Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/c23ca3-b327-4ed2-a5bb-b16e683dbe27/1/xjZ1XJhW_cFPR3oT-Y__-eT7BLU.roa
File: xjZ1XJhW_cFPR3oT-Y__-eT7BLU.roa (raw, json)
Hash identifier: iqLiaW6nsbh481RYQHU8cc/w97YkMP9DpENBWhWu8os=
Subject key identifier: C6:36:75:5C:98:56:FD:C1:4F:47:7A:13:F9:8F:FF:F9:E4:FB:04:B5
Certificate issuer: /CN=0cebbfaaec24039b41eba56bb1caa51677d21c70
Certificate serial: 019422FC4E558A83D231037C515C59A5B728
Authority key identifier: 0C:EB:BF:AA:EC:24:03:9B:41:EB:A5:6B:B1:CA:A5:16:77:D2:1C:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOu_quwkA5tB66VrscqlFnfSHHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/c23ca3-b327-4ed2-a5bb-b16e683dbe27/1/xjZ1XJhW_cFPR3oT-Y__-eT7BLU.roa
Signing time: Wed 01 Jan 2025 17:49:07 +0000
ROA not before: Wed 01 Jan 2025 17:49:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208493
IP address blocks: 45.129.116.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:4e:55:8a:83:d2:31:03:7c:51:5c:59:a5:b7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cebbfaaec24039b41eba56bb1caa51677d21c70
Validity
Not Before: Jan 1 17:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c636755c9856fdc14f477a13f98ffff9e4fb04b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:82:a7:ae:cf:78:f7:61:66:53:a8:fc:a1:89:
04:fa:58:19:50:3b:e4:59:97:af:d1:7c:dc:c0:43:
7e:38:8d:76:f8:fa:4d:7c:41:39:1f:a9:f2:02:7d:
f1:0c:80:ad:53:33:a4:ac:af:1c:04:6f:5e:ca:cb:
f2:c6:b2:05:15:57:8c:a8:c3:a7:ed:58:67:d3:33:
40:88:07:82:d4:af:46:59:e4:1e:5c:b8:10:b5:49:
71:2c:3b:38:9c:8e:9b:d2:ca:95:a2:6a:6b:dc:8b:
f5:23:66:d6:51:9a:52:0a:98:5e:53:28:f9:72:a6:
4f:64:6e:ca:f0:d2:99:1e:bb:55:2f:e9:50:a0:b5:
a6:ce:70:52:f6:70:50:4e:d9:e7:75:dd:59:97:70:
8c:e4:f4:02:4e:3a:f0:79:b1:87:3b:80:13:1f:e7:
e6:c5:7c:1a:e5:46:ef:ba:f2:7e:92:bb:50:cc:96:
88:6d:5e:4e:c0:67:a1:c5:a3:44:a7:04:65:27:ec:
e0:88:9f:86:70:f1:c7:c2:69:70:ba:a3:1d:5f:22:
4b:d3:02:35:20:d2:80:2d:37:dc:9d:ca:47:0d:30:
83:f5:8a:40:69:60:5a:0b:23:b4:2f:ee:4d:d6:5c:
60:dc:2c:32:52:eb:7f:c9:1c:8e:5f:1c:22:9f:19:
37:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:36:75:5C:98:56:FD:C1:4F:47:7A:13:F9:8F:FF:F9:E4:FB:04:B5
X509v3 Authority Key Identifier:
keyid:0C:EB:BF:AA:EC:24:03:9B:41:EB:A5:6B:B1:CA:A5:16:77:D2:1C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOu_quwkA5tB66VrscqlFnfSHHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c23ca3-b327-4ed2-a5bb-b16e683dbe27/1/xjZ1XJhW_cFPR3oT-Y__-eT7BLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c23ca3-b327-4ed2-a5bb-b16e683dbe27/1/DOu_quwkA5tB66VrscqlFnfSHHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.116.0/22
