Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/88a383-030c-4545-9e9c-4ebeec7e8275/1/0I9cdEj3e4monIOvSXft4r0-CMo.roa
File: 0I9cdEj3e4monIOvSXft4r0-CMo.roa (raw, json)
Hash identifier: oHyUkagcGp7ShA4v0QeuNwiId+006yb988EUZglB85E=
Subject key identifier: D0:8F:5C:74:48:F7:7B:89:A8:9C:83:AF:49:77:ED:E2:BD:3E:08:CA
Certificate issuer: /CN=f2a959dc16715c8a54c8094267b8e491fe321d2c
Certificate serial: 01941F8C7DC072F65CE66DACCE9E628BAB63
Authority key identifier: F2:A9:59:DC:16:71:5C:8A:54:C8:09:42:67:B8:E4:91:FE:32:1D:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8qlZ3BZxXIpUyAlCZ7jkkf4yHSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/88a383-030c-4545-9e9c-4ebeec7e8275/1/0I9cdEj3e4monIOvSXft4r0-CMo.roa
Signing time: Wed 01 Jan 2025 01:48:08 +0000
ROA not before: Wed 01 Jan 2025 01:48:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197615
IP address blocks: 91.223.167.0/24 maxlen: 24
91.224.180.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:7d:c0:72:f6:5c:e6:6d:ac:ce:9e:62:8b:ab:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2a959dc16715c8a54c8094267b8e491fe321d2c
Validity
Not Before: Jan 1 01:48:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d08f5c7448f77b89a89c83af4977ede2bd3e08ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8a:4d:a8:44:32:ac:11:15:1e:2d:19:08:4b:
de:1a:80:56:bd:28:ab:c2:d7:e9:80:a4:48:d8:e0:
1d:84:e4:bd:99:9b:dd:ee:73:98:5e:85:33:c9:3e:
ee:3a:fc:9f:6e:9a:b8:96:7c:46:d2:ef:d6:0f:89:
97:da:72:ff:bc:48:4d:72:a7:30:ef:4a:69:41:77:
ec:18:55:94:2e:f4:3e:a7:d7:03:0f:45:dd:ae:42:
20:cb:af:ad:51:ad:97:37:1f:f5:3f:09:4f:61:db:
79:cc:65:63:d6:79:63:bb:30:c5:20:76:48:c8:0d:
1d:40:c6:86:c4:98:b7:b0:dd:9a:76:97:af:b0:ea:
0f:8d:63:30:de:10:ba:f9:27:1e:ae:c6:55:6d:24:
94:7f:92:14:13:56:dc:85:fa:23:74:6d:08:d2:23:
47:d3:f6:69:ce:ea:b4:f7:7a:89:ea:40:d8:ba:04:
46:5c:2f:30:31:45:e1:ad:03:41:46:1e:42:56:92:
f6:07:1e:60:71:d7:98:f7:59:c0:a3:f4:db:21:89:
34:2d:02:dd:ba:0e:91:03:a3:40:aa:d5:90:8b:4d:
6a:8d:6b:31:b9:f1:d8:23:99:b5:79:d6:0d:1f:c5:
f5:63:51:26:06:1a:07:e1:04:c9:9e:9b:be:6d:b3:
1e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8F:5C:74:48:F7:7B:89:A8:9C:83:AF:49:77:ED:E2:BD:3E:08:CA
X509v3 Authority Key Identifier:
keyid:F2:A9:59:DC:16:71:5C:8A:54:C8:09:42:67:B8:E4:91:FE:32:1D:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8qlZ3BZxXIpUyAlCZ7jkkf4yHSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/88a383-030c-4545-9e9c-4ebeec7e8275/1/0I9cdEj3e4monIOvSXft4r0-CMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/88a383-030c-4545-9e9c-4ebeec7e8275/1/8qlZ3BZxXIpUyAlCZ7jkkf4yHSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.167.0/24
