Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/GO1i9KaUQd9e1KsN5sJzBZLzvMc.roa
File: GO1i9KaUQd9e1KsN5sJzBZLzvMc.roa (raw, json)
Hash identifier: UNGsjCQUVlyQbGhoLaa4PzFAKisGXoC7LJXtiHCUs1k=
Subject key identifier: 18:ED:62:F4:A6:94:41:DF:5E:D4:AB:0D:E6:C2:73:05:92:F3:BC:C7
Certificate issuer: /CN=66df7742890173927935206a28efbf48123e787c
Certificate serial: 0195DD6B959ED5A04F8784F4B508D20E06B8
Authority key identifier: 66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/GO1i9KaUQd9e1KsN5sJzBZLzvMc.roa
Signing time: Fri 28 Mar 2025 15:42:50 +0000
ROA not before: Fri 28 Mar 2025 15:42:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50300
IP address blocks: 185.42.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:dd:6b:95:9e:d5:a0:4f:87:84:f4:b5:08:d2:0e:06:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66df7742890173927935206a28efbf48123e787c
Validity
Not Before: Mar 28 15:42:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=18ed62f4a69441df5ed4ab0de6c2730592f3bcc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:91:0e:81:89:2a:8a:68:88:0b:f8:11:9a:04:
4f:48:ab:92:62:ae:70:4b:36:2a:d2:5a:24:ac:6a:
64:ee:f3:34:bc:30:9b:67:91:09:17:88:72:67:67:
10:98:25:95:c2:8e:8e:d8:87:f5:f8:00:b3:d8:dd:
ed:3d:cd:4b:85:b2:30:df:f8:e8:c3:fe:42:29:f1:
5d:c2:41:92:fa:48:8c:fd:03:cb:00:cd:27:22:5f:
43:3a:cb:e9:69:d6:2a:63:24:2c:01:f4:ba:01:cd:
72:a2:79:0c:bf:e6:78:f6:cf:5d:a2:5f:bc:13:19:
a4:4c:19:07:91:bd:1a:3e:f2:2c:27:a2:15:c2:b4:
8b:57:f5:83:6c:c7:eb:ec:a9:df:8c:6a:ea:b1:cf:
6f:29:b8:f1:3a:17:a4:40:56:52:28:de:d3:d2:14:
fe:3d:54:ea:82:22:ce:78:b7:a3:b9:83:78:d3:18:
1d:c3:44:fe:0e:3b:2a:e7:3c:2c:71:17:65:a6:d7:
e9:b0:9f:35:ef:9f:bb:d1:58:40:dc:a5:2c:a5:c0:
6f:eb:d3:61:63:59:a5:d7:ca:c8:50:80:45:84:f8:
5c:e2:b9:62:3c:be:e5:43:0a:c9:59:e1:6e:f1:54:
10:97:5c:2f:7c:5e:64:e8:c0:8c:a2:82:2e:8c:be:
06:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:ED:62:F4:A6:94:41:DF:5E:D4:AB:0D:E6:C2:73:05:92:F3:BC:C7
X509v3 Authority Key Identifier:
keyid:66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/GO1i9KaUQd9e1KsN5sJzBZLzvMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/Zt93QokBc5J5NSBqKO-_SBI-eHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.65.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:bb:1d:58:1e:48:16:b3:e2:59:82:87:bf:6d:23:13:f4:03:
fc:d2:a9:f4:19:ea:c2:59:4e:f3:df:31:4b:bb:86:d8:b1:b3:
