Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a18a97-8fc7-4955-87af-0bcfc532933c/1/Haz2dutrUVMMKz8DWDpTMKU7v-M.roa
File: Haz2dutrUVMMKz8DWDpTMKU7v-M.roa (raw, json)
Hash identifier: UYJn16zkfgLSDIIDhGPHhj8L2SfoMr/Jiya6AdzxVHU=
Subject key identifier: 1D:AC:F6:76:EB:6B:51:53:0C:2B:3F:03:58:3A:53:30:A5:3B:BF:E3
Certificate issuer: /CN=f26920bbd7fb70ef5dbcf2d0fea202bd95765eba
Certificate serial: 01942827C8DE6D05C80E091AA69F6DEF65B2
Authority key identifier: F2:69:20:BB:D7:FB:70:EF:5D:BC:F2:D0:FE:A2:02:BD:95:76:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mkgu9f7cO9dvPLQ_qICvZV2Xro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a18a97-8fc7-4955-87af-0bcfc532933c/1/Haz2dutrUVMMKz8DWDpTMKU7v-M.roa
Signing time: Thu 02 Jan 2025 17:54:43 +0000
ROA not before: Thu 02 Jan 2025 17:54:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60844
IP address blocks: 95.178.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:c8:de:6d:05:c8:0e:09:1a:a6:9f:6d:ef:65:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f26920bbd7fb70ef5dbcf2d0fea202bd95765eba
Validity
Not Before: Jan 2 17:54:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1dacf676eb6b51530c2b3f03583a5330a53bbfe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:cd:50:72:29:49:f2:ad:36:b5:a6:8f:91:
70:d0:3b:e6:3b:70:b0:7d:f8:4d:29:1c:7d:88:04:
95:09:de:40:24:8d:48:fc:8d:e6:cf:b6:79:aa:54:
78:0e:71:43:4b:1e:0e:8b:56:8b:c2:a3:70:31:73:
71:4d:6a:92:55:5d:a2:8e:05:76:c6:44:5e:ce:6f:
07:c1:96:b8:85:30:be:60:e5:b2:54:12:84:67:4b:
d3:ad:79:55:0e:e6:4c:b6:4d:73:d3:16:3d:d7:2e:
5e:4a:04:ac:70:c0:66:7a:e9:d9:07:ea:bf:f7:47:
fc:77:0f:e7:af:6a:e9:f2:2c:7a:f9:90:03:3b:ab:
87:3a:fb:b8:2b:01:e5:56:1b:5c:dd:d1:b5:45:b7:
1c:44:0b:bf:21:c6:0b:06:85:27:79:8b:92:ef:bf:
75:8f:cd:8a:8b:d8:85:54:2d:99:d3:a7:2d:28:e7:
69:8d:c7:f8:d8:63:d2:c5:a3:fa:54:88:71:ec:55:
7c:ba:11:77:82:1f:c7:35:3c:1b:f3:82:33:c7:1d:
4c:03:d7:af:13:f0:8d:b8:99:e9:36:0d:9e:89:dc:
29:fc:f4:86:92:dd:3b:2b:c1:c8:52:18:14:32:09:
e5:ce:d0:26:02:5d:be:d7:7e:dd:64:a3:46:36:3a:
3e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AC:F6:76:EB:6B:51:53:0C:2B:3F:03:58:3A:53:30:A5:3B:BF:E3
X509v3 Authority Key Identifier:
keyid:F2:69:20:BB:D7:FB:70:EF:5D:BC:F2:D0:FE:A2:02:BD:95:76:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mkgu9f7cO9dvPLQ_qICvZV2Xro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a18a97-8fc7-4955-87af-0bcfc532933c/1/Haz2dutrUVMMKz8DWDpTMKU7v-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a18a97-8fc7-4955-87af-0bcfc532933c/1/8mkgu9f7cO9dvPLQ_qICvZV2Xro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.178.121.0/24
