7b:7b:
6e:6a:08:aa:5f:09:f3:6b:c3:3b:94:37:33:33:5c:6f:b1:91:
f0:b4:57:21:5a:2f:ed:f8:a2:90:3f:e3:56:c4:3b:43:7a:3b:
6b:2c:d2:58:7f:72:10:ca:b9:67:a2:22:62:1a:9c:71:67:66:
7b:9f:11:52:74:f3:66:87:dc:4a:0d:c2:ed:35:ac:05:c9:2c:
73:c8:64:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIWreo3zd/ZIYgboSAAvmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwZmYyYzYyMjlhZjc2M2E5OWY1MzQ5YTMyNTEwZGY0YTQ1
MjYxNDMwHhcNMjUwMTAyMDM0ODU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTAzMzk0ODZmZjg0MTBhOGFhMWM2NmQ3MTAzYzI0N2NkMTIwMjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5Kq3Zv4Sul2ASeJ4hqUr6uomtGv
SlIyI1k2Cg9cJveCw11YJ3/7UCaKnVIMB5ULME/ctxV7ikwSOH2Hszb5Oxl+Yz5q
Nncg89qS+ccJZ1lyWhten4uMz82KVgwi2yv848qq0LMj/1Nw9KnYLpM7JJrqDem7
k4tku+zwC6UrshnU5O9pimDwCmsgO0sxiz46Qn0MdvRWHmW6VygW4Hi1+UqmQLKB
du2Bo3NNpG0nMEaDzQ4CC2xGWx6j2E1T3iuq5N6UhNiEMPL+czaQ4XbNeJ6hCi5f
/OgYlU43s9zaLJ7NULYMvq2ExXaLbTtjrQ97ake8MbYEcfRC7aZ8Z4DzoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP4DOUhv+EEKiqHGbXEDwkfNEgJiMB8GA1UdIwQY
MBaAFPD/LGIpr3Y6mfU0mjJRDfSkUmFDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFA4c1lpbXZkanFaOVRTYU1sRU45S1JTWVVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wNTFmYTItYzU4MC00YTAyLWExODYt
ZTY5ZjdhNWQyZDkwLzEvX2dNNVNHXzRRUXFLb2NadGNRUENSODBTQW1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy8wNTFmYTItYzU4MC00YTAyLWExODYtZTY5ZjdhNWQyZDkw
LzEvOFA4c1lpbXZkanFaOVRTYU1sRU45S1JTWVVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwtsBMA0G
CSqGSIb3DQEBCwUAA4IBAQDBCGPjFISWTZ9zyc3ymYNd3GIO74WhHEaJUH6S+S28
7sqPTFqRPgmQdY9P9yWvKMjGlF74/w/aXJAcm7gXV3d/c8g3pXLpC9xgxC0fSiFb
9ip2nV4GQ8hmMZRl4/F2Zm8ABN0sYqeZfVQqzk2Fh77Vfi/4LR1Tk8Qd+fouqYze
FTFoSAUfohi1IdOjW6xEu7QYkQtVSXi0h+yd1p9N6Of6zYbq6JwZ0R+5AYxGkJy8
q0pGe3tuagiqXwnza8M7lDczM1xvsZHwtFchWi/t+KKQP+NWxDtDejtrLNJYf3IQ
yrlnoiJiGpxxZ2Z7nxFSdPNmh9xKDcLtNawFySxzyGSb
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net