Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/xOWUW0bOewUorU3PuzR6cnv41Ec.roa
File: xOWUW0bOewUorU3PuzR6cnv41Ec.roa (raw, json)
Hash identifier: z/ye3u1sqtlYcBf/GAFPNRmAn23AockZVnADhLIPFmU=
Subject key identifier: C4:E5:94:5B:46:CE:7B:05:28:AD:4D:CF:BB:34:7A:72:7B:F8:D4:47
Certificate issuer: /CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Certificate serial: 019423D725F06DE720C97E66E58A9BB697FE
Authority key identifier: E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/xOWUW0bOewUorU3PuzR6cnv41Ec.roa
Signing time: Wed 01 Jan 2025 21:48:09 +0000
ROA not before: Wed 01 Jan 2025 21:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24582
IP address blocks: 185.64.96.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:25:f0:6d:e7:20:c9:7e:66:e5:8a:9b:b6:97:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Validity
Not Before: Jan 1 21:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c4e5945b46ce7b0528ad4dcfbb347a727bf8d447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a3:64:e0:a8:30:76:16:d9:39:e1:9d:be:06:
1e:97:9d:6d:e8:c4:5c:d4:38:67:2d:b4:28:e4:59:
c7:62:5f:32:ce:d5:d5:85:cc:be:8b:63:c1:9e:a4:
b5:59:40:31:ae:31:6d:84:9f:ee:e8:13:58:3d:d2:
4e:ac:33:ba:ba:a1:d2:52:9e:f5:c3:08:84:4a:7b:
c9:8c:b2:a0:3a:5e:1b:9f:52:e2:c7:f4:02:7f:ff:
78:d2:fe:73:ab:6b:8b:5e:e1:4f:01:e6:9e:51:2e:
7c:43:9f:95:50:bc:45:24:8c:d3:22:96:d5:4d:e5:
12:48:bf:c2:3c:44:ea:bc:2b:2c:29:31:15:5e:38:
9e:e1:21:05:97:85:94:69:59:2d:9f:aa:58:43:f5:
f1:ce:83:d4:a3:f5:e0:84:d8:20:47:a3:eb:b8:53:
60:4d:4c:23:08:27:07:f2:1d:02:94:68:81:0c:bc:
a0:89:1b:8a:b0:00:f8:18:dc:8f:eb:6a:98:aa:68:
0e:59:6d:e9:c4:c5:d8:cc:51:78:b5:c4:6d:b4:75:
a0:e2:47:cc:40:be:8a:8a:51:54:8f:ac:6f:5e:2a:
aa:87:26:33:af:92:c5:a7:cf:2c:ac:df:9e:5a:ff:
0e:d9:b5:cb:85:c1:04:2d:ef:34:7a:5c:8c:b4:b5:
9a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E5:94:5B:46:CE:7B:05:28:AD:4D:CF:BB:34:7A:72:7B:F8:D4:47
X509v3 Authority Key Identifier:
keyid:E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/xOWUW0bOewUorU3PuzR6cnv41Ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/59nPsHjtpYFvyAnpjCXLcZY-dbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.96.0/22
Signature Algorithm: sha256WithRSAEncryption
71:fa:b3:a5:19:98:2b:74:db:b6:25:cf:bf:97:6e:dc:4a:b4:
25:d7:c7:d3:0a:34:27:75:19:d2:b4:61:bd:c1:43:85:1c:01:
6e:4c:e9:7f:a2:6f:e6:92:f3:5f:b9:05:42:dc:f6:29:1b:0a:
85:b4:f1:8c:1f:64:0d:5a:68:7e:df:9d:ec:71:38:d0:55:c7:
8b:50:f3:6f:77:a1:92:48:b5:9b:d7:f4:e9:21:da:90:47:aa:
10:42:60:20:f3:f4:15:89:07:1f:1f:2f:90:37:c6:12:b3:95:
3d:f4:a0:28:4f:3d:6f:c0:c6:3e:7a:c0:5f:43:7c:3d:85:17:
87:54:3f:5e:10:2d:0f:7a:e4:6c:54:4e:7b:58:13:a3:3e:44:
4a:d5:82:54:77:6a:18:e9:3f:62:d6:65:71:5a:3d:e1:ef:c4:
e9:19:62:2e:36:7c:57:54:c1:7b:d4:af:45:2b:91:fa:3f:23:
c0:b5:41:9a:ce:10:9a:0d:fd:4e:0c:f1:15:96:01:17:46:77:
88:8f:3f:c1:67:23:35:61:36:92:7c:b0:bd:9a:a9:8d:24:79:
ef:6c:6a:57:1b:0e:ea:a7:82:19:2f:bf:c2:8a:f9:71:28:3a:
a4:e7:53:71:7b:1b:f1:5f:ad:3b:11:ff:29:d2:cd:5f:27:f4:
09:f6:b6:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQj1yXwbecgyX5m5Yqbtpf+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3ZDljZmIwNzhlZGE1ODE2ZmM4MDllOThjMjVjYjcxOTYz
ZTc1YjcwHhcNMjUwMTAxMjE0ODA5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNGU1OTQ1YjQ2Y2U3YjA1MjhhZDRkY2ZiYjM0N2E3MjdiZjhkNDQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqNk4KgwdhbZOeGdvgYel51t6MRc
1DhnLbQo5FnHYl8yztXVhcy+i2PBnqS1WUAxrjFthJ/u6BNYPdJOrDO6uqHSUp71
wwiESnvJjLKgOl4bn1Lix/QCf/940v5zq2uLXuFPAeaeUS58Q5+VULxFJIzTIpbV
TeUSSL/CPETqvCssKTEVXjie4SEFl4WUaVktn6pYQ/XxzoPUo/XghNggR6PruFNg
TUwjCCcH8h0ClGiBDLygiRuKsAD4GNyP62qYqmgOWW3pxMXYzFF4tcRttHWg4kfM
QL6KilFUj6xvXiqqhyYzr5LFp88srN+eWv8O2bXLhcEELe80elyMtLWarwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMTllFtGznsFKK1Nz7s0enJ7+NRHMB8GA1UdIwQY
MBaAFOfZz7B47aWBb8gJ6Ywly3GWPnW3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTluUHNIanRwWUZ2eUFucGpDWExjWlktZGJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8wMDBlYTctYzlmNC00ZWJiLWI5YjEt
ZmVlZTdjMjlkNGRlLzEveE9XVVcwYk9ld1VvclUzUHV6UjZjbnY0MUVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS8wMDBlYTctYzlmNC00ZWJiLWI5YjEtZmVlZTdjMjlkNGRl
LzEvNTluUHNIanRwWUZ2eUFucGpDWExjWlktZGJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuUBgMA0G
CSqGSIb3DQEBCwUAA4IBAQBx+rOlGZgrdNu2Jc+/l27cSrQl18fTCjQndRnStGG9
wUOFHAFuTOl/om/mkvNfuQVC3PYpGwqFtPGMH2QNWmh+353scTjQVceLUPNvd6GS
SLWb1/TpIdqQR6oQQmAg8/QViQcfHy+QN8YSs5U99KAoTz1vwMY+esBfQ3w9hReH
VD9eEC0PeuRsVE57WBOjPkRK1YJUd2oY6T9i1mVxWj3h78TpGWIuNnxXVMF71K9F
K5H6PyPAtUGazhCaDf1ODPEVlgEXRneIjz/BZyM1YTaSfLC9mqmNJHnvbGpXGw7q
p4IZL7/CivlxKDqk51NxexvxX607Ef8p0s1fJ/QJ9rb7
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:49 2025 by rpki-client on console.sobornost.net