93:0d:b9:9b:d5:da:a8:73:a1:0d:4a:75:89:f7:54:17:56:3a:
69:95:c8:7f:55:19:11:c2:79:46:d3:c7:8c:88:b0:47:5f:e6:
9a:bf:74:71:f1:39:90:52:b8:0b:11:f2:50:85:74:33:1c:85:
81:8f:1f:ce:f0:7d:31:fc:c9:13:a0:6c:d2:89:48:aa:33:99:
fc:78:c5:54:1f:af:f1:83:4b:06:3c:b5:38:3c:d7:88:59:0f:
c1:cb:b3:d4:08:ac:94:6f:d8:3f:ba:9d:31:e2:0b:b1:0e:42:
68:e4:18:96:e0:a5:cc:90:b9:ca:7d:d2:79:7e:23:ed:e4:26:
02:39:e7:fb:49:63:2f:2b:a6:9f:39:3f:0f:98:a8:b8:b3:e6:
3c:a5:53:76:c5:f6:05:d8:5c:fc:85:27:50:e3:02:28:a2:8b:
71:c2:12:45:13:8a:a3:6f:43:74:8c:00:5f:91:db:55:ea:98:
e8:2e:12:df:4e:2a:97:4f:0f:c3:e7:0c:85:ed:5e:5e:24:50:
a6:a5:74:e3:5f:b0:26:ab:af:3e:30:a3:37:4f:8a:32:78:c1:
42:1f:d0:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZXda5We1aBPh4T0tQjSDga4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZGY3NzQyODkwMTczOTI3OTM1MjA2YTI4ZWZiZjQ4MTIz
ZTc4N2MwHhcNMjUwMzI4MTU0MjUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOGVkNjJmNGE2OTQ0MWRmNWVkNGFiMGRlNmMyNzMwNTkyZjNiY2M3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZEOgYkqimiIC/gRmgRPSKuSYq5w
SzYq0lokrGpk7vM0vDCbZ5EJF4hyZ2cQmCWVwo6O2If1+ACz2N3tPc1LhbIw3/jo
w/5CKfFdwkGS+kiM/QPLAM0nIl9DOsvpadYqYyQsAfS6Ac1yonkMv+Z49s9dol+8
ExmkTBkHkb0aPvIsJ6IVwrSLV/WDbMfr7KnfjGrqsc9vKbjxOhekQFZSKN7T0hT+
PVTqgiLOeLejuYN40xgdw0T+Djsq5zwscRdlptfpsJ8175+70VhA3KUspcBv69Nh
Y1ml18rIUIBFhPhc4rliPL7lQwrJWeFu8VQQl1wvfF5k6MCMooIujL4GcQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBjtYvSmlEHfXtSrDebCcwWS87zHMB8GA1UdIwQY
MBaAFGbfd0KJAXOSeTUgaijvv0gSPnh8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnQ5M1Fva0JjNUo1TlNCcUtPLV9TQkktZUh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9lODQzNDAtMTI4YS00NDk3LTk0NmYt
MDk3ODdmMTUyYWRlLzEvR08xaTlLYVVRZDllMUtzTjVzSnpCWkx6dk1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9lODQzNDAtMTI4YS00NDk3LTk0NmYtMDk3ODdmMTUyYWRl
LzEvWnQ5M1Fva0JjNUo1TlNCcUtPLV9TQkktZUh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSpBMA0G
CSqGSIb3DQEBCwUAA4IBAQALux1YHkgWs+JZgoe/bSMT9AP80qn0GerCWU7z3zFL
u4bYsbOTDbmb1dqoc6ENSnWJ91QXVjpplch/VRkRwnlG08eMiLBHX+aav3Rx8TmQ
UrgLEfJQhXQzHIWBjx/O8H0x/MkToGzSiUiqM5n8eMVUH6/xg0sGPLU4PNeIWQ/B
y7PUCKyUb9g/up0x4guxDkJo5BiW4KXMkLnKfdJ5fiPt5CYCOef7SWMvK6afOT8P
mKi4s+Y8pVN2xfYF2Fz8hSdQ4wIoootxwhJFE4qjb0N0jABfkdtV6pjoLhLfTiqX
Tw/D5wyF7V5eJFCmpXTjX7Amq68+MKM3T4oyeMFCH9Ac
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:01 2025 by rpki-client