Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/767d6d-36c8-403b-81b0-b4aaa23fdaa9/1/lNqtvqUZifhN9hUTQHsN8rzDv6s.roa
File: lNqtvqUZifhN9hUTQHsN8rzDv6s.roa (raw, json)
Hash identifier: noJIwI7/Q+WHXTBLIOr4/ymrWUykyqujMSct/kdt/UE=
Subject key identifier: 94:DA:AD:BE:A5:19:89:F8:4D:F6:15:13:40:7B:0D:F2:BC:C3:BF:AB
Certificate issuer: /CN=9a5e76f929d21b586f42e30f7d9b00399b3dcbf0
Certificate serial: 0194DB860145D7D67876AF1F3E71BB4C6370
Authority key identifier: 9A:5E:76:F9:29:D2:1B:58:6F:42:E3:0F:7D:9B:00:39:9B:3D:CB:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ml52-SnSG1hvQuMPfZsAOZs9y_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/767d6d-36c8-403b-81b0-b4aaa23fdaa9/1/lNqtvqUZifhN9hUTQHsN8rzDv6s.roa
Signing time: Thu 06 Feb 2025 13:49:39 +0000
ROA not before: Thu 06 Feb 2025 13:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12989
IP address blocks: 194.54.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:db:86:01:45:d7:d6:78:76:af:1f:3e:71:bb:4c:63:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a5e76f929d21b586f42e30f7d9b00399b3dcbf0
Validity
Not Before: Feb 6 13:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=94daadbea51989f84df61513407b0df2bcc3bfab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e8:ae:b3:4b:91:31:b4:c5:dd:3a:75:90:71:
89:b2:d5:4b:96:5c:f5:6d:47:dc:e4:be:f6:7b:1d:
b5:03:f5:21:18:08:ea:a6:54:60:ad:5d:a6:71:1a:
f6:79:51:5e:e3:4b:38:b4:a4:8e:5c:cb:41:da:b9:
dc:be:b9:f6:ba:f9:a2:3d:28:11:95:15:a5:bf:b7:
27:d6:4d:06:ab:32:c6:42:07:59:3c:b1:ae:aa:05:
e2:d8:a0:7a:4d:bc:3e:cd:91:2b:58:a1:83:08:b5:
51:3f:65:4b:39:1c:5c:08:22:32:c6:b3:36:10:9b:
22:3d:e6:c9:22:58:98:7e:14:63:b7:e3:ca:45:de:
28:54:f9:63:8d:37:78:18:c9:27:4d:6f:6c:85:cf:
6d:a2:eb:82:4b:f5:00:5b:71:57:70:cf:91:6b:ef:
5b:e1:a5:af:15:5f:a5:2f:15:7e:ad:de:4b:5c:20:
ab:63:5d:f6:eb:52:e8:77:b0:e7:00:e1:62:b1:c7:
d8:89:3d:0c:22:61:f2:b6:fe:51:6e:7e:48:5c:9b:
1d:b1:c2:a0:d1:86:e4:1c:09:ee:82:16:5e:37:9e:
e6:5c:76:98:6b:24:41:c0:6e:f8:0e:da:1d:6a:4e:
22:99:bf:b2:88:eb:02:ab:97:2d:04:19:de:d6:a3:
4a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DA:AD:BE:A5:19:89:F8:4D:F6:15:13:40:7B:0D:F2:BC:C3:BF:AB
X509v3 Authority Key Identifier:
keyid:9A:5E:76:F9:29:D2:1B:58:6F:42:E3:0F:7D:9B:00:39:9B:3D:CB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ml52-SnSG1hvQuMPfZsAOZs9y_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/767d6d-36c8-403b-81b0-b4aaa23fdaa9/1/lNqtvqUZifhN9hUTQHsN8rzDv6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/767d6d-36c8-403b-81b0-b4aaa23fdaa9/1/ml52-SnSG1hvQuMPfZsAOZs9y_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.180.0/24
