Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/12VZdcmHAZ40OHT9mrIrMjn0594.roa
File: 12VZdcmHAZ40OHT9mrIrMjn0594.roa (raw, json)
Hash identifier: ET8sgbp54z2ReDcdD/bnaoyAnFdtN16gcR5nsUzXKcM=
Subject key identifier: D7:65:59:75:C9:87:01:9E:34:38:74:FD:9A:B2:2B:32:39:F4:E7:DE
Certificate issuer: /CN=b5449b08ea6a267df7366a6895c7c924c2f1926d
Certificate serial: 019527BE4799A230063FE31A8A6AF0533249
Authority key identifier: B5:44:9B:08:EA:6A:26:7D:F7:36:6A:68:95:C7:C9:24:C2:F1:92:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/12VZdcmHAZ40OHT9mrIrMjn0594.roa
Signing time: Fri 21 Feb 2025 09:02:16 +0000
ROA not before: Fri 21 Feb 2025 09:02:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30891
IP address blocks: 91.245.223.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:27:be:47:99:a2:30:06:3f:e3:1a:8a:6a:f0:53:32:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5449b08ea6a267df7366a6895c7c924c2f1926d
Validity
Not Before: Feb 21 09:02:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d7655975c987019e343874fd9ab22b3239f4e7de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:61:cc:4d:9a:c4:ab:56:0e:01:4a:73:03:0d:
17:b1:74:93:75:47:40:2d:d6:8c:5a:69:e2:7f:52:
3d:cb:f2:8f:fe:7e:83:45:7c:da:f6:f1:cc:1f:7f:
20:69:c6:1d:db:54:4b:44:4d:cf:02:ef:f7:de:d1:
f7:ae:5a:67:6e:d6:7a:5b:f8:2a:83:46:24:8a:fa:
76:fa:9c:24:f3:62:03:cb:da:9f:15:84:5f:dc:78:
19:5c:6e:ea:96:8e:12:de:d5:17:b2:b6:39:bf:e0:
ff:0c:82:51:10:7b:25:94:29:c5:17:c2:ce:84:a6:
6b:d0:19:e6:7b:3f:7a:27:0d:f5:16:2c:30:07:c6:
ee:e0:72:29:68:0d:46:a9:ae:06:c3:5e:47:ec:68:
cb:74:0d:f8:9b:df:2e:86:96:21:03:1b:c9:5f:b5:
5c:f8:21:f4:73:bb:15:a9:0f:c1:f3:a9:be:e1:7d:
2b:ac:cc:51:17:67:ce:23:f9:50:e5:1c:b1:57:79:
87:75:7b:a2:4a:8b:03:b5:82:26:47:db:ac:a4:4a:
1e:d4:9d:ef:83:2c:b8:94:f7:0e:d7:d5:08:f4:66:
f8:94:6e:9a:82:8a:5c:02:b9:f5:f3:9a:9a:39:44:
24:93:10:c0:5a:45:68:e9:6b:60:b7:c8:10:96:27:
c1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:65:59:75:C9:87:01:9E:34:38:74:FD:9A:B2:2B:32:39:F4:E7:DE
X509v3 Authority Key Identifier:
keyid:B5:44:9B:08:EA:6A:26:7D:F7:36:6A:68:95:C7:C9:24:C2:F1:92:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/12VZdcmHAZ40OHT9mrIrMjn0594.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.223.0/24
Signature Algorithm: sha256WithRSAEncryption
43:89:a0:b7:30:ff:bc:65:da:e3:5f:9b:5c:d9:3e:82:44:fa:
62:d0:0b:b7:4b:2f:ad:2e:6d:28:17:6f:6c:ba:7e:9f:4b:4a:
