Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/543b15-fb1b-445f-8aa4-db4d714859b5/1/6RcCkdQFGWy_nPVJ5PYr33uzOXU.roa
File: 6RcCkdQFGWy_nPVJ5PYr33uzOXU.roa (raw, json)
Hash identifier: PZ+A9ZlEQ7K41uD9VPzIENtQyrmgXc6Bk58rmZ1Z+IQ=
Subject key identifier: E9:17:02:91:D4:05:19:6C:BF:9C:F5:49:E4:F6:2B:DF:7B:B3:39:75
Certificate issuer: /CN=3e482fb3c9f9af470e4e48b6df382d3d50154661
Certificate serial: 01941FFA144CA2D93EAA36DAEF16761B7D90
Authority key identifier: 3E:48:2F:B3:C9:F9:AF:47:0E:4E:48:B6:DF:38:2D:3D:50:15:46:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pkgvs8n5r0cOTki23zgtPVAVRmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/543b15-fb1b-445f-8aa4-db4d714859b5/1/6RcCkdQFGWy_nPVJ5PYr33uzOXU.roa
Signing time: Wed 01 Jan 2025 03:47:50 +0000
ROA not before: Wed 01 Jan 2025 03:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56655
IP address blocks: 193.200.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:14:4c:a2:d9:3e:aa:36:da:ef:16:76:1b:7d:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e482fb3c9f9af470e4e48b6df382d3d50154661
Validity
Not Before: Jan 1 03:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e9170291d405196cbf9cf549e4f62bdf7bb33975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e9:96:c7:ec:cd:ce:a5:49:3e:33:b0:1f:7d:
1b:d2:97:36:4d:4b:af:41:73:19:3b:67:fc:43:7d:
e1:83:3f:00:bf:9e:78:c6:f1:20:89:36:b2:b9:94:
6a:4e:8f:83:ae:18:f7:8f:6e:37:2e:21:e6:4d:0f:
89:15:1c:44:0d:5f:4f:6b:b7:e4:72:5f:d7:f7:89:
12:c0:ad:7f:35:cc:2c:96:c2:24:68:45:68:68:9e:
61:31:a5:74:c1:d4:22:a7:1e:d8:7d:29:80:7b:af:
01:69:45:ad:b3:dd:30:0d:e3:2e:70:9b:8f:7d:50:
ec:b7:c8:ee:2b:33:dc:4f:1b:f8:e6:91:af:82:3e:
0b:db:e4:03:12:95:be:75:e9:08:8c:65:43:63:41:
7e:11:e9:50:f3:f7:d9:44:be:bb:eb:8a:c3:bf:26:
d1:85:b4:59:bb:01:50:55:68:47:69:45:e0:06:1f:
5e:8c:a4:56:21:b3:90:84:10:a7:4c:59:24:cf:f2:
7a:22:8f:c6:b4:2e:fe:c9:c7:f9:70:50:95:98:69:
c0:84:21:ef:f6:e3:bb:d1:b9:87:14:4f:b3:fe:08:
03:3c:08:4e:61:aa:0e:69:57:f4:1c:48:50:df:0f:
bd:50:9b:ca:d2:b4:a8:b7:16:5e:f1:1e:23:ea:a3:
13:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:17:02:91:D4:05:19:6C:BF:9C:F5:49:E4:F6:2B:DF:7B:B3:39:75
X509v3 Authority Key Identifier:
keyid:3E:48:2F:B3:C9:F9:AF:47:0E:4E:48:B6:DF:38:2D:3D:50:15:46:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pkgvs8n5r0cOTki23zgtPVAVRmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/543b15-fb1b-445f-8aa4-db4d714859b5/1/6RcCkdQFGWy_nPVJ5PYr33uzOXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/543b15-fb1b-445f-8aa4-db4d714859b5/1/Pkgvs8n5r0cOTki23zgtPVAVRmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.238.0/24
