Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/xLOovb_V_553mPyCa2MPaJ6AL4o.roa
File: xLOovb_V_553mPyCa2MPaJ6AL4o.roa (raw, json)
Hash identifier: N6NgzmGF9X7Oq9bKLoPjt2ok22T8qTteZuv/qrOneTE=
Subject key identifier: C4:B3:A8:BD:BF:D5:FF:9E:77:98:FC:82:6B:63:0F:68:9E:80:2F:8A
Certificate issuer: /CN=e58024b729d99f05133ec6d14390c73eb36db99e
Certificate serial: 0194228DFA8B289E691A2B103557153437CD
Authority key identifier: E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/xLOovb_V_553mPyCa2MPaJ6AL4o.roa
Signing time: Wed 01 Jan 2025 15:48:37 +0000
ROA not before: Wed 01 Jan 2025 15:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60981
IP address blocks: 213.146.186.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:fa:8b:28:9e:69:1a:2b:10:35:57:15:34:37:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e58024b729d99f05133ec6d14390c73eb36db99e
Validity
Not Before: Jan 1 15:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c4b3a8bdbfd5ff9e7798fc826b630f689e802f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9b:70:fe:00:e7:0f:58:73:4c:aa:82:c7:cf:
6e:d6:15:9a:9b:9d:57:58:f0:92:a8:b6:78:1c:38:
9a:09:36:d4:6d:ed:e4:8a:a6:bb:76:67:e3:12:57:
0e:81:36:2b:3b:d3:48:ea:7a:9e:af:e1:f6:e5:a1:
df:ff:a9:11:ce:c4:2c:9c:68:c0:79:2b:ee:98:db:
f1:ea:b9:d5:a6:48:a2:d3:cc:d7:a5:97:76:24:ca:
2d:f9:c9:25:32:3b:bc:63:d6:f5:d8:71:93:5f:f1:
fd:a4:46:b7:e3:45:61:e9:05:21:73:f4:28:03:1a:
33:49:86:eb:bd:90:35:9d:f6:06:43:c7:a3:ae:bf:
2f:53:c3:9f:4c:59:7f:ca:cf:a3:27:45:44:bd:77:
66:7e:fa:5b:93:f4:ec:7e:d1:61:35:7c:f4:cf:72:
5e:76:20:6b:01:91:03:ea:5b:49:df:cd:2f:45:d6:
1d:4f:04:d9:63:1b:66:99:a7:ba:c6:55:37:2e:52:
57:00:48:7d:7b:29:dd:ec:9f:91:7b:8b:ab:dd:1e:
d8:72:f9:56:85:72:c9:5a:4a:b8:f4:57:ed:74:16:
8f:bf:d8:ca:8d:22:ca:94:40:47:c0:94:52:d6:d9:
8d:c0:9d:68:ed:5f:c4:df:29:39:2f:02:b6:f1:14:
21:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B3:A8:BD:BF:D5:FF:9E:77:98:FC:82:6B:63:0F:68:9E:80:2F:8A
X509v3 Authority Key Identifier:
keyid:E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/xLOovb_V_553mPyCa2MPaJ6AL4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.146.186.0/23
Signature Algorithm: sha256WithRSAEncryption
32:17:f1:55:4c:3a:b8:f3:3f:a0:fd:54:85:50:af:f8:70:2e:
16:d9:ed:65:f3:61:16:dc:c3:8c:cb:41:08:10:04:84:50:05:
67:ae:06:e9:63:a6:c1:c5:d1:e4:c5:e1:9d:d5:47:7a:64:3b:
3d:55:3e:34:c6:86:0f:5e:7d:f3:aa:ce:2c:f7:11:81:fb:6b:
f2:d4:b6:f8:65:5a:ea:88:a6:86:f0:b2:6a:07:cc:af:b9:25:
56:02:cc:6f:de:75:d3:90:9b:37:f0:38:37:40:7b:96:dd:bb:
71:0c:62:af:df:8d:be:a5:56:ea:82:f9:ab:ee:5d:8f:d5:81:
2f:59:ec:65:45:c2:e8:7e:ed:d1:7b:1c:68:31:8b:65:3a:9c:
d0:cd:4d:1e:95:47:89:dd:09:4a:47:81:60:4c:61:ec:e0:61:
09:d7:05:02:2b:fd:55:ee:01:13:66:28:f6:9f:77:a3:fd:bd:
f8:4c:7c:96:15:0e:e9:d1:25:df:ec:fc:df:4f:48:f5:b3:bd:
03:cf:f3:28:83:cd:17:65:14:72:e7:cc:ee:39:84:7c:ee:c0:
be:a9:e7:c1:48:23:65:18:a6:85:e7:13:f3:04:be:d0:df:63:
85:35:71:86:a4:50:18:07:7e:c3:8d:89:e8:3e:1a:76:15:53:
4f:d7:5a:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijfqLKJ5pGisQNVcVNDfNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1ODAyNGI3MjlkOTlmMDUxMzNlYzZkMTQzOTBjNzNlYjM2
ZGI5OWUwHhcNMjUwMTAxMTU0ODM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNGIzYThiZGJmZDVmZjllNzc5OGZjODI2YjYzMGY2ODllODAyZjhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqptw/gDnD1hzTKqCx89u1hWam51X
WPCSqLZ4HDiaCTbUbe3kiqa7dmfjElcOgTYrO9NI6nqer+H25aHf/6kRzsQsnGjA
eSvumNvx6rnVpkii08zXpZd2JMot+cklMju8Y9b12HGTX/H9pEa340Vh6QUhc/Qo
AxozSYbrvZA1nfYGQ8ejrr8vU8OfTFl/ys+jJ0VEvXdmfvpbk/TsftFhNXz0z3Je
diBrAZED6ltJ380vRdYdTwTZYxtmmae6xlU3LlJXAEh9eynd7J+Re4ur3R7YcvlW
hXLJWkq49FftdBaPv9jKjSLKlEBHwJRS1tmNwJ1o7V/E3yk5LwK28RQhbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMSzqL2/1f+ed5j8gmtjD2iegC+KMB8GA1UdIwQY
MBaAFOWAJLcp2Z8FEz7G0UOQxz6zbbmeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVlBa3R5blpud1VUUHNiUlE1REhQck50dVo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9kNTYyOGEtZDliMS00ZGE5LWE3NDQt
OTU2ZjZiNWM2MTcwLzEveExPb3ZiX1ZfNTUzbVB5Q2EyTVBhSjZBTDRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC9kNTYyOGEtZDliMS00ZGE5LWE3NDQtOTU2ZjZiNWM2MTcw
LzEvNVlBa3R5blpud1VUUHNiUlE1REhQck50dVo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB1ZK6MA0G
CSqGSIb3DQEBCwUAA4IBAQAyF/FVTDq48z+g/VSFUK/4cC4W2e1l82EW3MOMy0EI
EASEUAVnrgbpY6bBxdHkxeGd1Ud6ZDs9VT40xoYPXn3zqs4s9xGB+2vy1Lb4ZVrq
iKaG8LJqB8yvuSVWAsxv3nXTkJs38Dg3QHuW3btxDGKv342+pVbqgvmr7l2P1YEv
WexlRcLofu3RexxoMYtlOpzQzU0elUeJ3QlKR4FgTGHs4GEJ1wUCK/1V7gETZij2
n3ej/b34THyWFQ7p0SXf7PzfT0j1s70Dz/Mog80XZRRy58zuOYR87sC+qefBSCNl
GKaF5xPzBL7Q32OFNXGGpFAYB37DjYnoPhp2FVNP11rB
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net