Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/c60d81-7142-4a5b-9b50-0077c2bdbf37/1/NoJ1UKHiukde2mRT9-_nIR1Anh8.roa
File: NoJ1UKHiukde2mRT9-_nIR1Anh8.roa (raw, json)
Hash identifier: /+lwIce8p8YhYy+vTvo5y1ZD5U8+OHW9eM/9QYNo8AI=
Subject key identifier: 36:82:75:50:A1:E2:BA:47:5E:DA:64:53:F7:EF:E7:21:1D:40:9E:1F
Certificate issuer: /CN=470485f5eac675a241ab6e02d8e53dd28556d2ee
Certificate serial: 0195D8060C7F639233BD4C8B6D7ACCF43DBA
Authority key identifier: 47:04:85:F5:EA:C6:75:A2:41:AB:6E:02:D8:E5:3D:D2:85:56:D2:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RwSF9erGdaJBq24C2OU90oVW0u4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/c60d81-7142-4a5b-9b50-0077c2bdbf37/1/NoJ1UKHiukde2mRT9-_nIR1Anh8.roa
Signing time: Thu 27 Mar 2025 14:33:49 +0000
ROA not before: Thu 27 Mar 2025 14:33:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216334
IP address blocks: 194.55.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d8:06:0c:7f:63:92:33:bd:4c:8b:6d:7a:cc:f4:3d:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=470485f5eac675a241ab6e02d8e53dd28556d2ee
Validity
Not Before: Mar 27 14:33:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=36827550a1e2ba475eda6453f7efe7211d409e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fe:62:23:f8:05:6d:ce:c6:b1:7f:23:8d:7f:
cf:21:f4:74:49:3f:11:0f:4b:37:be:45:4e:16:7d:
92:f7:86:21:db:48:65:b2:7a:cb:be:61:b5:7a:8d:
1d:1a:89:40:34:e6:bf:94:2b:c0:ff:e5:c0:67:35:
1d:e8:ff:ca:c7:58:7e:cb:5a:50:0f:04:02:7c:bb:
9c:57:1e:a1:44:78:48:03:4a:4f:ba:68:a7:d5:ea:
48:cb:88:c3:33:6a:0c:18:77:ac:1a:ac:71:77:8c:
87:e1:8c:8e:84:3e:8f:f5:b4:ce:4a:be:61:cf:3f:
ad:22:20:b1:2c:26:f8:a2:e8:37:3c:5a:86:69:50:
35:46:a9:0c:e4:4c:e9:40:38:c0:cd:14:6d:81:1e:
bc:94:f5:2c:dd:1c:ba:2c:4c:75:dd:c9:06:f1:a4:
99:58:8b:bd:9e:b7:6f:d3:cc:bf:cf:8b:53:07:7f:
81:6d:85:01:87:bf:fe:87:c1:6d:c0:ea:f5:f3:20:
21:87:29:88:01:ea:96:5d:4f:d7:a7:dc:6b:2f:60:
9b:63:c8:f5:28:ac:dd:94:c1:2b:de:d0:0c:36:60:
e2:17:72:29:2a:3f:d1:ce:49:ed:7f:a9:c0:62:00:
29:a4:1f:2f:cb:77:76:ed:fa:43:bb:d8:44:9c:63:
80:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:82:75:50:A1:E2:BA:47:5E:DA:64:53:F7:EF:E7:21:1D:40:9E:1F
X509v3 Authority Key Identifier:
keyid:47:04:85:F5:EA:C6:75:A2:41:AB:6E:02:D8:E5:3D:D2:85:56:D2:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RwSF9erGdaJBq24C2OU90oVW0u4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/c60d81-7142-4a5b-9b50-0077c2bdbf37/1/NoJ1UKHiukde2mRT9-_nIR1Anh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/c60d81-7142-4a5b-9b50-0077c2bdbf37/1/RwSF9erGdaJBq24C2OU90oVW0u4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.55.238.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:24:8f:4d:fa:00:fc:73:a6:9d:48:da:67:1c:ba:3a:a0:36:
