Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e699a3-4d37-491a-b463-ef36a321749a/1/qIYoMaIBxhsDucsV1ytWElhCrUU.roa
File: qIYoMaIBxhsDucsV1ytWElhCrUU.roa (raw, json)
Hash identifier: wscs1/Fo7Y2EmyPhNq8nCoErS8b/16ZZnxp9kJLP6n4=
Subject key identifier: A8:86:28:31:A2:01:C6:1B:03:B9:CB:15:D7:2B:56:12:58:42:AD:45
Certificate issuer: /CN=0d55fa2a62837db9afe4423e4c119e9499b21b43
Certificate serial: 0193B1C781AF00C2FBF5EA3EF0AC98D15887
Authority key identifier: 0D:55:FA:2A:62:83:7D:B9:AF:E4:42:3E:4C:11:9E:94:99:B2:1B:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DVX6KmKDfbmv5EI-TBGelJmyG0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e699a3-4d37-491a-b463-ef36a321749a/1/qIYoMaIBxhsDucsV1ytWElhCrUU.roa
Signing time: Tue 10 Dec 2024 18:14:22 +0000
ROA not before: Tue 10 Dec 2024 18:14:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215564
IP address blocks: 94.199.3.0/24 maxlen: 24
2a13:b040::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b1:c7:81:af:00:c2:fb:f5:ea:3e:f0:ac:98:d1:58:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d55fa2a62837db9afe4423e4c119e9499b21b43
Validity
Not Before: Dec 10 18:14:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8862831a201c61b03b9cb15d72b56125842ad45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:25:11:85:47:20:11:31:3f:04:aa:06:65:68:
73:5b:60:e3:b3:1f:b3:49:d0:9a:69:36:b5:1f:75:
0e:57:40:fb:e4:e3:a3:66:90:47:a5:67:60:86:f3:
b2:2b:81:27:3e:49:4e:f6:91:84:b3:23:47:03:f9:
60:40:4d:cd:db:4b:7e:18:39:2b:39:22:d0:24:72:
9f:3f:3e:36:a1:28:c3:49:49:6e:23:f8:0f:bf:48:
a6:a0:8a:83:b8:0f:b0:fb:9c:b6:16:5d:fc:81:42:
1e:5d:4b:e2:24:f8:df:14:18:79:78:93:2a:31:48:
6a:fe:75:a1:c1:aa:02:4d:be:a8:32:0e:6d:d7:48:
27:43:63:63:93:ca:0f:70:71:41:42:6f:69:bc:de:
e5:bc:48:8c:ca:d4:1d:03:de:36:78:2e:bc:44:e0:
94:f5:4f:a8:7f:e2:c4:ad:a2:69:26:25:c2:7b:d3:
c8:13:2c:29:8b:1f:4c:bd:77:eb:98:67:02:81:99:
f0:8c:86:4d:68:27:7a:be:47:0a:74:ed:22:8f:b4:
35:81:2e:5a:47:9e:ad:83:75:f1:6d:a7:56:f1:89:
e0:72:18:0b:9c:26:bf:bf:20:55:ca:84:12:f7:a3:
4e:96:53:de:0c:20:b3:da:82:a7:cf:49:2f:58:09:
68:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:86:28:31:A2:01:C6:1B:03:B9:CB:15:D7:2B:56:12:58:42:AD:45
X509v3 Authority Key Identifier:
keyid:0D:55:FA:2A:62:83:7D:B9:AF:E4:42:3E:4C:11:9E:94:99:B2:1B:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DVX6KmKDfbmv5EI-TBGelJmyG0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e699a3-4d37-491a-b463-ef36a321749a/1/qIYoMaIBxhsDucsV1ytWElhCrUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e699a3-4d37-491a-b463-ef36a321749a/1/DVX6KmKDfbmv5EI-TBGelJmyG0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.199.3.0/24