Signature Algorithm: sha256WithRSAEncryption
06:9f:93:95:dc:a7:91:9d:ac:6b:9f:c6:5e:bd:3e:2b:54:a4:
de:dd:47:8f:6a:5e:71:d1:be:9c:f2:9d:4b:f1:8a:3c:83:d5:
f8:b4:6e:8d:9e:ef:79:83:f2:ba:d5:fe:b8:fa:4a:cf:8b:7f:
e7:8a:a1:e4:1c:63:71:b9:8e:91:c1:9c:7a:2a:25:e6:c5:34:
6e:6f:73:86:81:0c:03:71:60:17:88:a4:c0:c1:71:2b:42:f1:
37:f7:79:39:d9:ae:f2:77:0b:81:89:56:78:2a:7d:3d:a9:b2:
3f:cb:35:60:95:9a:24:e3:b0:36:58:3d:65:0c:3f:e0:bd:38:
73:e7:0d:1d:8a:97:cf:ad:4f:ed:16:75:3d:c8:54:c4:ba:84:
63:3e:f2:ba:2a:23:ca:9e:4d:35:46:98:e6:3a:ef:67:da:a7:
50:3b:43:c3:b1:e3:ff:a9:69:38:3b:d4:27:47:0f:50:a1:54:
fd:01:22:f9:ca:a0:b0:a4:9d:22:93:9e:8a:b0:62:2b:87:82:
53:6e:75:cc:5e:04:a8:cc:9b:e9:70:ee:e2:77:67:42:5c:66:
d5:be:b4:43:e7:2c:4e:ab:49:b9:95:18:42:c4:d7:5b:cb:a5:
e6:a0:e9:df:39:f7:05:2f:3d:cb:64:2d:cb:08:cf:3f:dd:bc:
90:56:c7:98
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZTbhgFF19Z4dq8fPnG7TGNwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhNWU3NmY5MjlkMjFiNTg2ZjQyZTMwZjdkOWIwMDM5OWIz
ZGNiZjAwHhcNMjUwMjA2MTM0OTM5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NGRhYWRiZWE1MTk4OWY4NGRmNjE1MTM0MDdiMGRmMmJjYzNiZmFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+ius0uRMbTF3Tp1kHGJstVLllz1
bUfc5L72ex21A/UhGAjqplRgrV2mcRr2eVFe40s4tKSOXMtB2rncvrn2uvmiPSgR
lRWlv7cn1k0GqzLGQgdZPLGuqgXi2KB6Tbw+zZErWKGDCLVRP2VLORxcCCIyxrM2
EJsiPebJIliYfhRjt+PKRd4oVPljjTd4GMknTW9shc9touuCS/UAW3FXcM+Ra+9b
4aWvFV+lLxV+rd5LXCCrY13261Lod7DnAOFiscfYiT0MImHytv5Rbn5IXJsdscKg
0YbkHAnughZeN57mXHaYayRBwG74Dtodak4imb+yiOsCq5ctBBne1qNKwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJTarb6lGYn4TfYVE0B7DfK8w7+rMB8GA1UdIwQY
MBaAFJpedvkp0htYb0LjD32bADmbPcvwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWw1Mi1TblNHMWh2UXVNUGZac0FPWnM5eV9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS83NjdkNmQtMzZjOC00MDNiLTgxYjAt
YjRhYWEyM2ZkYWE5LzEvbE5xdHZxVVppZmhOOWhVVFFIc044cnpEdjZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS83NjdkNmQtMzZjOC00MDNiLTgxYjAtYjRhYWEyM2ZkYWE5
LzEvbWw1Mi1TblNHMWh2UXVNUGZac0FPWnM5eV9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwja0MA0G
CSqGSIb3DQEBCwUAA4IBAQAGn5OV3KeRnaxrn8ZevT4rVKTe3UePal5x0b6c8p1L
8Yo8g9X4tG6Nnu95g/K61f64+krPi3/niqHkHGNxuY6RwZx6KiXmxTRub3OGgQwD
cWAXiKTAwXErQvE393k52a7ydwuBiVZ4Kn09qbI/yzVglZok47A2WD1lDD/gvThz
5w0dipfPrU/tFnU9yFTEuoRjPvK6KiPKnk01RpjmOu9n2qdQO0PDseP/qWk4O9Qn
Rw9QoVT9ASL5yqCwpJ0ik56KsGIrh4JTbnXMXgSozJvpcO7id2dCXGbVvrRD5yxO
q0m5lRhCxNdby6XmoOnfOfcFLz3LZC3LCM8/3byQVseY
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:43 2025 by rpki-client on console.sobornost.net