Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/BF1bDepTrbKLANgNAxAuU4DpJj8.roa
File: BF1bDepTrbKLANgNAxAuU4DpJj8.roa (raw, json)
Hash identifier: NVRWLfzQET9uM2U7kiX4t5MiOcl02yBYC6pVmP2/SUk=
Subject key identifier: 04:5D:5B:0D:EA:53:AD:B2:8B:00:D8:0D:03:10:2E:53:80:E9:26:3F
Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Certificate serial: 019427B535BAE8DE67E213E39556D1209D7C
Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/BF1bDepTrbKLANgNAxAuU4DpJj8.roa
Signing time: Thu 02 Jan 2025 15:49:34 +0000
ROA not before: Thu 02 Jan 2025 15:49:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60637
IP address blocks: 78.157.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:35:ba:e8:de:67:e2:13:e3:95:56:d1:20:9d:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Validity
Not Before: Jan 2 15:49:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=045d5b0dea53adb28b00d80d03102e5380e9263f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:14:42:02:0a:ec:b6:ff:af:ae:02:63:55:1d:
d0:fb:93:a2:b8:c4:2a:01:c3:0e:9d:4d:a7:4a:92:
21:5d:f3:4a:ef:8e:77:55:1f:e1:7c:c0:e0:a8:5f:
75:60:40:06:04:a4:27:fa:ac:7c:f6:e8:c3:ae:f6:
0b:13:d8:5f:59:2f:dc:28:c1:29:29:4a:3d:d1:53:
87:3d:f1:78:5d:81:37:86:0f:a5:1e:5d:29:a9:83:
5a:b0:ac:d5:a2:f2:dd:89:1b:43:1c:43:7e:3a:34:
b1:05:56:63:bb:fc:e2:a7:c4:ef:f9:7f:45:00:c6:
74:f0:b8:15:a2:2c:c9:f9:a0:19:e0:4b:2b:8e:09:
80:0c:1c:cd:9e:a3:a7:2e:af:37:28:84:ec:72:35:
d5:5c:c4:93:9b:6a:75:f8:6e:c9:73:d4:71:bc:64:
f9:34:4a:ad:97:71:ea:4f:41:d3:b2:43:52:11:ac:
98:3e:87:cf:ce:c6:2d:ad:2e:71:41:9f:11:8a:f9:
8c:8b:97:71:c5:2a:b3:5e:8d:db:31:f5:c0:26:0c:
2c:80:6f:11:9c:e7:cb:a1:0f:89:b1:4f:23:8e:c4:
49:81:90:90:9d:91:8c:ad:d2:54:ba:2f:86:8b:bf:
b9:c8:73:01:71:ae:d8:c6:60:85:45:11:f5:81:85:
ee:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:5D:5B:0D:EA:53:AD:B2:8B:00:D8:0D:03:10:2E:53:80:E9:26:3F
X509v3 Authority Key Identifier:
keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/BF1bDepTrbKLANgNAxAuU4DpJj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.157.33.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:db:15:18:a9:63:b3:70:81:d3:09:b3:2a:07:38:7e:65:3a:
67:42:c0:30:4f:27:6e:32:a0:ad:64:6a:86:f7:5c:cf:c4:f3:
87:8e:2d:3d:ea:d7:63:96:57:5b:06:72:98:d3:5d:6a:60:7b:
6c:6f:06:53:39:8f:0e:8d:2a:01:f2:e2:79:8f:6a:9c:d6:ed:
77:9e:54:eb:d4:a4:39:39:f8:75:81:cf:ca:68:19:13:31:2d:
86:26:e8:ec:2a:4e:de:94:eb:ae:6a:7c:f0:20:4b:b2:6a:4a:
22:bb:f2:25:fd:bf:94:d5:06:78:d9:44:08:55:6b:65:ac:3c:
f7:ce:dd:9d:7a:7e:99:f4:d7:b8:8a:10:11:12:3d:a5:a6:54:
71:3c:ad:55:4d:5e:5f:9f:94:74:ab:d3:23:50:f9:e8:88:aa:
5e:08:d4:ba:5a:54:e5:aa:5b:fe:f2:28:b8:dd:a8:1d:bf:12:
1e:e2:94:d1:9c:3c:77:6e:3a:18:9f:f4:0f:03:93:88:a6:c7:
d7:b0:55:5c:b1:1d:e1:f5:59:a1:f5:8b:3b:a1:ef:ff:9e:56:
0f:c7:37:c8:a4:94:f4:19:c5:8d:74:31:7c:27:9e:15:4b:92:
fe:45:bf:84:b3:34:e8:cb:34:a5:53:19:a7:4b:ba:ce:ce:c2:
12:61:03:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQntTW66N5n4hPjlVbRIJ18MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkOTY4MWYxNDRkYjE0MzBhYzMxNWM4MzA2ZTFjMTQ3MzBj
NWZlYzIwHhcNMjUwMTAyMTU0OTM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDVkNWIwZGVhNTNhZGIyOGIwMGQ4MGQwMzEwMmU1MzgwZTkyNjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5BRCAgrstv+vrgJjVR3Q+5OiuMQq
AcMOnU2nSpIhXfNK7453VR/hfMDgqF91YEAGBKQn+qx89ujDrvYLE9hfWS/cKMEp
KUo90VOHPfF4XYE3hg+lHl0pqYNasKzVovLdiRtDHEN+OjSxBVZju/zip8Tv+X9F
AMZ08LgVoizJ+aAZ4EsrjgmADBzNnqOnLq83KITscjXVXMSTm2p1+G7Jc9RxvGT5
NEqtl3HqT0HTskNSEayYPofPzsYtrS5xQZ8RivmMi5dxxSqzXo3bMfXAJgwsgG8R
nOfLoQ+JsU8jjsRJgZCQnZGMrdJUui+Gi7+5yHMBca7YxmCFRRH1gYXu7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFARdWw3qU62yiwDYDQMQLlOA6SY/MB8GA1UdIwQY
MBaAFK2WgfFE2xQwrDFcgwbhwUcwxf7CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclphQjhVVGJGRENzTVZ5REJ1SEJSekRGX3NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy80MDViNWYtOGQyNi00ZWUzLWI4N2Yt
YTNhMTNlM2E3ZDgwLzEvQkYxYkRlcFRyYktMQU5nTkF4QXVVNERwSmo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy80MDViNWYtOGQyNi00ZWUzLWI4N2YtYTNhMTNlM2E3ZDgw
LzEvclphQjhVVGJGRENzTVZ5REJ1SEJSekRGX3NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATp0hMA0G
CSqGSIb3DQEBCwUAA4IBAQCy2xUYqWOzcIHTCbMqBzh+ZTpnQsAwTyduMqCtZGqG
91zPxPOHji096tdjlldbBnKY011qYHtsbwZTOY8OjSoB8uJ5j2qc1u13nlTr1KQ5
Ofh1gc/KaBkTMS2GJujsKk7elOuuanzwIEuyakoiu/Il/b+U1QZ42UQIVWtlrDz3
zt2den6Z9Ne4ihAREj2lplRxPK1VTV5fn5R0q9MjUPnoiKpeCNS6WlTlqlv+8ii4
3agdvxIe4pTRnDx3bjoYn/QPA5OIpsfXsFVcsR3h9Vmh9Ys7oe//nlYPxzfIpJT0
GcWNdDF8J54VS5L+Rb+EszToyzSlUxmnS7rOzsISYQOI
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:05 2025 by rpki-client on console.sobornost.net