Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/27nlRHwxg0E9Q8sg08KsIM7uurM.roa
File: 27nlRHwxg0E9Q8sg08KsIM7uurM.roa (raw, json)
Hash identifier: S/euVGTNqJg3LcazblgCESHTj7tHb3XsTieuaVZKJ7c=
Subject key identifier: DB:B9:E5:44:7C:31:83:41:3D:43:CB:20:D3:C2:AC:20:CE:EE:BA:B3
Certificate issuer: /CN=dc90e0aee1ecc31066cb744f8a7feedefb3f7930
Certificate serial: 0194E0EBD924A5F1DCC0BC387801EC20907A
Authority key identifier: DC:90:E0:AE:E1:EC:C3:10:66:CB:74:4F:8A:7F:EE:DE:FB:3F:79:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/27nlRHwxg0E9Q8sg08KsIM7uurM.roa
Signing time: Fri 07 Feb 2025 14:59:00 +0000
ROA not before: Fri 07 Feb 2025 14:59:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21159
IP address blocks: 89.105.216.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e0:eb:d9:24:a5:f1:dc:c0:bc:38:78:01:ec:20:90:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc90e0aee1ecc31066cb744f8a7feedefb3f7930
Validity
Not Before: Feb 7 14:59:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dbb9e5447c3183413d43cb20d3c2ac20ceeebab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bd:be:4b:8f:66:53:b1:a3:18:d5:5f:d0:89:
b8:57:ed:80:bd:1f:f6:75:e1:2a:64:18:6e:da:ae:
ff:25:5a:e5:2a:97:1d:f3:30:f1:6b:c5:72:3c:09:
9f:b8:bc:57:a3:88:0a:81:2e:82:e1:2c:f9:64:e8:
28:64:41:36:f4:10:8f:40:ba:2a:59:0c:bc:ac:86:
16:d7:9e:86:e6:39:eb:38:1c:69:64:47:d9:71:91:
ca:cc:c6:57:d8:39:b7:2e:74:dd:48:6f:39:ac:0d:
d6:e9:9d:a4:07:8e:41:5f:e0:3b:60:f7:fd:a3:aa:
cb:1f:1d:05:fa:79:a4:e6:57:4f:7d:f4:d2:54:a7:
5f:e8:8e:ea:de:51:9f:8a:9b:e2:71:16:44:2d:fd:
57:ce:1c:06:1e:c4:e7:07:c0:e5:db:64:e8:c2:4a:
43:e1:de:7e:b8:74:56:41:09:2b:a5:ef:3d:1c:e5:
c1:80:19:6b:1f:ee:fd:2a:d4:da:00:00:ef:3e:3d:
21:57:1d:d4:9a:3e:f5:ff:c0:0a:56:24:d2:8f:fb:
36:41:4c:b9:95:71:b0:bd:a0:4d:f2:69:9f:7b:08:
98:6e:f6:6a:40:c4:9d:29:c7:d4:c5:ac:cb:92:b9:
a5:57:39:9f:d6:df:86:55:f5:ca:85:3e:b7:e6:f8:
24:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B9:E5:44:7C:31:83:41:3D:43:CB:20:D3:C2:AC:20:CE:EE:BA:B3
X509v3 Authority Key Identifier:
keyid:DC:90:E0:AE:E1:EC:C3:10:66:CB:74:4F:8A:7F:EE:DE:FB:3F:79:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/27nlRHwxg0E9Q8sg08KsIM7uurM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/3JDgruHswxBmy3RPin_u3vs_eTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.105.216.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:21:51:e0:c2:b3:66:a6:1c:22:cf:0f:68:ca:ae:fe:3a:61:
