Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/2b487e-0a7c-4c46-a241-3d0db8eb4e13/1/X1TlKjqQxQOIUE9nmZNVP4vjBXo.roa
File: X1TlKjqQxQOIUE9nmZNVP4vjBXo.roa (raw, json)
Hash identifier: YEcDQS5RtxJGLo4gojN6ANb19cB9cM3e9I1XVwuKzs8=
Subject key identifier: 5F:54:E5:2A:3A:90:C5:03:88:50:4F:67:99:93:55:3F:8B:E3:05:7A
Certificate issuer: /CN=7b886e33971014f0e35fae6ee355a95ee53f1397
Certificate serial: 01941FFAAFE63F97EA8A66FA8146670DFA33
Authority key identifier: 7B:88:6E:33:97:10:14:F0:E3:5F:AE:6E:E3:55:A9:5E:E5:3F:13:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e4huM5cQFPDjX65u41WpXuU_E5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/2b487e-0a7c-4c46-a241-3d0db8eb4e13/1/X1TlKjqQxQOIUE9nmZNVP4vjBXo.roa
Signing time: Wed 01 Jan 2025 03:48:30 +0000
ROA not before: Wed 01 Jan 2025 03:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205814
IP address blocks: 185.249.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:af:e6:3f:97:ea:8a:66:fa:81:46:67:0d:fa:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b886e33971014f0e35fae6ee355a95ee53f1397
Validity
Not Before: Jan 1 03:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5f54e52a3a90c50388504f679993553f8be3057a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:97:71:c3:10:27:e2:b9:9d:cd:22:a4:ed:4d:
3a:05:1a:0e:e4:70:50:ac:73:67:1f:c0:2b:0d:24:
c5:13:a0:9f:94:da:dc:a4:26:79:17:8a:f8:96:d8:
89:ad:c4:19:c3:6d:8e:15:9d:76:bb:9c:5b:37:50:
95:d2:c6:b4:d2:cf:2d:bc:a9:56:93:4e:f5:83:01:
37:56:3a:78:34:99:90:78:6b:40:58:71:ea:ce:dd:
9c:85:5b:32:74:5c:13:a6:69:3a:19:ed:2a:9a:3c:
c1:22:6a:82:0c:79:6a:ee:1f:8c:67:6a:fa:88:b4:
81:f5:40:79:d6:a2:8a:b3:ff:21:84:ac:62:d4:ba:
ef:bf:53:02:be:53:96:e8:4c:4b:8c:a8:5b:b2:41:
17:7d:2f:51:e0:0b:5d:26:8e:1e:1b:05:13:53:df:
26:b4:c6:ce:4d:29:ec:78:88:5f:18:6c:48:bd:d6:
a6:ae:67:e5:47:e9:f0:1e:03:be:69:29:46:a9:1f:
64:30:6a:d8:e8:92:58:a4:9b:10:42:2d:f3:65:fa:
03:be:54:13:bd:cb:08:04:ec:1e:08:57:14:1a:f2:
55:d2:76:b8:d0:d5:17:c4:7b:49:36:74:c4:04:c0:
a3:9d:00:7e:95:9e:2c:2d:ea:9d:86:18:61:35:64:
3c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:54:E5:2A:3A:90:C5:03:88:50:4F:67:99:93:55:3F:8B:E3:05:7A
X509v3 Authority Key Identifier:
keyid:7B:88:6E:33:97:10:14:F0:E3:5F:AE:6E:E3:55:A9:5E:E5:3F:13:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4huM5cQFPDjX65u41WpXuU_E5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/2b487e-0a7c-4c46-a241-3d0db8eb4e13/1/X1TlKjqQxQOIUE9nmZNVP4vjBXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/2b487e-0a7c-4c46-a241-3d0db8eb4e13/1/e4huM5cQFPDjX65u41WpXuU_E5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.159.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f2:d5:26:f7:0e:ed:bc:13:80:b1:bf:47:d6:fc:df:e8:78:
