Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/17a712-4e5a-40c5-a3a2-12025c54f484/1/1MIUfLSdfg2uCy1C44NmnWb0Zbk.roa
File: 1MIUfLSdfg2uCy1C44NmnWb0Zbk.roa (raw, json)
Hash identifier: M4mmUxB5iNo6mGwxNhoQc5I597ltdlyYgJJ9kmayjuo=
Subject key identifier: D4:C2:14:7C:B4:9D:7E:0D:AE:0B:2D:42:E3:83:66:9D:66:F4:65:B9
Certificate issuer: /CN=7c3b8877e1a130fe50386c610d6ead5641b97ba6
Certificate serial: 01942144431CA3757F9F03230976F01196CA
Authority key identifier: 7C:3B:88:77:E1:A1:30:FE:50:38:6C:61:0D:6E:AD:56:41:B9:7B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDuId-GhMP5QOGxhDW6tVkG5e6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/17a712-4e5a-40c5-a3a2-12025c54f484/1/1MIUfLSdfg2uCy1C44NmnWb0Zbk.roa
Signing time: Wed 01 Jan 2025 09:48:29 +0000
ROA not before: Wed 01 Jan 2025 09:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 194.150.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:43:1c:a3:75:7f:9f:03:23:09:76:f0:11:96:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3b8877e1a130fe50386c610d6ead5641b97ba6
Validity
Not Before: Jan 1 09:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d4c2147cb49d7e0dae0b2d42e383669d66f465b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ec:11:57:71:21:14:c2:3a:49:d0:2e:31:fd:
c8:14:4f:c5:68:d7:06:8f:2d:cc:d6:3a:1c:28:88:
93:db:4a:77:dd:39:0e:8f:26:e1:45:ca:b3:4e:2f:
c7:a8:73:75:72:10:c2:37:e1:e8:b7:2e:b8:9b:be:
fe:7e:ef:3b:db:85:84:d0:0e:e9:d8:2a:bc:1e:f3:
f2:b4:71:a5:e6:dd:08:43:9f:d6:26:21:3b:44:a5:
15:71:bf:d1:ab:1a:9d:7d:36:89:f0:ab:f9:ab:cf:
4c:fc:11:6f:1f:26:81:62:d2:dc:dd:20:f0:47:08:
ed:8b:b5:e3:07:fe:00:11:3f:66:b7:10:bb:b2:74:
c4:70:25:18:8d:1a:ba:66:61:c1:fb:3b:27:d3:93:
0e:46:5f:33:76:e7:fe:97:34:f5:6d:81:88:8a:09:
cd:54:a6:30:4d:15:cf:0b:64:b8:03:7c:bf:e8:62:
a5:ec:90:e3:4f:0f:dd:6b:11:47:0a:f3:31:8d:cd:
c8:b4:23:d7:14:e1:25:e3:82:e1:43:39:b7:9f:be:
79:d7:92:01:e3:f6:76:fd:20:12:fa:cb:dd:15:87:
6e:07:cb:ea:af:71:92:d1:7b:36:a5:bd:d4:8c:b0:
71:0c:6b:9e:9e:8e:dc:01:b7:8c:ba:eb:b2:cd:55:
22:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C2:14:7C:B4:9D:7E:0D:AE:0B:2D:42:E3:83:66:9D:66:F4:65:B9
X509v3 Authority Key Identifier:
keyid:7C:3B:88:77:E1:A1:30:FE:50:38:6C:61:0D:6E:AD:56:41:B9:7B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDuId-GhMP5QOGxhDW6tVkG5e6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/17a712-4e5a-40c5-a3a2-12025c54f484/1/1MIUfLSdfg2uCy1C44NmnWb0Zbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/17a712-4e5a-40c5-a3a2-12025c54f484/1/fDuId-GhMP5QOGxhDW6tVkG5e6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.119.0/24