78:83:c6:a1:4a:75:d7:59:70:ef:ef:16:cb:07:5d:2a:e7:88:
bc:ab:75:f8:8b:26:75:a3:2a:c1:34:b0:37:e1:75:60:dc:1c:
b6:41:67:bf:58:24:56:57:cc:b6:a6:44:97:a8:44:da:8c:32:
a0:25:ce:af:61:b9:fc:48:e5:3f:98:b6:46:a7:47:b1:17:3f:
e7:2e:82:9f:e4:da:0a:c2:81:54:7b:8e:5d:12:98:a7:d0:4f:
21:3d:5a:68:0e:9a:f0:79:46:c8:26:d5:f7:9b:1d:ac:79:5d:
de:ea:ab:a8:fe:ed:78:20:1b:b7:f5:59:8d:31:81:92:8a:6c:
93:73:f5:1d:9a:83:fd:a0:91:69:fc:0f:6e:68:9b:89:e9:f5:
b5:76:05:f1:c0:db:6f:46:ca:f6:f5:69:3f:80:8e:c4:c4:b1:
af:01:1e:a3:0c:a7:75:74:a2:76:c0:dd:44:22:36:44:41:f5:
5a:ae:74:e5:76:cd:a7:eb:47:a6:38:4f:09:38:2b:dd:82:64:
87:8f:d3:87:b9:f5:03:0c:a2:6d:94:76:81:bd:9a:d0:69:b8:
73:60:7a:dc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUnvkeZojAGP+MaimrwUzJJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NDQ5YjA4ZWE2YTI2N2RmNzM2NmE2ODk1YzdjOTI0YzJm
MTkyNmQwHhcNMjUwMjIxMDkwMjE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzY1NTk3NWM5ODcwMTllMzQzODc0ZmQ5YWIyMmIzMjM5ZjRlN2RlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGHMTZrEq1YOAUpzAw0XsXSTdUdA
LdaMWmnif1I9y/KP/n6DRXza9vHMH38gacYd21RLRE3PAu/33tH3rlpnbtZ6W/gq
g0Ykivp2+pwk82IDy9qfFYRf3HgZXG7qlo4S3tUXsrY5v+D/DIJREHsllCnFF8LO
hKZr0Bnmez96Jw31FiwwB8bu4HIpaA1Gqa4Gw15H7GjLdA34m98uhpYhAxvJX7Vc
+CH0c7sVqQ/B86m+4X0rrMxRF2fOI/lQ5RyxV3mHdXuiSosDtYImR9uspEoe1J3v
gyy4lPcO19UI9Gb4lG6agopcArn185qaOUQkkxDAWkVo6Wtgt8gQlifBVwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNdlWXXJhwGeNDh0/ZqyKzI59OfeMB8GA1UdIwQY
MBaAFLVEmwjqaiZ99zZqaJXHySTC8ZJtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFVTYkNPcHFKbjMzTm1wb2xjZkpKTUx4a20wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy82YzBiNTQtYjA2ZS00ZDQ0LTgxMjAt
MzcwYjg2ODhmZWFmLzEvMTJWWmRjbUhBWjQwT0hUOW1ySXJNam4wNTk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy82YzBiNTQtYjA2ZS00ZDQ0LTgxMjAtMzcwYjg2ODhmZWFm
LzEvdFVTYkNPcHFKbjMzTm1wb2xjZkpKTUx4a20wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/XfMA0G
CSqGSIb3DQEBCwUAA4IBAQBDiaC3MP+8ZdrjX5tc2T6CRPpi0Au3Sy+tLm0oF29s
un6fS0p4g8ahSnXXWXDv7xbLB10q54i8q3X4iyZ1oyrBNLA34XVg3By2QWe/WCRW
V8y2pkSXqETajDKgJc6vYbn8SOU/mLZGp0exFz/nLoKf5NoKwoFUe45dEpin0E8h
PVpoDprweUbIJtX3mx2seV3e6quo/u14IBu39VmNMYGSimyTc/UdmoP9oJFp/A9u
aJuJ6fW1dgXxwNtvRsr29Wk/gI7ExLGvAR6jDKd1dKJ2wN1EIjZEQfVarnTlds2n
60emOE8JOCvdgmSHj9OHufUDDKJtlHaBvZrQabhzYHrc
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:39 2025 by rpki-client on console.sobornost.net