IPv6:
2a13:b040::/29
Signature Algorithm: sha256WithRSAEncryption
6f:db:af:a1:8f:14:5c:46:c2:1d:1d:70:10:2c:40:60:d0:c8:
dd:a2:0e:0a:41:9f:d4:83:48:fc:2b:5b:07:b0:a0:c7:7e:c7:
d5:92:6e:d2:b1:ed:7e:e9:e6:11:b1:1c:4c:41:21:d6:c7:2d:
cf:4a:ae:c8:e4:c4:b8:ff:a7:cf:b5:97:c4:f2:01:1a:66:50:
05:76:4f:32:17:62:29:8b:51:8e:5a:c5:50:bb:f9:f9:b2:67:
38:ec:16:72:ce:73:dd:53:78:25:b0:53:da:c8:97:5e:6c:ce:
96:87:52:91:3f:88:0a:33:fb:ad:b2:4f:01:b0:34:b5:f2:0f:
d5:c3:77:57:05:69:d6:23:8a:e9:84:24:b9:1a:45:aa:fa:01:
ce:46:40:39:ba:55:18:3b:41:94:cb:42:de:7f:6b:62:3b:db:
ee:35:63:bc:57:7d:ff:45:e4:76:1d:4d:75:1b:89:97:ea:ea:
f1:f8:1f:e8:ac:fc:6b:14:70:43:43:b0:1a:14:98:8a:e9:1c:
0b:ee:bd:23:4d:9b:14:a7:49:a6:c6:a7:e1:8d:b5:90:4a:65:
fd:4e:38:ef:d1:03:98:08:58:44:d0:80:a6:d4:5e:3a:1c:ab:
1d:26:37:df:ac:99:ec:aa:fb:50:16:e7:66:a1:5f:dd:94:8b:
07:11:fa:c2
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZOxx4GvAML79eo+8KyY0ViHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNTVmYTJhNjI4MzdkYjlhZmU0NDIzZTRjMTE5ZTk0OTli
MjFiNDMwHhcNMjQxMjEwMTgxNDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODg2MjgzMWEyMDFjNjFiMDNiOWNiMTVkNzJiNTYxMjU4NDJhZDQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAriURhUcgETE/BKoGZWhzW2Djsx+z
SdCaaTa1H3UOV0D75OOjZpBHpWdghvOyK4EnPklO9pGEsyNHA/lgQE3N20t+GDkr
OSLQJHKfPz42oSjDSUluI/gPv0imoIqDuA+w+5y2Fl38gUIeXUviJPjfFBh5eJMq
MUhq/nWhwaoCTb6oMg5t10gnQ2Njk8oPcHFBQm9pvN7lvEiMytQdA942eC68ROCU
9U+of+LEraJpJiXCe9PIEywpix9MvXfrmGcCgZnwjIZNaCd6vkcKdO0ij7Q1gS5a
R56tg3XxbadW8YngchgLnCa/vyBVyoQS96NOllPeDCCz2oKnz0kvWAlo3wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFKiGKDGiAcYbA7nLFdcrVhJYQq1FMB8GA1UdIwQY
MBaAFA1V+ipig325r+RCPkwRnpSZshtDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFZYNkttS0RmYm12NUVJLVRCR2VsSm15RzBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNjk5YTMtNGQzNy00OTFhLWI0NjMt
ZWYzNmEzMjE3NDlhLzEvcUlZb01hSUJ4aHNEdWNzVjF5dFdFbGhDclVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9lNjk5YTMtNGQzNy00OTFhLWI0NjMtZWYzNmEzMjE3NDlh
LzEvRFZYNkttS0RmYm12NUVJLVRCR2VsSm15RzBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAXscDMA0E
AgACMAcDBQMqE7BAMA0GCSqGSIb3DQEBCwUAA4IBAQBv26+hjxRcRsIdHXAQLEBg
0Mjdog4KQZ/Ug0j8K1sHsKDHfsfVkm7Sse1+6eYRsRxMQSHWxy3PSq7I5MS4/6fP
tZfE8gEaZlAFdk8yF2Ipi1GOWsVQu/n5smc47BZyznPdU3glsFPayJdebM6Wh1KR
P4gKM/utsk8BsDS18g/Vw3dXBWnWI4rphCS5GkWq+gHORkA5ulUYO0GUy0Lef2ti
O9vuNWO8V33/ReR2HU11G4mX6urx+B/orPxrFHBDQ7AaFJiK6RwL7r0jTZsUp0mm
xqfhjbWQSmX9Tjjv0QOYCFhE0ICm1F46HKsdJjffrJnsqvtQFudmoV/dlIsHEfrC
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:47 2024 by rpki-client on console.sobornost.net