Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/IAJBt24rgV_us-DgHGqft-brDOM.roa
File: IAJBt24rgV_us-DgHGqft-brDOM.roa (raw, json)
Hash identifier: EYG4N8j/B/VmDjgrJQXF6wEvv1LkIhmvGFmYVI9Ke7s=
Subject key identifier: 20:02:41:B7:6E:2B:81:5F:EE:B3:E0:E0:1C:6A:9F:B7:E6:EB:0C:E3
Certificate issuer: /CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Certificate serial: 0194274885C95C595ED1D27642487BA4BB46
Authority key identifier: F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/IAJBt24rgV_us-DgHGqft-brDOM.roa
Signing time: Thu 02 Jan 2025 13:50:51 +0000
ROA not before: Thu 02 Jan 2025 13:50:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57813
IP address blocks: 91.235.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:85:c9:5c:59:5e:d1:d2:76:42:48:7b:a4:bb:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Validity
Not Before: Jan 2 13:50:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=200241b76e2b815feeb3e0e01c6a9fb7e6eb0ce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0e:2d:dc:ff:74:16:70:f8:a5:da:6f:5d:b2:
ce:19:cb:9b:a6:f8:e8:44:de:3c:bf:63:3c:9e:50:
de:99:e3:85:7a:e6:b8:d0:35:a9:23:99:a1:ad:49:
54:bc:55:2c:77:ba:ef:0b:91:44:07:84:f0:3a:79:
56:a3:43:ba:ef:98:17:70:58:c8:ec:42:a9:34:e6:
b4:bc:05:19:56:c3:fc:8f:b0:f8:7f:a5:0c:5a:86:
c5:fc:87:09:0b:89:e3:dc:0b:43:8e:29:59:01:cc:
02:98:32:3b:42:d5:e3:c4:13:20:52:cc:70:ae:15:
89:ad:52:6d:cb:14:96:a0:c8:ea:9e:70:f7:9d:f6:
8c:d3:fb:16:a9:4b:76:5f:9c:81:b2:2d:84:76:a1:
eb:ef:31:c5:96:73:a2:07:23:9d:f4:25:90:69:17:
74:41:2e:74:64:cb:de:69:70:56:9b:96:01:04:08:
de:d8:dc:3a:67:e9:b8:64:8b:ba:04:23:9f:3d:34:
63:8c:c8:ea:d3:1f:30:5b:f3:5b:0b:00:c8:d4:e8:
74:46:a4:61:62:2a:d7:d1:d4:ed:0c:22:29:f9:f1:
74:5e:03:8b:8a:41:27:41:84:30:0d:72:c1:a5:c5:
c4:cd:c7:48:9c:61:04:52:45:07:b7:e5:ab:6e:c7:
9a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:02:41:B7:6E:2B:81:5F:EE:B3:E0:E0:1C:6A:9F:B7:E6:EB:0C:E3
X509v3 Authority Key Identifier:
keyid:F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/IAJBt24rgV_us-DgHGqft-brDOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.164.0/24
Signature Algorithm: sha256WithRSAEncryption
19:77:b7:30:d5:dc:c2:26:03:72:f0:1e:01:b0:37:f7:95:bd:
ae:a7:35:bb:f3:36:70:49:0a:c5:6f:02:cb:bc:35:a1:6b:bd:
a1:a7:3a:e8:6f:10:f9:e1:b1:6c:23:76:b3:93:d0:a4:e3:a2:
76:67:69:98:e6:33:e7:52:20:b6:b1:f6:4e:35:be:8f:12:53:
5d:32:5c:d1:44:d1:91:f2:f6:3c:6d:0b:13:68:65:ce:c1:5f:
8c:0b:b2:5b:91:7d:c0:cb:98:0b:09:cd:22:92:a1:fa:c4:e1:
14:2a:3e:79:72:74:81:ca:0e:ae:ea:09:32:29:76:6b:ed:3e:
b3:61:f8:9a:96:04:ab:7c:a0:af:ce:7b:6c:02:2e:49:6c:6f:
54:f2:7d:60:01:7c:94:42:cd:0c:b4:ef:b6:c5:0e:93:69:29:
b8:35:9a:c5:d1:ba:71:b9:8f:f4:c6:04:ed:93:b1:f9:42:f2:
84:68:90:2f:d8:4a:aa:7c:cd:ad:6e:ea:b5:a1:f9:1c:c1:fd:
c3:be:31:07:f0:b1:9f:c7:71:fd:b8:1b:0b:2f:1d:48:11:d1:
e8:c1:67:6f:d4:bb:f5:3c:b4:8d:5f:98:11:71:d7:32:50:91:
00:4c:d2:1b:c2:bc:db:9d:26:30:b3:ce:ba:4b:b2:25:56:ae:
1e:aa:77:7d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnSIXJXFle0dJ2Qkh7pLtGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyOGZhMWEyZTQ0OTE4OTFjMTliMGYxMGIwODZmNjU1OTg0
ZjU4NzkwHhcNMjUwMTAyMTM1MDUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDAyNDFiNzZlMmI4MTVmZWViM2UwZTAxYzZhOWZiN2U2ZWIwY2UzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQ4t3P90FnD4pdpvXbLOGcubpvjo
RN48v2M8nlDemeOFeua40DWpI5mhrUlUvFUsd7rvC5FEB4TwOnlWo0O675gXcFjI
7EKpNOa0vAUZVsP8j7D4f6UMWobF/IcJC4nj3AtDjilZAcwCmDI7QtXjxBMgUsxw
rhWJrVJtyxSWoMjqnnD3nfaM0/sWqUt2X5yBsi2EdqHr7zHFlnOiByOd9CWQaRd0
QS50ZMveaXBWm5YBBAje2Nw6Z+m4ZIu6BCOfPTRjjMjq0x8wW/NbCwDI1Oh0RqRh
YirX0dTtDCIp+fF0XgOLikEnQYQwDXLBpcXEzcdInGEEUkUHt+WrbsearQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCACQbduK4Ff7rPg4Bxqn7fm6wzjMB8GA1UdIwQY
MBaAFPKPoaLkSRiRwZsPELCG9lWYT1h5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOG8taG91UkpHSkhCbXc4UXNJYjJWWmhQV0hrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84YmJmYWMtMDc4MC00YmJkLWJjYTIt
MzRhMTRhMmJiNDAxLzEvSUFKQnQyNHJnVl91cy1EZ0hHcWZ0LWJyRE9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC84YmJmYWMtMDc4MC00YmJkLWJjYTItMzRhMTRhMmJiNDAx
LzEvOG8taG91UkpHSkhCbXc4UXNJYjJWWmhQV0hrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+ukMA0G
CSqGSIb3DQEBCwUAA4IBAQAZd7cw1dzCJgNy8B4BsDf3lb2upzW78zZwSQrFbwLL
vDWha72hpzrobxD54bFsI3azk9Ck46J2Z2mY5jPnUiC2sfZONb6PElNdMlzRRNGR
8vY8bQsTaGXOwV+MC7JbkX3Ay5gLCc0ikqH6xOEUKj55cnSByg6u6gkyKXZr7T6z
YfialgSrfKCvzntsAi5JbG9U8n1gAXyUQs0MtO+2xQ6TaSm4NZrF0bpxuY/0xgTt
k7H5QvKEaJAv2EqqfM2tbuq1ofkcwf3DvjEH8LGfx3H9uBsLLx1IEdHowWdv1Lv1
PLSNX5gRcdcyUJEATNIbwrzbnSYws866S7IlVq4eqnd9
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:16 2025 by rpki-client on console.sobornost.net