Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/43nEsdL0fNvwzM9tRo8Drasto1g.roa
File: 43nEsdL0fNvwzM9tRo8Drasto1g.roa (raw, json)
Hash identifier: k90Mpdh2ptJ54bvNNRQ79iiOhMEOxxpgYl8eZyloehk=
Subject key identifier: E3:79:C4:B1:D2:F4:7C:DB:F0:CC:CF:6D:46:8F:03:AD:AB:2D:A3:58
Certificate issuer: /CN=de01c443831cf930b7478708d76a3cf44d89a162
Certificate serial: 041B1D34
Authority key identifier: DE:01:C4:43:83:1C:F9:30:B7:47:87:08:D7:6A:3C:F4:4D:89:A1:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gHEQ4Mc-TC3R4cI12o89E2JoWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/43nEsdL0fNvwzM9tRo8Drasto1g.roa
Signing time: Fri 25 Feb 2022 20:09:42 +0000
ROA not before: Fri 25 Feb 2022 20:09:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202391
IP address blocks: 185.42.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68885812 (0x41b1d34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de01c443831cf930b7478708d76a3cf44d89a162
Validity
Not Before: Feb 25 20:09:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e379c4b1d2f47cdbf0cccf6d468f03adab2da358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:13:e2:16:c1:54:90:f6:b5:1f:19:68:ec:
82:5a:0d:11:4d:c3:a7:49:b1:3b:13:e0:f1:2c:32:
1e:b8:47:b9:cf:f9:15:dc:d7:a9:5c:3a:ee:2a:5d:
d4:0e:8f:c8:4a:04:a2:6f:ab:91:18:37:e2:6d:23:
9b:97:90:d2:a5:fb:19:9c:9e:36:30:9b:8e:bc:f1:
74:ac:be:b9:77:3c:28:04:e2:25:83:8b:6a:55:9a:
a0:b5:14:26:f8:9a:94:c9:75:c1:39:c8:13:5a:b8:
ee:0b:32:31:a0:dc:39:40:5e:64:8c:3d:23:b0:98:
5f:30:ef:c7:23:b2:f5:4c:3e:b3:85:ac:71:32:00:
bc:e4:3a:3d:3b:1e:f4:3b:a1:a1:a8:70:5b:91:1f:
b1:1e:35:7a:0b:45:48:1b:fb:1e:52:f1:56:60:72:
bd:b6:8d:ee:e4:4b:06:c3:55:16:0c:78:c1:60:f0:
aa:60:e5:99:fd:5b:e1:6d:9e:d7:d4:58:33:4f:a6:
d3:51:6a:a8:35:ae:99:12:c3:52:15:99:6c:85:11:
40:02:1d:d4:ad:89:87:04:75:ce:62:35:d5:9a:83:
71:3f:de:a3:ad:fc:9f:20:df:eb:c1:c7:ba:37:78:
6d:c4:1b:cc:00:aa:6e:81:22:73:b9:01:df:2d:0c:
bd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:79:C4:B1:D2:F4:7C:DB:F0:CC:CF:6D:46:8F:03:AD:AB:2D:A3:58
X509v3 Authority Key Identifier:
keyid:DE:01:C4:43:83:1C:F9:30:B7:47:87:08:D7:6A:3C:F4:4D:89:A1:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gHEQ4Mc-TC3R4cI12o89E2JoWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/43nEsdL0fNvwzM9tRo8Drasto1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/3gHEQ4Mc-TC3R4cI12o89E2JoWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.24.0/24
Signature Algorithm: sha256WithRSAEncryption
