Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/hBtuYA8NQ04R8tq6jZPsM1-BvhU.roa
File: hBtuYA8NQ04R8tq6jZPsM1-BvhU.roa (raw, json)
Hash identifier: K70nTdo1e1FCrO48Dr3FeEO2IPCXhYeBeZlKIyFXxPc=
Subject key identifier: 84:1B:6E:60:0F:0D:43:4E:11:F2:DA:BA:8D:93:EC:33:5F:81:BE:15
Certificate issuer: /CN=8986e25683302c38270d0f90c4aad1519393d545
Certificate serial: 01941F8C0468A1E5552E07F30E53869640B5
Authority key identifier: 89:86:E2:56:83:30:2C:38:27:0D:0F:90:C4:AA:D1:51:93:93:D5:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYbiVoMwLDgnDQ-QxKrRUZOT1UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/hBtuYA8NQ04R8tq6jZPsM1-BvhU.roa
Signing time: Wed 01 Jan 2025 01:47:37 +0000
ROA not before: Wed 01 Jan 2025 01:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48854
IP address blocks: 91.239.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:04:68:a1:e5:55:2e:07:f3:0e:53:86:96:40:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8986e25683302c38270d0f90c4aad1519393d545
Validity
Not Before: Jan 1 01:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=841b6e600f0d434e11f2daba8d93ec335f81be15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b9:f8:b0:69:e2:c5:22:e4:51:ef:31:57:9e:
6f:50:e0:66:40:ff:fa:c1:37:f8:48:49:bf:2e:e8:
47:3b:79:7b:57:eb:5a:ab:87:35:2d:8f:5a:9c:70:
34:0e:e9:97:61:e6:f4:2a:25:4f:9e:40:07:9e:b1:
17:dd:d3:d1:60:ff:fa:54:c5:16:49:4e:1e:c6:37:
e7:32:aa:f0:95:2c:c5:bf:3f:bf:0b:78:b4:f3:46:
5f:7f:5a:55:5b:29:a5:f3:e6:29:09:55:08:57:ca:
b2:dc:f2:88:58:0a:94:98:a5:f5:7c:6e:59:d4:a3:
d6:1d:d5:9a:20:01:19:c5:5d:f7:81:64:39:c5:e7:
94:a6:12:47:9d:a4:aa:4c:a3:5e:d0:01:28:92:b4:
70:c7:9d:ff:f8:56:35:81:ae:92:27:e0:8d:b8:3d:
0d:70:ad:a3:a1:ed:c0:1a:0d:a5:aa:b7:69:f8:05:
a0:bb:97:e8:91:13:ee:21:50:0e:61:28:27:3f:4e:
04:1c:0a:55:16:2b:2e:84:39:0b:65:73:a7:1d:73:
3d:59:67:0d:ce:5e:da:0f:42:8b:1a:81:ba:fb:4b:
a4:32:fb:1b:94:9a:f0:8c:c1:e1:26:8f:d3:24:82:
2f:e0:e6:5d:49:01:a0:56:97:90:9e:fe:a6:e8:58:
bd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1B:6E:60:0F:0D:43:4E:11:F2:DA:BA:8D:93:EC:33:5F:81:BE:15
X509v3 Authority Key Identifier:
keyid:89:86:E2:56:83:30:2C:38:27:0D:0F:90:C4:AA:D1:51:93:93:D5:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYbiVoMwLDgnDQ-QxKrRUZOT1UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/hBtuYA8NQ04R8tq6jZPsM1-BvhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/iYbiVoMwLDgnDQ-QxKrRUZOT1UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.122.0/24
Signature Algorithm: sha256WithRSAEncryption