91.224.180.0/23
Signature Algorithm: sha256WithRSAEncryption
89:61:74:44:b9:33:e0:cd:eb:f5:36:39:d5:b1:b7:7a:b1:42:
4d:66:e7:59:c1:54:e5:c9:7f:d5:e7:c9:7f:cf:bf:22:dc:6f:
80:c9:27:ea:3e:58:e7:9e:1e:b5:57:b1:86:63:e6:8d:ee:e3:
32:03:75:05:3d:1e:a6:50:64:79:a1:f7:fc:5f:96:ef:f3:68:
a7:95:1c:11:a1:59:bb:b5:71:87:ac:aa:c9:a6:41:71:20:71:
15:70:b1:29:a3:c1:c4:5c:2c:57:7e:02:60:b2:84:eb:13:1f:
ff:f2:ea:15:60:8a:a8:72:8d:14:e7:4c:60:5f:d0:8b:0b:bc:
92:d8:5c:f2:5a:24:6d:1d:55:8d:bc:aa:de:30:aa:27:0e:3b:
a1:29:ee:56:2f:98:07:e9:70:e2:4a:4a:ce:df:22:53:af:f9:
73:bf:7a:e1:c8:69:c6:c1:56:22:52:12:3b:51:98:8d:1c:35:
7c:35:22:24:00:17:19:3f:1e:2f:40:1c:7f:e6:94:13:e9:fb:
18:96:b2:6a:c1:66:29:0a:37:13:1e:c7:f6:a6:24:46:88:ed:
07:81:4d:41:8b:45:8a:48:a2:a1:84:41:ae:bf:4c:e8:ba:b9:
e2:c7:83:56:d9:11:30:9a:f8:fd:5b:29:81:a8:6a:b4:44:bd:
5f:b9:5f:45
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQfjH3AcvZc5m2szp5ii6tjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyYTk1OWRjMTY3MTVjOGE1NGM4MDk0MjY3YjhlNDkxZmUz
MjFkMmMwHhcNMjUwMTAxMDE0ODA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDhmNWM3NDQ4Zjc3Yjg5YTg5YzgzYWY0OTc3ZWRlMmJkM2UwOGNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4pNqEQyrBEVHi0ZCEveGoBWvSir
wtfpgKRI2OAdhOS9mZvd7nOYXoUzyT7uOvyfbpq4lnxG0u/WD4mX2nL/vEhNcqcw
70ppQXfsGFWULvQ+p9cDD0XdrkIgy6+tUa2XNx/1PwlPYdt5zGVj1nljuzDFIHZI
yA0dQMaGxJi3sN2adpevsOoPjWMw3hC6+ScersZVbSSUf5IUE1bchfojdG0I0iNH
0/Zpzuq093qJ6kDYugRGXC8wMUXhrQNBRh5CVpL2Bx5gcdeY91nAo/TbIYk0LQLd
ug6RA6NAqtWQi01qjWsxufHYI5m1edYNH8X1Y1EmBhoH4QTJnpu+bbMeHwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNCPXHRI93uJqJyDr0l37eK9PgjKMB8GA1UdIwQY
MBaAFPKpWdwWcVyKVMgJQme45JH+Mh0sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHFsWjNCWnhYSXBVeUFsQ1o3amtrZjR5SFN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi84OGEzODMtMDMwYy00NTQ1LTllOWMt
NGViZWVjN2U4Mjc1LzEvMEk5Y2RFajNlNG1vbklPdlNYZnQ0cjAtQ01vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi84OGEzODMtMDMwYy00NTQ1LTllOWMtNGViZWVjN2U4Mjc1
LzEvOHFsWjNCWnhYSXBVeUFsQ1o3amtrZjR5SFN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW9+nAwQB
W+C0MA0GCSqGSIb3DQEBCwUAA4IBAQCJYXREuTPgzev1NjnVsbd6sUJNZudZwVTl
yX/V58l/z78i3G+AySfqPljnnh61V7GGY+aN7uMyA3UFPR6mUGR5off8X5bv82in
lRwRoVm7tXGHrKrJpkFxIHEVcLEpo8HEXCxXfgJgsoTrEx//8uoVYIqoco0U50xg
X9CLC7yS2FzyWiRtHVWNvKreMKonDjuhKe5WL5gH6XDiSkrO3yJTr/lzv3rhyGnG
wVYiUhI7UZiNHDV8NSIkABcZPx4vQBx/5pQT6fsYlrJqwWYpCjcTHsf2piRGiO0H
gU1Bi0WKSKKhhEGuv0zournix4NW2REwmvj9WymBqGq0RL1fuV9F
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:17 2025 by rpki-client on console.sobornost.net