Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/28bde3-a4ca-488d-8061-d38d843bfa1d/1/_U7TKaQkv0gDvtMnKrNnbIWERmc.roa
File: _U7TKaQkv0gDvtMnKrNnbIWERmc.roa (raw, json)
Hash identifier: FZz1mY5/p4ukf0qO7zFoKrsIjV3lp2u1Lai3o16W3qQ=
Subject key identifier: FD:4E:D3:29:A4:24:BF:48:03:BE:D3:27:2A:B3:67:6C:85:84:46:67
Certificate issuer: /CN=644c50d1dadf8b84b174fdb0587afb5f42df8a5f
Certificate serial: 019421445977223F3C6D04EEDF727EFD2C05
Authority key identifier: 64:4C:50:D1:DA:DF:8B:84:B1:74:FD:B0:58:7A:FB:5F:42:DF:8A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZExQ0drfi4SxdP2wWHr7X0Lfil8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/28bde3-a4ca-488d-8061-d38d843bfa1d/1/_U7TKaQkv0gDvtMnKrNnbIWERmc.roa
Signing time: Wed 01 Jan 2025 09:48:34 +0000
ROA not before: Wed 01 Jan 2025 09:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48171
IP address blocks: 185.238.184.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:59:77:22:3f:3c:6d:04:ee:df:72:7e:fd:2c:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=644c50d1dadf8b84b174fdb0587afb5f42df8a5f
Validity
Not Before: Jan 1 09:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fd4ed329a424bf4803bed3272ab3676c85844667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cc:bd:6c:6c:09:2d:0c:1a:b3:bc:77:f1:4c:
bb:b6:64:b0:20:f1:e2:00:f3:b0:33:54:ce:9c:0d:
9c:cc:84:92:f0:1c:ac:41:4c:b7:9b:ba:ab:08:56:
c2:64:ba:79:9d:f4:37:20:7c:0b:6a:98:ba:0b:3a:
bf:44:7b:fd:17:c2:8f:7d:68:1c:30:f9:99:9c:ee:
a2:8f:34:e4:fc:5e:46:42:a1:c8:cd:71:7b:e3:5e:
d5:a0:93:b6:b0:1d:09:2e:70:30:14:53:7a:88:e7:
74:1f:f0:9b:bd:fa:8c:74:02:9a:33:34:06:85:e8:
1e:f2:c0:39:94:14:fc:c0:13:b0:a6:31:8b:f1:ce:
eb:05:63:eb:2b:43:f9:98:d1:03:98:95:d2:09:53:
66:cc:90:d5:f7:60:b7:35:0f:9e:e0:2d:f7:ed:f3:
2e:07:e8:1c:0b:88:e0:ed:de:57:c1:3f:d2:bb:44:
38:07:06:b7:68:43:a7:54:82:65:e3:75:21:e0:42:
49:6f:50:8a:f3:94:4e:89:5e:ec:b1:f7:ef:6e:fc:
b7:e4:95:ac:3e:cf:5b:89:82:47:21:57:96:24:7d:
97:fd:f2:17:6c:d4:f6:2d:72:9c:62:71:b6:b9:ad:
8c:a7:30:cc:2d:b1:2a:33:b8:8b:b4:58:21:c5:e9:
58:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4E:D3:29:A4:24:BF:48:03:BE:D3:27:2A:B3:67:6C:85:84:46:67
X509v3 Authority Key Identifier:
keyid:64:4C:50:D1:DA:DF:8B:84:B1:74:FD:B0:58:7A:FB:5F:42:DF:8A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZExQ0drfi4SxdP2wWHr7X0Lfil8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/28bde3-a4ca-488d-8061-d38d843bfa1d/1/_U7TKaQkv0gDvtMnKrNnbIWERmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/28bde3-a4ca-488d-8061-d38d843bfa1d/1/ZExQ0drfi4SxdP2wWHr7X0Lfil8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.184.0/22
