Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/747db8-ac57-46a8-b632-6ce3c03a134c/1/lrZuyVvBSPwCHrxNnv0EW6Orf6c.roa
File: lrZuyVvBSPwCHrxNnv0EW6Orf6c.roa (raw, json)
Hash identifier: EeWV90ew6iUPYW2faTqg6qNdibVxUJcxySAwa6+/qbU=
Subject key identifier: 96:B6:6E:C9:5B:C1:48:FC:02:1E:BC:4D:9E:FD:04:5B:A3:AB:7F:A7
Certificate issuer: /CN=28178243a0866b091272d1e1eb451e71e413b99a
Certificate serial: 0194228E2C8D8A36FDC6B56169CC7EB86FC1
Authority key identifier: 28:17:82:43:A0:86:6B:09:12:72:D1:E1:EB:45:1E:71:E4:13:B9:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBeCQ6CGawkSctHh60UeceQTuZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/747db8-ac57-46a8-b632-6ce3c03a134c/1/lrZuyVvBSPwCHrxNnv0EW6Orf6c.roa
Signing time: Wed 01 Jan 2025 15:48:50 +0000
ROA not before: Wed 01 Jan 2025 15:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204627
IP address blocks: 185.61.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:2c:8d:8a:36:fd:c6:b5:61:69:cc:7e:b8:6f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28178243a0866b091272d1e1eb451e71e413b99a
Validity
Not Before: Jan 1 15:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=96b66ec95bc148fc021ebc4d9efd045ba3ab7fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a3:07:59:39:4c:2c:f5:7a:16:22:8d:64:c6:
f3:ab:21:f1:86:3c:6e:dd:30:33:43:f6:ae:12:6b:
01:5d:32:db:62:8a:1d:69:cd:80:b8:79:3b:63:ec:
83:2d:c3:3c:83:13:27:4e:ce:cf:67:51:a6:1e:f9:
36:48:2c:1d:55:76:e8:d5:a1:0d:76:5d:12:2e:41:
47:cb:70:86:0c:74:b9:5d:a4:79:c7:82:4b:61:33:
63:0b:c6:03:77:c1:d5:8e:c8:a8:dd:6d:0f:88:97:
38:60:f6:de:e8:e2:8c:8c:8f:e0:c7:66:e1:8a:91:
a8:26:f8:aa:9f:a1:b8:8c:2d:06:b0:f8:ea:ec:63:
2e:2e:86:5c:b9:31:78:25:20:79:a2:eb:32:a3:89:
10:36:08:96:92:8c:42:e9:00:52:75:da:7a:39:bf:
d0:e5:c5:e7:3a:6f:c7:16:ae:1e:fc:1f:f6:c5:f0:
7e:ac:8a:42:31:d5:eb:04:da:4f:f1:a7:ad:c7:e4:
8a:3b:ee:9b:86:43:90:79:cf:6c:2d:9b:9e:4d:d9:
76:80:41:f7:bc:a8:e2:41:ad:7d:fd:a2:da:fb:77:
da:3d:e2:18:86:9f:2f:5e:7f:0b:f8:1b:22:1f:70:
ae:9c:fb:08:94:d2:f1:01:59:5e:c5:0d:c9:3d:83:
ce:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B6:6E:C9:5B:C1:48:FC:02:1E:BC:4D:9E:FD:04:5B:A3:AB:7F:A7
X509v3 Authority Key Identifier:
keyid:28:17:82:43:A0:86:6B:09:12:72:D1:E1:EB:45:1E:71:E4:13:B9:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBeCQ6CGawkSctHh60UeceQTuZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/747db8-ac57-46a8-b632-6ce3c03a134c/1/lrZuyVvBSPwCHrxNnv0EW6Orf6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/747db8-ac57-46a8-b632-6ce3c03a134c/1/KBeCQ6CGawkSctHh60UeceQTuZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.248.0/22
