Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/h7gIBEU4oG6X8Z6JkZUtNz1P-Vg.roa
File: h7gIBEU4oG6X8Z6JkZUtNz1P-Vg.roa (raw, json)
Hash identifier: DKpWc56FznKXS3brFYjn9yZnyr79b9eAZ17ykqMshkA=
Subject key identifier: 87:B8:08:04:45:38:A0:6E:97:F1:9E:89:91:95:2D:37:3D:4F:F9:58
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 019428238F379528ACDB5F006B24906D6BA3
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/h7gIBEU4oG6X8Z6JkZUtNz1P-Vg.roa
Signing time: Thu 02 Jan 2025 17:50:06 +0000
ROA not before: Thu 02 Jan 2025 17:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 22427
IP address blocks: 188.209.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:8f:37:95:28:ac:db:5f:00:6b:24:90:6d:6b:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jan 2 17:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=87b808044538a06e97f19e8991952d373d4ff958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c0:ea:4c:fb:c7:84:a8:75:0d:d0:5c:a6:67:
d6:53:6b:9b:7d:51:d8:5a:39:79:e4:28:4f:45:1a:
ea:1c:21:ab:c3:c7:f5:5a:d5:6a:32:e1:ab:7f:0a:
4d:29:b5:16:e5:97:f0:8b:53:2b:7c:63:72:c8:16:
0d:51:29:cb:bb:7c:06:8a:a1:1d:d7:a5:13:d4:f5:
ea:34:ca:53:ab:f0:44:6b:3b:46:06:31:f2:2d:9f:
30:f8:70:4f:a8:c6:29:0d:64:68:90:41:10:4b:58:
dc:3c:37:13:1f:bc:4b:c5:15:46:9b:13:35:5f:4a:
c0:34:d7:83:4a:ab:cd:3a:81:d7:45:f6:1b:af:06:
bc:0e:b5:92:7e:05:ec:93:b1:96:19:42:76:4c:a3:
e7:55:b8:10:47:b8:38:e9:4a:0e:9c:ee:3e:2a:a1:
bd:ff:48:28:d3:29:49:a2:c6:9c:4e:2c:bc:97:15:
9c:f1:4d:e0:8e:f1:5e:c4:cf:42:a6:64:6f:0d:90:
bf:3e:cf:24:45:94:3d:02:76:1b:5e:36:78:2f:d3:
67:98:40:25:05:8b:87:57:6d:ed:cd:b2:30:a3:5c:
e2:26:8f:f0:b4:64:7f:48:5e:e1:8f:45:a0:be:b7:
97:6f:df:cf:e9:68:76:ac:1a:01:67:aa:87:2b:b2:
9d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B8:08:04:45:38:A0:6E:97:F1:9E:89:91:95:2D:37:3D:4F:F9:58
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/h7gIBEU4oG6X8Z6JkZUtNz1P-Vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.131.0/24
Signature Algorithm: sha256WithRSAEncryption
36:33:e1:2e:4c:10:6b:4f:52:97:60:31:d1:dc:e8:ae:d6:f4:
bd:2a:06:3b:3b:f8:90:6b:ef:8d:60:e1:ec:13:de:b9:eb:0e:
70:61:4c:1d:ea:e5:b5:32:93:0e:ab:e2:90:c8:3b:4f:e1:4b:
3a:d0:8e:9a:9f:0a:fa:5d:b1:12:49:f1:1b:af:0a:32:2d:3f:
21:21:87:61:50:58:f1:91:ed:43:37:b4:21:a6:36:c0:a4:50:
08:68:d9:7d:e4:a3:0a:93:98:0c:5f:6b:7d:f5:34:93:cb:d8:
70:5b:00:c5:2b:7d:57:ec:04:57:a7:71:cf:de:e1:c5:11:12:
01:0a:97:26:38:d2:d1:10:ad:52:7a:cf:de:eb:1a:9f:38:c6:
a8:9a:a7:49:4f:52:9c:ae:ec:0d:82:01:28:56:90:06:7e:59:
f5:c1:7d:7e:79:97:b8:47:9f:48:a1:d6:3c:ad:23:92:34:db:
77:4a:b5:a2:53:d9:3a:4a:2f:9a:f2:78:24:47:95:81:5a:cf:
df:e5:fb:5e:c8:03:d9:5a:1f:04:0d:70:59:8f:6b:93:bf:09:
1b:a2:ed:92:9f:56:45:0e:33:5a:4f:3a:cd:da:b5:df:62:5a:
13:bc:fb:d5:a4:64:4a:d9:b2:34:1b:e0:e5:4f:3d:64:41:db:
2e:e0:aa:92
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoI483lSis218AaySQbWujMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5M2RhMjAxOTkwOWQ5ZmMzNzgyOWZkOWVjMjlkOTQ4ZWNm
ZjdjOTIwHhcNMjUwMTAyMTc1MDA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2I4MDgwNDQ1MzhhMDZlOTdmMTllODk5MTk1MmQzNzNkNGZmOTU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcDqTPvHhKh1DdBcpmfWU2ubfVHY
Wjl55ChPRRrqHCGrw8f1WtVqMuGrfwpNKbUW5Zfwi1MrfGNyyBYNUSnLu3wGiqEd
16UT1PXqNMpTq/BEaztGBjHyLZ8w+HBPqMYpDWRokEEQS1jcPDcTH7xLxRVGmxM1
X0rANNeDSqvNOoHXRfYbrwa8DrWSfgXsk7GWGUJ2TKPnVbgQR7g46UoOnO4+KqG9
/0go0ylJosacTiy8lxWc8U3gjvFexM9CpmRvDZC/Ps8kRZQ9AnYbXjZ4L9NnmEAl
BYuHV23tzbIwo1ziJo/wtGR/SF7hj0WgvreXb9/P6Wh2rBoBZ6qHK7KdxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIe4CARFOKBul/GeiZGVLTc9T/lYMB8GA1UdIwQY
MBaAFNk9ogGZCdn8N4Kf2ewp2Ujs/3ySMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgt
ZjVhZGRkZGYxZWM1LzEvaDdnSUJFVTRvRzZYOFo2SmtaVXROejFQLVZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgtZjVhZGRkZGYxZWM1
LzEvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNGDMA0G
CSqGSIb3DQEBCwUAA4IBAQA2M+EuTBBrT1KXYDHR3Oiu1vS9KgY7O/iQa++NYOHs
E9656w5wYUwd6uW1MpMOq+KQyDtP4Us60I6anwr6XbESSfEbrwoyLT8hIYdhUFjx
ke1DN7QhpjbApFAIaNl95KMKk5gMX2t99TSTy9hwWwDFK31X7ARXp3HP3uHFERIB
CpcmONLREK1Ses/e6xqfOMaomqdJT1KcruwNggEoVpAGfln1wX1+eZe4R59IodY8
rSOSNNt3SrWiU9k6Si+a8ngkR5WBWs/f5fteyAPZWh8EDXBZj2uTvwkbou2Sn1ZF
DjNaTzrN2rXfYloTvPvVpGRK2bI0G+DlTz1kQdsu4KqS
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:12:50 2025 by rpki-client on console.sobornost.net