Signature Algorithm: sha256WithRSAEncryption
86:fe:8f:20:e3:05:cc:2e:fc:00:02:5c:52:e7:cd:34:95:08:
66:a2:9c:54:98:78:1b:a1:e4:c2:8d:1d:c2:d1:38:1c:21:5d:
9a:6d:db:63:0a:73:f6:e1:c2:6d:09:f6:78:18:3e:52:c5:a6:
85:ad:db:e3:bc:8e:d7:30:fd:00:75:6f:74:e3:3a:21:5c:7a:
6d:e3:06:b8:cf:9a:a0:a8:6f:66:64:8c:e4:72:6b:89:ab:40:
ae:43:04:9a:75:82:61:f5:50:0d:57:6f:1b:39:0b:89:0d:2e:
7d:e6:41:6c:cc:3c:c9:4e:43:2b:5c:31:3f:11:3c:93:4d:fd:
2e:12:c7:88:e8:7b:f6:44:e7:4c:18:84:0a:3c:87:be:c4:19:
e2:19:a3:45:f0:17:94:28:80:05:79:39:d3:11:eb:0d:cd:71:
61:54:20:53:51:1e:bf:26:c4:c0:cd:a5:ee:a1:0c:c6:ef:3a:
ab:9e:ff:af:66:de:38:53:20:d7:03:a8:e3:18:1d:d9:3e:6e:
b1:34:a0:57:cd:c8:23:e5:7e:0f:a3:fe:e8:62:12:ef:ba:51:
e9:b2:1d:e7:2a:8e:45:39:54:f6:38:5e:3a:3e:96:c2:53:f9:
a7:b7:55:24:9a:60:ce:b3:54:e4:e7:b5:4c:ce:5e:1e:4c:cf:
bd:4b:9e:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhRFl3Ij88bQTu33J+/SwFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0NGM1MGQxZGFkZjhiODRiMTc0ZmRiMDU4N2FmYjVmNDJk
ZjhhNWYwHhcNMjUwMTAxMDk0ODM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDRlZDMyOWE0MjRiZjQ4MDNiZWQzMjcyYWIzNjc2Yzg1ODQ0NjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8y9bGwJLQwas7x38Uy7tmSwIPHi
APOwM1TOnA2czISS8BysQUy3m7qrCFbCZLp5nfQ3IHwLapi6Czq/RHv9F8KPfWgc
MPmZnO6ijzTk/F5GQqHIzXF7417VoJO2sB0JLnAwFFN6iOd0H/CbvfqMdAKaMzQG
hege8sA5lBT8wBOwpjGL8c7rBWPrK0P5mNEDmJXSCVNmzJDV92C3NQ+e4C337fMu
B+gcC4jg7d5XwT/Su0Q4Bwa3aEOnVIJl43Uh4EJJb1CK85ROiV7ssffvbvy35JWs
Ps9biYJHIVeWJH2X/fIXbNT2LXKcYnG2ua2MpzDMLbEqM7iLtFghxelYzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP1O0ymkJL9IA77TJyqzZ2yFhEZnMB8GA1UdIwQY
MBaAFGRMUNHa34uEsXT9sFh6+19C34pfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkV4UTBkcmZpNFN4ZFAyd1dIcjdYMExmaWw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8yOGJkZTMtYTRjYS00ODhkLTgwNjEt
ZDM4ZDg0M2JmYTFkLzEvX1U3VEthUWt2MGdEdnRNbktyTm5iSVdFUm1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi8yOGJkZTMtYTRjYS00ODhkLTgwNjEtZDM4ZDg0M2JmYTFk
LzEvWkV4UTBkcmZpNFN4ZFAyd1dIcjdYMExmaWw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCue64MA0G
CSqGSIb3DQEBCwUAA4IBAQCG/o8g4wXMLvwAAlxS5800lQhmopxUmHgboeTCjR3C
0TgcIV2abdtjCnP24cJtCfZ4GD5SxaaFrdvjvI7XMP0AdW904zohXHpt4wa4z5qg
qG9mZIzkcmuJq0CuQwSadYJh9VANV28bOQuJDS595kFszDzJTkMrXDE/ETyTTf0u
EseI6Hv2ROdMGIQKPIe+xBniGaNF8BeUKIAFeTnTEesNzXFhVCBTUR6/JsTAzaXu
oQzG7zqrnv+vZt44UyDXA6jjGB3ZPm6xNKBXzcgj5X4Po/7oYhLvulHpsh3nKo5F
OVT2OF46PpbCU/mnt1UkmmDOs1Tk57VMzl4eTM+9S57b
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:30 2025 by rpki-client on console.sobornost.net