f4:94:1c:04:59:88:ef:f4:f7:5a:45:b1:92:fb:4d:40:03:6f:
22:0c:1f:3a:3b:50:ba:2a:ee:30:ed:14:8c:ad:4a:b1:78:1b:
c8:8e:5b:78:0c:ab:37:cc:95:67:e5:27:7e:ba:eb:aa:cb:2d:
c9:e3:2d:14:62:59:a0:68:5b:a4:5a:a7:48:cd:9c:97:25:17:
db:da:b2:2d:9d:f6:ce:7a:6b:5e:2c:ef:77:1a:26:8e:27:57:
ed:af:a7:ac:f1:be:88:e4:c7:35:a1:07:00:a8:ba:f3:53:4f:
e1:48:37:1d:31:06:6b:36:4f:35:8c:f6:06:2b:e1:34:ee:1d:
5f:dd:13:7f:22:56:59:98:f0:ea:6a:6e:cd:12:55:8c:0e:21:
e1:bb:52:5d:6c:8d:6d:33:a7:d2:68:ae:d0:c8:a3:33:1a:7d:
b5:97:aa:16:b8:cd:62:ec:d6:3c:97:f4:25:42:84:a4:cc:93:
7a:86:b8:c2:0f:86:05:6c:34:13:78:38:82:fd:dd:8b:9d:87:
38:f8:ab:19:c8:78:71:1d:3d:bc:c2:5f:81:7a:f7:46:1c:0f:
c2:c7:1c:7d:74:09:a3:ef:76:62:4c:e9:8e:b2:75:41:7c:4d:
a7:9c:59:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZTg69kkpfHcwLw4eAHsIJB6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjOTBlMGFlZTFlY2MzMTA2NmNiNzQ0ZjhhN2ZlZWRlZmIz
Zjc5MzAwHhcNMjUwMjA3MTQ1OTAwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYmI5ZTU0NDdjMzE4MzQxM2Q0M2NiMjBkM2MyYWMyMGNlZWViYWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2L2+S49mU7GjGNVf0Im4V+2AvR/2
deEqZBhu2q7/JVrlKpcd8zDxa8VyPAmfuLxXo4gKgS6C4Sz5ZOgoZEE29BCPQLoq
WQy8rIYW156G5jnrOBxpZEfZcZHKzMZX2Dm3LnTdSG85rA3W6Z2kB45BX+A7YPf9
o6rLHx0F+nmk5ldPffTSVKdf6I7q3lGfipvicRZELf1XzhwGHsTnB8Dl22TowkpD
4d5+uHRWQQkrpe89HOXBgBlrH+79KtTaAADvPj0hVx3Umj71/8AKViTSj/s2QUy5
lXGwvaBN8mmfewiYbvZqQMSdKcfUxazLkrmlVzmf1t+GVfXKhT635vgkTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNu55UR8MYNBPUPLINPCrCDO7rqzMB8GA1UdIwQY
MBaAFNyQ4K7h7MMQZst0T4p/7t77P3kwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0pEZ3J1SHN3eEJteTNSUGluX3UzdnNfZVRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi84N2IyNjctNDljMi00MjY5LTlmNjYt
MDBiY2Q5YjkxYzFiLzEvMjdubFJId3hnMEU5UThzZzA4S3NJTTd1dXJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi84N2IyNjctNDljMi00MjY5LTlmNjYtMDBiY2Q5YjkxYzFi
LzEvM0pEZ3J1SHN3eEJteTNSUGluX3UzdnNfZVRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBWWnYMA0G
CSqGSIb3DQEBCwUAA4IBAQA9IVHgwrNmphwizw9oyq7+OmH0lBwEWYjv9PdaRbGS
+01AA28iDB86O1C6Ku4w7RSMrUqxeBvIjlt4DKs3zJVn5Sd+uuuqyy3J4y0UYlmg
aFukWqdIzZyXJRfb2rItnfbOemteLO93GiaOJ1ftr6es8b6I5Mc1oQcAqLrzU0/h
SDcdMQZrNk81jPYGK+E07h1f3RN/IlZZmPDqam7NElWMDiHhu1JdbI1tM6fSaK7Q
yKMzGn21l6oWuM1i7NY8l/QlQoSkzJN6hrjCD4YFbDQTeDiC/d2LnYc4+KsZyHhx
HT28wl+BevdGHA/Cxxx9dAmj73ZiTOmOsnVBfE2nnFn7
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:06 2025 by rpki-client on console.sobornost.net