Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1a3d5c-e49a-4d4d-a70d-b6d427a3b106/1/Tvj7HjEiRrCgMMPxGwgWjA1EsGE.roa
File: Tvj7HjEiRrCgMMPxGwgWjA1EsGE.roa (raw, json)
Hash identifier: SFnnLw7sZu+NglXWkRaD4g9gIHfvKEGMA7xoDzD3Zf4=
Subject key identifier: 4E:F8:FB:1E:31:22:46:B0:A0:30:C3:F1:1B:08:16:8C:0D:44:B0:61
Certificate issuer: /CN=68395fb8f4524b8a6f945bbfa938b8f61694052f
Certificate serial: 0776E5C9
Authority key identifier: 68:39:5F:B8:F4:52:4B:8A:6F:94:5B:BF:A9:38:B8:F6:16:94:05:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDlfuPRSS4pvlFu_qTi49haUBS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1a3d5c-e49a-4d4d-a70d-b6d427a3b106/1/Tvj7HjEiRrCgMMPxGwgWjA1EsGE.roa
Signing time: Tue 31 May 2022 10:27:57 +0000
ROA not before: Tue 31 May 2022 10:27:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197706
IP address blocks: 81.21.232.0/24 maxlen: 24
91.217.73.0/24 maxlen: 24
81.21.235.0/24 maxlen: 24
91.217.72.0/24 maxlen: 24
91.217.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125232585 (0x776e5c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68395fb8f4524b8a6f945bbfa938b8f61694052f
Validity
Not Before: May 31 10:27:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ef8fb1e312246b0a030c3f11b08168c0d44b061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:8b:be:3d:fa:53:0d:c5:45:f6:77:29:aa:c8:
ad:aa:f3:c2:f1:e7:17:25:be:3b:8c:6d:50:6b:d5:
61:2c:4b:84:56:af:6a:35:a8:65:77:e5:fb:33:de:
05:1a:0c:04:14:1f:a9:cc:22:5a:64:b1:61:e2:64:
9d:8f:cc:00:e8:75:21:61:b6:8f:6c:15:e0:a0:7f:
ee:25:93:ef:11:1e:62:b5:62:4b:f4:09:61:34:51:
56:09:db:2e:f8:bb:8e:40:52:d0:59:7b:14:c3:78:
db:6a:f1:7d:7f:59:a7:cd:ea:1f:1a:14:d6:a9:41:
63:53:1b:fa:ef:80:48:1e:e8:90:0f:09:23:da:79:
53:b5:e2:b0:29:a5:a3:09:1d:22:6f:ba:16:25:fa:
28:34:93:2d:62:60:cc:08:61:37:86:7a:a4:84:da:
65:62:f0:01:02:65:d6:a0:40:52:2e:05:ad:cc:c7:
3b:7d:a0:fb:50:91:fa:24:78:bf:e6:cd:38:16:51:
79:b9:20:45:03:b5:73:e4:6b:49:9d:ec:81:d4:56:
bb:08:51:77:0e:4a:7e:c0:70:f8:81:8a:c7:99:9c:
67:29:36:c1:c9:12:15:5f:78:23:0a:b8:e4:69:91:
b7:d1:e4:59:10:69:29:b8:68:fa:4b:f3:ad:bd:db:
fa:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F8:FB:1E:31:22:46:B0:A0:30:C3:F1:1B:08:16:8C:0D:44:B0:61
X509v3 Authority Key Identifier:
keyid:68:39:5F:B8:F4:52:4B:8A:6F:94:5B:BF:A9:38:B8:F6:16:94:05:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDlfuPRSS4pvlFu_qTi49haUBS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1a3d5c-e49a-4d4d-a70d-b6d427a3b106/1/Tvj7HjEiRrCgMMPxGwgWjA1EsGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1a3d5c-e49a-4d4d-a70d-b6d427a3b106/1/aDlfuPRSS4pvlFu_qTi49haUBS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.232.0/24