5c:d3:4a:31:54:b0:aa:42:4c:72:34:ce:91:74:89:ea:4b:d1:
78:8e:04:4d:f6:6c:fd:26:1f:22:7f:bb:34:be:43:55:60:d5:
c1:88:72:8c:42:b6:43:ce:e3:77:9a:05:31:c9:84:34:e2:55:
88:56:7f:3b:9b:be:ef:ac:58:a2:d9:13:42:4a:5c:e9:a4:36:
d9:15:a8:64:ec:18:66:d3:fb:04:cf:0c:e3:8a:c3:f2:78:63:
f7:ba:46:a8:a8:c5:df:d1:7a:48:2e:13:c7:b9:78:f1:34:a6:
ed:fe:c0:8f:60:6d:f4:18:84:1c:e9:47:8c:c7:c4:ef:15:18:
fa:80:d7:5a:7e:76:f4:70:52:33:da:c9:15:e3:a4:7f:67:e1:
ba:d3:42:69:1d:5d:bb:e1:13:fc:6f:c8:69:3c:db:66:84:f9:
73:3a:59:0e:1d:b5:3c:05:b4:ab:d6:5f:f1:3f:c3:2a:18:5b:
26:88:52:cc:db:51:c7:dd:24:cc:5d:f7:d9:d9:5d:2b:13:c7:
e7:f0:20:09:41:2c:25:49:df:78:d3:90:7f:b5:da:7c:8c:73:
38:e9:b9:4c:64:dc:03:cd:de:f8:00:ff:28:bb:ff:e2:2b:15:
f2:be:e2:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQf+q/mP5fqimb6gUZnDfozMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiODg2ZTMzOTcxMDE0ZjBlMzVmYWU2ZWUzNTVhOTVlZTUz
ZjEzOTcwHhcNMjUwMTAxMDM0ODMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjU0ZTUyYTNhOTBjNTAzODg1MDRmNjc5OTkzNTUzZjhiZTMwNTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZdxwxAn4rmdzSKk7U06BRoO5HBQ
rHNnH8ArDSTFE6CflNrcpCZ5F4r4ltiJrcQZw22OFZ12u5xbN1CV0sa00s8tvKlW
k071gwE3Vjp4NJmQeGtAWHHqzt2chVsydFwTpmk6Ge0qmjzBImqCDHlq7h+MZ2r6
iLSB9UB51qKKs/8hhKxi1Lrvv1MCvlOW6ExLjKhbskEXfS9R4AtdJo4eGwUTU98m
tMbOTSnseIhfGGxIvdamrmflR+nwHgO+aSlGqR9kMGrY6JJYpJsQQi3zZfoDvlQT
vcsIBOweCFcUGvJV0na40NUXxHtJNnTEBMCjnQB+lZ4sLeqdhhhhNWQ8aQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF9U5So6kMUDiFBPZ5mTVT+L4wV6MB8GA1UdIwQY
MBaAFHuIbjOXEBTw41+ubuNVqV7lPxOXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTRodU01Y1FGUERqWDY1dTQxV3BYdVVfRTVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC8yYjQ4N2UtMGE3Yy00YzQ2LWEyNDEt
M2QwZGI4ZWI0ZTEzLzEvWDFUbEtqcVF4UU9JVUU5bm1aTlZQNHZqQlhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC8yYjQ4N2UtMGE3Yy00YzQ2LWEyNDEtM2QwZGI4ZWI0ZTEz
LzEvZTRodU01Y1FGUERqWDY1dTQxV3BYdVVfRTVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufmfMA0G
CSqGSIb3DQEBCwUAA4IBAQBn8tUm9w7tvBOAsb9H1vzf6Hhc00oxVLCqQkxyNM6R
dInqS9F4jgRN9mz9Jh8if7s0vkNVYNXBiHKMQrZDzuN3mgUxyYQ04lWIVn87m77v
rFii2RNCSlzppDbZFahk7Bhm0/sEzwzjisPyeGP3ukaoqMXf0XpILhPHuXjxNKbt
/sCPYG30GIQc6UeMx8TvFRj6gNdafnb0cFIz2skV46R/Z+G600JpHV274RP8b8hp
PNtmhPlzOlkOHbU8BbSr1l/xP8MqGFsmiFLM21HH3STMXffZ2V0rE8fn8CAJQSwl
Sd9405B/tdp8jHM46blMZNwDzd74AP8ou//iKxXyvuJM
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net