Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/1c6180-9950-4ce8-811e-f8d662b96dab/1/z2rex13X5_B3akG_9WMUZ3YUZ_8.roa
File: z2rex13X5_B3akG_9WMUZ3YUZ_8.roa (raw, json)
Hash identifier: FEf9INeCTnfvfEJYFLmPJ0rU6v2IfMIrs4GsjT+Av20=
Subject key identifier: CF:6A:DE:C7:5D:D7:E7:F0:77:6A:41:BF:F5:63:14:67:76:14:67:FF
Certificate issuer: /CN=7d4d1c8790a913e832c733dff778dee79129700a
Certificate serial: 0194258F900590023F6EE52BD1CC72379449
Authority key identifier: 7D:4D:1C:87:90:A9:13:E8:32:C7:33:DF:F7:78:DE:E7:91:29:70:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fU0ch5CpE-gyxzPf93je55EpcAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/1c6180-9950-4ce8-811e-f8d662b96dab/1/z2rex13X5_B3akG_9WMUZ3YUZ_8.roa
Signing time: Thu 02 Jan 2025 05:49:13 +0000
ROA not before: Thu 02 Jan 2025 05:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8222
IP address blocks: 185.227.12.0/22 maxlen: 24
188.92.112.0/21 maxlen: 24
194.59.179.0/24 maxlen: 24
213.183.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:90:05:90:02:3f:6e:e5:2b:d1:cc:72:37:94:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d4d1c8790a913e832c733dff778dee79129700a
Validity
Not Before: Jan 2 05:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cf6adec75dd7e7f0776a41bff5631467761467ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3c:0b:be:24:78:e2:41:8c:fe:15:2c:e0:eb:
52:cb:21:83:4b:c3:14:d0:b5:e6:3c:c1:0c:14:d6:
b2:0c:e4:fb:46:93:cd:9e:dd:50:ce:5f:38:c0:49:
7f:1e:d1:83:49:93:49:60:44:eb:1d:ed:2b:51:b0:
2a:b7:bf:b8:60:ef:34:db:43:d4:4e:34:f9:18:99:
24:b3:cb:01:d6:2b:a6:66:38:14:90:d7:d8:91:e7:
00:b6:af:83:a7:6f:8a:2e:5e:91:eb:b9:c0:68:6d:
e2:87:23:cd:31:a3:4e:0c:3f:24:73:70:29:55:5c:
2f:d9:78:00:c4:43:ae:f2:6b:31:1a:39:ee:95:8a:
93:f6:e1:bf:e0:32:38:da:d6:82:4f:bb:fc:fc:7f:
0b:f0:ce:bf:c4:2b:8d:49:19:3c:aa:f8:35:87:a4:
3d:c9:cc:a3:dc:55:bb:32:c0:99:59:25:49:53:da:
02:cd:3d:00:2b:94:95:44:e4:cf:4b:d4:1c:d0:92:
80:eb:62:4e:5b:86:26:d2:3d:92:5c:be:bc:52:01:
9c:49:ad:84:33:4e:61:14:75:45:a1:ae:e8:3a:21:
8c:8e:df:a8:22:9b:23:bb:1f:49:ec:3e:b8:59:08:
a3:98:eb:36:18:7f:5f:a0:d1:4e:bd:39:c8:aa:e0:
76:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6A:DE:C7:5D:D7:E7:F0:77:6A:41:BF:F5:63:14:67:76:14:67:FF
X509v3 Authority Key Identifier:
keyid:7D:4D:1C:87:90:A9:13:E8:32:C7:33:DF:F7:78:DE:E7:91:29:70:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fU0ch5CpE-gyxzPf93je55EpcAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/1c6180-9950-4ce8-811e-f8d662b96dab/1/z2rex13X5_B3akG_9WMUZ3YUZ_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/1c6180-9950-4ce8-811e-f8d662b96dab/1/fU0ch5CpE-gyxzPf93je55EpcAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.12.0/22