Signature Algorithm: sha256WithRSAEncryption
16:62:ae:ea:8b:17:57:1c:af:df:c8:0e:97:29:b7:44:b6:f7:
16:b9:1f:5c:ed:33:c6:f2:ba:3c:5c:1c:0d:25:93:5e:93:04:
40:52:1f:3d:48:75:ca:8e:21:24:aa:ff:a7:41:2d:3d:57:0d:
b8:44:2e:15:89:2c:dc:54:32:97:5c:e2:9a:f9:90:0f:ec:6a:
f9:a6:db:ff:90:68:29:c8:f1:65:a5:60:85:ac:2e:97:c8:a0:
f4:18:01:09:52:52:88:76:eb:3a:1e:8b:d2:bb:24:41:d5:79:
6f:ff:e7:88:a2:a9:ee:de:5d:5f:f2:9a:99:be:35:a4:9b:49:
59:de:42:89:74:af:c8:45:28:d3:b1:f0:73:0f:80:d2:2f:d8:
63:69:73:a4:5c:41:57:4a:ff:bd:d2:98:d5:e0:ad:4f:90:a7:
0a:db:5b:5c:5c:b6:40:b9:29:6c:50:90:e8:ef:04:e9:63:0c:
cd:78:e0:12:c0:f9:9e:68:30:08:81:03:eb:9a:42:f0:8c:5d:
93:c9:cb:36:ba:21:f4:c5:50:1e:79:2d:fd:3b:a3:f3:81:3c:
bd:21:09:93:40:c3:b0:c8:8b:ac:93:a5:86:37:b7:bb:37:6b:
67:89:50:e7:c2:1e:29:cb:ff:86:19:d0:d1:76:74:3e:03:8b:
e1:41:d1:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhREMco3V/nwMjCXbwEZbKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjM2I4ODc3ZTFhMTMwZmU1MDM4NmM2MTBkNmVhZDU2NDFi
OTdiYTYwHhcNMjUwMTAxMDk0ODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNGMyMTQ3Y2I0OWQ3ZTBkYWUwYjJkNDJlMzgzNjY5ZDY2ZjQ2NWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+wRV3EhFMI6SdAuMf3IFE/FaNcG
jy3M1jocKIiT20p33TkOjybhRcqzTi/HqHN1chDCN+Hoty64m77+fu8724WE0A7p
2Cq8HvPytHGl5t0IQ5/WJiE7RKUVcb/RqxqdfTaJ8Kv5q89M/BFvHyaBYtLc3SDw
Rwjti7XjB/4AET9mtxC7snTEcCUYjRq6ZmHB+zsn05MORl8zduf+lzT1bYGIignN
VKYwTRXPC2S4A3y/6GKl7JDjTw/daxFHCvMxjc3ItCPXFOEl44LhQzm3n75515IB
4/Z2/SAS+svdFYduB8vqr3GS0Xs2pb3UjLBxDGueno7cAbeMuuuyzVUivwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNTCFHy0nX4NrgstQuODZp1m9GW5MB8GA1UdIwQY
MBaAFHw7iHfhoTD+UDhsYQ1urVZBuXumMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkR1SWQtR2hNUDVRT0d4aERXNnRWa0c1ZTZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xN2E3MTItNGU1YS00MGM1LWEzYTIt
MTIwMjVjNTRmNDg0LzEvMU1JVWZMU2RmZzJ1Q3kxQzQ0Tm1uV2IwWmJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8xN2E3MTItNGU1YS00MGM1LWEzYTItMTIwMjVjNTRmNDg0
LzEvZkR1SWQtR2hNUDVRT0d4aERXNnRWa0c1ZTZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpZ3MA0G
CSqGSIb3DQEBCwUAA4IBAQAWYq7qixdXHK/fyA6XKbdEtvcWuR9c7TPG8ro8XBwN
JZNekwRAUh89SHXKjiEkqv+nQS09Vw24RC4ViSzcVDKXXOKa+ZAP7Gr5ptv/kGgp
yPFlpWCFrC6XyKD0GAEJUlKIdus6HovSuyRB1Xlv/+eIoqnu3l1f8pqZvjWkm0lZ
3kKJdK/IRSjTsfBzD4DSL9hjaXOkXEFXSv+90pjV4K1PkKcK21tcXLZAuSlsUJDo
7wTpYwzNeOASwPmeaDAIgQPrmkLwjF2Tycs2uiH0xVAeeS39O6PzgTy9IQmTQMOw
yIusk6WGN7e7N2tniVDnwh4py/+GGdDRdnQ+A4vhQdHU
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:47 2025 by rpki-client on console.sobornost.net