81.21.235.0/24
91.217.7.0/24
91.217.72.0/23
Signature Algorithm: sha256WithRSAEncryption
82:97:6e:87:69:c7:c0:d8:08:87:dc:14:46:1d:2f:7e:ca:df:
91:4b:d0:93:63:b9:22:04:ee:15:f8:d2:9d:95:45:e6:04:e9:
d8:9b:2a:ea:ae:96:c9:b8:fb:26:40:6f:21:89:fb:72:3e:b0:
5f:17:50:c1:33:6c:d4:f8:69:e0:c3:d5:84:ac:64:c9:ef:a6:
e7:ab:d0:cb:bd:95:a5:e1:44:35:87:60:3e:d8:5d:b9:c3:6e:
c4:6c:e3:d9:85:90:d6:b9:41:ba:4c:63:5c:a4:bc:ca:6f:7c:
f0:65:05:c4:23:14:16:22:7e:b5:8f:c4:b9:5c:6a:e8:c3:83:
c4:4e:6c:3f:da:af:a7:53:ed:4c:80:82:69:35:ce:0b:ea:f9:
f0:fd:28:3b:11:30:65:0a:7c:0f:9c:c0:1e:f5:36:db:46:94:
e1:b3:c9:af:05:3c:1d:62:d2:22:0b:0a:50:52:29:ed:8d:56:
b0:12:93:86:89:8b:85:36:35:4b:f9:60:f4:c8:0e:93:f0:13:
f9:0a:64:a4:ff:5d:1a:db:ee:c5:fc:a1:1f:f3:b3:73:d9:fc:
06:25:62:cc:9e:40:40:86:94:a6:55:2f:b4:e0:5f:9a:8c:6a:
12:f5:d1:37:2b:03:44:1b:41:62:4e:d1:4f:b1:26:19:82:db:
42:1f:ca:24
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEB3blyTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ODM5NWZiOGY0NTI0YjhhNmY5NDViYmZhOTM4YjhmNjE2OTQwNTJmMB4XDTIyMDUz
MTEwMjc1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGVmOGZiMWUzMTIy
NDZiMGEwMzBjM2YxMWIwODE2OGMwZDQ0YjA2MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOKLvj36Uw3FRfZ3KarIrarzwvHnFyW+O4xtUGvVYSxLhFav
ajWoZXfl+zPeBRoMBBQfqcwiWmSxYeJknY/MAOh1IWG2j2wV4KB/7iWT7xEeYrVi
S/QJYTRRVgnbLvi7jkBS0Fl7FMN422rxfX9Zp83qHxoU1qlBY1Mb+u+ASB7okA8J
I9p5U7XisCmlowkdIm+6FiX6KDSTLWJgzAhhN4Z6pITaZWLwAQJl1qBAUi4FrczH
O32g+1CR+iR4v+bNOBZRebkgRQO1c+RrSZ3sgdRWuwhRdw5KfsBw+IGKx5mcZyk2
wckSFV94Iwq45GmRt9HkWRBpKbho+kvzrb3b+s8CAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBRO+PseMSJGsKAww/EbCBaMDUSwYTAfBgNVHSMEGDAWgBRoOV+49FJLim+U
W7+pOLj2FpQFLzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FEbGZ1UFJTUzRwdmxGdV9xVGk0OWhhVUJTOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvMWEzZDVjLWU0OWEtNGQ0ZC1hNzBkLWI2ZDQyN2EzYjEwNi8x
L1R2ajdIakVpUnJDZ01NUHhHd2dXakExRXNHRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
MWEzZDVjLWU0OWEtNGQ0ZC1hNzBkLWI2ZDQyN2EzYjEwNi8xL2FEbGZ1UFJTUzRw
dmxGdV9xVGk0OWhhVUJTOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAFEV6AMEAFEV6wMEAFvZBwMEAVvZ
SDANBgkqhkiG9w0BAQsFAAOCAQEAgpduh2nHwNgIh9wURh0vfsrfkUvQk2O5IgTu
FfjSnZVF5gTp2Jsq6q6Wybj7JkBvIYn7cj6wXxdQwTNs1Php4MPVhKxkye+m56vQ
y72VpeFENYdgPthducNuxGzj2YWQ1rlBukxjXKS8ym988GUFxCMUFiJ+tY/EuVxq
6MODxE5sP9qvp1PtTICCaTXOC+r58P0oOxEwZQp8D5zAHvU220aU4bPJrwU8HWLS
IgsKUFIp7Y1WsBKThomLhTY1S/lg9MgOk/AT+QpkpP9dGtvuxfyhH/Ozc9n8BiVi
zJ5AQIaUplUvtOBfmoxqEvXRNysDRBtBYk7RT7EmGYLbQh/KJA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net