Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/RNRuwUDah5HvDqZL8fLpyHsOiSQ.roa
File: RNRuwUDah5HvDqZL8fLpyHsOiSQ.roa (raw, json)
Hash identifier: IBeeTINphPH0VAeRRmwtztVgI3ETdvS9ro285LvOBzI=
Subject key identifier: 44:D4:6E:C1:40:DA:87:91:EF:0E:A6:4B:F1:F2:E9:C8:7B:0E:89:24
Certificate issuer: /CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Certificate serial: 019422FBB03FE6C55BE08B0381F78C01A039
Authority key identifier: 86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/RNRuwUDah5HvDqZL8fLpyHsOiSQ.roa
Signing time: Wed 01 Jan 2025 17:48:27 +0000
ROA not before: Wed 01 Jan 2025 17:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211043
IP address blocks: 89.46.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:b0:3f:e6:c5:5b:e0:8b:03:81:f7:8c:01:a0:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Validity
Not Before: Jan 1 17:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=44d46ec140da8791ef0ea64bf1f2e9c87b0e8924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:71:01:ac:23:00:d2:80:aa:d0:4e:9a:b0:a3:
e2:67:1f:24:e0:20:31:37:f0:b2:1b:86:59:2d:40:
4a:79:b8:08:9d:91:84:aa:83:e5:20:4e:d7:74:aa:
ef:1a:b2:9a:ad:be:b3:f1:49:61:bb:bf:5e:63:64:
96:14:c0:e6:89:5b:7f:a3:7c:80:7c:7a:52:d9:d4:
12:06:44:ae:1d:8d:71:19:8c:70:30:1a:62:40:3a:
18:16:4b:ef:73:4f:ed:ab:fc:25:aa:19:61:8a:fb:
25:d3:fc:e3:4a:a8:12:ba:cd:ac:24:76:32:ae:f9:
24:21:aa:7e:be:5a:91:a5:0c:31:62:2e:61:77:7f:
4f:b1:3d:ed:3e:95:b4:a8:3b:ca:9b:74:cf:ee:7b:
70:38:41:97:74:82:be:09:aa:9f:27:a4:52:2f:79:
eb:d0:38:5e:5d:1c:fe:d8:5e:73:66:92:dc:86:10:
74:9e:c5:e7:61:12:73:ac:c7:3e:e5:83:9e:9a:0e:
0f:bf:99:c9:75:7d:a6:d7:94:1a:da:5e:27:f9:4b:
b4:d7:68:10:d3:3f:c8:f3:bb:c0:de:d8:7d:d9:a9:
8a:df:76:31:85:b6:14:67:fe:63:54:40:36:d9:13:
6d:a3:a3:d6:bb:7d:72:00:a5:ac:1a:15:dd:7d:ff:
ad:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D4:6E:C1:40:DA:87:91:EF:0E:A6:4B:F1:F2:E9:C8:7B:0E:89:24
X509v3 Authority Key Identifier:
keyid:86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/RNRuwUDah5HvDqZL8fLpyHsOiSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.123.0/24
Signature Algorithm: sha256WithRSAEncryption
89:09:9d:d5:f7:21:f2:63:54:59:de:73:55:e1:da:b8:86:db:
e2:a8:07:ec:4b:a5:f0:1a:b8:2e:5d:7f:2d:25:31:67:e4:fb:
94:83:95:a6:fb:1e:db:95:64:30:65:c4:a7:a9:65:5b:ce:6f:
b2:06:a9:bb:ce:10:e9:cd:2a:eb:cf:69:14:f4:14:c3:77:63:
f6:9c:51:2c:3b:a0:87:db:81:5c:68:55:32:7c:fc:2e:7c:4c:
f9:60:3a:c8:70:0f:7d:1c:e6:c5:71:d2:e3:35:0b:98:84:dd:
9f:c2:9c:69:7f:d0:8e:7e:2a:5c:1f:ad:e3:93:2a:c9:4e:f5:
0a:e4:69:8d:db:ee:38:92:a2:e9:69:44:6b:a1:eb:98:79:5f:
9b:af:21:20:43:45:21:e8:93:9a:07:21:33:5e:81:c0:79:ed:
b2:24:4e:ef:92:5e:ea:bf:f6:e9:dd:6a:4f:39:c8:ae:eb:57:
fc:54:d6:a8:f3:13:17:42:34:92:45:90:c6:c1:02:3c:3e:f2:
be:94:8e:bf:18:17:5a:4a:77:e9:87:dd:f7:23:12:50:0c:57:
3b:5e:8a:3c:76:71:2d:1f:19:80:2e:5f:e7:dd:89:55:e3:54:
f9:ca:42:06:07:47:64:4b:28:db:1b:4a:5f:d1:ff:42:f5:7b:
11:cc:3f:d7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi+7A/5sVb4IsDgfeMAaA5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YThmZjRjOWM1NjY2N2Q5OTAyNWQ3ZjAxNTkxY2JmNzdh
ZDJmMDkwHhcNMjUwMTAxMTc0ODI3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGQ0NmVjMTQwZGE4NzkxZWYwZWE2NGJmMWYyZTljODdiMGU4OTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3EBrCMA0oCq0E6asKPiZx8k4CAx
N/CyG4ZZLUBKebgInZGEqoPlIE7XdKrvGrKarb6z8Ulhu79eY2SWFMDmiVt/o3yA
fHpS2dQSBkSuHY1xGYxwMBpiQDoYFkvvc0/tq/wlqhlhivsl0/zjSqgSus2sJHYy
rvkkIap+vlqRpQwxYi5hd39PsT3tPpW0qDvKm3TP7ntwOEGXdIK+CaqfJ6RSL3nr
0DheXRz+2F5zZpLchhB0nsXnYRJzrMc+5YOemg4Pv5nJdX2m15Qa2l4n+Uu012gQ
0z/I87vA3th92amK33YxhbYUZ/5jVEA22RNto6PWu31yAKWsGhXdff+towIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFETUbsFA2oeR7w6mS/Hy6ch7DokkMB8GA1UdIwQY
MBaAFIao/0ycVmZ9mQJdfwFZHL93rS8JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHFqX1RKeFdabjJaQWwxX0FWa2N2M2V0THdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9jOTIxZTgtNmM5NC00Y2MyLWI5ZmQt
MDZhNDk5NjhjMmQzLzEvUk5SdXdVRGFoNUh2RHFaTDhmTHB5SHNPaVNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9jOTIxZTgtNmM5NC00Y2MyLWI5ZmQtMDZhNDk5NjhjMmQz
LzEvaHFqX1RKeFdabjJaQWwxX0FWa2N2M2V0THdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWS57MA0G
CSqGSIb3DQEBCwUAA4IBAQCJCZ3V9yHyY1RZ3nNV4dq4htviqAfsS6XwGrguXX8t
JTFn5PuUg5Wm+x7blWQwZcSnqWVbzm+yBqm7zhDpzSrrz2kU9BTDd2P2nFEsO6CH
24FcaFUyfPwufEz5YDrIcA99HObFcdLjNQuYhN2fwpxpf9COfipcH63jkyrJTvUK
5GmN2+44kqLpaURroeuYeV+bryEgQ0Uh6JOaByEzXoHAee2yJE7vkl7qv/bp3WpP
Ociu61f8VNao8xMXQjSSRZDGwQI8PvK+lI6/GBdaSnfph933IxJQDFc7Xoo8dnEt
HxmALl/n3YlV41T5ykIGB0dkSyjbG0pf0f9C9XsRzD/X
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:07 2025 by rpki-client on console.sobornost.net