0a:1b:63:de:22:a9:01:77:9c:b3:8d:b3:ca:fe:8d:64:ff:17:
62:01:b5:17:8a:e4:d7:e0:20:f2:87:cc:01:4a:00:f2:fd:63:
a2:14:8e:14:f1:76:38:a5:c5:da:cd:67:0e:92:40:b6:53:1b:
22:b5:ec:8c:ea:4e:f1:97:7c:20:4f:e5:88:da:5a:03:58:4d:
ab:77:3f:f3:11:32:08:f0:ad:da:4a:67:5b:b9:bd:e0:d4:76:
2d:64:b7:71:06:af:37:08:ad:01:96:c3:5a:1b:0f:a2:c1:02:
e5:5f:86:c7:fe:10:34:ec:1d:83:4a:26:dd:20:8e:fd:3b:7e:
90:4d:1f:d6:68:c1:89:0a:d9:ee:ce:5a:2e:46:f8:00:15:8f:
33:bd:e6:8f:61:3a:26:83:61:db:ad:85:0d:6d:df:2c:2c:69:
cb:4f:c7:c5:12:2d:56:30:0c:d3:ba:a2:c4:39:5c:db:5e:aa:
86:2d:24:7a:a7:67:11:86:fb:42:20:20:fd:be:19:55:d8:14:
82:c1:da:d9:3d:01:9d:19:c0:83:cd:30:83:e5:8e:18:cb:f4:
05:5f:33:f8:08:17:8c:a3:41:b0:4d:0b:26:90:d5:ef:b6:99:
11:4f:4c:6f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZXYBgx/Y5IzvUyLbXrM9D26MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3MDQ4NWY1ZWFjNjc1YTI0MWFiNmUwMmQ4ZTUzZGQyODU1
NmQyZWUwHhcNMjUwMzI3MTQzMzQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjgyNzU1MGExZTJiYTQ3NWVkYTY0NTNmN2VmZTcyMTFkNDA5ZTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/5iI/gFbc7GsX8jjX/PIfR0ST8R
D0s3vkVOFn2S94Yh20hlsnrLvmG1eo0dGolANOa/lCvA/+XAZzUd6P/Kx1h+y1pQ
DwQCfLucVx6hRHhIA0pPumin1epIy4jDM2oMGHesGqxxd4yH4YyOhD6P9bTOSr5h
zz+tIiCxLCb4oug3PFqGaVA1RqkM5EzpQDjAzRRtgR68lPUs3Ry6LEx13ckG8aSZ
WIu9nrdv08y/z4tTB3+BbYUBh7/+h8FtwOr18yAhhymIAeqWXU/Xp9xrL2CbY8j1
KKzdlMEr3tAMNmDiF3IpKj/Rzkntf6nAYgAppB8vy3d27fpDu9hEnGOA2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDaCdVCh4rpHXtpkU/fv5yEdQJ4fMB8GA1UdIwQY
MBaAFEcEhfXqxnWiQatuAtjlPdKFVtLuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUndTRjllckdkYUpCcTI0QzJPVTkwb1ZXMHU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9jNjBkODEtNzE0Mi00YTViLTliNTAt
MDA3N2MyYmRiZjM3LzEvTm9KMVVLSGl1a2RlMm1SVDktX25JUjFBbmg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9jNjBkODEtNzE0Mi00YTViLTliNTAtMDA3N2MyYmRiZjM3
LzEvUndTRjllckdkYUpCcTI0QzJPVTkwb1ZXMHU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjfuMA0G
CSqGSIb3DQEBCwUAA4IBAQBtJI9N+gD8c6adSNpnHLo6oDYKG2PeIqkBd5yzjbPK
/o1k/xdiAbUXiuTX4CDyh8wBSgDy/WOiFI4U8XY4pcXazWcOkkC2UxsiteyM6k7x
l3wgT+WI2loDWE2rdz/zETII8K3aSmdbub3g1HYtZLdxBq83CK0BlsNaGw+iwQLl
X4bH/hA07B2DSibdII79O36QTR/WaMGJCtnuzlouRvgAFY8zveaPYTomg2HbrYUN
bd8sLGnLT8fFEi1WMAzTuqLEOVzbXqqGLSR6p2cRhvtCICD9vhlV2BSCwdrZPQGd
GcCDzTCD5Y4Yy/QFXzP4CBeMo0GwTQsmkNXvtpkRT0xv
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:43 2025 by rpki-client on console.sobornost.net