Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/_tQcgZijvm9qlNfbL3oLbTBqXKw.roa
File: _tQcgZijvm9qlNfbL3oLbTBqXKw.roa (raw, json)
Hash identifier: xWDEvLw1mwcjLwMZNAz8Pf0/GCXvJ3lHopahWXf20MA=
Subject key identifier: FE:D4:1C:81:98:A3:BE:6F:6A:94:D7:DB:2F:7A:0B:6D:30:6A:5C:AC
Certificate issuer: /CN=2be53d340a8bf47c1bf34d3255e102efb181ad19
Certificate serial: 019421B1E10BBDB6D371C6F7E5C04A7A33C0
Authority key identifier: 2B:E5:3D:34:0A:8B:F4:7C:1B:F3:4D:32:55:E1:02:EF:B1:81:AD:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K-U9NAqL9Hwb800yVeEC77GBrRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/_tQcgZijvm9qlNfbL3oLbTBqXKw.roa
Signing time: Wed 01 Jan 2025 11:48:13 +0000
ROA not before: Wed 01 Jan 2025 11:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12703
IP address blocks: 46.236.0.0/18 maxlen: 24
81.29.64.0/19 maxlen: 24
89.151.64.0/18 maxlen: 24
178.236.144.0/20 maxlen: 24
185.68.112.0/23 maxlen: 24
185.68.114.0/23 maxlen: 24
2a02:16f8::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:e1:0b:bd:b6:d3:71:c6:f7:e5:c0:4a:7a:33:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2be53d340a8bf47c1bf34d3255e102efb181ad19
Validity
Not Before: Jan 1 11:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fed41c8198a3be6f6a94d7db2f7a0b6d306a5cac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:08:ea:8c:3a:ca:fe:f5:5b:11:13:18:43:17:
d8:07:46:51:84:cf:37:0f:91:80:50:64:c3:79:34:
ff:1f:51:73:04:26:23:91:51:3c:95:ad:81:1d:d8:
cc:3b:7f:b7:2c:f8:7e:71:98:17:49:db:92:17:82:
dc:97:7e:e4:7a:41:9e:29:b9:1d:1d:46:5d:a6:5e:
ea:09:39:d8:bc:46:6d:03:7b:1f:f7:0b:b1:40:99:
dc:ec:d6:e1:aa:46:55:84:5c:93:06:ee:59:97:3c:
39:1c:78:6b:d2:c7:f4:f6:99:15:82:12:67:26:c9:
37:ca:66:07:4f:41:43:69:77:90:f8:99:41:66:1e:
9a:cb:f8:76:36:4d:e0:45:d2:e2:2d:96:83:c6:e3:
64:90:4a:f7:53:59:61:8b:bc:8f:f7:e9:a5:eb:15:
d1:78:d7:76:bb:b1:fc:3e:19:44:60:80:34:c0:28:
df:b6:d4:7e:be:1f:f0:19:ca:73:25:0c:14:b7:de:
24:f2:95:03:56:c1:af:5d:5f:a5:5f:c5:79:1b:c0:
ac:a7:ee:52:2f:db:a6:f1:71:fc:3f:91:37:1c:a6:
8b:33:f8:45:b6:f4:d5:91:14:e8:24:e7:40:d8:3a:
d0:a8:33:6f:5d:4c:26:f0:b5:4d:ed:31:11:13:14:
c1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D4:1C:81:98:A3:BE:6F:6A:94:D7:DB:2F:7A:0B:6D:30:6A:5C:AC
X509v3 Authority Key Identifier:
keyid:2B:E5:3D:34:0A:8B:F4:7C:1B:F3:4D:32:55:E1:02:EF:B1:81:AD:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K-U9NAqL9Hwb800yVeEC77GBrRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/_tQcgZijvm9qlNfbL3oLbTBqXKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/K-U9NAqL9Hwb800yVeEC77GBrRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.0.0/18
81.29.64.0/19
