Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/cRomj4ihFxxukUVwYfTvewWKqv4.roa
File: cRomj4ihFxxukUVwYfTvewWKqv4.roa (raw, json)
Hash identifier: 9uycV8xx9NnWRkTEWLH3116c5pfjdQScAn4zSpxuei0=
Subject key identifier: 71:1A:26:8F:88:A1:17:1C:6E:91:45:70:61:F4:EF:7B:05:8A:AA:FE
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 019426D8AE643E718721BF6924A85736FEB9
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/cRomj4ihFxxukUVwYfTvewWKqv4.roa
Signing time: Thu 02 Jan 2025 11:48:42 +0000
ROA not before: Thu 02 Jan 2025 11:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202391
IP address blocks: 95.38.144.0/22 maxlen: 22
95.38.148.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:ae:64:3e:71:87:21:bf:69:24:a8:57:36:fe:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Jan 2 11:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=711a268f88a1171c6e91457061f4ef7b058aaafe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d5:66:30:bf:7f:7b:91:a1:d5:2d:63:f8:90:
9b:3c:6f:79:cd:66:ee:16:d5:ed:35:5b:bc:34:12:
c3:27:ae:2a:9a:27:9d:ad:ff:f8:6f:50:5f:62:11:
1f:6e:15:b0:b0:f6:89:30:e4:6e:b5:57:0a:cb:d1:
49:4d:08:b1:91:3d:35:f2:c8:b4:be:d9:06:d5:b8:
77:15:b3:49:2a:f7:42:21:43:aa:eb:d3:18:e6:90:
74:60:ce:81:6a:4e:ac:20:50:74:e7:a9:8e:0a:1b:
65:9c:86:0a:5e:2a:17:0a:9f:2e:0b:ae:7e:dd:3d:
8d:7a:0b:a7:b2:5d:81:40:b4:6a:c7:21:3d:90:82:
aa:95:e7:13:1d:d4:6d:6a:b4:7a:df:7f:a7:42:a7:
18:de:fc:6f:b2:64:49:89:32:71:f4:2f:6f:24:0b:
e3:03:d5:81:94:86:0b:59:1f:33:ad:50:19:ca:17:
9f:29:cb:3f:7a:34:bb:d3:0a:05:83:75:93:a8:cf:
89:a1:1d:69:16:45:5e:d9:c2:7b:25:4b:be:8a:ac:
a4:e3:36:fc:4d:42:e1:72:f9:15:ee:be:bd:a8:de:
d8:a3:ef:b1:70:75:55:2d:5c:e9:e6:ae:cf:e5:ca:
30:04:6d:52:f4:0f:0d:60:90:f2:ca:a3:b7:4a:9b:
93:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:1A:26:8F:88:A1:17:1C:6E:91:45:70:61:F4:EF:7B:05:8A:AA:FE
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/cRomj4ihFxxukUVwYfTvewWKqv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.144.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:fe:d3:e8:41:67:23:1d:f8:04:b2:d5:47:49:31:cd:12:af:
68:fe:c5:6d:9a:86:56:3e:77:8d:bd:b7:65:2d:8c:f5:65:e2:
62:4d:55:7f:4c:12:73:38:cf:34:9a:25:fe:95:8f:61:1e:db:
95:0e:f9:bf:cc:97:a4:94:51:d1:a8:2a:7b:ff:52:34:db:7c:
c5:9c:4e:33:46:81:f4:5d:7b:dc:94:e6:34:f7:5c:3c:f1:67:
8f:64:95:77:fd:b0:d8:77:db:0e:ce:94:c4:e2:11:48:dc:22:
62:23:3b:50:32:51:1f:aa:eb:77:a5:ec:28:e2:df:ea:89:cc:
23:c4:9c:4b:31:a3:24:71:07:bd:75:14:01:07:60:1b:a9:4f:
fc:0c:56:78:af:36:fe:08:3e:f0:52:3f:ec:e2:c8:20:d1:6a:
3f:fb:fe:6d:e9:dd:90:d5:ee:fe:2e:5b:d9:c6:a5:4a:fb:d8:
93:a2:3a:e4:0f:3c:e5:61:93:31:ea:0c:7a:46:2c:da:83:fa:
b1:a7:71:76:82:89:b2:61:7e:1d:eb:e3:ec:39:c1:8f:8d:5b:
45:06:9d:c3:b0:12:3a:be:dc:3a:61:41:3f:69:a7:ed:45:a5:
54:ce:1b:74:55:b5:88:5a:83:13:09:22:a4:e7:db:fd:25:b4:
08:0f:35:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2K5kPnGHIb9pJKhXNv65MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwYzEwNDA0MTY5MWRjMzg0ZjNiMWE4Y2RmOTVjOTY2Mjhl
YTZkYWYwHhcNMjUwMTAyMTE0ODQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTFhMjY4Zjg4YTExNzFjNmU5MTQ1NzA2MWY0ZWY3YjA1OGFhYWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtVmML9/e5Gh1S1j+JCbPG95zWbu
FtXtNVu8NBLDJ64qmiedrf/4b1BfYhEfbhWwsPaJMORutVcKy9FJTQixkT018si0
vtkG1bh3FbNJKvdCIUOq69MY5pB0YM6Bak6sIFB056mOChtlnIYKXioXCp8uC65+
3T2Negunsl2BQLRqxyE9kIKqlecTHdRtarR633+nQqcY3vxvsmRJiTJx9C9vJAvj
A9WBlIYLWR8zrVAZyhefKcs/ejS70woFg3WTqM+JoR1pFkVe2cJ7JUu+iqyk4zb8
TULhcvkV7r69qN7Yo++xcHVVLVzp5q7P5cowBG1S9A8NYJDyyqO3SpuTXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHEaJo+IoRccbpFFcGH073sFiqr+MB8GA1UdIwQY
MBaAFPDBBAQWkdw4TzsajN+VyWYo6m2vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE1FRUJCYVIzRGhQT3hxTTM1WEpaaWpxYmE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS83ODljYWYtYzhkMi00MTllLWFlMDQt
NjkxNDIyMzExNzI5LzEvY1JvbWo0aWhGeHh1a1VWd1lmVHZld1dLcXY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS83ODljYWYtYzhkMi00MTllLWFlMDQtNjkxNDIyMzExNzI5
LzEvOE1FRUJCYVIzRGhQT3hxTTM1WEpaaWpxYmE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXyaQMA0G
CSqGSIb3DQEBCwUAA4IBAQCc/tPoQWcjHfgEstVHSTHNEq9o/sVtmoZWPneNvbdl
LYz1ZeJiTVV/TBJzOM80miX+lY9hHtuVDvm/zJeklFHRqCp7/1I023zFnE4zRoH0
XXvclOY091w88WePZJV3/bDYd9sOzpTE4hFI3CJiIztQMlEfqut3pewo4t/qicwj
xJxLMaMkcQe9dRQBB2AbqU/8DFZ4rzb+CD7wUj/s4sgg0Wo/+/5t6d2Q1e7+LlvZ
xqVK+9iTojrkDzzlYZMx6gx6Rizag/qxp3F2gomyYX4d6+PsOcGPjVtFBp3DsBI6
vtw6YUE/aaftRaVUzht0VbWIWoMTCSKk59v9JbQIDzXw
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:40 2025 by rpki-client on console.sobornost.net