39:a4:e7:38:00:a0:76:46:65:ca:18:17:14:b7:c6:6b:34:30:
58:a9:c6:f1:01:76:6f:69:f8:45:68:4c:d4:48:0e:e5:72:44:
53:e7:aa:dd:85:7b:f4:c3:1e:4e:b4:01:37:29:50:2e:c6:c4:
73:bf:3c:4d:83:16:f6:7c:b9:32:4a:92:4b:83:ae:8c:1e:0c:
e3:84:e2:11:5d:59:e3:5e:24:84:8a:4a:3b:78:04:cd:7f:ea:
63:e5:31:55:c3:a2:b2:73:7f:8d:4c:1b:f1:3b:52:73:53:8d:
46:93:cc:0e:31:42:9e:7a:96:eb:ea:c1:0e:3c:d4:0d:2f:1f:
89:3a:be:4f:ac:b6:1d:83:bb:11:c6:5e:5e:64:78:f4:df:9b:
9d:cb:50:0e:b0:ff:9b:91:61:3a:fa:b9:db:95:9f:4f:29:8a:
1b:db:53:ae:3d:6c:91:d0:2f:ae:09:56:63:29:01:8a:17:1b:
d0:d3:68:d1:7b:ea:48:45:3e:92:d7:f5:05:ae:0d:fb:8f:df:
e7:14:c1:32:c2:dd:f2:22:1a:b7:2a:25:03:4f:07:d1:0b:81:
14:0a:91:e7:b6:f8:3b:95:4b:51:fc:c5:d6:4d:f1:77:4b:96:
7d:a7:80:cf:a2:06:84:c8:d9:ac:1e:77:92:5a:30:84:ee:32:
22:d9:66:6c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBBsdNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZTAxYzQ0MzgzMWNmOTMwYjc0Nzg3MDhkNzZhM2NmNDRkODlhMTYyMB4XDTIyMDIy
NTIwMDk0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTM3OWM0YjFkMmY0
N2NkYmYwY2NjZjZkNDY4ZjAzYWRhYjJkYTM1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALDAE+IWwVSQ9rUfGWjsgloNEU3Dp0mxOxPg8SwyHrhHuc/5
FdzXqVw67ipd1A6PyEoEom+rkRg34m0jm5eQ0qX7GZyeNjCbjrzxdKy+uXc8KATi
JYOLalWaoLUUJvialMl1wTnIE1q47gsyMaDcOUBeZIw9I7CYXzDvxyOy9Uw+s4Ws
cTIAvOQ6PTse9DuhoahwW5EfsR41egtFSBv7HlLxVmByvbaN7uRLBsNVFgx4wWDw
qmDlmf1b4W2e19RYM0+m01FqqDWumRLDUhWZbIURQAId1K2JhwR1zmI11ZqDcT/e
o638nyDf68HHujd4bcQbzACqboEic7kB3y0MvRMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTjecSx0vR82/DMz21GjwOtqy2jWDAfBgNVHSMEGDAWgBTeAcRDgxz5MLdH
hwjXajz0TYmhYjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNnSEVRNE1jLVRDM1I0Y0kxMm84OUUySm9XSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2MvMWNiOGNhLTU5OTMtNGQxNy1hNjFlLWVlNzMyOGFkY2M3Yy8x
LzQzbkVzZEwwZk52d3pNOXRSbzhEcmFzdG8xZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Mv
MWNiOGNhLTU5OTMtNGQxNy1hNjFlLWVlNzMyOGFkY2M3Yy8xLzNnSEVRNE1jLVRD
M1I0Y0kxMm84OUUySm9XSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkqGDANBgkqhkiG9w0BAQsFAAOC
AQEAOaTnOACgdkZlyhgXFLfGazQwWKnG8QF2b2n4RWhM1EgO5XJEU+eq3YV79MMe
TrQBNylQLsbEc788TYMW9ny5MkqSS4OujB4M44TiEV1Z414khIpKO3gEzX/qY+Ux
VcOisnN/jUwb8TtSc1ONRpPMDjFCnnqW6+rBDjzUDS8fiTq+T6y2HYO7EcZeXmR4
9N+bnctQDrD/m5FhOvq525WfTymKG9tTrj1skdAvrglWYykBihcb0NNo0XvqSEU+
ktf1Ba4N+4/f5xTBMsLd8iIatyolA08H0QuBFAqR57b4O5VLUfzF1k3xd0uWfaeA
z6IGhMjZrB53klowhO4yItlmbA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:26 2025 by rpki-client