Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/1-Ww6_zY-cf4_pNxKQtK1P8fP1C0.roa
File: 1-Ww6_zY-cf4_pNxKQtK1P8fP1C0.roa (raw, json)
Hash identifier: 0TcdfQeJAJLEnkaZYWVb8FupumHFnMsYWXGkxyczS0s=
Subject key identifier: F9:6C:3A:FF:36:3E:71:FE:3F:A4:DC:4A:42:D2:B5:3F:C7:CF:D4:2D
Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Certificate serial: 01942445529440B70555A6DD8B1FCCD998D5
Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/1-Ww6_zY-cf4_pNxKQtK1P8fP1C0.roa
Signing time: Wed 01 Jan 2025 23:48:30 +0000
ROA not before: Wed 01 Jan 2025 23:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197889
IP address blocks: 89.107.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:52:94:40:b7:05:55:a6:dd:8b:1f:cc:d9:98:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Validity
Not Before: Jan 1 23:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f96c3aff363e71fe3fa4dc4a42d2b53fc7cfd42d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bf:d0:12:d8:ed:de:a1:07:50:18:ce:43:62:
b1:8c:35:d5:40:09:19:94:2b:57:fd:b4:d4:c3:fe:
4a:e9:e6:ec:6e:c4:25:b9:1b:e8:37:41:d4:8b:b8:
e4:90:51:90:cd:d7:17:45:e5:ea:17:7b:de:45:3d:
9d:b3:b6:fc:fc:17:59:28:ff:d0:19:9f:8d:c8:fa:
a0:c3:51:7c:7a:1a:3f:08:4e:d5:34:95:e3:80:44:
44:a5:d6:74:7d:ba:0d:99:1b:27:64:2f:93:da:50:
d9:2f:b4:77:f2:77:e6:25:2f:b4:76:2f:67:7e:2c:
41:2d:cb:65:0c:1e:c4:5b:40:02:8b:bb:d5:5a:f9:
a5:53:9c:5c:08:26:9e:63:d7:fd:1b:c4:50:25:5d:
e4:f8:10:7b:8c:ef:f8:3f:2c:18:68:10:89:f0:99:
f7:5c:cc:a5:e7:83:76:ae:66:ad:d0:43:c7:87:77:
c1:6e:fc:bc:06:4c:6b:bd:ca:1e:15:a1:94:ed:4f:
b8:d2:1d:23:8c:11:6d:f0:38:a9:d0:8e:f9:d8:b7:
90:56:69:a5:90:84:59:5f:b5:e8:ff:fb:86:dd:b0:
9b:21:fd:ef:78:ee:ea:98:ab:b4:d3:79:f4:67:99:
d3:f6:00:ce:87:32:6c:66:42:8f:95:08:6b:ef:9e:
01:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6C:3A:FF:36:3E:71:FE:3F:A4:DC:4A:42:D2:B5:3F:C7:CF:D4:2D
X509v3 Authority Key Identifier:
keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/1-Ww6_zY-cf4_pNxKQtK1P8fP1C0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.254.0/24
Signature Algorithm: sha256WithRSAEncryption
58:54:5c:6b:90:4e:00:40:b3:c3:f3:02:37:ce:c4:4e:82:62:
14:1d:1c:5c:35:48:60:f8:76:df:1a:fd:f8:c3:7c:f7:6c:32:
ce:28:bd:8f:d6:84:0d:4e:c7:f2:c4:21:7c:05:27:3d:25:b8:
f8:43:f7:c7:7c:9a:64:46:4d:cf:3f:62:15:45:57:3b:3f:ce:
6d:45:33:e8:e3:a1:4f:fc:bb:2f:8c:a8:4b:6f:c2:cc:88:74:
a1:e6:9f:a7:b4:cc:23:da:dd:e7:4c:b1:e0:6b:60:13:16:c3:
d9:28:ce:ca:38:28:64:d9:89:fd:81:f9:2e:94:a9:17:d6:25:
a8:1e:27:e1:12:7f:e3:4c:ae:01:3f:7a:9f:f7:d7:8e:be:e6:
37:2f:c1:fa:ab:24:42:74:93:cf:11:c8:c4:1f:5c:93:11:d1:
d5:79:10:2f:5e:55:cd:c2:fa:87:53:27:4f:43:96:69:9d:08:
1a:ed:79:f7:98:bf:fe:dc:e6:72:55:a1:4c:d1:90:32:89:ea:
a0:30:93:bd:df:17:c4:78:68:07:c2:2f:cb:72:91:b5:df:2c:
af:a3:ae:85:4b:b5:29:3d:e8:a2:63:e1:f9:04:21:27:48:26:
9d:18:1e:a2:16:fe:fa:ec:b1:52:a3:30:a2:72:42:5a:43:8b:
0c:08:4a:96
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQkRVKUQLcFVabdix/M2ZjVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5YjM1MGEwYWUzMmU3M2U2NjBjNDE2YzNmMTQwNmVkZDM2
MTVmODIwHhcNMjUwMTAxMjM0ODMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTZjM2FmZjM2M2U3MWZlM2ZhNGRjNGE0MmQyYjUzZmM3Y2ZkNDJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyr/QEtjt3qEHUBjOQ2KxjDXVQAkZ
lCtX/bTUw/5K6ebsbsQluRvoN0HUi7jkkFGQzdcXReXqF3veRT2ds7b8/BdZKP/Q
GZ+NyPqgw1F8eho/CE7VNJXjgEREpdZ0fboNmRsnZC+T2lDZL7R38nfmJS+0di9n
fixBLctlDB7EW0ACi7vVWvmlU5xcCCaeY9f9G8RQJV3k+BB7jO/4PywYaBCJ8Jn3
XMyl54N2rmat0EPHh3fBbvy8BkxrvcoeFaGU7U+40h0jjBFt8Dip0I752LeQVmml
kIRZX7Xo//uG3bCbIf3veO7qmKu003n0Z5nT9gDOhzJsZkKPlQhr754BiwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPlsOv82PnH+P6TcSkLStT/Hz9QtMB8GA1UdIwQY
MBaAFLmzUKCuMuc+ZgxBbD8UBu3TYV+CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2Et
ZWY3M2I3YjRjYTNjLzEvMS1XdzZfelktY2Y0X3BOeEtRdEsxUDhmUDFDMC5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMDEvNjI3ZTYwLTAwYTYtNGQyNi1iOTNhLWVmNzNiN2I0Y2Ez
Yy8xL3ViTlFvSzR5NXo1bURFRnNQeFFHN2ROaFg0SS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFlr/jAN
BgkqhkiG9w0BAQsFAAOCAQEAWFRca5BOAECzw/MCN87EToJiFB0cXDVIYPh23xr9
+MN892wyzii9j9aEDU7H8sQhfAUnPSW4+EP3x3yaZEZNzz9iFUVXOz/ObUUz6OOh
T/y7L4yoS2/CzIh0oeafp7TMI9rd50yx4GtgExbD2SjOyjgoZNmJ/YH5LpSpF9Yl
qB4n4RJ/40yuAT96n/fXjr7mNy/B+qskQnSTzxHIxB9ckxHR1XkQL15VzcL6h1Mn
T0OWaZ0IGu1595i//tzmclWhTNGQMonqoDCTvd8XxHhoB8Ivy3KRtd8sr6OuhUu1
KT3oomPh+QQhJ0gmnRgeohb++uyxUqMwonJCWkOLDAhKlg==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:34 2025 by rpki-client on console.sobornost.net