89.151.64.0/18
178.236.144.0/20
185.68.112.0/22
IPv6:
2a02:16f8::/32
Signature Algorithm: sha256WithRSAEncryption
63:85:a0:6a:bd:31:73:72:e2:a3:36:40:84:a5:c0:9c:12:4f:
27:b1:c2:a3:a2:f0:02:85:95:a3:f3:5b:39:ab:d7:a0:ad:9e:
96:5f:fe:90:38:a4:75:bc:0f:0b:ae:59:ca:f8:c3:c6:3d:75:
57:a0:13:7c:2a:8f:8c:bb:99:02:cd:44:01:0f:78:b7:ff:96:
9c:85:cc:22:5c:44:88:ef:83:4d:8b:f3:8a:32:b1:93:f7:ad:
58:bd:1e:5b:31:32:25:fa:9c:1a:0c:e4:07:70:aa:88:06:be:
0e:ef:3a:c1:a7:28:06:0a:f4:9a:31:44:f5:43:f9:7b:f8:ac:
95:0a:91:7f:88:8d:73:6e:10:30:56:c1:26:c3:7f:4e:91:2b:
98:1a:15:37:d0:b7:49:6b:25:5e:c5:fb:ee:f6:4e:7b:5b:b1:
77:42:a9:f7:7c:56:b2:3a:c8:f0:76:db:75:aa:48:9d:59:ed:
df:08:b7:38:7b:68:7e:73:9e:27:a2:1c:72:98:c5:f8:6e:75:
61:d8:66:64:73:2c:53:46:25:e6:d1:85:14:52:fa:a4:69:f9:
8f:1c:94:48:ae:2e:3d:52:5d:9b:e8:b6:bd:cb:1f:0c:76:09:
03:61:ea:9f:ef:2b:0a:2c:3b:68:66:5c:e5:fd:e7:8b:50:ea:
7f:6b:e0:1f
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAZQhseELvbbTccb35cBKejPAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiZTUzZDM0MGE4YmY0N2MxYmYzNGQzMjU1ZTEwMmVmYjE4
MWFkMTkwHhcNMjUwMTAxMTE0ODEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZWQ0MWM4MTk4YTNiZTZmNmE5NGQ3ZGIyZjdhMGI2ZDMwNmE1Y2FjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5QjqjDrK/vVbERMYQxfYB0ZRhM83
D5GAUGTDeTT/H1FzBCYjkVE8la2BHdjMO3+3LPh+cZgXSduSF4Lcl37kekGeKbkd
HUZdpl7qCTnYvEZtA3sf9wuxQJnc7NbhqkZVhFyTBu5Zlzw5HHhr0sf09pkVghJn
Jsk3ymYHT0FDaXeQ+JlBZh6ay/h2Nk3gRdLiLZaDxuNkkEr3U1lhi7yP9+ml6xXR
eNd2u7H8PhlEYIA0wCjfttR+vh/wGcpzJQwUt94k8pUDVsGvXV+lX8V5G8Csp+5S
L9um8XH8P5E3HKaLM/hFtvTVkRToJOdA2DrQqDNvXUwm8LVN7TERExTBCwIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFP7UHIGYo75vapTX2y96C20walysMB8GA1UdIwQY
MBaAFCvlPTQKi/R8G/NNMlXhAu+xga0ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSy1VOU5BcUw5SHdiODAweVZlRUM3N0dCclJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9mNzI1NjItNDVmNS00MDE5LTgzYTEt
NzRmMGMzZTY2M2NiLzEvX3RRY2daaWp2bTlxbE5mYkwzb0xiVEJxWEt3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9mNzI1NjItNDVmNS00MDE5LTgzYTEtNzRmMGMzZTY2M2Ni
LzEvSy1VOU5BcUw5SHdiODAweVZlRUM3N0dCclJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQGLuwAAwQF
UR1AAwQGWZdAAwQEsuyQAwQCuURwMA0EAgACMAcDBQAqAhb4MA0GCSqGSIb3DQEB
CwUAA4IBAQBjhaBqvTFzcuKjNkCEpcCcEk8nscKjovAChZWj81s5q9egrZ6WX/6Q
OKR1vA8LrlnK+MPGPXVXoBN8Ko+Mu5kCzUQBD3i3/5achcwiXESI74NNi/OKMrGT
961YvR5bMTIl+pwaDOQHcKqIBr4O7zrBpygGCvSaMUT1Q/l7+KyVCpF/iI1zbhAw
VsEmw39OkSuYGhU30LdJayVexfvu9k57W7F3Qqn3fFayOsjwdtt1qkidWe3fCLc4
e2h+c54nohxymMX4bnVh2GZkcyxTRiXm0YUUUvqkafmPHJRIri49Ul2b6La9yx8M
dgkDYeqf7ysKLDtoZlzl/eeLUOp/a+Af
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net