Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/wlvSN6qng0SspfaRqRgU0QaR_is.roa
File: wlvSN6qng0SspfaRqRgU0QaR_is.roa (raw, json)
Hash identifier: dvmYB11eIHXfV35gEc7/J0+3NCXH6IER/8ZhOiLqTT4=
Subject key identifier: C2:5B:D2:37:AA:A7:83:44:AC:A5:F6:91:A9:18:14:D1:06:91:FE:2B
Certificate issuer: /CN=ef477ca3b449bbc41247e8c921e4c8dabfc1afae
Certificate serial: 0194221FE30FE033039122FA34137FF767D0
Authority key identifier: EF:47:7C:A3:B4:49:BB:C4:12:47:E8:C9:21:E4:C8:DA:BF:C1:AF:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70d8o7RJu8QSR-jJIeTI2r_Br64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/wlvSN6qng0SspfaRqRgU0QaR_is.roa
Signing time: Wed 01 Jan 2025 13:48:22 +0000
ROA not before: Wed 01 Jan 2025 13:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16245
IP address blocks: 193.17.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:e3:0f:e0:33:03:91:22:fa:34:13:7f:f7:67:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef477ca3b449bbc41247e8c921e4c8dabfc1afae
Validity
Not Before: Jan 1 13:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c25bd237aaa78344aca5f691a91814d10691fe2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2e:be:f7:a0:bf:38:3d:5f:91:5b:79:84:09:
a1:e0:e1:cd:16:9d:6b:f1:a5:d5:04:dc:39:2f:d3:
da:8c:1c:d5:d2:92:a8:a9:35:da:a3:f6:67:a3:e5:
99:29:e4:d2:c6:32:4c:76:02:5d:63:32:ef:66:6a:
89:d2:54:fa:e4:8e:0a:f9:4f:7d:bf:a1:22:1e:dc:
90:6c:cf:d3:b0:b6:dc:e2:70:fa:7a:57:7a:48:d4:
32:d1:8d:f9:5c:9d:20:6d:82:8e:04:3a:c2:c9:d0:
55:3d:f2:4d:44:4f:a4:88:5e:6e:86:ce:22:e2:e0:
c3:dc:0b:53:f3:e4:4b:79:f7:27:e6:9f:b1:6c:9d:
31:81:4c:19:c3:66:40:b6:52:c7:59:05:00:38:72:
6d:81:ad:e6:de:a1:24:d3:e8:87:c8:3a:51:dd:53:
2e:f9:1f:dd:29:51:8b:b7:ab:cb:a0:a1:e8:88:ec:
3f:fd:fe:1c:3c:5e:75:fc:0f:e9:ec:02:07:59:ea:
7b:b6:25:d4:cb:b1:c8:47:43:9c:1d:6a:ae:ec:9d:
ac:f3:89:2e:74:90:f4:7d:b4:51:34:5e:14:60:61:
65:68:12:80:0d:74:9a:01:53:0c:d0:4b:da:3c:0f:
1c:3c:d1:bd:12:5e:f4:f4:a9:6d:b6:31:cb:3c:9b:
f0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:5B:D2:37:AA:A7:83:44:AC:A5:F6:91:A9:18:14:D1:06:91:FE:2B
X509v3 Authority Key Identifier:
keyid:EF:47:7C:A3:B4:49:BB:C4:12:47:E8:C9:21:E4:C8:DA:BF:C1:AF:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70d8o7RJu8QSR-jJIeTI2r_Br64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/wlvSN6qng0SspfaRqRgU0QaR_is.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/70d8o7RJu8QSR-jJIeTI2r_Br64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.206.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:a5:de:9b:02:ba:2d:79:56:d9:57:f8:89:c4:b7:c6:4f:56:
64:aa:35:27:c2:d0:5b:89:3f:37:b4:06:04:1b:da:21:08:0a:
ec:c0:25:5a:d5:b2:c7:ff:69:6c:18:43:e1:48:33:af:35:a7:
a0:64:a0:a6:9d:da:73:9f:e2:ea:a1:46:db:70:5c:62:f3:98:
c8:e2:32:fc:1d:6c:63:18:60:0d:d7:38:24:9a:3a:3a:8a:22:
09:d7:b6:b1:f8:8c:07:d7:c4:46:c1:d8:b7:f7:4f:16:64:22:
7d:35:b3:bf:a1:c1:52:01:d2:c8:40:57:46:42:5f:78:2a:26:
8f:18:ed:22:67:31:a1:84:18:f4:86:d8:b0:4c:3d:ef:39:f3:
c4:d7:1a:1a:99:43:b0:b5:d0:4a:aa:0d:63:b8:f9:f5:c6:ec:
ec:e4:39:98:8c:57:e2:02:c6:42:32:b9:17:f5:4f:ba:45:4b:
df:88:1d:07:62:be:ad:0f:a4:77:9a:2b:51:fc:df:84:f0:3d:
c9:c0:a2:2c:a1:f3:65:69:fa:9b:5c:e4:e0:a0:3c:39:58:3c:
43:11:8d:1e:8b:00:0b:35:84:78:5d:35:09:31:a7:8e:51:24:
0d:10:f9:e6:7b:9d:5a:f0:99:47:80:f5:34:ee:2e:c7:54:d7:
1e:28:48:7a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH+MP4DMDkSL6NBN/92fQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNDc3Y2EzYjQ0OWJiYzQxMjQ3ZThjOTIxZTRjOGRhYmZj
MWFmYWUwHhcNMjUwMTAxMTM0ODIyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMjViZDIzN2FhYTc4MzQ0YWNhNWY2OTFhOTE4MTRkMTA2OTFmZTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxi6+96C/OD1fkVt5hAmh4OHNFp1r
8aXVBNw5L9PajBzV0pKoqTXao/Zno+WZKeTSxjJMdgJdYzLvZmqJ0lT65I4K+U99
v6EiHtyQbM/TsLbc4nD6eld6SNQy0Y35XJ0gbYKOBDrCydBVPfJNRE+kiF5uhs4i
4uDD3AtT8+RLefcn5p+xbJ0xgUwZw2ZAtlLHWQUAOHJtga3m3qEk0+iHyDpR3VMu
+R/dKVGLt6vLoKHoiOw//f4cPF51/A/p7AIHWep7tiXUy7HIR0OcHWqu7J2s84ku
dJD0fbRRNF4UYGFlaBKADXSaAVMM0EvaPA8cPNG9El709KlttjHLPJvwCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMJb0jeqp4NErKX2kakYFNEGkf4rMB8GA1UdIwQY
MBaAFO9HfKO0SbvEEkfoySHkyNq/wa+uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzBkOG83Ukp1OFFTUi1qSkllVEkycl9CcjY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9mMWVlYTItOTU4Mi00YTY1LWI1YmUt
NjAzYWExZjIwOWQ4LzEvd2x2U042cW5nMFNzcGZhUnFSZ1UwUWFSX2lzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9mMWVlYTItOTU4Mi00YTY1LWI1YmUtNjAzYWExZjIwOWQ4
LzEvNzBkOG83Ukp1OFFTUi1qSkllVEkycl9CcjY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRHOMA0G
CSqGSIb3DQEBCwUAA4IBAQCcpd6bAroteVbZV/iJxLfGT1ZkqjUnwtBbiT83tAYE
G9ohCArswCVa1bLH/2lsGEPhSDOvNaegZKCmndpzn+LqoUbbcFxi85jI4jL8HWxj
GGAN1zgkmjo6iiIJ17ax+IwH18RGwdi3908WZCJ9NbO/ocFSAdLIQFdGQl94KiaP
GO0iZzGhhBj0htiwTD3vOfPE1xoamUOwtdBKqg1juPn1xuzs5DmYjFfiAsZCMrkX
9U+6RUvfiB0HYr6tD6R3mitR/N+E8D3JwKIsofNlafqbXOTgoDw5WDxDEY0eiwAL
NYR4XTUJMaeOUSQNEPnme51a8JlHgPU07i7HVNceKEh6
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net