Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/l5nptPnNKKQFhoiS91lJWqnWlyE.roa
File: l5nptPnNKKQFhoiS91lJWqnWlyE.roa (raw, json)
Hash identifier: e570cnA3CxKqJo/gWfnmYUg3TNwae9HIQvRpHl8vuuY=
Subject key identifier: 97:99:E9:B4:F9:CD:28:A4:05:86:88:92:F7:59:49:5A:A9:D6:97:21
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 01942444F26DC8AA795A2A913973194CA2D3
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/l5nptPnNKKQFhoiS91lJWqnWlyE.roa
Signing time: Wed 01 Jan 2025 23:48:05 +0000
ROA not before: Wed 01 Jan 2025 23:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61270
IP address blocks: 82.144.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:f2:6d:c8:aa:79:5a:2a:91:39:73:19:4c:a2:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 23:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9799e9b4f9cd28a405868892f759495aa9d69721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:08:29:f4:aa:74:12:cb:06:6d:39:a1:2e:ea:
90:12:f0:d5:db:f5:d8:24:40:0d:a2:5b:e4:6a:ac:
1c:ec:43:97:df:ec:c1:fb:8d:ef:36:46:aa:59:7b:
ad:d5:a6:bd:dc:0e:41:a6:89:6b:61:5d:7b:b1:72:
32:8c:a4:e7:c8:f8:11:c2:83:cb:96:21:fa:ba:0b:
5a:13:b3:eb:67:39:24:01:72:f8:d9:88:49:83:f6:
fe:40:88:b6:9c:2e:6c:0c:22:22:2c:cc:18:00:19:
28:ab:b2:82:aa:2a:2f:c2:a1:d7:38:cb:e0:f8:12:
86:96:87:54:22:0d:b1:61:be:53:c8:03:4a:73:37:
bd:bc:03:0c:99:20:9c:28:5a:fd:a6:15:64:f6:ba:
0d:64:c4:2b:91:42:27:16:ee:6c:69:cd:9d:a7:a7:
1f:53:a7:55:c8:a0:6b:35:e4:1f:07:07:a7:4c:2b:
f0:04:1d:19:f0:b4:bc:01:d8:c6:b3:cb:50:ed:eb:
43:d0:54:5b:83:1d:be:01:87:30:47:55:23:aa:e4:
30:94:e7:91:4e:5d:86:06:1b:74:3b:9c:c4:f7:28:
26:1f:7e:5b:5d:8a:f9:25:6e:74:45:3a:37:82:c3:
4e:4e:49:76:be:14:f7:f0:2d:7a:33:20:19:67:f1:
70:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:99:E9:B4:F9:CD:28:A4:05:86:88:92:F7:59:49:5A:A9:D6:97:21
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/l5nptPnNKKQFhoiS91lJWqnWlyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.187.0/24
Signature Algorithm: sha256WithRSAEncryption
02:61:d2:d6:af:73:66:61:72:71:86:6e:f9:65:13:85:2a:4c:
3d:10:81:95:ff:1e:21:3e:96:8c:f7:62:bd:cf:40:46:f8:ce:
5b:af:a1:ba:9e:45:43:ef:6a:bd:a9:6c:f7:49:96:8d:17:80:
18:9e:cf:d5:c1:81:52:c1:cf:15:31:e0:5d:2d:16:4a:1b:48:
22:f4:e2:32:a6:14:3d:0f:5d:9a:8d:59:c2:92:88:f6:42:a8:
99:83:3e:d3:bd:1b:7a:e2:ef:af:d0:2b:1b:cb:8a:63:fb:14:
d8:78:b6:40:3d:1e:c2:db:9e:d3:30:62:53:99:0f:e9:a0:87:
f6:6d:1b:a2:d9:b6:2b:e9:0e:d7:c1:08:35:df:1d:2e:d9:75:
a0:1c:7e:cd:fd:8c:14:c8:c1:73:5f:75:c0:1a:ee:67:4c:e7:
59:12:54:fa:4c:ca:cd:96:35:0d:f0:e9:b8:4a:e1:15:01:06:
5b:f8:ea:8a:b8:68:ec:dd:53:b5:7e:dd:f9:7c:30:ce:04:48:
fc:aa:2b:ce:80:55:74:e1:36:75:8b:9c:f9:cb:63:4c:8e:7e:
02:91:58:8f:66:cd:13:ef:c6:c7:2d:59:9e:b8:0f:cf:fd:e8:
d8:61:d0:79:71:3d:61:5b:bf:70:bf:0e:b1:00:c1:7d:6f:87:
68:0a:e1:1e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRPJtyKp5WiqROXMZTKLTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5
ZDQyODgwHhcNMjUwMTAxMjM0ODA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Nzk5ZTliNGY5Y2QyOGE0MDU4Njg4OTJmNzU5NDk1YWE5ZDY5NzIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApggp9Kp0EssGbTmhLuqQEvDV2/XY
JEANolvkaqwc7EOX3+zB+43vNkaqWXut1aa93A5BpolrYV17sXIyjKTnyPgRwoPL
liH6ugtaE7PrZzkkAXL42YhJg/b+QIi2nC5sDCIiLMwYABkoq7KCqiovwqHXOMvg
+BKGlodUIg2xYb5TyANKcze9vAMMmSCcKFr9phVk9roNZMQrkUInFu5sac2dp6cf
U6dVyKBrNeQfBwenTCvwBB0Z8LS8AdjGs8tQ7etD0FRbgx2+AYcwR1UjquQwlOeR
Tl2GBht0O5zE9ygmH35bXYr5JW50RTo3gsNOTkl2vhT38C16MyAZZ/FwOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJeZ6bT5zSikBYaIkvdZSVqp1pchMB8GA1UdIwQY
MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It
ZWNjNDliZGMyYWQ4LzEvbDVucHRQbk5LS1FGaG9pUzkxbEpXcW5XbHlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4
LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUpC7MA0G
CSqGSIb3DQEBCwUAA4IBAQACYdLWr3NmYXJxhm75ZROFKkw9EIGV/x4hPpaM92K9
z0BG+M5br6G6nkVD72q9qWz3SZaNF4AYns/VwYFSwc8VMeBdLRZKG0gi9OIyphQ9
D12ajVnCkoj2QqiZgz7TvRt64u+v0Csby4pj+xTYeLZAPR7C257TMGJTmQ/poIf2
bRui2bYr6Q7XwQg13x0u2XWgHH7N/YwUyMFzX3XAGu5nTOdZElT6TMrNljUN8Om4
SuEVAQZb+OqKuGjs3VO1ft35fDDOBEj8qivOgFV04TZ1i5z5y2NMjn4CkViPZs0T
78bHLVmeuA/P/ejYYdB5cT1hW79wvw6xAMF9b4doCuEe
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:22 2025 by rpki-client on console.sobornost.net