Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/rblVAHC3Ti1jzAkfPvLVAeStPKM.roa
File: rblVAHC3Ti1jzAkfPvLVAeStPKM.roa (raw, json)
Hash identifier: xDEpLEs8GRGGr1pP5UvsMJUnYZVw+q+8Ehz2NnMyem0=
Subject key identifier: AD:B9:55:00:70:B7:4E:2D:63:CC:09:1F:3E:F2:D5:01:E4:AD:3C:A3
Certificate issuer: /CN=bdaee4a81ff360fe00c3a1f0dae30e26e1280945
Certificate serial: 01941FFA895D89D1B2A3F28F777C44234BA4
Authority key identifier: BD:AE:E4:A8:1F:F3:60:FE:00:C3:A1:F0:DA:E3:0E:26:E1:28:09:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/rblVAHC3Ti1jzAkfPvLVAeStPKM.roa
Signing time: Wed 01 Jan 2025 03:48:20 +0000
ROA not before: Wed 01 Jan 2025 03:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44837
IP address blocks: 195.66.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:89:5d:89:d1:b2:a3:f2:8f:77:7c:44:23:4b:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdaee4a81ff360fe00c3a1f0dae30e26e1280945
Validity
Not Before: Jan 1 03:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=adb9550070b74e2d63cc091f3ef2d501e4ad3ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1b:b9:cc:22:e8:ae:a3:78:53:2b:48:03:f7:
4f:bf:6c:d8:58:3e:bf:54:c9:dd:77:e4:f6:ce:3f:
93:cd:05:ad:3b:5f:c4:09:fb:75:db:d0:9a:80:8f:
84:66:b9:54:32:da:12:2d:9d:19:5a:88:ef:92:6e:
95:9a:fa:3d:0e:08:42:81:a0:e9:11:08:29:6f:e9:
1b:6d:de:55:22:8f:bf:15:90:c4:8c:08:64:75:14:
28:52:a5:eb:71:bf:d7:94:d0:12:92:a6:37:51:f4:
73:a2:52:93:4e:88:02:38:3a:0f:5a:c8:4d:09:26:
4d:70:40:67:8c:6e:d6:d3:47:95:b1:4b:e6:c5:f6:
75:45:ff:72:16:d5:2c:f6:d8:87:15:17:6a:33:85:
f7:4c:47:4c:ca:a8:d5:ed:4d:58:73:3a:be:6e:5f:
70:7e:0b:61:bc:06:05:a7:11:bc:74:37:18:ae:3d:
ce:28:6c:ca:a4:19:a7:bd:7b:fd:3d:97:29:cf:60:
42:25:ee:df:0b:b6:ac:86:9d:fa:5a:57:06:c4:f9:
a8:ee:a8:0a:3b:9e:4d:ab:9e:14:82:33:56:f4:96:
49:8a:1a:06:18:44:93:c3:e6:87:19:a8:dd:21:69:
df:07:a0:c0:2c:e6:8e:1a:9d:c4:28:c6:20:f0:c5:
09:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B9:55:00:70:B7:4E:2D:63:CC:09:1F:3E:F2:D5:01:E4:AD:3C:A3
X509v3 Authority Key Identifier:
keyid:BD:AE:E4:A8:1F:F3:60:FE:00:C3:A1:F0:DA:E3:0E:26:E1:28:09:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/rblVAHC3Ti1jzAkfPvLVAeStPKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b321be-6000-4baa-92dc-270c8b5a0923/1/va7kqB_zYP4Aw6Hw2uMOJuEoCUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.105.0/24
Signature Algorithm: sha256WithRSAEncryption
17:a8:b3:a0:ff:10:66:3e:90:d5:d1:4b:56:66:03:9c:ec:da:
f7:74:c8:fc:77:42:4e:d2:05:76:6f:93:9a:70:f0:4d:a7:ca:
30:96:c8:d6:d8:a9:e2:c5:19:67:05:ab:e6:03:e5:5f:91:ca:
b2:08:7d:b7:f8:58:2d:04:1a:d6:e6:0a:98:67:12:58:3a:78:
9e:c7:c6:16:e5:96:e5:92:99:61:86:21:3a:e2:78:c7:ca:bd:
0c:15:c8:2f:f0:35:fd:4a:c9:6b:6b:da:c9:35:f5:cc:74:d2:
89:21:1f:1d:9b:47:68:07:fe:aa:70:f4:c7:35:6b:08:ed:75:
18:e6:54:a4:7f:7c:72:f1:5e:a8:5c:d4:b3:07:6a:07:3f:10:
fc:1c:97:c5:d7:7a:81:c3:b2:12:f0:8e:bc:28:1f:5b:b4:aa:
93:84:8f:11:2d:1e:4f:b2:0a:ac:c0:99:1b:23:40:f8:d9:cd:
ed:77:fe:e4:d0:37:4a:b8:57:bf:c9:3c:50:4f:98:33:76:fb:
39:a9:fc:f8:9c:dd:0d:d0:45:f0:db:88:d9:c0:37:d8:0e:b9:
0e:c3:13:ea:35:e7:92:38:c6:25:50:e7:bc:42:1d:1a:59:35:
69:72:18:a6:13:de:ca:bf:44:a5:c0:d1:bf:ca:63:31:98:b9:
3e:95:c2:9d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQf+oldidGyo/KPd3xEI0ukMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkYWVlNGE4MWZmMzYwZmUwMGMzYTFmMGRhZTMwZTI2ZTEy
ODA5NDUwHhcNMjUwMTAxMDM0ODIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZGI5NTUwMDcwYjc0ZTJkNjNjYzA5MWYzZWYyZDUwMWU0YWQzY2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBu5zCLorqN4UytIA/dPv2zYWD6/
VMndd+T2zj+TzQWtO1/ECft129CagI+EZrlUMtoSLZ0ZWojvkm6Vmvo9DghCgaDp
EQgpb+kbbd5VIo+/FZDEjAhkdRQoUqXrcb/XlNASkqY3UfRzolKTTogCODoPWshN
CSZNcEBnjG7W00eVsUvmxfZ1Rf9yFtUs9tiHFRdqM4X3TEdMyqjV7U1Yczq+bl9w
fgthvAYFpxG8dDcYrj3OKGzKpBmnvXv9PZcpz2BCJe7fC7ashp36WlcGxPmo7qgK
O55Nq54UgjNW9JZJihoGGESTw+aHGajdIWnfB6DALOaOGp3EKMYg8MUJKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK25VQBwt04tY8wJHz7y1QHkrTyjMB8GA1UdIwQY
MBaAFL2u5Kgf82D+AMOh8NrjDibhKAlFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmE3a3FCX3pZUDRBdzZIdzJ1TU9KdUVvQ1VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9iMzIxYmUtNjAwMC00YmFhLTkyZGMt
MjcwYzhiNWEwOTIzLzEvcmJsVkFIQzNUaTFqekFrZlB2TFZBZVN0UEtNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9iMzIxYmUtNjAwMC00YmFhLTkyZGMtMjcwYzhiNWEwOTIz
LzEvdmE3a3FCX3pZUDRBdzZIdzJ1TU9KdUVvQ1VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0JpMA0G
CSqGSIb3DQEBCwUAA4IBAQAXqLOg/xBmPpDV0UtWZgOc7Nr3dMj8d0JO0gV2b5Oa
cPBNp8owlsjW2KnixRlnBavmA+VfkcqyCH23+FgtBBrW5gqYZxJYOniex8YW5Zbl
kplhhiE64njHyr0MFcgv8DX9Sslra9rJNfXMdNKJIR8dm0doB/6qcPTHNWsI7XUY
5lSkf3xy8V6oXNSzB2oHPxD8HJfF13qBw7IS8I68KB9btKqThI8RLR5PsgqswJkb
I0D42c3td/7k0DdKuFe/yTxQT5gzdvs5qfz4nN0N0EXw24jZwDfYDrkOwxPqNeeS
OMYlUOe8Qh0aWTVpchimE97Kv0SlwNG/ymMxmLk+lcKd
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:06 2025 by rpki-client on console.sobornost.net