Signature Algorithm: sha256WithRSAEncryption
65:a3:b3:ec:f8:41:c7:d7:40:14:d5:9f:f4:01:67:e8:23:ce:
8c:53:60:b8:c4:80:07:79:a5:d6:53:25:65:d8:6a:e5:95:27:
ba:bc:c7:b4:ab:f8:b3:a1:17:cd:16:ba:f4:3a:50:4c:98:6a:
15:93:3a:c0:57:fa:d4:72:c2:6e:73:03:ca:99:de:0f:b2:20:
0d:89:c2:33:17:94:e0:9e:3a:08:ce:ae:67:e9:d4:c7:7d:e3:
eb:cc:2b:9a:b9:b2:c4:7a:d2:a1:20:a7:81:13:49:9d:c0:7b:
49:3a:d4:85:55:e5:bd:60:14:6b:12:43:fb:89:cb:f1:87:2b:
15:36:64:2e:ec:91:94:66:d5:e1:3c:43:e9:a0:4f:8e:73:3b:
85:d4:9c:c2:46:23:07:34:0f:16:f8:bc:7d:82:54:64:31:aa:
9a:e1:a3:63:f1:27:f7:66:b2:50:a2:5a:e9:c6:2a:fa:fa:55:
9b:0f:41:10:0d:23:20:fe:d2:b7:e9:90:02:35:bf:dd:76:23:
77:13:4a:3a:3d:71:a6:e8:ff:9a:8a:86:a0:a9:d3:e6:f1:90:
08:0e:92:c3:37:31:5b:13:32:aa:10:7f:4b:ca:20:53:12:55:
d6:50:41:b7:48:3f:49:8c:39:de:67:f1:f7:fe:a3:58:25:1b:
b3:65:07:a4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQf+hRMotk+qjba7xZ2G32QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNDgyZmIzYzlmOWFmNDcwZTRlNDhiNmRmMzgyZDNkNTAx
NTQ2NjEwHhcNMjUwMTAxMDM0NzUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTE3MDI5MWQ0MDUxOTZjYmY5Y2Y1NDllNGY2MmJkZjdiYjMzOTc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+mWx+zNzqVJPjOwH30b0pc2TUuv
QXMZO2f8Q33hgz8Av554xvEgiTayuZRqTo+Drhj3j243LiHmTQ+JFRxEDV9Pa7fk
cl/X94kSwK1/NcwslsIkaEVoaJ5hMaV0wdQipx7YfSmAe68BaUWts90wDeMucJuP
fVDst8juKzPcTxv45pGvgj4L2+QDEpW+dekIjGVDY0F+EelQ8/fZRL6764rDvybR
hbRZuwFQVWhHaUXgBh9ejKRWIbOQhBCnTFkkz/J6Io/GtC7+ycf5cFCVmGnAhCHv
9uO70bmHFE+z/ggDPAhOYaoOaVf0HEhQ3w+9UJvK0rSotxZe8R4j6qMT0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOkXApHUBRlsv5z1SeT2K997szl1MB8GA1UdIwQY
MBaAFD5IL7PJ+a9HDk5Itt84LT1QFUZhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGtndnM4bjVyMGNPVGtpMjN6Z3RQVkFWUm1FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81NDNiMTUtZmIxYi00NDVmLThhYTQt
ZGI0ZDcxNDg1OWI1LzEvNlJjQ2tkUUZHV3lfblBWSjVQWXIzM3V6T1hVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My81NDNiMTUtZmIxYi00NDVmLThhYTQtZGI0ZDcxNDg1OWI1
LzEvUGtndnM4bjVyMGNPVGtpMjN6Z3RQVkFWUm1FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcjuMA0G
CSqGSIb3DQEBCwUAA4IBAQBlo7Ps+EHH10AU1Z/0AWfoI86MU2C4xIAHeaXWUyVl
2GrllSe6vMe0q/izoRfNFrr0OlBMmGoVkzrAV/rUcsJucwPKmd4PsiANicIzF5Tg
njoIzq5n6dTHfePrzCuaubLEetKhIKeBE0mdwHtJOtSFVeW9YBRrEkP7icvxhysV
NmQu7JGUZtXhPEPpoE+OczuF1JzCRiMHNA8W+Lx9glRkMaqa4aNj8Sf3ZrJQolrp
xir6+lWbD0EQDSMg/tK36ZACNb/ddiN3E0o6PXGm6P+aioagqdPm8ZAIDpLDNzFb
EzKqEH9LyiBTElXWUEG3SD9JjDneZ/H3/qNYJRuzZQek
-----END CERTIFICATE-----
Generated at Sat Mar 8 04:48:47 2025 by rpki-client on console.sobornost.net