Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/IAritswAhqNQe77s1GDg_ezpHck.roa
File: IAritswAhqNQe77s1GDg_ezpHck.roa (raw, json)
Hash identifier: ILdWDEHhnQvuxpeMgx2XCbjW7CQm2ybVgtMQih2P4NU=
Subject key identifier: 20:0A:E2:B6:CC:00:86:A3:50:7B:BE:EC:D4:60:E0:FD:EC:E9:1D:C9
Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988
Certificate serial: 01942826272C5B4CCBF4BA93C2401FB1BBE0
Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/IAritswAhqNQe77s1GDg_ezpHck.roa
Signing time: Thu 02 Jan 2025 17:52:56 +0000
ROA not before: Thu 02 Jan 2025 17:52:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205134
IP address blocks: 91.216.171.0/24 maxlen: 24
2a12:d9c0:1::/48 maxlen: 48
2a12:d9c0:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:27:2c:5b:4c:cb:f4:ba:93:c2:40:1f:b1:bb:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988
Validity
Not Before: Jan 2 17:52:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=200ae2b6cc0086a3507bbeecd460e0fdece91dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:36:6e:64:bc:b8:96:f7:2b:8e:4e:33:7c:c5:
41:4d:eb:94:3a:7e:cc:66:43:eb:a9:5a:f6:70:51:
c4:10:0e:c9:53:a6:62:fd:1d:f9:07:1a:fc:1d:5c:
37:c5:60:cb:2e:dc:95:c3:ee:14:e5:74:41:6f:c9:
56:3f:08:d4:7c:e1:13:09:0f:73:d6:30:13:c3:a8:
40:bf:1b:7d:d1:c9:25:c1:ad:fc:4a:bf:4d:81:cd:
46:73:68:59:61:1b:aa:41:13:a3:d4:f6:10:fe:77:
34:be:0a:e0:ef:75:d5:ee:45:63:d7:f4:8f:81:12:
cb:b8:df:9e:fe:33:f0:97:c3:d5:66:3f:9c:84:ec:
a4:a1:bd:51:63:33:50:cc:4c:e4:81:0d:52:5c:f6:
2c:67:f6:92:d9:28:b0:d5:13:53:46:29:61:67:3a:
0e:a7:82:c8:40:1c:ef:fe:e8:2f:1c:40:b2:6d:6a:
d0:9f:e4:f6:50:02:13:ff:b4:6b:0d:e5:fb:a6:bd:
f8:22:10:a4:b2:97:bf:4a:6a:ee:6d:76:02:4e:04:
d3:3d:ff:98:a1:70:8f:12:ce:f3:a2:8c:74:5a:8a:
3b:69:53:0f:fb:11:0e:e5:64:b0:31:3e:9b:75:7b:
bc:9d:6e:23:d1:31:fe:9c:53:db:d8:84:5b:e0:33:
e0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:0A:E2:B6:CC:00:86:A3:50:7B:BE:EC:D4:60:E0:FD:EC:E9:1D:C9
X509v3 Authority Key Identifier:
keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/IAritswAhqNQe77s1GDg_ezpHck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.171.0/24
IPv6:
2a12:d9c0:1::-2a12:d9c0:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
27:68:cd:20:f2:5e:9e:ee:4c:43:c9:12:72:cd:82:8b:1e:4a:
33:fb:94:bc:34:74:f9:ff:9b:35:9b:2a:1c:86:a1:c9:22:96:
1e:0e:44:bd:fe:29:e1:98:0a:5b:15:e1:a6:aa:9c:45:64:ab:
3a:09:2b:3f:ab:62:b2:7f:6e:33:5a:61:e2:17:49:50:03:c8:
95:e3:c9:64:ac:8a:aa:35:06:e4:b9:fa:40:79:b2:28:e1:2b:
4a:a7:68:54:b9:e2:7f:97:20:36:0a:0b:25:1e:c8:69:52:13:
e0:de:43:87:c6:36:92:95:6e:22:54:90:1e:79:57:17:f1:89:
6d:b9:ad:0f:43:e9:1f:59:90:f9:63:54:94:a4:d4:30:e0:2f:
d5:c1:03:89:44:55:dc:17:15:f1:1b:3a:24:51:36:4d:d8:dd:
e0:e5:7a:65:06:b8:fd:29:58:54:fc:b1:0e:48:8a:3f:ab:9f:
fd:e1:66:50:6f:5a:85:24:ba:d7:58:54:1b:f2:4b:63:16:a5:
aa:7f:0c:67:31:c4:c8:52:3c:f6:6c:3c:62:a6:44:47:a1:70:
fd:27:94:e4:45:4e:f0:3c:59:05:a7:3c:6d:5f:99:bf:79:dd:
3a:51:ef:e5:49:47:dc:2b:0f:3b:86:d8:d1:fa:1e:0f:13:a0:
a0:d2:f4:70
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZQoJicsW0zL9LqTwkAfsbvgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMTgzMjZlMDAxYWE3ZmM1NmY4MzUzMTMxNTM3NmY5ZWFh
ZTA5ODgwHhcNMjUwMTAyMTc1MjU2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDBhZTJiNmNjMDA4NmEzNTA3YmJlZWNkNDYwZTBmZGVjZTkxZGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDZuZLy4lvcrjk4zfMVBTeuUOn7M
ZkPrqVr2cFHEEA7JU6Zi/R35Bxr8HVw3xWDLLtyVw+4U5XRBb8lWPwjUfOETCQ9z
1jATw6hAvxt90cklwa38Sr9Ngc1Gc2hZYRuqQROj1PYQ/nc0vgrg73XV7kVj1/SP
gRLLuN+e/jPwl8PVZj+chOykob1RYzNQzEzkgQ1SXPYsZ/aS2Siw1RNTRilhZzoO
p4LIQBzv/ugvHECybWrQn+T2UAIT/7RrDeX7pr34IhCkspe/SmrubXYCTgTTPf+Y
oXCPEs7zoox0Woo7aVMP+xEO5WSwMT6bdXu8nW4j0TH+nFPb2IRb4DPgYQIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFCAK4rbMAIajUHu+7NRg4P3s6R3JMB8GA1UdIwQY
MBaAFA8YMm4AGqf8Vvg1MTFTdvnqrgmIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYt
NmI4MTM2OTNiYzhjLzEvSUFyaXRzd0FocU5RZTc3czFHRGdfZXpwSGNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYtNmI4MTM2OTNiYzhj
LzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAMBAIAATAGAwQAW9irMBoE
AgACMBQwEgMHACoS2cAAAQMHACoS2cAAAjANBgkqhkiG9w0BAQsFAAOCAQEAJ2jN
IPJenu5MQ8kScs2Cix5KM/uUvDR0+f+bNZsqHIahySKWHg5Evf4p4ZgKWxXhpqqc
RWSrOgkrP6tisn9uM1ph4hdJUAPIlePJZKyKqjUG5Ln6QHmyKOErSqdoVLnif5cg
NgoLJR7IaVIT4N5Dh8Y2kpVuIlSQHnlXF/GJbbmtD0PpH1mQ+WNUlKTUMOAv1cED
iURV3BcV8Rs6JFE2Tdjd4OV6ZQa4/SlYVPyxDkiKP6uf/eFmUG9ahSS611hUG/JL
Yxalqn8MZzHEyFI89mw8YqZER6Fw/SeU5EVO8DxZBac8bV+Zv3ndOlHv5UlH3CsP
O4bY0foeDxOgoNL0cA==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:05 2025 by rpki-client on console.sobornost.net