Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/bcf09a-7c8e-4e20-8450-e088aa0aa8dd/1/yht62Ehavo3uZINByDHEHOjVZVw.roa
File: yht62Ehavo3uZINByDHEHOjVZVw.roa (raw, json)
Hash identifier: mqAvN4VPlszrLeatuKNPPUoNf7NdmTA8jofCmdZ20jg=
Subject key identifier: CA:1B:7A:D8:48:5A:BE:8D:EE:64:83:41:C8:31:C4:1C:E8:D5:65:5C
Certificate issuer: /CN=1d0db3568e455f3da2b2274a9d525cac0931c7d5
Certificate serial: 0194266BE187E78E5A96170BEACE117B418A
Authority key identifier: 1D:0D:B3:56:8E:45:5F:3D:A2:B2:27:4A:9D:52:5C:AC:09:31:C7:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQ2zVo5FXz2isidKnVJcrAkxx9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/bcf09a-7c8e-4e20-8450-e088aa0aa8dd/1/yht62Ehavo3uZINByDHEHOjVZVw.roa
Signing time: Thu 02 Jan 2025 09:49:51 +0000
ROA not before: Thu 02 Jan 2025 09:49:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48642
IP address blocks: 91.231.196.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:e1:87:e7:8e:5a:96:17:0b:ea:ce:11:7b:41:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0db3568e455f3da2b2274a9d525cac0931c7d5
Validity
Not Before: Jan 2 09:49:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ca1b7ad8485abe8dee648341c831c41ce8d5655c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3a:d7:13:25:49:d9:66:dd:e6:1e:9e:1a:9a:
fe:32:17:c5:4b:ed:e8:40:fe:72:46:58:1f:ce:ab:
c4:e3:50:e6:3f:f3:2f:b1:9d:f5:c5:f3:2c:ac:a6:
f8:79:ba:e7:e2:48:76:c2:8c:62:8e:3b:9f:f0:d0:
60:b4:f5:87:8e:37:20:f5:78:c3:15:54:d3:c9:0d:
40:28:27:ed:b3:06:7d:2f:78:9a:8f:b4:01:76:ad:
b9:69:2b:cd:8a:49:0f:7f:56:e7:6f:4b:35:27:53:
c4:20:59:f1:d1:9b:21:ec:56:e4:b1:a4:c3:60:36:
dd:58:cc:ff:6f:79:7e:14:77:64:b2:11:2c:2c:6d:
d9:b9:1f:0d:fb:4a:eb:65:34:1e:8e:15:9e:f3:7d:
9e:f6:9c:8f:02:72:fa:49:4f:5b:f4:68:2d:1c:aa:
a3:8b:c9:77:29:51:8b:c7:eb:e3:f1:37:27:41:d5:
44:2f:e1:7b:fc:73:57:2c:09:ac:18:ce:52:31:4c:
a3:a6:66:34:5e:dd:54:af:fa:08:00:ba:a8:33:2e:
9f:9d:e0:5c:f7:a3:06:4a:a4:43:9f:6b:14:96:2d:
7c:87:ab:22:aa:f5:cd:77:26:d4:5c:75:82:da:37:
df:c2:74:e0:ea:39:f5:a9:89:02:42:e6:2f:b4:9c:
6c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1B:7A:D8:48:5A:BE:8D:EE:64:83:41:C8:31:C4:1C:E8:D5:65:5C
X509v3 Authority Key Identifier:
keyid:1D:0D:B3:56:8E:45:5F:3D:A2:B2:27:4A:9D:52:5C:AC:09:31:C7:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQ2zVo5FXz2isidKnVJcrAkxx9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bcf09a-7c8e-4e20-8450-e088aa0aa8dd/1/yht62Ehavo3uZINByDHEHOjVZVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bcf09a-7c8e-4e20-8450-e088aa0aa8dd/1/HQ2zVo5FXz2isidKnVJcrAkxx9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.196.0/22