Signature Algorithm: sha256WithRSAEncryption
19:0c:a3:f1:e1:84:e9:e9:30:0e:09:d3:4a:3f:51:20:59:53:
a3:96:06:79:71:44:11:f4:c1:15:c5:5d:d1:81:45:4e:40:2d:
42:4f:26:90:0d:72:47:ac:7a:b7:d0:10:c6:26:f0:cd:b1:50:
4b:2c:14:aa:d4:7d:70:bf:c2:dc:c2:b1:59:88:db:8d:e4:91:
e0:89:0f:1b:e5:18:90:38:4b:f7:6f:d3:ac:fc:aa:dc:e8:45:
77:31:11:a7:73:43:19:11:f9:29:48:7f:48:0d:a7:1c:bb:dd:
35:6c:fc:d7:fe:0b:6f:6a:d9:b9:01:73:ad:fd:34:a1:f2:c0:
51:68:c0:aa:cd:47:85:7f:e6:b0:46:5a:e8:fb:ef:ef:8f:99:
5a:40:3d:cf:af:5e:9d:7b:56:a6:9b:ea:ed:d3:be:c3:77:4c:
42:0e:ca:2a:04:47:67:26:46:07:b8:70:d8:8f:32:d8:73:71:
2e:10:ba:24:69:54:39:a2:e9:95:8e:fc:15:5a:a7:e8:48:9f:
51:83:49:1c:d4:fa:80:4c:f1:98:29:eb:3a:e4:e5:54:7e:56:
70:0a:e1:2b:3c:9f:55:da:4f:a1:22:91:21:52:71:a7:b6:21:
00:00:35:ca:7e:81:84:4a:b0:3a:81:af:aa:2a:1e:5a:67:4f:
ed:25:1f:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi/E5VioPSMQN8UVxZpbcoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZWJiZmFhZWMyNDAzOWI0MWViYTU2YmIxY2FhNTE2Nzdk
MjFjNzAwHhcNMjUwMTAxMTc0OTA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjM2NzU1Yzk4NTZmZGMxNGY0NzdhMTNmOThmZmZmOWU0ZmIwNGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4Knrs9492FmU6j8oYkE+lgZUDvk
WZev0XzcwEN+OI12+PpNfEE5H6nyAn3xDICtUzOkrK8cBG9eysvyxrIFFVeMqMOn
7Vhn0zNAiAeC1K9GWeQeXLgQtUlxLDs4nI6b0sqVompr3Iv1I2bWUZpSCpheUyj5
cqZPZG7K8NKZHrtVL+lQoLWmznBS9nBQTtnndd1Zl3CM5PQCTjrwebGHO4ATH+fm
xXwa5UbvuvJ+krtQzJaIbV5OwGehxaNEpwRlJ+zgiJ+GcPHHwmlwuqMdXyJL0wI1
INKALTfcncpHDTCD9YpAaWBaCyO0L+5N1lxg3CwyUut/yRyOXxwinxk3ywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMY2dVyYVv3BT0d6E/mP//nk+wS1MB8GA1UdIwQY
MBaAFAzrv6rsJAObQeula7HKpRZ30hxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE91X3F1d2tBNXRCNjZWcnNjcWxGbmZTSEhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9jMjNjYTMtYjMyNy00ZWQyLWE1YmIt
YjE2ZTY4M2RiZTI3LzEveGpaMVhKaFdfY0ZQUjNvVC1ZX18tZVQ3QkxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9jMjNjYTMtYjMyNy00ZWQyLWE1YmItYjE2ZTY4M2RiZTI3
LzEvRE91X3F1d2tBNXRCNjZWcnNjcWxGbmZTSEhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYF0MA0G
CSqGSIb3DQEBCwUAA4IBAQAZDKPx4YTp6TAOCdNKP1EgWVOjlgZ5cUQR9MEVxV3R
gUVOQC1CTyaQDXJHrHq30BDGJvDNsVBLLBSq1H1wv8LcwrFZiNuN5JHgiQ8b5RiQ
OEv3b9Os/Krc6EV3MRGnc0MZEfkpSH9IDaccu901bPzX/gtvatm5AXOt/TSh8sBR
aMCqzUeFf+awRlro++/vj5laQD3Pr16de1amm+rt077Dd0xCDsoqBEdnJkYHuHDY
jzLYc3EuELokaVQ5oumVjvwVWqfoSJ9Rg0kc1PqATPGYKes65OVUflZwCuErPJ9V
2k+hIpEhUnGntiEAADXKfoGESrA6ga+qKh5aZ0/tJR9k
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:05 2025 by rpki-client on console.sobornost.net