Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/xyRoD48_RddLMyzaWVm2RVSdNnw.roa
File: xyRoD48_RddLMyzaWVm2RVSdNnw.roa (raw, json)
Hash identifier: 9GofeWtQdMUnPq68/CDpAq5ljzoKlzyYm0VUKW07EJo=
Subject key identifier: C7:24:68:0F:8F:3F:45:D7:4B:33:2C:DA:59:59:B6:45:54:9D:36:7C
Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Certificate serial: 019425FDD3257A637BD79B327F9366461252
Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/xyRoD48_RddLMyzaWVm2RVSdNnw.roa
Signing time: Thu 02 Jan 2025 07:49:39 +0000
ROA not before: Thu 02 Jan 2025 07:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58238
IP address blocks: 194.33.48.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:d3:25:7a:63:7b:d7:9b:32:7f:93:66:46:12:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Validity
Not Before: Jan 2 07:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c724680f8f3f45d74b332cda5959b645549d367c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a3:89:9b:8a:9a:44:2e:55:8d:d5:46:e6:c2:
da:20:a8:72:5d:fc:72:9c:4e:b0:0e:b7:0b:28:5a:
07:05:d6:8b:af:d2:47:c6:93:f3:7f:f2:58:81:88:
0d:fa:d7:e4:ec:9a:31:5d:72:b7:60:57:a3:d8:44:
9e:18:f2:d1:46:73:44:f6:8f:64:12:aa:70:cc:d2:
fc:de:94:1c:e8:af:bc:5c:e1:f0:17:cc:6c:99:6d:
7d:32:2c:30:e1:5a:a2:e3:3c:2f:c1:d6:45:95:1c:
7e:b2:ee:42:8b:9e:bd:63:dd:dc:9d:00:2c:b6:cb:
3c:26:ab:b6:e7:62:39:b1:f0:92:3a:d3:b0:32:61:
95:74:d9:ad:13:34:ca:40:01:8c:b8:18:64:ad:bf:
08:2f:eb:7b:7c:dd:b6:50:cf:e4:f8:8c:78:0a:a1:
e0:14:dc:b8:c4:c4:ce:b2:50:cb:e9:b5:bb:53:d2:
32:02:7f:7d:0d:07:6e:36:67:be:8c:63:50:cb:f2:
e1:cc:5c:6c:51:b1:cf:d5:65:90:7c:cd:07:ce:f0:
37:9a:94:ad:5f:66:12:84:fd:a0:7f:32:34:70:7f:
67:6c:d9:05:bc:47:c5:2e:8f:cf:28:06:eb:f7:8d:
6f:ba:ad:3e:71:f1:20:cd:24:cc:a4:b6:6d:aa:b1:
db:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:24:68:0F:8F:3F:45:D7:4B:33:2C:DA:59:59:B6:45:54:9D:36:7C
X509v3 Authority Key Identifier:
keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/xyRoD48_RddLMyzaWVm2RVSdNnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.48.0/23
Signature Algorithm: sha256WithRSAEncryption
61:7a:cc:41:35:1e:b4:b9:30:e9:73:dd:bd:e5:a9:78:20:ee:
d2:b9:9a:88:61:04:04:f4:8c:03:7f:46:8e:99:a5:95:01:19:
63:50:78:40:31:f4:da:a7:01:02:4a:11:57:cc:3c:5b:5d:0d:
54:3c:94:b5:21:ef:84:94:a7:47:c3:fa:1e:07:9f:a4:e4:fb:
b9:0d:55:8f:30:06:51:33:90:19:15:04:eb:e5:5d:fd:fd:98:
19:04:3d:a3:9a:48:4d:00:6a:d0:96:fe:60:e8:cd:7e:a7:a1:
97:a5:cb:51:c5:12:e1:08:f5:c5:42:4a:06:bc:c3:8a:91:bf:
83:cb:a8:05:dc:55:e3:22:1b:06:f9:77:3e:80:5c:b9:74:80:
55:f2:94:3e:be:d3:a9:3e:f8:d2:6e:bb:83:bd:cc:fb:6d:9b:
ee:c7:e6:44:42:80:4d:8d:1b:68:3a:99:94:d7:d4:96:db:c1:
a5:4b:2a:d5:40:de:5b:6e:90:af:8c:84:86:40:da:99:b5:19:
c0:a2:4f:f9:57:dc:c7:19:49:3c:11:44:3b:ae:ce:99:6f:4c:
b6:98:2e:6f:4e:39:00:5e:00:64:3c:4a:ef:e6:95:9f:6c:02:
ad:ba:e0:d2:3e:77:8f:9d:69:55:f6:42:69:5c:d1:56:f3:03:
46:43:70:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/dMlemN715syf5NmRhJSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MGJjYzUwYTlhMzNiYTU2NTFlZmQxYWZlNDBiNmZkYjAy
NTU2ZjAwHhcNMjUwMTAyMDc0OTM5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzI0NjgwZjhmM2Y0NWQ3NGIzMzJjZGE1OTU5YjY0NTU0OWQzNjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqOJm4qaRC5VjdVG5sLaIKhyXfxy
nE6wDrcLKFoHBdaLr9JHxpPzf/JYgYgN+tfk7JoxXXK3YFej2ESeGPLRRnNE9o9k
EqpwzNL83pQc6K+8XOHwF8xsmW19Miww4Vqi4zwvwdZFlRx+su5Ci569Y93cnQAs
tss8Jqu252I5sfCSOtOwMmGVdNmtEzTKQAGMuBhkrb8IL+t7fN22UM/k+Ix4CqHg
FNy4xMTOslDL6bW7U9IyAn99DQduNme+jGNQy/LhzFxsUbHP1WWQfM0HzvA3mpSt
X2YShP2gfzI0cH9nbNkFvEfFLo/PKAbr941vuq0+cfEgzSTMpLZtqrHbKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMckaA+PP0XXSzMs2llZtkVUnTZ8MB8GA1UdIwQY
MBaAFCkLzFCpozulZR79Gv5Atv2wJVbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYt
NzY5ODI0OTNlYTFhLzEveHlSb0Q0OF9SZGRMTXl6YVdWbTJSVlNkTm53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYtNzY5ODI0OTNlYTFh
LzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwiEwMA0G
CSqGSIb3DQEBCwUAA4IBAQBhesxBNR60uTDpc9295al4IO7SuZqIYQQE9IwDf0aO
maWVARljUHhAMfTapwECShFXzDxbXQ1UPJS1Ie+ElKdHw/oeB5+k5Pu5DVWPMAZR
M5AZFQTr5V39/ZgZBD2jmkhNAGrQlv5g6M1+p6GXpctRxRLhCPXFQkoGvMOKkb+D
y6gF3FXjIhsG+Xc+gFy5dIBV8pQ+vtOpPvjSbruDvcz7bZvux+ZEQoBNjRtoOpmU
19SW28GlSyrVQN5bbpCvjISGQNqZtRnAok/5V9zHGUk8EUQ7rs6Zb0y2mC5vTjkA
XgBkPErv5pWfbAKtuuDSPnePnWlV9kJpXNFW8wNGQ3Cr
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:25 2025 by rpki-client on console.sobornost.net