188.92.112.0/21
194.59.179.0/24
213.183.0.0/19
Signature Algorithm: sha256WithRSAEncryption
89:0e:55:e6:1d:f0:1d:0c:cc:79:88:97:85:56:57:3a:d7:52:
c9:04:1b:85:5d:08:63:65:bb:b4:a5:ee:af:5f:b9:a8:1c:0b:
17:9b:e4:3f:b6:2d:a7:17:7f:a5:2e:80:1d:4f:ed:6b:11:e0:
3b:45:5a:9f:c8:f8:b2:54:09:e7:3b:e0:6e:1e:ad:94:e8:5e:
62:47:bf:bd:b5:71:87:af:74:39:a6:fe:3d:c1:8a:c1:70:3b:
c0:64:7b:76:09:0b:da:9f:86:a7:0f:43:e2:80:c5:42:08:a8:
87:e3:59:03:e3:9e:d6:0f:a5:68:a5:da:da:ce:3e:a4:30:c6:
69:b8:48:08:5e:32:b5:fa:e5:94:31:6f:be:e0:40:90:d5:6e:
83:fb:29:9f:8b:a5:8a:e8:47:cf:ae:6f:47:75:c6:1b:dd:60:
57:1f:68:a1:08:1f:93:3b:f3:a6:3e:db:29:c2:9c:2c:4e:75:
d5:d3:d8:f3:39:ab:57:e9:85:d3:c3:9a:15:54:4e:40:cd:67:
63:35:77:5e:9b:28:35:1c:61:23:52:cf:dc:9f:f3:fe:c9:fa:
8e:f5:2a:60:d7:69:88:aa:25:b5:28:8b:a8:73:33:ea:3c:30:
95:0a:b8:d6:d5:6a:1c:51:89:35:96:45:0f:4f:3d:52:58:1b:
bd:ed:2f:f5
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZQlj5AFkAI/buUr0cxyN5RJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNGQxYzg3OTBhOTEzZTgzMmM3MzNkZmY3NzhkZWU3OTEy
OTcwMGEwHhcNMjUwMTAyMDU0OTEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjZhZGVjNzVkZDdlN2YwNzc2YTQxYmZmNTYzMTQ2Nzc2MTQ2N2ZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjwLviR44kGM/hUs4OtSyyGDS8MU
0LXmPMEMFNayDOT7RpPNnt1Qzl84wEl/HtGDSZNJYETrHe0rUbAqt7+4YO8020PU
TjT5GJkks8sB1iumZjgUkNfYkecAtq+Dp2+KLl6R67nAaG3ihyPNMaNODD8kc3Ap
VVwv2XgAxEOu8msxGjnulYqT9uG/4DI42taCT7v8/H8L8M6/xCuNSRk8qvg1h6Q9
ycyj3FW7MsCZWSVJU9oCzT0AK5SVROTPS9Qc0JKA62JOW4Ym0j2SXL68UgGcSa2E
M05hFHVFoa7oOiGMjt+oIpsjux9J7D64WQijmOs2GH9foNFOvTnIquB29wIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFM9q3sdd1+fwd2pBv/VjFGd2FGf/MB8GA1UdIwQY
MBaAFH1NHIeQqRPoMscz3/d43ueRKXAKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlUwY2g1Q3BFLWd5eHpQZjkzamU1NUVwY0FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8xYzYxODAtOTk1MC00Y2U4LTgxMWUt
ZjhkNjYyYjk2ZGFiLzEvejJyZXgxM1g1X0IzYWtHXzlXTVVaM1lVWl84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy8xYzYxODAtOTk1MC00Y2U4LTgxMWUtZjhkNjYyYjk2ZGFi
LzEvZlUwY2g1Q3BFLWd5eHpQZjkzamU1NUVwY0FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCueMMAwQD
vFxwAwQAwjuzAwQF1bcAMA0GCSqGSIb3DQEBCwUAA4IBAQCJDlXmHfAdDMx5iJeF
Vlc611LJBBuFXQhjZbu0pe6vX7moHAsXm+Q/ti2nF3+lLoAdT+1rEeA7RVqfyPiy
VAnnO+BuHq2U6F5iR7+9tXGHr3Q5pv49wYrBcDvAZHt2CQvan4anD0PigMVCCKiH
41kD457WD6Vopdrazj6kMMZpuEgIXjK1+uWUMW++4ECQ1W6D+ymfi6WK6EfPrm9H
dcYb3WBXH2ihCB+TO/OmPtspwpwsTnXV09jzOatX6YXTw5oVVE5AzWdjNXdemyg1
HGEjUs/cn/P+yfqO9Spg12mIqiW1KIuoczPqPDCVCrjW1WocUYk1lkUPTz1SWBu9
7S/1
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:46 2025 by rpki-client on console.sobornost.net