Signature Algorithm: sha256WithRSAEncryption
87:fc:5e:7e:0f:8a:d8:a2:70:21:27:b6:9f:82:25:94:93:dd:
79:66:f5:ba:20:10:ae:ee:0a:9d:b9:9a:99:ad:2f:eb:4e:28:
b3:15:f9:59:61:3f:ac:2d:8a:10:d7:59:82:3a:ec:d7:28:00:
c8:b5:82:5e:4a:8c:ee:a4:25:9c:0f:aa:64:a0:a8:5c:fb:b4:
6d:5e:f7:ec:59:42:a0:55:fc:82:0c:2e:36:12:ae:40:7b:17:
d5:f6:36:53:5d:bd:be:ae:44:ed:e4:e5:61:fb:bf:b3:23:99:
44:5f:4f:32:4a:16:27:d9:52:05:d8:b6:d0:86:a5:1d:5c:64:
0e:ed:24:31:ae:4b:c6:61:10:9c:a7:f5:89:dc:74:bc:fc:c6:
de:35:24:f9:49:92:0b:d8:7b:a0:e8:c0:58:49:65:59:0f:38:
68:36:a1:98:d8:88:75:34:73:8e:19:f0:80:b4:07:70:90:63:
3d:63:d5:ab:7e:9e:f0:31:b8:23:d2:2a:ef:7f:54:4c:5a:8c:
59:6b:25:0c:f5:55:17:52:ca:c7:b7:52:ef:46:46:f8:47:d6:
80:68:1a:a0:ab:f7:cc:6a:d4:35:b1:02:b8:87:46:e7:12:07:
a4:79:a1:85:70:bc:da:cb:28:80:a0:77:74:e7:78:d2:94:ab:
d1:f6:4b:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQma+GH545alhcL6s4Re0GKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMGRiMzU2OGU0NTVmM2RhMmIyMjc0YTlkNTI1Y2FjMDkz
MWM3ZDUwHhcNMjUwMTAyMDk0OTUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTFiN2FkODQ4NWFiZThkZWU2NDgzNDFjODMxYzQxY2U4ZDU2NTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujrXEyVJ2Wbd5h6eGpr+MhfFS+3o
QP5yRlgfzqvE41DmP/MvsZ31xfMsrKb4ebrn4kh2woxijjuf8NBgtPWHjjcg9XjD
FVTTyQ1AKCftswZ9L3iaj7QBdq25aSvNikkPf1bnb0s1J1PEIFnx0Zsh7FbksaTD
YDbdWMz/b3l+FHdkshEsLG3ZuR8N+0rrZTQejhWe832e9pyPAnL6SU9b9GgtHKqj
i8l3KVGLx+vj8TcnQdVEL+F7/HNXLAmsGM5SMUyjpmY0Xt1Ur/oIALqoMy6fneBc
96MGSqRDn2sUli18h6siqvXNdybUXHWC2jffwnTg6jn1qYkCQuYvtJxs5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMobethIWr6N7mSDQcgxxBzo1WVcMB8GA1UdIwQY
MBaAFB0Ns1aORV89orInSp1SXKwJMcfVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFEyelZvNUZYejJpc2lkS25WSmNyQWt4eDlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9iY2YwOWEtN2M4ZS00ZTIwLTg0NTAt
ZTA4OGFhMGFhOGRkLzEveWh0NjJFaGF2bzN1WklOQnlESEVIT2pWWlZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9iY2YwOWEtN2M4ZS00ZTIwLTg0NTAtZTA4OGFhMGFhOGRk
LzEvSFEyelZvNUZYejJpc2lkS25WSmNyQWt4eDlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW+fEMA0G
CSqGSIb3DQEBCwUAA4IBAQCH/F5+D4rYonAhJ7afgiWUk915ZvW6IBCu7gqduZqZ
rS/rTiizFflZYT+sLYoQ11mCOuzXKADItYJeSozupCWcD6pkoKhc+7RtXvfsWUKg
VfyCDC42Eq5AexfV9jZTXb2+rkTt5OVh+7+zI5lEX08yShYn2VIF2LbQhqUdXGQO
7SQxrkvGYRCcp/WJ3HS8/MbeNST5SZIL2Hug6MBYSWVZDzhoNqGY2Ih1NHOOGfCA
tAdwkGM9Y9Wrfp7wMbgj0irvf1RMWoxZayUM9VUXUsrHt1LvRkb4R9aAaBqgq/fM
atQ1sQK4h0bnEgekeaGFcLzayyiAoHd053jSlKvR9kuK
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net