Signature Algorithm: sha256WithRSAEncryption
13:3b:60:00:c4:6a:6f:65:38:3e:60:8d:07:a6:a0:f0:2e:85:
a0:40:69:b9:0a:cb:aa:7a:d9:a3:87:88:8f:3f:ec:fa:10:c0:
44:4c:ac:1d:8e:39:40:a2:a1:bc:f4:8e:ba:6f:ee:62:56:a9:
b6:6c:e8:e4:f8:81:7b:db:97:12:25:1c:e7:53:82:4d:16:e1:
96:eb:93:2d:ea:b4:26:2a:8d:ba:df:cb:a1:3a:31:e3:cc:e3:
e6:5c:24:c3:f4:a3:7f:ad:a2:58:b0:ed:6f:2f:9d:59:5a:f4:
4b:f0:6f:47:58:1e:b1:f3:ee:f1:b8:48:7e:c5:e1:91:64:ee:
0b:36:83:f2:03:59:2c:57:9e:33:40:d9:fa:26:a8:13:41:49:
66:52:4d:c4:ac:1c:29:2b:dd:01:7d:19:88:eb:9b:74:ee:7d:
9d:7b:fc:60:bb:79:31:14:c8:c3:94:9f:31:c9:fe:e7:81:66:
8c:ef:82:f4:3d:02:2a:32:2e:d2:7c:ab:59:7f:b5:df:f1:07:
33:2e:be:3a:a1:ee:69:4f:a3:71:15:a4:41:37:c9:11:d4:f4:
c6:a7:38:a5:e0:bf:e7:43:0c:87:d1:46:33:00:44:50:4d:18:
81:4b:90:c4:ce:b3:24:9b:bb:07:85:db:84:7e:cb:b4:a3:48:
1e:3e:8b:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoJ8jebQXIDgkapp9t72WyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyNjkyMGJiZDdmYjcwZWY1ZGJjZjJkMGZlYTIwMmJkOTU3
NjVlYmEwHhcNMjUwMTAyMTc1NDQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGFjZjY3NmViNmI1MTUzMGMyYjNmMDM1ODNhNTMzMGE1M2JiZmUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKLNUHIpSfKtNrWmj5Fw0DvmO3Cw
ffhNKRx9iASVCd5AJI1I/I3mz7Z5qlR4DnFDSx4Oi1aLwqNwMXNxTWqSVV2ijgV2
xkRezm8HwZa4hTC+YOWyVBKEZ0vTrXlVDuZMtk1z0xY91y5eSgSscMBmeunZB+q/
90f8dw/nr2rp8ix6+ZADO6uHOvu4KwHlVhtc3dG1RbccRAu/IcYLBoUneYuS7791
j82Ki9iFVC2Z06ctKOdpjcf42GPSxaP6VIhx7FV8uhF3gh/HNTwb84Izxx1MA9ev
E/CNuJnpNg2eidwp/PSGkt07K8HIUhgUMgnlztAmAl2+137dZKNGNjo+kwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB2s9nbra1FTDCs/A1g6UzClO7/jMB8GA1UdIwQY
MBaAFPJpILvX+3DvXbzy0P6iAr2Vdl66MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOG1rZ3U5ZjdjTzlkdlBMUV9xSUN2WlYyWHJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9hMThhOTctOGZjNy00OTU1LTg3YWYt
MGJjZmM1MzI5MzNjLzEvSGF6MmR1dHJVVk1NS3o4RFdEcFRNS1U3di1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi9hMThhOTctOGZjNy00OTU1LTg3YWYtMGJjZmM1MzI5MzNj
LzEvOG1rZ3U5ZjdjTzlkdlBMUV9xSUN2WlYyWHJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX7J5MA0G
CSqGSIb3DQEBCwUAA4IBAQATO2AAxGpvZTg+YI0HpqDwLoWgQGm5Csuqetmjh4iP
P+z6EMBETKwdjjlAoqG89I66b+5iVqm2bOjk+IF725cSJRznU4JNFuGW65Mt6rQm
Ko2638uhOjHjzOPmXCTD9KN/raJYsO1vL51ZWvRL8G9HWB6x8+7xuEh+xeGRZO4L
NoPyA1ksV54zQNn6JqgTQUlmUk3ErBwpK90BfRmI65t07n2de/xgu3kxFMjDlJ8x
yf7ngWaM74L0PQIqMi7SfKtZf7Xf8QczLr46oe5pT6NxFaRBN8kR1PTGpzil4L/n
QwyH0UYzAERQTRiBS5DEzrMkm7sHhduEfsu0o0gePovU
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:24:26 2025 by rpki-client