Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/Z-cp5scZ_xvNIUZeRB4Ye0bxt18.roa
File: Z-cp5scZ_xvNIUZeRB4Ye0bxt18.roa (raw, json)
Hash identifier: fkKEq/y3wp6uHfZFC9TATY+QhP60CMuegdpjt9kghCg=
Subject key identifier: 67:E7:29:E6:C7:19:FF:1B:CD:21:46:5E:44:1E:18:7B:46:F1:B7:5F
Certificate issuer: /CN=de01c443831cf930b7478708d76a3cf44d89a162
Certificate serial: 0192B2AEDC90D53F8BBE1DDD601C9A4E4E8C
Authority key identifier: DE:01:C4:43:83:1C:F9:30:B7:47:87:08:D7:6A:3C:F4:4D:89:A1:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gHEQ4Mc-TC3R4cI12o89E2JoWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/Z-cp5scZ_xvNIUZeRB4Ye0bxt18.roa
Signing time: Tue 22 Oct 2024 05:24:17 +0000
ROA not before: Tue 22 Oct 2024 05:24:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202391
IP address blocks: 185.42.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b2:ae:dc:90:d5:3f:8b:be:1d:dd:60:1c:9a:4e:4e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de01c443831cf930b7478708d76a3cf44d89a162
Validity
Not Before: Oct 22 05:24:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67e729e6c719ff1bcd21465e441e187b46f1b75f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e4:ab:24:af:51:f8:7f:0b:26:35:09:d8:9f:
35:ba:87:5c:88:bc:ec:42:02:65:69:6c:2e:a8:49:
5b:81:2c:c1:65:6d:79:78:5c:38:2d:23:71:66:0e:
d9:3e:3b:0e:16:15:98:d5:a1:ff:f6:d5:75:f9:4b:
20:21:fa:a0:1a:7c:d0:fd:f4:d8:df:c6:58:1f:e6:
d7:01:fa:dd:a5:b6:2e:19:fb:65:cc:0f:7a:0c:f6:
62:26:4e:28:fe:e8:75:bd:b6:c9:f2:84:b0:3e:2d:
a8:61:ab:49:3c:03:81:02:b0:7d:4f:8d:e8:38:71:
53:a0:43:34:23:ad:88:ec:56:b7:ad:fe:82:05:7a:
12:da:9d:87:23:e9:9e:45:71:c3:f8:c3:40:08:16:
86:26:35:5d:0c:c0:96:01:4a:93:bb:f2:67:2b:f2:
cd:52:27:78:51:48:a4:d1:cc:1e:7b:db:55:5c:f8:
59:52:b6:6a:ff:9c:fb:b3:fa:16:88:ad:45:21:e9:
30:ba:99:56:b6:da:35:56:d0:12:ce:1a:86:b5:65:
73:96:4e:6c:9b:6c:92:ab:de:ee:59:cf:22:58:f8:
47:20:44:4b:ae:74:83:56:75:89:0c:3e:04:49:85:
fc:40:94:c9:73:c7:92:43:ad:50:d1:68:49:42:38:
12:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E7:29:E6:C7:19:FF:1B:CD:21:46:5E:44:1E:18:7B:46:F1:B7:5F
X509v3 Authority Key Identifier:
keyid:DE:01:C4:43:83:1C:F9:30:B7:47:87:08:D7:6A:3C:F4:4D:89:A1:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gHEQ4Mc-TC3R4cI12o89E2JoWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/Z-cp5scZ_xvNIUZeRB4Ye0bxt18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/1cb8ca-5993-4d17-a61e-ee7328adcc7c/1/3gHEQ4Mc-TC3R4cI12o89E2JoWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.24.0/24
