Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/CTcGHij5WXpoYx_vUkxFGXHNRHY.roa
File: CTcGHij5WXpoYx_vUkxFGXHNRHY.roa (raw, json)
Hash identifier: 4xqs2/Bph6nYExdqo4hHLWpcUs4POb+OH9rTMyQPacY=
Subject key identifier: 09:37:06:1E:28:F9:59:7A:68:63:1F:EF:52:4C:45:19:71:CD:44:76
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0194258EFB097A197FC5D362B4FFD5154034
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/CTcGHij5WXpoYx_vUkxFGXHNRHY.roa
Signing time: Thu 02 Jan 2025 05:48:34 +0000
ROA not before: Thu 02 Jan 2025 05:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42049
IP address blocks: 85.187.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:fb:09:7a:19:7f:c5:d3:62:b4:ff:d5:15:40:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 05:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0937061e28f9597a68631fef524c451971cd4476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d2:ea:26:32:00:de:3a:74:25:77:a9:18:bd:
90:bd:c6:61:2c:6b:c0:c5:3e:71:65:75:c8:63:49:
86:8f:78:42:86:c2:23:67:25:c3:47:a5:e9:c7:27:
4a:27:c2:bd:dd:94:f2:f4:c7:98:cf:6b:69:4e:55:
1f:a9:2f:84:1f:da:c2:6c:d4:27:a0:4a:6d:ff:10:
a0:75:b0:b8:bd:aa:4a:72:b1:8f:9e:3f:76:a5:ee:
c6:a7:42:c8:a5:f2:17:93:9a:49:05:1f:a3:30:93:
68:e0:3e:e2:e7:4d:a2:a9:4c:98:d6:dd:1a:8e:78:
57:2a:27:56:08:a0:df:a1:a0:ce:f7:76:ef:8f:4b:
84:1e:dd:5b:1b:c7:95:03:e7:71:e8:86:4a:f0:ab:
16:4f:a8:a7:94:37:f0:a6:fb:54:b2:9c:e7:9e:84:
49:58:f7:8f:df:ab:b1:34:b3:bc:4d:99:4c:50:45:
f4:27:e3:f2:2f:c4:d4:42:53:e8:f1:d8:7b:fb:57:
73:3a:ee:71:b8:14:b0:6e:da:53:ea:27:6b:ad:f4:
ed:68:ba:53:1c:56:6e:6f:b9:07:4d:28:3f:19:8f:
64:55:87:ab:c4:8d:96:50:12:94:58:ec:53:83:38:
71:ca:5a:30:0b:6c:7a:37:6b:9e:4c:d8:d5:8a:e8:
68:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:37:06:1E:28:F9:59:7A:68:63:1F:EF:52:4C:45:19:71:CD:44:76
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/CTcGHij5WXpoYx_vUkxFGXHNRHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.41.0/24
Signature Algorithm: sha256WithRSAEncryption
39:9c:25:81:d8:78:a6:84:9d:7a:e0:98:25:47:3e:d9:21:ef:
b0:9b:1c:f8:bd:a9:f6:39:1e:19:0f:7a:89:ba:c0:de:43:34:
3a:07:17:0f:f9:e0:27:ac:d0:67:00:0f:a0:68:4c:7a:a5:3f:
1a:49:cd:28:ed:88:e3:00:ed:7c:5f:21:d9:dd:13:98:49:60:
77:4c:2c:db:2f:92:ea:74:e3:47:28:00:64:cb:ea:9a:68:01:
c4:91:23:6c:33:45:ce:e5:1e:77:6b:06:47:57:37:44:bc:ba:
59:b9:3d:1f:bf:b8:29:56:03:05:53:83:ce:4b:23:56:86:2f:
b3:8d:e2:65:1e:a5:60:7f:df:f6:f3:9d:36:a0:f4:bb:2e:0b:
48:26:6c:3c:d2:5c:02:be:96:09:e3:4b:83:05:cc:74:48:7e:
c1:1f:22:f7:73:c2:61:50:d2:19:43:97:e1:cf:41:73:b3:4f:
5e:de:a5:a9:c2:a4:6d:1e:54:29:a1:50:6b:67:24:fb:23:4e:
30:8a:74:56:cf:dd:9d:06:93:8f:33:92:07:b1:19:e6:cf:24:
d0:43:e3:26:b6:80:2f:f7:e6:1b:17:81:46:6f:0c:72:07:d1:
21:5c:b4:74:28:65:49:e1:bb:e8:67:c5:7e:52:b7:fa:ef:a4:
f6:d3:b9:7a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQljvsJehl/xdNitP/VFUA0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlYmYzMDIwMWYxMmEwNDBkMzg2ZDJiNGVlZDQ0ODQ2MjNl
NGQxMWIwHhcNMjUwMTAyMDU0ODM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOTM3MDYxZTI4Zjk1OTdhNjg2MzFmZWY1MjRjNDUxOTcxY2Q0NDc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudLqJjIA3jp0JXepGL2QvcZhLGvA
xT5xZXXIY0mGj3hChsIjZyXDR6XpxydKJ8K93ZTy9MeYz2tpTlUfqS+EH9rCbNQn
oEpt/xCgdbC4vapKcrGPnj92pe7Gp0LIpfIXk5pJBR+jMJNo4D7i502iqUyY1t0a
jnhXKidWCKDfoaDO93bvj0uEHt1bG8eVA+dx6IZK8KsWT6inlDfwpvtUspznnoRJ
WPeP36uxNLO8TZlMUEX0J+PyL8TUQlPo8dh7+1dzOu5xuBSwbtpT6idrrfTtaLpT
HFZub7kHTSg/GY9kVYerxI2WUBKUWOxTgzhxylowC2x6N2ueTNjViuho2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAk3Bh4o+Vl6aGMf71JMRRlxzUR2MB8GA1UdIwQY
MBaAFP6/MCAfEqBA04bStO7USEYj5NEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUt
YTk3YzBkYzBhNzQ5LzEvQ1RjR0hpajVXWHBvWXhfdlVreEZHWEhOUkhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUtYTk3YzBkYzBhNzQ5
LzEvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVbspMA0G
CSqGSIb3DQEBCwUAA4IBAQA5nCWB2HimhJ164JglRz7ZIe+wmxz4van2OR4ZD3qJ
usDeQzQ6BxcP+eAnrNBnAA+gaEx6pT8aSc0o7YjjAO18XyHZ3ROYSWB3TCzbL5Lq
dONHKABky+qaaAHEkSNsM0XO5R53awZHVzdEvLpZuT0fv7gpVgMFU4POSyNWhi+z
jeJlHqVgf9/28502oPS7LgtIJmw80lwCvpYJ40uDBcx0SH7BHyL3c8JhUNIZQ5fh
z0Fzs09e3qWpwqRtHlQpoVBrZyT7I04winRWz92dBpOPM5IHsRnmzyTQQ+MmtoAv
9+YbF4FGbwxyB9EhXLR0KGVJ4bvoZ8V+Urf676T207l6
-----END CERTIFICATE-----
Generated at Sun Apr 6 07:07:40 2025 by rpki-client