Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/kaRHNamZXPJCw_g8nY9b4j30k2Y.roa
File: kaRHNamZXPJCw_g8nY9b4j30k2Y.roa (raw, json)
Hash identifier: 4Wp2FhFr3sOAxEWUnXlXchKEwJ5dKGkuJJKV3L/ukrM=
Subject key identifier: 91:A4:47:35:A9:99:5C:F2:42:C3:F8:3C:9D:8F:5B:E2:3D:F4:93:66
Certificate issuer: /CN=1cee91296c94992d151a232240e6cf3a176d2039
Certificate serial: 019423D771F1F772167CE7FB9C5C47C92A8C
Authority key identifier: 1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/kaRHNamZXPJCw_g8nY9b4j30k2Y.roa
Signing time: Wed 01 Jan 2025 21:48:29 +0000
ROA not before: Wed 01 Jan 2025 21:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203980
IP address blocks: 46.172.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:71:f1:f7:72:16:7c:e7:fb:9c:5c:47:c9:2a:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cee91296c94992d151a232240e6cf3a176d2039
Validity
Not Before: Jan 1 21:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=91a44735a9995cf242c3f83c9d8f5be23df49366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:19:c7:04:b4:a1:0f:7a:70:81:1e:95:7b:56:
53:cb:4d:fd:84:53:a6:3d:4d:4f:11:29:ee:0a:43:
6c:a7:f7:eb:37:d6:b1:fc:6b:01:8a:30:2b:6d:86:
81:6a:ab:4b:65:eb:8d:c1:4e:4f:76:ba:d2:b8:80:
86:8e:eb:fc:67:cc:28:a2:91:8d:af:d9:f3:fe:91:
c7:4c:8c:05:d4:15:68:d0:6a:96:b9:68:5d:9a:b8:
d4:74:53:4d:78:11:29:c4:a7:6c:3c:fb:f0:89:0a:
ae:a0:a4:35:30:21:ed:dc:ef:b5:3e:81:d1:b7:67:
af:68:6e:0e:f6:83:2b:4d:61:44:43:fd:a9:b1:2e:
76:4c:6f:5c:69:b9:ee:00:60:d7:cc:cb:62:ed:a4:
1d:e0:76:2c:c7:d8:00:e9:c8:3d:c8:5b:8d:19:6f:
96:44:04:82:b1:90:f5:05:13:8d:ff:5d:80:ad:de:
4d:52:e7:47:7a:df:c6:4d:28:5e:f7:44:3f:18:14:
96:38:8e:e2:6a:54:a3:86:31:1a:f2:a9:15:ce:14:
6e:a3:5c:34:b6:70:70:cd:e8:24:c2:ab:53:34:6f:
4e:59:3c:8b:33:b9:27:5a:80:51:cf:a2:b7:93:c0:
39:e0:07:9d:88:f0:d1:21:2e:9b:8a:cc:38:53:e3:
7a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A4:47:35:A9:99:5C:F2:42:C3:F8:3C:9D:8F:5B:E2:3D:F4:93:66
X509v3 Authority Key Identifier:
keyid:1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/kaRHNamZXPJCw_g8nY9b4j30k2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.172.76.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:06:ed:89:b7:42:c2:eb:3b:c0:68:bd:24:3c:04:42:d3:78:
cf:68:91:a0:62:e7:cb:f3:05:3e:2f:31:75:22:00:60:ff:ac:
d5:82:f8:bb:d5:95:54:64:61:fa:da:33:47:e3:c1:60:bd:7b:
a5:21:e5:fc:c9:34:4c:a1:56:b3:ce:6e:71:d8:5f:b2:cf:f8:
a8:1c:50:e1:3f:af:c0:7b:c9:6e:02:b9:0c:8c:8a:a4:53:66:
09:64:7e:93:3c:7a:66:a6:e5:44:03:f6:00:e5:2a:6f:ec:0e:
72:04:f2:2e:e8:a1:8b:4c:4c:93:8e:c2:58:80:f3:c8:81:ee:
ba:b6:42:d5:a1:18:a7:2d:18:10:d4:58:cb:16:d0:ea:c4:8a:
78:55:b7:3d:4a:9a:19:63:93:15:3a:0f:5c:6d:0e:11:68:6a:
5d:cb:88:ea:61:c8:3e:f1:a3:3d:d1:38:f3:68:9e:00:b4:09:
25:77:a5:5a:8a:37:06:1e:c4:67:cc:4f:7b:55:f5:e6:0c:59:
1e:a9:06:cd:1b:33:62:18:bf:cb:cf:5f:70:19:57:24:69:79:
20:dd:14:3d:e7:94:23:39:d1:ae:e9:01:22:ea:7f:8d:c9:1e:
90:31:35:34:06:d0:8d:94:d4:1b:af:97:83:55:97:dd:69:5b:
1c:18:a5:e4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQj13Hx93IWfOf7nFxHySqMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjZWU5MTI5NmM5NDk5MmQxNTFhMjMyMjQwZTZjZjNhMTc2
ZDIwMzkwHhcNMjUwMTAxMjE0ODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MWE0NDczNWE5OTk1Y2YyNDJjM2Y4M2M5ZDhmNWJlMjNkZjQ5MzY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBnHBLShD3pwgR6Ve1ZTy039hFOm
PU1PESnuCkNsp/frN9ax/GsBijArbYaBaqtLZeuNwU5PdrrSuICGjuv8Z8woopGN
r9nz/pHHTIwF1BVo0GqWuWhdmrjUdFNNeBEpxKdsPPvwiQquoKQ1MCHt3O+1PoHR
t2evaG4O9oMrTWFEQ/2psS52TG9cabnuAGDXzMti7aQd4HYsx9gA6cg9yFuNGW+W
RASCsZD1BRON/12Ard5NUudHet/GTShe90Q/GBSWOI7ialSjhjEa8qkVzhRuo1w0
tnBwzegkwqtTNG9OWTyLM7knWoBRz6K3k8A54AediPDRIS6bisw4U+N6wwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJGkRzWpmVzyQsP4PJ2PW+I99JNmMB8GA1UdIwQY
MBaAFBzukSlslJktFRojIkDmzzoXbSA5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSE82UktXeVVtUzBWR2lNaVFPYlBPaGR0SURrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9jOTFlYzMtMjgyMC00MTdiLTlhYWQt
YmFjYWI0NzVlNmNjLzEva2FSSE5hbVpYUEpDd19nOG5ZOWI0ajMwazJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9jOTFlYzMtMjgyMC00MTdiLTlhYWQtYmFjYWI0NzVlNmNj
LzEvSE82UktXeVVtUzBWR2lNaVFPYlBPaGR0SURrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALqxMMA0G
CSqGSIb3DQEBCwUAA4IBAQBaBu2Jt0LC6zvAaL0kPARC03jPaJGgYufL8wU+LzF1
IgBg/6zVgvi71ZVUZGH62jNH48FgvXulIeX8yTRMoVazzm5x2F+yz/ioHFDhP6/A
e8luArkMjIqkU2YJZH6TPHpmpuVEA/YA5Spv7A5yBPIu6KGLTEyTjsJYgPPIge66
tkLVoRinLRgQ1FjLFtDqxIp4Vbc9SpoZY5MVOg9cbQ4RaGpdy4jqYcg+8aM90Tjz
aJ4AtAkld6VaijcGHsRnzE97VfXmDFkeqQbNGzNiGL/Lz19wGVckaXkg3RQ955Qj
OdGu6QEi6n+NyR6QMTU0BtCNlNQbr5eDVZfdaVscGKXk
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:50 2025 by rpki-client on console.sobornost.net