Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/96d022-ee02-447c-a349-9c933ccd16c7/1/l38wLN6Gw_epossfbuxRMwnX5sY.roa
File: l38wLN6Gw_epossfbuxRMwnX5sY.roa (raw, json)
Hash identifier: EA/nu4qnZGykrdQkMaUMT/48WUqEkVXJbnvFzsWJo70=
Subject key identifier: 97:7F:30:2C:DE:86:C3:F7:A9:A2:CB:1F:6E:EC:51:33:09:D7:E6:C6
Certificate issuer: /CN=485e3ee1c3258175f4ff6d9b559da54c83ec0b4f
Certificate serial: 0194282357035F96F636C61790BBA5D4A1EE
Authority key identifier: 48:5E:3E:E1:C3:25:81:75:F4:FF:6D:9B:55:9D:A5:4C:83:EC:0B:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SF4-4cMlgXX0_22bVZ2lTIPsC08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/96d022-ee02-447c-a349-9c933ccd16c7/1/l38wLN6Gw_epossfbuxRMwnX5sY.roa
Signing time: Thu 02 Jan 2025 17:49:51 +0000
ROA not before: Thu 02 Jan 2025 17:49:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201111
IP address blocks: 91.223.186.0/24 maxlen: 24
185.253.204.0/22 maxlen: 24
193.16.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:57:03:5f:96:f6:36:c6:17:90:bb:a5:d4:a1:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=485e3ee1c3258175f4ff6d9b559da54c83ec0b4f
Validity
Not Before: Jan 2 17:49:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=977f302cde86c3f7a9a2cb1f6eec513309d7e6c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0f:8b:73:9b:a0:fd:51:f4:25:5c:e3:60:94:
98:32:ea:62:a3:a5:9a:1e:33:c5:44:af:99:17:24:
dc:5e:1e:ec:26:7b:39:74:20:be:35:1e:fe:28:ad:
2d:3e:07:4d:54:c2:1b:2f:31:6d:33:63:e2:43:b5:
2d:6d:c5:1d:6a:47:87:77:fc:ff:77:c9:3e:80:41:
ed:fb:0e:64:b2:13:c9:d9:21:d8:12:16:7f:bd:13:
a5:d0:55:34:6c:c1:22:57:ae:08:39:a3:e3:a2:49:
e8:fc:34:83:f7:29:ae:13:1e:dc:71:1d:09:8d:bb:
b8:37:5a:fd:e8:fd:bb:b4:61:77:19:c4:2e:79:d5:
44:41:4b:bf:75:e9:f5:7f:46:d0:db:23:cd:cc:34:
94:a7:b5:f4:96:02:c5:28:2e:eb:6d:dc:c1:08:ea:
61:83:61:b6:10:58:f2:68:22:1c:61:8c:88:5e:24:
5d:db:b1:b9:b0:49:a1:56:2d:8a:3d:39:a3:65:9e:
ee:ed:e6:bd:eb:df:b6:5f:66:e7:ce:8f:14:05:68:
60:17:0a:5b:96:7e:ea:c5:01:cd:5c:59:dc:aa:73:
78:1c:84:2f:98:45:ff:5a:b1:4b:93:49:6b:6a:16:
9a:09:55:87:e1:34:fe:a3:bc:b5:3d:5f:c2:fa:d9:
13:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:7F:30:2C:DE:86:C3:F7:A9:A2:CB:1F:6E:EC:51:33:09:D7:E6:C6
X509v3 Authority Key Identifier:
keyid:48:5E:3E:E1:C3:25:81:75:F4:FF:6D:9B:55:9D:A5:4C:83:EC:0B:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SF4-4cMlgXX0_22bVZ2lTIPsC08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/96d022-ee02-447c-a349-9c933ccd16c7/1/l38wLN6Gw_epossfbuxRMwnX5sY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/96d022-ee02-447c-a349-9c933ccd16c7/1/SF4-4cMlgXX0_22bVZ2lTIPsC08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.186.0/24