Signature Algorithm: sha256WithRSAEncryption
06:d9:1e:84:76:a2:4b:7b:af:72:72:81:5e:09:97:ae:10:f2:
24:c6:ca:46:e8:15:6c:aa:a6:8a:38:ba:64:5d:33:24:79:3b:
03:4e:d7:9b:27:9c:66:f2:02:eb:36:99:57:16:0d:61:45:2f:
eb:43:71:5e:dc:a7:9d:b6:26:e2:9b:ff:8c:4b:11:ce:b7:50:
9d:12:f9:9e:fe:66:cf:b8:c2:b3:ab:2b:27:43:53:bc:f4:74:
82:2a:57:cb:48:1e:19:ae:32:13:21:ee:a1:dc:47:53:4b:c1:
9b:d1:b3:dd:a8:db:3e:f8:02:c7:76:9f:b3:77:a6:4e:62:3a:
cd:69:5d:07:da:62:16:79:85:7d:3b:56:63:42:ba:da:18:3a:
db:54:eb:c1:19:d8:15:0c:ee:1c:b1:e5:1d:1c:03:c9:8e:ac:
c0:50:e8:16:94:0c:78:f2:6f:24:05:03:0e:01:85:29:3a:c6:
56:31:a9:80:bd:fa:fd:ba:43:1f:c2:0c:04:4c:95:b3:bd:9f:
0c:cf:a3:04:9f:e0:9a:ba:6a:d9:d0:94:aa:a3:f5:db:eb:bb:
11:51:50:a8:fe:2c:67:3a:9e:d4:82:c8:50:1a:f2:49:31:b5:
f5:e1:4b:c2:b4:c3:ac:a5:1b:87:20:50:77:50:db:68:a7:cd:
9e:2a:ba:f6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZKyrtyQ1T+Lvh3dYByaTk6MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMDFjNDQzODMxY2Y5MzBiNzQ3ODcwOGQ3NmEzY2Y0NGQ4
OWExNjIwHhcNMjQxMDIyMDUyNDE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2N2U3MjllNmM3MTlmZjFiY2QyMTQ2NWU0NDFlMTg3YjQ2ZjFiNzVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+SrJK9R+H8LJjUJ2J81uodciLzs
QgJlaWwuqElbgSzBZW15eFw4LSNxZg7ZPjsOFhWY1aH/9tV1+UsgIfqgGnzQ/fTY
38ZYH+bXAfrdpbYuGftlzA96DPZiJk4o/uh1vbbJ8oSwPi2oYatJPAOBArB9T43o
OHFToEM0I62I7Fa3rf6CBXoS2p2HI+meRXHD+MNACBaGJjVdDMCWAUqTu/JnK/LN
Uid4UUik0cwee9tVXPhZUrZq/5z7s/oWiK1FIekwuplWtto1VtASzhqGtWVzlk5s
m2ySq97uWc8iWPhHIERLrnSDVnWJDD4ESYX8QJTJc8eSQ61Q0WhJQjgSRQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGfnKebHGf8bzSFGXkQeGHtG8bdfMB8GA1UdIwQY
MBaAFN4BxEODHPkwt0eHCNdqPPRNiaFiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2dIRVE0TWMtVEMzUjRjSTEybzg5RTJKb1dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8xY2I4Y2EtNTk5My00ZDE3LWE2MWUt
ZWU3MzI4YWRjYzdjLzEvWi1jcDVzY1pfeHZOSVVaZVJCNFllMGJ4dDE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy8xY2I4Y2EtNTk5My00ZDE3LWE2MWUtZWU3MzI4YWRjYzdj
LzEvM2dIRVE0TWMtVEMzUjRjSTEybzg5RTJKb1dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSoYMA0G
CSqGSIb3DQEBCwUAA4IBAQAG2R6EdqJLe69ycoFeCZeuEPIkxspG6BVsqqaKOLpk
XTMkeTsDTtebJ5xm8gLrNplXFg1hRS/rQ3Fe3Kedtibim/+MSxHOt1CdEvme/mbP
uMKzqysnQ1O89HSCKlfLSB4ZrjITIe6h3EdTS8Gb0bPdqNs++ALHdp+zd6ZOYjrN
aV0H2mIWeYV9O1ZjQrraGDrbVOvBGdgVDO4cseUdHAPJjqzAUOgWlAx48m8kBQMO
AYUpOsZWMamAvfr9ukMfwgwETJWzvZ8Mz6MEn+CaumrZ0JSqo/Xb67sRUVCo/ixn
Op7UgshQGvJJMbX14UvCtMOspRuHIFB3UNtop82eKrr2
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:12 2025 by rpki-client