24:15:79:a3:ba:43:d0:92:92:9f:c1:23:d7:d7:13:06:44:94:
45:af:9c:82:2e:1a:c9:7d:d9:14:a7:24:0c:22:2f:56:3d:98:
7d:08:c6:82:a2:20:5c:a9:5b:d6:03:03:68:a2:d5:c9:fe:02:
f9:43:46:2d:0a:8b:95:e9:5a:41:78:05:72:3c:46:bb:96:2c:
2c:da:43:fc:37:ee:e7:39:b0:1e:a7:5f:a4:04:df:ba:72:0e:
f2:2c:e4:e9:68:c6:48:38:ed:e3:40:23:e5:f4:04:15:68:f1:
11:8a:6d:74:07:65:9b:cc:7a:21:e3:24:c2:e7:21:2f:f3:42:
cb:ad:7f:8c:e2:a5:c4:a3:7f:8f:5e:80:db:b2:95:43:a3:58:
2f:ff:1f:68:6f:d6:1f:08:7e:d1:ba:56:33:dc:b7:ab:29:e5:
4c:84:8d:8a:70:ae:31:4e:c9:8a:94:29:11:f8:6d:65:bd:71:
0b:d9:e1:c3:13:39:c2:f7:c2:29:dc:a7:98:66:36:db:0f:84:
22:ac:2c:37:64:62:f2:46:7c:1f:ed:fe:a9:19:75:be:5d:cd:
20:33:51:68:c3:70:35:06:2a:6c:9a:07:f6:db:04:d9:ca:9f:
78:2e:32:82:a0:f4:dc:39:2c:9a:16:29:a4:8b:ee:35:9a:80:
19:ca:df:07
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQfjARooeVVLgfzDlOGlkC1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5ODZlMjU2ODMzMDJjMzgyNzBkMGY5MGM0YWFkMTUxOTM5
M2Q1NDUwHhcNMjUwMTAxMDE0NzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDFiNmU2MDBmMGQ0MzRlMTFmMmRhYmE4ZDkzZWMzMzVmODFiZTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rn4sGnixSLkUe8xV55vUOBmQP/6
wTf4SEm/LuhHO3l7V+taq4c1LY9anHA0DumXYeb0KiVPnkAHnrEX3dPRYP/6VMUW
SU4exjfnMqrwlSzFvz+/C3i080Zff1pVWyml8+YpCVUIV8qy3PKIWAqUmKX1fG5Z
1KPWHdWaIAEZxV33gWQ5xeeUphJHnaSqTKNe0AEokrRwx53/+FY1ga6SJ+CNuD0N
cK2joe3AGg2lqrdp+AWgu5fokRPuIVAOYSgnP04EHApVFisuhDkLZXOnHXM9WWcN
zl7aD0KLGoG6+0ukMvsblJrwjMHhJo/TJIIv4OZdSQGgVpeQnv6m6Fi99QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIQbbmAPDUNOEfLauo2T7DNfgb4VMB8GA1UdIwQY
MBaAFImG4laDMCw4Jw0PkMSq0VGTk9VFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVliaVZvTXdMRGduRFEtUXhLclJVWk9UMVVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9kY2Y1NTktYWZiNC00NmI5LWIyZDUt
OTM3ZGNmZjUxZTJkLzEvaEJ0dVlBOE5RMDRSOHRxNmpaUHNNMS1CdmhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9kY2Y1NTktYWZiNC00NmI5LWIyZDUtOTM3ZGNmZjUxZTJk
LzEvaVliaVZvTXdMRGduRFEtUXhLclJVWk9UMVVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+96MA0G
CSqGSIb3DQEBCwUAA4IBAQAkFXmjukPQkpKfwSPX1xMGRJRFr5yCLhrJfdkUpyQM
Ii9WPZh9CMaCoiBcqVvWAwNootXJ/gL5Q0YtCouV6VpBeAVyPEa7liws2kP8N+7n
ObAep1+kBN+6cg7yLOTpaMZIOO3jQCPl9AQVaPERim10B2WbzHoh4yTC5yEv80LL
rX+M4qXEo3+PXoDbspVDo1gv/x9ob9YfCH7RulYz3LerKeVMhI2KcK4xTsmKlCkR
+G1lvXEL2eHDEznC98Ip3KeYZjbbD4QirCw3ZGLyRnwf7f6pGXW+Xc0gM1Fow3A1
Bipsmgf22wTZyp94LjKCoPTcOSyaFimki+41moAZyt8H
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:04 2025 by rpki-client on console.sobornost.net