185.253.204.0/22
193.16.220.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:df:e5:29:c9:e8:d6:e5:59:3c:d0:3e:67:90:a7:48:9d:3e:
b7:0f:d3:e5:69:47:d2:8a:e3:3d:8d:58:7b:64:e1:05:bf:c5:
d0:19:80:ba:f9:04:dc:a4:51:4a:10:0b:d7:26:f9:30:4b:c3:
d7:47:40:36:4a:92:58:90:c3:1b:30:b4:20:11:fe:f3:d2:42:
6d:4a:1d:74:f7:ce:bb:8a:d8:60:49:54:c0:44:16:0c:1e:8d:
52:bb:24:b8:db:3e:99:47:7d:4c:81:91:82:ea:0c:fb:d5:63:
a2:3c:0c:a2:ec:e1:8a:90:e6:f9:18:06:dd:a8:e1:7c:a3:6b:
4d:1c:62:af:57:3a:00:02:39:56:48:fd:04:d1:ae:08:3f:7d:
bf:e5:f8:1f:f0:0b:27:a3:86:38:31:2c:05:49:83:99:bb:f0:
8e:d2:f5:69:e6:48:c4:51:f7:f2:75:c1:eb:51:8f:3e:e7:84:
58:d7:fb:cd:9f:0c:b6:2f:a0:ae:00:a2:8c:ed:aa:5c:8c:c0:
b4:b9:92:6f:76:dc:a1:ef:9b:f5:e4:22:1e:80:52:45:bb:28:
a5:30:a1:0d:1f:38:35:6b:b5:91:f7:87:30:b9:4e:ac:1d:ba:
1d:1b:a2:fb:f4:01:0f:0d:1d:80:6a:c9:3d:f8:03:ac:d5:c7:
35:42:45:7b
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZQoI1cDX5b2NsYXkLul1KHuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4NWUzZWUxYzMyNTgxNzVmNGZmNmQ5YjU1OWRhNTRjODNl
YzBiNGYwHhcNMjUwMTAyMTc0OTUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NzdmMzAyY2RlODZjM2Y3YTlhMmNiMWY2ZWVjNTEzMzA5ZDdlNmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Q+Lc5ug/VH0JVzjYJSYMupio6Wa
HjPFRK+ZFyTcXh7sJns5dCC+NR7+KK0tPgdNVMIbLzFtM2PiQ7UtbcUdakeHd/z/
d8k+gEHt+w5kshPJ2SHYEhZ/vROl0FU0bMEiV64IOaPjokno/DSD9ymuEx7ccR0J
jbu4N1r96P27tGF3GcQuedVEQUu/den1f0bQ2yPNzDSUp7X0lgLFKC7rbdzBCOph
g2G2EFjyaCIcYYyIXiRd27G5sEmhVi2KPTmjZZ7u7ea969+2X2bnzo8UBWhgFwpb
ln7qxQHNXFncqnN4HIQvmEX/WrFLk0lrahaaCVWH4TT+o7y1PV/C+tkTYwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFJd/MCzehsP3qaLLH27sUTMJ1+bGMB8GA1UdIwQY
MBaAFEhePuHDJYF19P9tm1WdpUyD7AtPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0Y0LTRjTWxnWFgwXzIyYlZaMmxUSVBzQzA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC85NmQwMjItZWUwMi00NDdjLWEzNDkt
OWM5MzNjY2QxNmM3LzEvbDM4d0xONkd3X2Vwb3NzZmJ1eFJNd25YNXNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC85NmQwMjItZWUwMi00NDdjLWEzNDktOWM5MzNjY2QxNmM3
LzEvU0Y0LTRjTWxnWFgwXzIyYlZaMmxUSVBzQzA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAW9+6AwQC
uf3MAwQAwRDcMA0GCSqGSIb3DQEBCwUAA4IBAQBd3+UpyejW5Vk80D5nkKdInT63
D9PlaUfSiuM9jVh7ZOEFv8XQGYC6+QTcpFFKEAvXJvkwS8PXR0A2SpJYkMMbMLQg
Ef7z0kJtSh109867ithgSVTARBYMHo1SuyS42z6ZR31MgZGC6gz71WOiPAyi7OGK
kOb5GAbdqOF8o2tNHGKvVzoAAjlWSP0E0a4IP32/5fgf8Asno4Y4MSwFSYOZu/CO
0vVp5kjEUffydcHrUY8+54RY1/vNnwy2L6CuAKKM7apcjMC0uZJvdtyh75v15CIe
gFJFuyilMKENHzg1a7WR94cwuU6sHbodG6L79AEPDR2Aask9+AOs1cc1QkV7
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:07 2025 by rpki-client on console.sobornost.net