Signature Algorithm: sha256WithRSAEncryption
42:5f:a6:48:f4:45:d6:14:42:9a:0a:ff:af:22:b6:8c:d5:90:
91:51:b3:1d:22:b8:31:f4:5f:b9:96:8c:34:93:84:33:fb:33:
d1:cd:08:6b:6d:43:d1:91:4c:78:b1:b5:31:8b:6a:0b:ce:cb:
46:f5:d0:56:cd:a0:e1:e3:8e:f9:75:dc:76:c2:45:5a:14:27:
62:0c:a7:14:e3:df:f0:a0:24:14:0c:87:fa:37:15:6c:95:62:
c7:70:dc:7b:e6:40:57:a3:b9:3b:ac:a8:8d:d6:cd:ae:da:93:
c0:60:fc:86:ce:d8:d5:1b:99:e0:aa:d8:16:97:de:f9:93:e2:
ab:4b:2a:88:dd:90:1b:72:ec:a7:70:93:22:74:62:3d:d6:70:
f7:2b:07:56:43:d7:1f:f4:ce:2e:dc:4f:66:d5:ed:2b:4d:4b:
7f:2f:b0:bd:ba:16:3f:1d:0f:22:60:51:ee:64:4c:db:d3:35:
fe:5d:43:11:97:e9:95:a0:9a:10:32:0f:22:d8:b4:1c:c3:da:
1d:db:89:4d:23:bc:ce:88:75:1a:20:e7:b6:87:01:b1:62:90:
18:b8:4b:26:78:3e:fb:19:ad:e3:df:4d:ec:e1:40:7f:02:75:
26:7e:51:15:8a:bd:96:37:28:13:f7:e3:84:3c:64:d7:4f:c9:
c4:ba:c4:69
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijiyNijb9xrVhacx+uG/BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTc4MjQzYTA4NjZiMDkxMjcyZDFlMWViNDUxZTcxZTQx
M2I5OWEwHhcNMjUwMTAxMTU0ODUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NmI2NmVjOTViYzE0OGZjMDIxZWJjNGQ5ZWZkMDQ1YmEzYWI3ZmE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6MHWTlMLPV6FiKNZMbzqyHxhjxu
3TAzQ/auEmsBXTLbYoodac2AuHk7Y+yDLcM8gxMnTs7PZ1GmHvk2SCwdVXbo1aEN
dl0SLkFHy3CGDHS5XaR5x4JLYTNjC8YDd8HVjsio3W0PiJc4YPbe6OKMjI/gx2bh
ipGoJviqn6G4jC0GsPjq7GMuLoZcuTF4JSB5ousyo4kQNgiWkoxC6QBSddp6Ob/Q
5cXnOm/HFq4e/B/2xfB+rIpCMdXrBNpP8aetx+SKO+6bhkOQec9sLZueTdl2gEH3
vKjiQa19/aLa+3faPeIYhp8vXn8L+BsiH3CunPsIlNLxAVlexQ3JPYPO6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJa2bslbwUj8Ah68TZ79BFujq3+nMB8GA1UdIwQY
MBaAFCgXgkOghmsJEnLR4etFHnHkE7maMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JlQ1E2Q0dhd2tTY3RIaDYwVWVjZVFUdVpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83NDdkYjgtYWM1Ny00NmE4LWI2MzIt
NmNlM2MwM2ExMzRjLzEvbHJadXlWdkJTUHdDSHJ4Tm52MEVXNk9yZjZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS83NDdkYjgtYWM1Ny00NmE4LWI2MzItNmNlM2MwM2ExMzRj
LzEvS0JlQ1E2Q0dhd2tTY3RIaDYwVWVjZVFUdVpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuT34MA0G
CSqGSIb3DQEBCwUAA4IBAQBCX6ZI9EXWFEKaCv+vIraM1ZCRUbMdIrgx9F+5low0
k4Qz+zPRzQhrbUPRkUx4sbUxi2oLzstG9dBWzaDh4475ddx2wkVaFCdiDKcU49/w
oCQUDIf6NxVslWLHcNx75kBXo7k7rKiN1s2u2pPAYPyGztjVG5ngqtgWl975k+Kr
SyqI3ZAbcuyncJMidGI91nD3KwdWQ9cf9M4u3E9m1e0rTUt/L7C9uhY/HQ8iYFHu
ZEzb0zX+XUMRl+mVoJoQMg8i2LQcw9od24lNI7zOiHUaIOe2hwGxYpAYuEsmeD77
Ga3j303s4UB/AnUmflEVir2WNygT9+OEPGTXT8nEusRp
-----END CERTIFICATE-----
Generated at Fri Apr 25 08:37:45 2025 by rpki-client